raccoon | ea74cdb622194435265564c8c616374cafcd9cb2b7e8a78f02e8b2f3f463b03f | Triage

Submit
Reports

Overview

overview

Static

static

3

8fecd44658...18.exe

windows7-x64

8fecd44658...18.exe

windows10-2004-x64

Sharing

General

Target

8fecd44658c4fb9745afbcc627f68727_JaffaCakes118
Size

478KB
Sample

241104-jb97qsxfmr
MD5

8fecd44658c4fb9745afbcc627f68727
SHA1

3aca4c939be5a4053c7b21b795d22d6a3b300827
SHA256

ea74cdb622194435265564c8c616374cafcd9cb2b7e8a78f02e8b2f3f463b03f
SHA512

6349399e7879feff9f831fa71685145173cb595e22501765e39a5ff86148cdef7c95fac96b39dd01e103b8718a3c6c2724442245418f8b3cb376574f21748bf6
SSDEEP

6144:yxiWgvnhkwAzQEXD3oY4Y+wRSt30BTSF9GZyHqgAbkLAl0rRgo/0jTwa/RxJg:yxif8nkYrpMgTSF8ZXZkLgKR1oY

Score

10^/10

raccoon 8a89272858125c31016bc130ad19557408b8bbe4 discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

8fecd44658c4fb9745afbcc627f68727_JaffaCakes118.exe

Resource

win7-20240903-en

raccoon 8a89272858125c31016bc130ad19557408b8bbe4 discovery stealer

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

8fecd44658c4fb9745afbcc627f68727_JaffaCakes118.exe

Resource

win10v2004-20241007-en

raccoon 8a89272858125c31016bc130ad19557408b8bbe4 discovery stealer

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Version

1.7.3

Botnet

8a89272858125c31016bc130ad19557408b8bbe4

Attributes

url4cnc
https://telete.in/jjbadb0y

rc4.plain

rc4.plain

Targets

- Target
  
  8fecd44658c4fb9745afbcc627f68727_JaffaCakes118
- Size
  
  478KB
- MD5
  
  8fecd44658c4fb9745afbcc627f68727
- SHA1
  
  3aca4c939be5a4053c7b21b795d22d6a3b300827
- SHA256
  
  ea74cdb622194435265564c8c616374cafcd9cb2b7e8a78f02e8b2f3f463b03f
- SHA512
  
  6349399e7879feff9f831fa71685145173cb595e22501765e39a5ff86148cdef7c95fac96b39dd01e103b8718a3c6c2724442245418f8b3cb376574f21748bf6
- SSDEEP
  
  6144:yxiWgvnhkwAzQEXD3oY4Y+wRSt30BTSF9GZyHqgAbkLAl0rRgo/0jTwa/RxJg:yxif8nkYrpMgTSF8ZXZkLgKR1oY
Score

10^/10

raccoon 8a89272858125c31016bc130ad19557408b8bbe4 discovery stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
- Raccoon family
  raccoon
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

raccoon8a89272858125c31016bc130ad19557408b8bbe4discoverystealer

behavioral2

raccoon8a89272858125c31016bc130ad19557408b8bbe4discoverystealer

© 2018-2024

Terms | Privacy