raccoon | 8173c3b68fb16355be6125d256b49e8d5a1afbf6ae947e40a0a694c6e8f445c2 | Triage

Submit
Reports

Overview

overview

Static

static

3

d662e995f0...18.exe

windows7-x64

d662e995f0...18.exe

windows10-2004-x64

Sharing

General

Target

d662e995f085d0052cc63f4a70656b55_JaffaCakes118
Size

545KB
Sample

240909-qhcndazclq
MD5

d662e995f085d0052cc63f4a70656b55
SHA1

9bce37d02bb8758e8b16089c3887121b89074e04
SHA256

8173c3b68fb16355be6125d256b49e8d5a1afbf6ae947e40a0a694c6e8f445c2
SHA512

037a298ffee0bd8a0ea339259ecbb59cfb55a9adadbeef6676ac79a8282cf3339c01095074bc7d78d9af0557f6d35ab4ef32fbb5fcfca54f87508e307fa6363b
SSDEEP

12288:iCWM12ae+C7Tw3S0L/5Fa7VfZwctzoG2xA6JLjkWzxp6L:iNM12ae+4wCO/odbzoTe6JLj36L

Score

10^/10

raccoon 60ca1ce1168a66216e16eb5741863c98e2db346a discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

d662e995f085d0052cc63f4a70656b55_JaffaCakes118.exe

Resource

win7-20240903-en

raccoon 60ca1ce1168a66216e16eb5741863c98e2db346a discovery stealer

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

d662e995f085d0052cc63f4a70656b55_JaffaCakes118.exe

Resource

win10v2004-20240802-en

raccoon 60ca1ce1168a66216e16eb5741863c98e2db346a discovery stealer

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Version

1.8.1

Botnet

60ca1ce1168a66216e16eb5741863c98e2db346a

Attributes

url4cnc
https://t.me/hbackwoods1

rc4.plain

rc4.plain

Targets

- Target
  
  d662e995f085d0052cc63f4a70656b55_JaffaCakes118
- Size
  
  545KB
- MD5
  
  d662e995f085d0052cc63f4a70656b55
- SHA1
  
  9bce37d02bb8758e8b16089c3887121b89074e04
- SHA256
  
  8173c3b68fb16355be6125d256b49e8d5a1afbf6ae947e40a0a694c6e8f445c2
- SHA512
  
  037a298ffee0bd8a0ea339259ecbb59cfb55a9adadbeef6676ac79a8282cf3339c01095074bc7d78d9af0557f6d35ab4ef32fbb5fcfca54f87508e307fa6363b
- SSDEEP
  
  12288:iCWM12ae+C7Tw3S0L/5Fa7VfZwctzoG2xA6JLjkWzxp6L:iNM12ae+4wCO/odbzoTe6JLj36L
Score

10^/10

raccoon 60ca1ce1168a66216e16eb5741863c98e2db346a discovery stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

raccoon60ca1ce1168a66216e16eb5741863c98e2db346adiscoverystealer

behavioral2

raccoon60ca1ce1168a66216e16eb5741863c98e2db346adiscoverystealer

© 2018-2024

Terms | Privacy