raccoon | dac8ee3a0aae52a2e9b5bbf307606966c5174651391cf573a7af72c4a0eb2569 | Triage

Submit
Reports

Overview

overview

Static

static

3

dac8ee3a0a...69.exe

windows7-x64

dac8ee3a0a...69.exe

windows10-2004-x64

Sharing

General

Target

dac8ee3a0aae52a2e9b5bbf307606966c5174651391cf573a7af72c4a0eb2569.exe
Size

513KB
Sample

241120-z68kdsyjem
MD5

ee9b26fbb31bdfe4a8f580e2d9b7d456
SHA1

b7db67aa207ec71aa3585c9ea24df7feaf5f33f6
SHA256

dac8ee3a0aae52a2e9b5bbf307606966c5174651391cf573a7af72c4a0eb2569
SHA512

22014d742f767209248837f1d76fea84d0195793fdfc54eb9a506f6e428dd77aa1fcb78ce594a026b30206ea31043079dc768ef17c62ad618e5b329dc4d6441d
SSDEEP

12288:QFwCxfP1WYfrLD4oCOeOzp2md5lFOAxDW:IV18YXz/cMFOAA

Score

10^/10

raccoon 7ebf9b416b72a203df65383eec899dc689d2c3d7 discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

dac8ee3a0aae52a2e9b5bbf307606966c5174651391cf573a7af72c4a0eb2569.exe

Resource

win7-20240903-en

raccoon 7ebf9b416b72a203df65383eec899dc689d2c3d7 discovery stealer

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

dac8ee3a0aae52a2e9b5bbf307606966c5174651391cf573a7af72c4a0eb2569.exe

Resource

win10v2004-20241007-en

raccoon 7ebf9b416b72a203df65383eec899dc689d2c3d7 discovery stealer

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Botnet

7ebf9b416b72a203df65383eec899dc689d2c3d7

Attributes

url4cnc
http://telegatt.top/agrybirdsgamerept

http://telegka.top/agrybirdsgamerept

http://telegin.top/agrybirdsgamerept

https://t.me/agrybirdsgamerept

rc4.plain

rc4.plain

Targets

- Target
  
  dac8ee3a0aae52a2e9b5bbf307606966c5174651391cf573a7af72c4a0eb2569.exe
- Size
  
  513KB
- MD5
  
  ee9b26fbb31bdfe4a8f580e2d9b7d456
- SHA1
  
  b7db67aa207ec71aa3585c9ea24df7feaf5f33f6
- SHA256
  
  dac8ee3a0aae52a2e9b5bbf307606966c5174651391cf573a7af72c4a0eb2569
- SHA512
  
  22014d742f767209248837f1d76fea84d0195793fdfc54eb9a506f6e428dd77aa1fcb78ce594a026b30206ea31043079dc768ef17c62ad618e5b329dc4d6441d
- SSDEEP
  
  12288:QFwCxfP1WYfrLD4oCOeOzp2md5lFOAxDW:IV18YXz/cMFOAA
Score

10^/10

raccoon 7ebf9b416b72a203df65383eec899dc689d2c3d7 discovery stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
- Raccoon family
  raccoon
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

raccoon7ebf9b416b72a203df65383eec899dc689d2c3d7discoverystealer

behavioral2

raccoon7ebf9b416b72a203df65383eec899dc689d2c3d7discoverystealer

© 2018-2024

Terms | Privacy