Overview

overview

10

Static

static

3

3046fa89ae...18.exe

windows7-x64

10

3046fa89ae...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3046fa89aec54224e48d403990859529_JaffaCakes118

  • Size

    567KB

  • Sample

    241010-rhnlbazara

  • MD5

    3046fa89aec54224e48d403990859529

  • SHA1

    df3ec79921c9f06b5682cc5f9d7ae8a43e35be5d

  • SHA256

    8410c93a387757bb289c59e900c3b8ca09fde346b914c564ee4625345d7a5ec8

  • SHA512

    4f4f89915bd89fc1c4597554ee34bd93fdd37435d978aa43d45d1ddf8d11dd93de6b3ca1c8e393a09b8f871bfcbbc045fa21f00a96da745b7bdcc824569dffe1

  • SSDEEP

    12288:VTXAB6flifhfKqJM5JrhmcyhxipAMHEyL6+zxd6L:VIBI5J1mcyhxSEy1L6L

Score
10/10
raccoon5ff0ccb2bc00dc52d1ad09949e9c7663bc9ca4d4discoverystealer

Malware Config

Extracted

Family

raccoon

Version

1.8.1

Botnet

5ff0ccb2bc00dc52d1ad09949e9c7663bc9ca4d4

Attributes
  • url4cnc

    https://t.me/agrybirdsgamerept

rc4.plain
rc4.plain

Targets

    • Target

      3046fa89aec54224e48d403990859529_JaffaCakes118

    • Size

      567KB

    • MD5

      3046fa89aec54224e48d403990859529

    • SHA1

      df3ec79921c9f06b5682cc5f9d7ae8a43e35be5d

    • SHA256

      8410c93a387757bb289c59e900c3b8ca09fde346b914c564ee4625345d7a5ec8

    • SHA512

      4f4f89915bd89fc1c4597554ee34bd93fdd37435d978aa43d45d1ddf8d11dd93de6b3ca1c8e393a09b8f871bfcbbc045fa21f00a96da745b7bdcc824569dffe1

    • SSDEEP

      12288:VTXAB6flifhfKqJM5JrhmcyhxipAMHEyL6+zxd6L:VIBI5J1mcyhxSEy1L6L

    Score
    10/10
    raccoon5ff0ccb2bc00dc52d1ad09949e9c7663bc9ca4d4discoverystealer

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

      stealerraccoon

    • Raccoon Stealer V1 payload

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks