General

  • Target

    b313a4a31923cad9ea905204a2288f65.zip

  • Size

    450KB

  • Sample

    240831-fs14lsxdlf

  • MD5

    714e567323295fb0776816e57c28c357

  • SHA1

    e3864d5c67e3053bf22cb225e907f138d2a9790d

  • SHA256

    0551325736f77028f74d8642fe3dc7f9478126e1d2eb7caf11c825cc4be31cb9

  • SHA512

    9395281a39d7c799899347560bd96d8f760989cc0931211b7b7cc0c85741f0d82cf36f8d31d5f41e59355ea0a994c0d0d6723a09845c924076102b95df2e15fe

  • SSDEEP

    12288:0aZi1woBsaUFdinkX8tAF+JUN5j2bd1nmTum:06i1wWsaELsUUh5zm

Malware Config

Extracted

Family

raccoon

Botnet

505a13d44aea894153998a2e1d76f9fb5b457c72

Attributes
  • url4cnc

    http://telegka.top/jjbadb0y

    http://telegin.top/jjbadb0y

    https://t.me/jjbadb0y

rc4.plain
rc4.plain

Targets

    • Target

      0ab67243ca42ce8ac4d32e53b4859d9f8eedef1144a81a40f067042684385742

    • Size

      539KB

    • MD5

      b313a4a31923cad9ea905204a2288f65

    • SHA1

      bd6fe1ccb9c3a83aae61c6d1a78ced5a76de94ba

    • SHA256

      0ab67243ca42ce8ac4d32e53b4859d9f8eedef1144a81a40f067042684385742

    • SHA512

      7891992ed3d304620eaac012f7d770bb3abb808b39696317ade30099e7cb2246396c7d3077df084908adc58e9ddbf4b39d9b435e1425a50a37e49e6cc4b05c01

    • SSDEEP

      12288:i9qNOcEzJWJHFUrPQwqYdv+qW/kBWXgD1EtbZkRD8wZGEX8cA0/M:cTTWJHFatdvpkuWXu1EgXsEv

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

    • Raccoon Stealer V1 payload

MITRE ATT&CK Enterprise v15

Tasks