General
-
Target
SecuriteInfo.com.Win32.MalwareX-gen.25529.2815.exe
-
Size
1.9MB
-
Sample
240809-k4wqgsyeqk
-
MD5
02b2f62e789410f8c256b0d63ac45a1a
-
SHA1
0405562a34ea101cd0e890e1643afbfd4cc48e56
-
SHA256
974bc77cb81fc01f84907370cc3ef55c9e243c6e0e1df7b3af8238dc1bd68fd5
-
SHA512
d7baa87d0ab38c0028e523ccb1e62662f20db6ceb256602e827c2f8037e40beae95a08e002ddb67d1b5ac53eee6da173d2b24dc438687319e9858a80d0a14ab5
-
SSDEEP
49152:FNhQ1RFI9HDhf6I8BmYiMvdLBG9n+bn+etQ6fQ:F7QD6lfdIvdLBG9+Ttk
Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Win32.MalwareX-gen.25529.2815.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
SecuriteInfo.com.Win32.MalwareX-gen.25529.2815.exe
Resource
win10v2004-20240802-en
Malware Config
Extracted
raccoon
cdfc9a1f925b0d382ad5704a3cb352fb
http://192.121.23.67:80/
-
user_agent
MrBidenNeverKnow
Targets
-
-
Target
SecuriteInfo.com.Win32.MalwareX-gen.25529.2815.exe
-
Size
1.9MB
-
MD5
02b2f62e789410f8c256b0d63ac45a1a
-
SHA1
0405562a34ea101cd0e890e1643afbfd4cc48e56
-
SHA256
974bc77cb81fc01f84907370cc3ef55c9e243c6e0e1df7b3af8238dc1bd68fd5
-
SHA512
d7baa87d0ab38c0028e523ccb1e62662f20db6ceb256602e827c2f8037e40beae95a08e002ddb67d1b5ac53eee6da173d2b24dc438687319e9858a80d0a14ab5
-
SSDEEP
49152:FNhQ1RFI9HDhf6I8BmYiMvdLBG9n+bn+etQ6fQ:F7QD6lfdIvdLBG9+Ttk
-
Raccoon Stealer V2 payload
-
Suspicious use of SetThreadContext
-