raccoon | 889186138f9577685f4e0f86f8c2726c1a80b01b150d33bbc9012fed786f43f1 | Triage

Submit
Reports

Overview

overview

Static

static

3

5003c603ff...18.exe

windows7-x64

5003c603ff...18.exe

windows10-2004-x64

Sharing

General

Target

5003c603ff4b0b685b9a1c4f0d95877b_JaffaCakes118
Size

571KB
Sample

241017-bea8tatckh
MD5

5003c603ff4b0b685b9a1c4f0d95877b
SHA1

bb287f8004082a046f010814660a297785809a16
SHA256

889186138f9577685f4e0f86f8c2726c1a80b01b150d33bbc9012fed786f43f1
SHA512

94c793537310144abd8419f19bc2679b6b141b6467146b11456535e6172955a60191885c36fd558160d6c393de5fc356d9ada4ef70ed1ef5bc3c049fac2fbf33
SSDEEP

12288:+xJGZC1En/TpibE+rog5EUwsnjd0iBYrQ/3fTR0bYywi5Vdcp30+W:AW0EnCtFVBYrQHM3wEVqE

Score

10^/10

raccoon c8a4bc819c641415a3c45622368953a684036cdb discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

5003c603ff4b0b685b9a1c4f0d95877b_JaffaCakes118.exe

Resource

win7-20240903-en

raccoon c8a4bc819c641415a3c45622368953a684036cdb discovery stealer

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

5003c603ff4b0b685b9a1c4f0d95877b_JaffaCakes118.exe

Resource

win10v2004-20241007-en

raccoon c8a4bc819c641415a3c45622368953a684036cdb discovery stealer

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Version

1.7.3

Botnet

c8a4bc819c641415a3c45622368953a684036cdb

Attributes

url4cnc
https://telete.in/jjbadb0y

rc4.plain

rc4.plain

Targets

- Target
  
  5003c603ff4b0b685b9a1c4f0d95877b_JaffaCakes118
- Size
  
  571KB
- MD5
  
  5003c603ff4b0b685b9a1c4f0d95877b
- SHA1
  
  bb287f8004082a046f010814660a297785809a16
- SHA256
  
  889186138f9577685f4e0f86f8c2726c1a80b01b150d33bbc9012fed786f43f1
- SHA512
  
  94c793537310144abd8419f19bc2679b6b141b6467146b11456535e6172955a60191885c36fd558160d6c393de5fc356d9ada4ef70ed1ef5bc3c049fac2fbf33
- SSDEEP
  
  12288:+xJGZC1En/TpibE+rog5EUwsnjd0iBYrQ/3fTR0bYywi5Vdcp30+W:AW0EnCtFVBYrQHM3wEVqE
Score

10^/10

raccoon c8a4bc819c641415a3c45622368953a684036cdb discovery stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

raccoonc8a4bc819c641415a3c45622368953a684036cdbdiscoverystealer

behavioral2

raccoonc8a4bc819c641415a3c45622368953a684036cdbdiscoverystealer

© 2018-2024

Terms | Privacy