raccoon | 11cad69f49f4e4cbcb1ca23081305be04fc1d681b3f8a4fcd05a5f58185c0557 | Triage

Submit
Reports

Overview

overview

Static

static

3

bf390a8d21...18.exe

windows7-x64

bf390a8d21...18.exe

windows10-2004-x64

Sharing

General

Target

bf390a8d219ef4f8214898737185cf10_JaffaCakes118
Size

465KB
Sample

241203-zv9y3stphy
MD5

bf390a8d219ef4f8214898737185cf10
SHA1

40a8c683f302efa9bd29542ae67450a7ac8352af
SHA256

11cad69f49f4e4cbcb1ca23081305be04fc1d681b3f8a4fcd05a5f58185c0557
SHA512

e5c8a4275bf875822ed6eb175057834e592af4f5410d2565dc321abf00e445af4219a14409b8044bfb665061f712cd423c876d87599e2564a69a6d436e6a1794
SSDEEP

6144:aMj2kbr9ZLO3qojFuO2uHkNdVXQXrN+glHYJKsP+kBimqtg1IUzhOROzJCi:nj2Ir9ZjoOXQp+g/mJqXAOHi

Score

10^/10

raccoon 619c26986c79d067eda0bf8e57955aebe9af0fa7 discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

bf390a8d219ef4f8214898737185cf10_JaffaCakes118.exe

Resource

win7-20240708-en

raccoon 619c26986c79d067eda0bf8e57955aebe9af0fa7 discovery stealer

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

bf390a8d219ef4f8214898737185cf10_JaffaCakes118.exe

Resource

win10v2004-20241007-en

raccoon 619c26986c79d067eda0bf8e57955aebe9af0fa7 discovery stealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Version

1.7.3

Botnet

619c26986c79d067eda0bf8e57955aebe9af0fa7

Attributes

url4cnc
https://telete.in/forkmaster123

rc4.plain

rc4.plain

Targets

- Target
  
  bf390a8d219ef4f8214898737185cf10_JaffaCakes118
- Size
  
  465KB
- MD5
  
  bf390a8d219ef4f8214898737185cf10
- SHA1
  
  40a8c683f302efa9bd29542ae67450a7ac8352af
- SHA256
  
  11cad69f49f4e4cbcb1ca23081305be04fc1d681b3f8a4fcd05a5f58185c0557
- SHA512
  
  e5c8a4275bf875822ed6eb175057834e592af4f5410d2565dc321abf00e445af4219a14409b8044bfb665061f712cd423c876d87599e2564a69a6d436e6a1794
- SSDEEP
  
  6144:aMj2kbr9ZLO3qojFuO2uHkNdVXQXrN+glHYJKsP+kBimqtg1IUzhOROzJCi:nj2Ir9ZjoOXQp+g/mJqXAOHi
Score

10^/10

raccoon 619c26986c79d067eda0bf8e57955aebe9af0fa7 discovery stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
- Raccoon family
  raccoon
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

raccoon619c26986c79d067eda0bf8e57955aebe9af0fa7discoverystealer

behavioral2

raccoon619c26986c79d067eda0bf8e57955aebe9af0fa7discoverystealer

© 2018-2024

Terms | Privacy