raccoon | 1406293eef687c73d84fff0be7d1a47bc973b79fb4b208dc4a31f311684e2bf8 | Triage

Sharing

General

Target

1406293eef687c73d84fff0be7d1a47bc973b79fb4b208dc4a31f311684e2bf8
Size

102KB
Sample

241026-ww4xnsyajn
MD5

24bdb92d93d301d2e58b84f4e5161909
SHA1

c0c2336f4ed7622f4fa1a4ee0b220bbbb37c73f0
SHA256

1406293eef687c73d84fff0be7d1a47bc973b79fb4b208dc4a31f311684e2bf8
SHA512

a4438a59f82a674dcaa7baf87350fb73837d92edc30da6f8373a182d33f182185ff7d6624d6d0aa2831c29f4e938da5484de45110791ec1ca25709bf93fd9641
SSDEEP

3072:WANfQKMuflyKX9FBFya6mob2lNL6RJ//5O69:J0O9FBn6pb+4RJ/99

Score

10^/10

raccoon 65c47fbc812d076b01ac0a36a19adf62 discovery

Malware Config

Extracted

Family

raccoon

Botnet

65c47fbc812d076b01ac0a36a19adf62

C2

http://178.20.47.114:80/

Attributes

user_agent
SunShineMoonLight

xor.plain

Targets

- Target
  
  1406293eef687c73d84fff0be7d1a47bc973b79fb4b208dc4a31f311684e2bf8
- Size
  
  102KB
- MD5
  
  24bdb92d93d301d2e58b84f4e5161909
- SHA1
  
  c0c2336f4ed7622f4fa1a4ee0b220bbbb37c73f0
- SHA256
  
  1406293eef687c73d84fff0be7d1a47bc973b79fb4b208dc4a31f311684e2bf8
- SHA512
  
  a4438a59f82a674dcaa7baf87350fb73837d92edc30da6f8373a182d33f182185ff7d6624d6d0aa2831c29f4e938da5484de45110791ec1ca25709bf93fd9641
- SSDEEP
  
  3072:WANfQKMuflyKX9FBFya6mob2lNL6RJ//5O69:J0O9FBn6pb+4RJ/99
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

65c47fbc812d076b01ac0a36a19adf62raccoon

behavioral1

behavioral2