raccoon | 9404929845586143f7710859d67216667f08d2e8e8013959b62fe5ac2cd55014 | Triage

Sharing

General

Target

8d409ba9c06489f7f77cf6c6e07609c4.exe
Size

80KB
Sample

240705-qsc2wsygnm
MD5

8d409ba9c06489f7f77cf6c6e07609c4
SHA1

2d27b34bd9f05584b8200bfbc081c75b11ad127c
SHA256

9404929845586143f7710859d67216667f08d2e8e8013959b62fe5ac2cd55014
SHA512

3817654ecf6dd09b9381b25625fd62d75e3cb3cb62cdbebc0d42b22e4c22f64a86ee7c9add805c09bf102ec0a4356624a4284675d9ba0b842c7c7ecd22ba4411
SSDEEP

1536:KX0PI6ORWFPekAZZ0XCkSBIPV1Fn1p06QcKUp3dFqH:9PI6GWpeVsXCLMrxbQOpNFqH

Score

10^/10

raccoon bbbec09fb70501082e2a2e9916afbab0

Malware Config

Extracted

Family

raccoon

Botnet

bbbec09fb70501082e2a2e9916afbab0

C2

http://5.181.159.42:80

Attributes

user_agent
MrBidenNeverKnow

xor.plain

Targets

- Target
  
  8d409ba9c06489f7f77cf6c6e07609c4.exe
- Size
  
  80KB
- MD5
  
  8d409ba9c06489f7f77cf6c6e07609c4
- SHA1
  
  2d27b34bd9f05584b8200bfbc081c75b11ad127c
- SHA256
  
  9404929845586143f7710859d67216667f08d2e8e8013959b62fe5ac2cd55014
- SHA512
  
  3817654ecf6dd09b9381b25625fd62d75e3cb3cb62cdbebc0d42b22e4c22f64a86ee7c9add805c09bf102ec0a4356624a4284675d9ba0b842c7c7ecd22ba4411
- SSDEEP
  
  1536:KX0PI6ORWFPekAZZ0XCkSBIPV1Fn1p06QcKUp3dFqH:9PI6GWpeVsXCLMrxbQOpNFqH
Score

1^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

bbbec09fb70501082e2a2e9916afbab0raccoon

behavioral1

behavioral2