raccoon | 6ca5031ab0efac1fdc6d3b251072ea93e70d911067995cd367778bfffd2b45a9 | Triage

Submit
Reports

Overview

overview

Static

static

3

a57b534715...18.exe

windows7-x64

a57b534715...18.exe

windows10-2004-x64

Sharing

General

Target

a57b534715ba56f5f9f9f27b0d57ad34_JaffaCakes118
Size

544KB
Sample

240818-fm2syswhph
MD5

a57b534715ba56f5f9f9f27b0d57ad34
SHA1

0fc07bf4defc689bace1dd256fc096174a916878
SHA256

6ca5031ab0efac1fdc6d3b251072ea93e70d911067995cd367778bfffd2b45a9
SHA512

caf828246b0364607638975914697785b3793f92afdf4c3685b3c1aec85e10e348fd51c237884344c9f033d39508b4ad96f801097468feaafe1ba17c2c2f461d
SSDEEP

12288:D+RM1l85GBqJ7dInwNhm3bCHdI9ezxp6L:DuM1l8VRcy83b/y36L

Score

10^/10

raccoon 5ff0ccb2bc00dc52d1ad09949e9c7663bc9ca4d4 discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a57b534715ba56f5f9f9f27b0d57ad34_JaffaCakes118.exe

Resource

win7-20240704-en

raccoon 5ff0ccb2bc00dc52d1ad09949e9c7663bc9ca4d4 discovery stealer

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

a57b534715ba56f5f9f9f27b0d57ad34_JaffaCakes118.exe

Resource

win10v2004-20240802-en

raccoon 5ff0ccb2bc00dc52d1ad09949e9c7663bc9ca4d4 discovery stealer

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Version

1.8.1

Botnet

5ff0ccb2bc00dc52d1ad09949e9c7663bc9ca4d4

Attributes

url4cnc
https://t.me/agrybirdsgamerept

rc4.plain

rc4.plain

Targets

- Target
  
  a57b534715ba56f5f9f9f27b0d57ad34_JaffaCakes118
- Size
  
  544KB
- MD5
  
  a57b534715ba56f5f9f9f27b0d57ad34
- SHA1
  
  0fc07bf4defc689bace1dd256fc096174a916878
- SHA256
  
  6ca5031ab0efac1fdc6d3b251072ea93e70d911067995cd367778bfffd2b45a9
- SHA512
  
  caf828246b0364607638975914697785b3793f92afdf4c3685b3c1aec85e10e348fd51c237884344c9f033d39508b4ad96f801097468feaafe1ba17c2c2f461d
- SSDEEP
  
  12288:D+RM1l85GBqJ7dInwNhm3bCHdI9ezxp6L:DuM1l8VRcy83b/y36L
Score

10^/10

raccoon 5ff0ccb2bc00dc52d1ad09949e9c7663bc9ca4d4 discovery stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

raccoon5ff0ccb2bc00dc52d1ad09949e9c7663bc9ca4d4discoverystealer

behavioral2

raccoon5ff0ccb2bc00dc52d1ad09949e9c7663bc9ca4d4discoverystealer

© 2018-2024

Terms | Privacy