raccoon | d3789743edb20cc0e93d5ce0d7a817fddbe306d3254fad90efde11b3140ef589 | Triage

Submit
Reports

Overview

overview

Static

static

3

2919f1a121...18.exe

windows7-x64

2919f1a121...18.exe

windows10-2004-x64

Resubmissions

09-10-2024 11:57

241009-n4sklsybnc 10

09-10-2024 02:20

241009-cstgzsyaje 10

Sharing

General

Target

2919f1a121d1156f2a62696343002ba3_JaffaCakes118
Size

504KB
Sample

241009-cstgzsyaje
MD5

2919f1a121d1156f2a62696343002ba3
SHA1

e706ee29b2a2d5c9f680e27f6307c57f2f8d88ba
SHA256

d3789743edb20cc0e93d5ce0d7a817fddbe306d3254fad90efde11b3140ef589
SHA512

8d27bda365ce3f5b37de68a9a27e3c139e6f43fdfc6a26b22d9c2d0c229dffa59bb4ba655e0c6ba4f1d2d408fc0d0bf57633ded4ac4befc89a78d1d487cafc3d
SSDEEP

6144:N+P6MAXntzNx90bqtefHkKOAcOMxXxA480mUm7knGyHM:N+VKn0G4jOA9MBfcTI

Score

10^/10

raccoon 83fbe81dd43f775dd8af3cd619f88f428fbd9a96 discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2919f1a121d1156f2a62696343002ba3_JaffaCakes118.exe

Resource

win7-20240708-en

raccoon 83fbe81dd43f775dd8af3cd619f88f428fbd9a96 discovery stealer

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

2919f1a121d1156f2a62696343002ba3_JaffaCakes118.exe

Resource

win10v2004-20241007-en

raccoon 83fbe81dd43f775dd8af3cd619f88f428fbd9a96 discovery stealer

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Version

1.7.3

Botnet

83fbe81dd43f775dd8af3cd619f88f428fbd9a96

Attributes

url4cnc
https://telete.in/opa4kiprivatem

rc4.plain

rc4.plain

Targets

- Target
  
  2919f1a121d1156f2a62696343002ba3_JaffaCakes118
- Size
  
  504KB
- MD5
  
  2919f1a121d1156f2a62696343002ba3
- SHA1
  
  e706ee29b2a2d5c9f680e27f6307c57f2f8d88ba
- SHA256
  
  d3789743edb20cc0e93d5ce0d7a817fddbe306d3254fad90efde11b3140ef589
- SHA512
  
  8d27bda365ce3f5b37de68a9a27e3c139e6f43fdfc6a26b22d9c2d0c229dffa59bb4ba655e0c6ba4f1d2d408fc0d0bf57633ded4ac4befc89a78d1d487cafc3d
- SSDEEP
  
  6144:N+P6MAXntzNx90bqtefHkKOAcOMxXxA480mUm7knGyHM:N+VKn0G4jOA9MBfcTI
Score

10^/10

raccoon 83fbe81dd43f775dd8af3cd619f88f428fbd9a96 discovery stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

raccoon83fbe81dd43f775dd8af3cd619f88f428fbd9a96discoverystealer

behavioral2

raccoon83fbe81dd43f775dd8af3cd619f88f428fbd9a96discoverystealer

© 2018-2024

Terms | Privacy