raccoon | b91889da6e1a2d96ed307dfb1c5459d70ec8436ded46af0bae0425452dcc4c15 | Triage

Submit
Reports

Overview

overview

Static

static

3

58c01dc043...18.exe

windows7-x64

58c01dc043...18.exe

windows10-2004-x64

Sharing

General

Target

58c01dc043fda61849aba1f534f20c0a_JaffaCakes118
Size

572KB
Sample

241018-weydkazflc
MD5

58c01dc043fda61849aba1f534f20c0a
SHA1

6986fea5d2582b4ca4e35df37edf3d3c1aa26e2f
SHA256

b91889da6e1a2d96ed307dfb1c5459d70ec8436ded46af0bae0425452dcc4c15
SHA512

633a6b4bc863269de7c94ffcb4efe01950faadef119117c038349817cef3efe5f02730ebccac94ea4078803365b60249965fc69d31d5202e5519cd84d2cc79d6
SSDEEP

12288:SwdzXPKqn01ays+czmQ/C1JmQoqdoDNrz3oe/Cy:hF/KqsS6P7zd6rz4e/5

Score

10^/10

raccoon cd8dc1031358b1aec55cc6bc447df1018b068607 discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

58c01dc043fda61849aba1f534f20c0a_JaffaCakes118.exe

Resource

win7-20240903-en

raccoon cd8dc1031358b1aec55cc6bc447df1018b068607 discovery stealer

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

58c01dc043fda61849aba1f534f20c0a_JaffaCakes118.exe

Resource

win10v2004-20241007-en

raccoon cd8dc1031358b1aec55cc6bc447df1018b068607 discovery stealer

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Version

1.7.3

Botnet

cd8dc1031358b1aec55cc6bc447df1018b068607

Attributes

url4cnc
https://telete.in/jagressor_kz

rc4.plain

rc4.plain

Targets

- Target
  
  58c01dc043fda61849aba1f534f20c0a_JaffaCakes118
- Size
  
  572KB
- MD5
  
  58c01dc043fda61849aba1f534f20c0a
- SHA1
  
  6986fea5d2582b4ca4e35df37edf3d3c1aa26e2f
- SHA256
  
  b91889da6e1a2d96ed307dfb1c5459d70ec8436ded46af0bae0425452dcc4c15
- SHA512
  
  633a6b4bc863269de7c94ffcb4efe01950faadef119117c038349817cef3efe5f02730ebccac94ea4078803365b60249965fc69d31d5202e5519cd84d2cc79d6
- SSDEEP
  
  12288:SwdzXPKqn01ays+czmQ/C1JmQoqdoDNrz3oe/Cy:hF/KqsS6P7zd6rz4e/5
Score

10^/10

raccoon cd8dc1031358b1aec55cc6bc447df1018b068607 discovery stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

raccooncd8dc1031358b1aec55cc6bc447df1018b068607discoverystealer

behavioral2

raccooncd8dc1031358b1aec55cc6bc447df1018b068607discoverystealer

© 2018-2024

Terms | Privacy