raccoon | 6f5a14e8ef3f5f13b6321b5a783aee4b3fd46121084229752946076b4d1e7445 | Triage

Submit
Reports

Overview

overview

Static

static

3

6f5a14e8ef...45.exe

windows7-x64

6f5a14e8ef...45.exe

windows10-2004-x64

Sharing

General

Target

6f5a14e8ef3f5f13b6321b5a783aee4b3fd46121084229752946076b4d1e7445
Size

448KB
Sample

240924-bk8q9ssajk
MD5

7749a8fbaeae6f710bcb30315b28a1b2
SHA1

3db0531c3b9891d5aaffee09db791fb340ede93f
SHA256

6f5a14e8ef3f5f13b6321b5a783aee4b3fd46121084229752946076b4d1e7445
SHA512

e0b519e12346d028d60b7849e018a3482b9d6d463b8bda4ca45ad63535ce6cf17db17988e52ff7d0531af0e48dd1999e4e5ad43adf553f22d08cb36739b98f2d
SSDEEP

12288:OssaRt+DC9cRmTNQvVJZ+jzBbgpzTUtYM6Hh2gP0XtyxN:/X/qmZQjZ+jzBbgpXrMYobyx

Score

10^/10

raccoon 7fc89c2d03a096b35ac4d2c4c75dc704e8da02b1 discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

6f5a14e8ef3f5f13b6321b5a783aee4b3fd46121084229752946076b4d1e7445.exe

Resource

win7-20240903-en

raccoon 7fc89c2d03a096b35ac4d2c4c75dc704e8da02b1 discovery stealer

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

6f5a14e8ef3f5f13b6321b5a783aee4b3fd46121084229752946076b4d1e7445.exe

Resource

win10v2004-20240802-en

raccoon 7fc89c2d03a096b35ac4d2c4c75dc704e8da02b1 discovery stealer

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Version

1.7.3

Botnet

7fc89c2d03a096b35ac4d2c4c75dc704e8da02b1

Attributes

url4cnc
https://telete.in/podeyponyexpress

rc4.plain

rc4.plain

Targets

- Target
  
  6f5a14e8ef3f5f13b6321b5a783aee4b3fd46121084229752946076b4d1e7445
- Size
  
  448KB
- MD5
  
  7749a8fbaeae6f710bcb30315b28a1b2
- SHA1
  
  3db0531c3b9891d5aaffee09db791fb340ede93f
- SHA256
  
  6f5a14e8ef3f5f13b6321b5a783aee4b3fd46121084229752946076b4d1e7445
- SHA512
  
  e0b519e12346d028d60b7849e018a3482b9d6d463b8bda4ca45ad63535ce6cf17db17988e52ff7d0531af0e48dd1999e4e5ad43adf553f22d08cb36739b98f2d
- SSDEEP
  
  12288:OssaRt+DC9cRmTNQvVJZ+jzBbgpzTUtYM6Hh2gP0XtyxN:/X/qmZQjZ+jzBbgpXrMYobyx
Score

10^/10

raccoon 7fc89c2d03a096b35ac4d2c4c75dc704e8da02b1 discovery stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

raccoon7fc89c2d03a096b35ac4d2c4c75dc704e8da02b1discoverystealer

behavioral2

raccoon7fc89c2d03a096b35ac4d2c4c75dc704e8da02b1discoverystealer

© 2018-2024

Terms | Privacy