raccoon | 0f3d1f1eafa140c32e246c12a7ccd5b6205526ad08be581e5f55b9179f19be5a | Triage

Submit
Reports

Overview

overview

Static

static

3

ecc973cf6a...18.exe

windows7-x64

ecc973cf6a...18.exe

windows10-2004-x64

Sharing

General

Target

ecc973cf6a6cd2c803255c9f120d5aaa_JaffaCakes118
Size

548KB
Sample

240920-edhhaaxamf
MD5

ecc973cf6a6cd2c803255c9f120d5aaa
SHA1

f90d672fd09b13364d561acb9e1965d7cdef6a68
SHA256

0f3d1f1eafa140c32e246c12a7ccd5b6205526ad08be581e5f55b9179f19be5a
SHA512

b385f5eb676484862d19aa805a6995f85462e7399e7068cba458b9e362b9dfd1cca12b8fdd7c406f0be2a7bef191b4c6668e4012aae22c6c67436cf8d891ced2
SSDEEP

12288:tqsDzNra3a8OT9SdU52j/C/rGLjTGrI6jQn/Xo/Gzxp6L:tFDzN+OZSm2uD6WknQC36L

Score

10^/10

raccoon 5ff0ccb2bc00dc52d1ad09949e9c7663bc9ca4d4 discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ecc973cf6a6cd2c803255c9f120d5aaa_JaffaCakes118.exe

Resource

win7-20240903-en

raccoon 5ff0ccb2bc00dc52d1ad09949e9c7663bc9ca4d4 discovery stealer

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

ecc973cf6a6cd2c803255c9f120d5aaa_JaffaCakes118.exe

Resource

win10v2004-20240802-en

raccoon 5ff0ccb2bc00dc52d1ad09949e9c7663bc9ca4d4 discovery stealer

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Version

1.8.1

Botnet

5ff0ccb2bc00dc52d1ad09949e9c7663bc9ca4d4

Attributes

url4cnc
https://t.me/agrybirdsgamerept

rc4.plain

rc4.plain

Targets

- Target
  
  ecc973cf6a6cd2c803255c9f120d5aaa_JaffaCakes118
- Size
  
  548KB
- MD5
  
  ecc973cf6a6cd2c803255c9f120d5aaa
- SHA1
  
  f90d672fd09b13364d561acb9e1965d7cdef6a68
- SHA256
  
  0f3d1f1eafa140c32e246c12a7ccd5b6205526ad08be581e5f55b9179f19be5a
- SHA512
  
  b385f5eb676484862d19aa805a6995f85462e7399e7068cba458b9e362b9dfd1cca12b8fdd7c406f0be2a7bef191b4c6668e4012aae22c6c67436cf8d891ced2
- SSDEEP
  
  12288:tqsDzNra3a8OT9SdU52j/C/rGLjTGrI6jQn/Xo/Gzxp6L:tFDzN+OZSm2uD6WknQC36L
Score

10^/10

raccoon 5ff0ccb2bc00dc52d1ad09949e9c7663bc9ca4d4 discovery stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

raccoon5ff0ccb2bc00dc52d1ad09949e9c7663bc9ca4d4discoverystealer

behavioral2

raccoon5ff0ccb2bc00dc52d1ad09949e9c7663bc9ca4d4discoverystealer

© 2018-2024

Terms | Privacy