raccoon | 29c81d453f8093b69ff5159c7c1971ef6471bf6a6f6b4fa19f644269076f2242 | Triage

Sharing

General

Target

6e10a2b072e9d61d95bd273e994d61ce_JaffaCakes118
Size

572KB
Sample

240524-llppwscf9w
MD5

6e10a2b072e9d61d95bd273e994d61ce
SHA1

b8615163d468b5eae6be5903b18cf57f73dd7631
SHA256

29c81d453f8093b69ff5159c7c1971ef6471bf6a6f6b4fa19f644269076f2242
SHA512

ddf67931e0bd8281e64fcd570b7a6ddfda44a646c0e38e953a26ddef1c8f2f540f1f34b54f5e9c54403a80b4cda07c10dc3456c293b3aeca1400e4abcea0e705
SSDEEP

12288:/rRa+zvyhlLPWmHmFi0CX4zSrBMUcEHhgEzx9juwL5FsDdT5kimswAQC:/r84yhl6mGFhE4zJWVG5/uAQC

Score

10^/10

raccoon ef5c4ae6eecb3be16c1e2f8bfa015718d26593aa

Malware Config

Extracted

Family

raccoon

Botnet

ef5c4ae6eecb3be16c1e2f8bfa015718d26593aa

Attributes

url4cnc
https://telete.in/jdiamond13

rc4.plain

rc4.plain

Targets

- Target
  
  6e10a2b072e9d61d95bd273e994d61ce_JaffaCakes118
- Size
  
  572KB
- MD5
  
  6e10a2b072e9d61d95bd273e994d61ce
- SHA1
  
  b8615163d468b5eae6be5903b18cf57f73dd7631
- SHA256
  
  29c81d453f8093b69ff5159c7c1971ef6471bf6a6f6b4fa19f644269076f2242
- SHA512
  
  ddf67931e0bd8281e64fcd570b7a6ddfda44a646c0e38e953a26ddef1c8f2f540f1f34b54f5e9c54403a80b4cda07c10dc3456c293b3aeca1400e4abcea0e705
- SSDEEP
  
  12288:/rRa+zvyhlLPWmHmFi0CX4zSrBMUcEHhgEzx9juwL5FsDdT5kimswAQC:/r84yhl6mGFhE4zJWVG5/uAQC
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

ef5c4ae6eecb3be16c1e2f8bfa015718d26593aaraccoon

behavioral1

behavioral2