raccoon | 975b56ef3e49280bf9a42346c7a3d2d89a80616cabdcb455c4a8ca2f92bf9cea | Triage

Submit
Reports

Overview

overview

Static

static

3

975b56ef3e...ea.exe

windows7-x64

975b56ef3e...ea.exe

windows10-2004-x64

Sharing

General

Target

975b56ef3e49280bf9a42346c7a3d2d89a80616cabdcb455c4a8ca2f92bf9cea
Size

647KB
Sample

240928-qc8tmaxcrp
MD5

7c5e5dfdeef2b7b007b601aa10d6d20a
SHA1

9702d3045dc96b2ea6cd841087fb5e403305cc58
SHA256

975b56ef3e49280bf9a42346c7a3d2d89a80616cabdcb455c4a8ca2f92bf9cea
SHA512

ebce3f8a02e59738c4e2b95a2915c8a447d71b79a1b892db563d500c78ce1d9bd5d420e8c446126916ef265640da89e2933b4404995c88181f5711d5fc3811e9
SSDEEP

12288:Fth5o+TIhJO3fKDEyw5JVf26myc0WxHqv9:Hh5o+/fRyw5j2pycHxK

Score

10^/10

raccoon 5a197ee9aa9b7ac9ed327df1dc3bc363ed70f60b discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

975b56ef3e49280bf9a42346c7a3d2d89a80616cabdcb455c4a8ca2f92bf9cea.exe

Resource

win7-20240903-en

raccoon 5a197ee9aa9b7ac9ed327df1dc3bc363ed70f60b discovery stealer

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

975b56ef3e49280bf9a42346c7a3d2d89a80616cabdcb455c4a8ca2f92bf9cea.exe

Resource

win10v2004-20240802-en

raccoon 5a197ee9aa9b7ac9ed327df1dc3bc363ed70f60b discovery stealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Botnet

5a197ee9aa9b7ac9ed327df1dc3bc363ed70f60b

Attributes

url4cnc
https://drive.google.com/uc?export=download&id=1JCIgfgCCpW9UnvNQKw8JbgPItvjQLzs1

rc4.plain

rc4.plain

Targets

- Target
  
  975b56ef3e49280bf9a42346c7a3d2d89a80616cabdcb455c4a8ca2f92bf9cea
- Size
  
  647KB
- MD5
  
  7c5e5dfdeef2b7b007b601aa10d6d20a
- SHA1
  
  9702d3045dc96b2ea6cd841087fb5e403305cc58
- SHA256
  
  975b56ef3e49280bf9a42346c7a3d2d89a80616cabdcb455c4a8ca2f92bf9cea
- SHA512
  
  ebce3f8a02e59738c4e2b95a2915c8a447d71b79a1b892db563d500c78ce1d9bd5d420e8c446126916ef265640da89e2933b4404995c88181f5711d5fc3811e9
- SSDEEP
  
  12288:Fth5o+TIhJO3fKDEyw5JVf26myc0WxHqv9:Hh5o+/fRyw5j2pycHxK
Score

10^/10

raccoon 5a197ee9aa9b7ac9ed327df1dc3bc363ed70f60b discovery stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

raccoon5a197ee9aa9b7ac9ed327df1dc3bc363ed70f60bdiscoverystealer

behavioral2

raccoon5a197ee9aa9b7ac9ed327df1dc3bc363ed70f60bdiscoverystealer

© 2018-2024

Terms | Privacy