raccoon | 33b501d1eb29efc293e18786c87840ec4869bb7b21b321a78521703e0da5326d | Triage

Submit
Reports

Overview

overview

Static

static

3

3980835636...18.exe

windows7-x64

3980835636...18.exe

windows10-2004-x64

Sharing

General

Target

398083563637fe150e32b6d665e8d9c2_JaffaCakes118
Size

567KB
Sample

241012-mdyhhazflq
MD5

398083563637fe150e32b6d665e8d9c2
SHA1

549772d7fd341c55b02b7e16aadee2035b0afea1
SHA256

33b501d1eb29efc293e18786c87840ec4869bb7b21b321a78521703e0da5326d
SHA512

91343267335c449260b37dbdf250bc0fa93e5d69afc4d297a854b25296c335f1b5573f5523cca77e61ed35329c8efd41575342b9cd401dfc6a78eeab72e807d9
SSDEEP

6144:p+ITLzRuPB8X1CaSQBUUkRh3v8bDhOXyaFr3hO1uNPol607mrGulsidSqJL6nQmD:5TXQB8Fj9BxFZLaFrEh6xFL6n/zxd6L

Score

10^/10

raccoon 60ca1ce1168a66216e16eb5741863c98e2db346a discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

398083563637fe150e32b6d665e8d9c2_JaffaCakes118.exe

Resource

win7-20240903-en

raccoon 60ca1ce1168a66216e16eb5741863c98e2db346a discovery stealer

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

398083563637fe150e32b6d665e8d9c2_JaffaCakes118.exe

Resource

win10v2004-20241007-en

raccoon 60ca1ce1168a66216e16eb5741863c98e2db346a discovery stealer

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Version

1.8.1

Botnet

60ca1ce1168a66216e16eb5741863c98e2db346a

Attributes

url4cnc
https://t.me/hbackwoods1

rc4.plain

rc4.plain

Targets

- Target
  
  398083563637fe150e32b6d665e8d9c2_JaffaCakes118
- Size
  
  567KB
- MD5
  
  398083563637fe150e32b6d665e8d9c2
- SHA1
  
  549772d7fd341c55b02b7e16aadee2035b0afea1
- SHA256
  
  33b501d1eb29efc293e18786c87840ec4869bb7b21b321a78521703e0da5326d
- SHA512
  
  91343267335c449260b37dbdf250bc0fa93e5d69afc4d297a854b25296c335f1b5573f5523cca77e61ed35329c8efd41575342b9cd401dfc6a78eeab72e807d9
- SSDEEP
  
  6144:p+ITLzRuPB8X1CaSQBUUkRh3v8bDhOXyaFr3hO1uNPol607mrGulsidSqJL6nQmD:5TXQB8Fj9BxFZLaFrEh6xFL6n/zxd6L
Score

10^/10

raccoon 60ca1ce1168a66216e16eb5741863c98e2db346a discovery stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

raccoon60ca1ce1168a66216e16eb5741863c98e2db346adiscoverystealer

behavioral2

raccoon60ca1ce1168a66216e16eb5741863c98e2db346adiscoverystealer

© 2018-2024

Terms | Privacy