raccoon | 3d9073c7400467eaab13823a63b553bfa6fc47be29f4676ed71c0ae63147c568 | Triage

Sharing

General

Target

b50f8bc6baac3734b767edcc2c2edbe0N
Size

564KB
Sample

240908-gknzrascpg
MD5

b50f8bc6baac3734b767edcc2c2edbe0
SHA1

aeee37aca0239f0d3ef694aff4363b10e148308b
SHA256

3d9073c7400467eaab13823a63b553bfa6fc47be29f4676ed71c0ae63147c568
SHA512

5491219c34b1363032d8b2899dcdc5be12f0f92c6af41d6b8350d63e55a8896dce9ee8567a442398493e284f96ad875dce3e1f53c5998207af7d1ae76480ee7c
SSDEEP

12288:38Malpp/QPcqcGVwwAPfoEQB94Uc1VNzZWPx9YBKzTdb:38dhQEqcGQfoxGVxIPAIvd

Score

10^/10

raccoon 7ebf9b416b72a203df65383eec899dc689d2c3d7 discovery

Malware Config

Extracted

Family

raccoon

Botnet

7ebf9b416b72a203df65383eec899dc689d2c3d7

Attributes

url4cnc
http://telegatt.top/agrybirdsgamerept

http://telegka.top/agrybirdsgamerept

http://telegin.top/agrybirdsgamerept

https://t.me/agrybirdsgamerept

rc4.plain

rc4.plain

Targets

- Target
  
  b50f8bc6baac3734b767edcc2c2edbe0N
- Size
  
  564KB
- MD5
  
  b50f8bc6baac3734b767edcc2c2edbe0
- SHA1
  
  aeee37aca0239f0d3ef694aff4363b10e148308b
- SHA256
  
  3d9073c7400467eaab13823a63b553bfa6fc47be29f4676ed71c0ae63147c568
- SHA512
  
  5491219c34b1363032d8b2899dcdc5be12f0f92c6af41d6b8350d63e55a8896dce9ee8567a442398493e284f96ad875dce3e1f53c5998207af7d1ae76480ee7c
- SSDEEP
  
  12288:38Malpp/QPcqcGVwwAPfoEQB94Uc1VNzZWPx9YBKzTdb:38dhQEqcGQfoxGVxIPAIvd
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

7ebf9b416b72a203df65383eec899dc689d2c3d7raccoon

behavioral1

behavioral2