raccoon | 0c8bcf14e466afcdb97bc365381c84c9bcbc2e6aec2f21c52fe58c4b4562659d | Triage

Submit
Reports

Overview

overview

Static

static

3

0c8bcf14e4...9d.exe

windows7-x64

0c8bcf14e4...9d.exe

windows10-2004-x64

Sharing

General

Target

0c8bcf14e466afcdb97bc365381c84c9bcbc2e6aec2f21c52fe58c4b4562659d.exe
Size

542KB
Sample

241122-r7xwaaspds
MD5

79f0548bad4356fb2470ca77b333d27a
SHA1

51ede78e800745ab326936aefcd017480d01d3b4
SHA256

0c8bcf14e466afcdb97bc365381c84c9bcbc2e6aec2f21c52fe58c4b4562659d
SHA512

5b536413f8b27ca3287ce816753cd8dde466f8d48785d034c23f0ffb818f313e08b29888b492d09ac0231899ab899c516733adb9139899f43d5d1808ca9fb11d
SSDEEP

12288:93jKEVV4uHmdZdhBUz1WfAQiHqnj18E3FY5TGJ:93j5K901WfAQOs/9J

Score

10^/10

raccoon 7ebf9b416b72a203df65383eec899dc689d2c3d7 discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0c8bcf14e466afcdb97bc365381c84c9bcbc2e6aec2f21c52fe58c4b4562659d.exe

Resource

win7-20241010-en

raccoon 7ebf9b416b72a203df65383eec899dc689d2c3d7 discovery stealer

windows7-x64

4 signatures

120 seconds

Behavioral task

behavioral2

Sample

0c8bcf14e466afcdb97bc365381c84c9bcbc2e6aec2f21c52fe58c4b4562659d.exe

Resource

win10v2004-20241007-en

raccoon 7ebf9b416b72a203df65383eec899dc689d2c3d7 discovery stealer

windows10-2004-x64

4 signatures

120 seconds

Malware Config

Extracted

Family

raccoon

Botnet

7ebf9b416b72a203df65383eec899dc689d2c3d7

Attributes

url4cnc
http://telegatt.top/agrybirdsgamerept

http://telegka.top/agrybirdsgamerept

http://telegin.top/agrybirdsgamerept

https://t.me/agrybirdsgamerept

rc4.plain

rc4.plain

Targets

- Target
  
  0c8bcf14e466afcdb97bc365381c84c9bcbc2e6aec2f21c52fe58c4b4562659d.exe
- Size
  
  542KB
- MD5
  
  79f0548bad4356fb2470ca77b333d27a
- SHA1
  
  51ede78e800745ab326936aefcd017480d01d3b4
- SHA256
  
  0c8bcf14e466afcdb97bc365381c84c9bcbc2e6aec2f21c52fe58c4b4562659d
- SHA512
  
  5b536413f8b27ca3287ce816753cd8dde466f8d48785d034c23f0ffb818f313e08b29888b492d09ac0231899ab899c516733adb9139899f43d5d1808ca9fb11d
- SSDEEP
  
  12288:93jKEVV4uHmdZdhBUz1WfAQiHqnj18E3FY5TGJ:93j5K901WfAQOs/9J
Score

10^/10

raccoon 7ebf9b416b72a203df65383eec899dc689d2c3d7 discovery stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
- Raccoon family
  raccoon
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

raccoon7ebf9b416b72a203df65383eec899dc689d2c3d7discoverystealer

behavioral2

raccoon7ebf9b416b72a203df65383eec899dc689d2c3d7discoverystealer

© 2018-2024

Terms | Privacy