raccoon | bcc0f71fad5febf1d9407ce8b184b24abc6f6ff3cad8c545daa4741ad37b18d2 | Triage

Submit
Reports

Overview

overview

Static

static

3

ecb524a1bf...18.exe

windows7-x64

ecb524a1bf...18.exe

windows10-2004-x64

Sharing

General

Target

ecb524a1bf1e1b5f919aaa4e24b5bee9_JaffaCakes118
Size

419KB
Sample

240920-de4apswapr
MD5

ecb524a1bf1e1b5f919aaa4e24b5bee9
SHA1

813aeae00036bc6da3489242ce05834eda5948c9
SHA256

bcc0f71fad5febf1d9407ce8b184b24abc6f6ff3cad8c545daa4741ad37b18d2
SHA512

7e2d87da36b6d009780c1b81f6d9772134ade27870332ff75d012957d9bb3c8be25db7113a73e884ca4f052fc879a631d9dc0dd6fba4bbb61a65a3ee99c7e088
SSDEEP

6144:k/lb5uIDyR11lrfaLgAbyz5vm8++aHMsDwcwtJQ6VHVzklo6AfX03oOP:G1pYjtfaLg3a4tJLBJIAv03p

Score

10^/10

raccoon f6d7183c9e82d2a9b81e6c0608450aa66cefb51f discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ecb524a1bf1e1b5f919aaa4e24b5bee9_JaffaCakes118.exe

Resource

win7-20240704-en

raccoon f6d7183c9e82d2a9b81e6c0608450aa66cefb51f discovery stealer

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

ecb524a1bf1e1b5f919aaa4e24b5bee9_JaffaCakes118.exe

Resource

win10v2004-20240802-en

raccoon f6d7183c9e82d2a9b81e6c0608450aa66cefb51f discovery stealer

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Version

1.8.1

Botnet

f6d7183c9e82d2a9b81e6c0608450aa66cefb51f

Attributes

url4cnc
https://t.me/justoprostohello

rc4.plain

rc4.plain

Targets

- Target
  
  ecb524a1bf1e1b5f919aaa4e24b5bee9_JaffaCakes118
- Size
  
  419KB
- MD5
  
  ecb524a1bf1e1b5f919aaa4e24b5bee9
- SHA1
  
  813aeae00036bc6da3489242ce05834eda5948c9
- SHA256
  
  bcc0f71fad5febf1d9407ce8b184b24abc6f6ff3cad8c545daa4741ad37b18d2
- SHA512
  
  7e2d87da36b6d009780c1b81f6d9772134ade27870332ff75d012957d9bb3c8be25db7113a73e884ca4f052fc879a631d9dc0dd6fba4bbb61a65a3ee99c7e088
- SSDEEP
  
  6144:k/lb5uIDyR11lrfaLgAbyz5vm8++aHMsDwcwtJQ6VHVzklo6AfX03oOP:G1pYjtfaLg3a4tJLBJIAv03p
Score

10^/10

raccoon f6d7183c9e82d2a9b81e6c0608450aa66cefb51f discovery stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

raccoonf6d7183c9e82d2a9b81e6c0608450aa66cefb51fdiscoverystealer

behavioral2

raccoonf6d7183c9e82d2a9b81e6c0608450aa66cefb51fdiscoverystealer

© 2018-2024

Terms | Privacy