Overview

overview

10

Static

static

3

b1ceead828...18.exe

windows7-x64

10

b1ceead828...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b1ceead8283b2e176d390e9af240d7f4_JaffaCakes118

  • Size

    394KB

  • Sample

    240821-c36kaswdpc

  • MD5

    b1ceead8283b2e176d390e9af240d7f4

  • SHA1

    fb44604b4123b72674f36f76210a9bee600c3144

  • SHA256

    e67cc9b8c5f4800335670fd839ff15d87712cc297f771a77d723ee6e06167d65

  • SHA512

    1a2881ca19b3658660d6761a267409594b6a58c637663e76f2f581f21246282f160f6811b2a4f356a6ce1ae7288f5b58735cce79040bef3c58613a039bdec5cc

  • SSDEEP

    6144:QmLrXFqBSa/8aiPl5JXt1SDMt2a97/vAbYbKzZLghufN4lf2JG3FE3Juk4/pUwJ8:vnXFeSTFhdgYtZX52ZLsuF4sKFEMJiR

Score
10/10
raccoon9ba64f4b6fe448911470a88f09d6e7d5b92ff0abdiscoverystealer

Malware Config

Extracted

Family

raccoon

Version

1.7.2

Botnet

9ba64f4b6fe448911470a88f09d6e7d5b92ff0ab

Attributes
  • url4cnc

    https://telete.in/jagressor_kz

rc4.plain
rc4.plain

Targets

    • Target

      b1ceead8283b2e176d390e9af240d7f4_JaffaCakes118

    • Size

      394KB

    • MD5

      b1ceead8283b2e176d390e9af240d7f4

    • SHA1

      fb44604b4123b72674f36f76210a9bee600c3144

    • SHA256

      e67cc9b8c5f4800335670fd839ff15d87712cc297f771a77d723ee6e06167d65

    • SHA512

      1a2881ca19b3658660d6761a267409594b6a58c637663e76f2f581f21246282f160f6811b2a4f356a6ce1ae7288f5b58735cce79040bef3c58613a039bdec5cc

    • SSDEEP

      6144:QmLrXFqBSa/8aiPl5JXt1SDMt2a97/vAbYbKzZLghufN4lf2JG3FE3Juk4/pUwJ8:vnXFeSTFhdgYtZX52ZLsuF4sKFEMJiR

    Score
    10/10
    raccoon9ba64f4b6fe448911470a88f09d6e7d5b92ff0abdiscoverystealer

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

      stealerraccoon

    • Raccoon Stealer V1 payload

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks