raccoon | 98a7e96cfbf4701c29c85de103f6145e9bab2b9d710651805e1a6c3165c26ee5 | Triage

Submit
Reports

Overview

overview

Static

static

3

f3c1ca6c21...18.exe

windows7-x64

f3c1ca6c21...18.exe

windows10-2004-x64

Sharing

General

Target

f3c1ca6c21854cc277949b03bb48a914_JaffaCakes118
Size

511KB
Sample

241215-nfnxhssmev
MD5

f3c1ca6c21854cc277949b03bb48a914
SHA1

6772e6defb3c8f4c16017d016a2ddebd20528f08
SHA256

98a7e96cfbf4701c29c85de103f6145e9bab2b9d710651805e1a6c3165c26ee5
SHA512

f7e84180f8d7e96cf9b95ff89e862bf2c4ee21d1f5604140fa0323a62a983f410d2033e0cab0dd90446bedd27a32ffb2422fdf4a5522c22eeb4472d66978816e
SSDEEP

12288:ySsSkpvGm3ChmiQRktQ8wfTr0YFti339C5:ySsSkpPyhaowfcpn9

Score

10^/10

raccoon fa93985ba268e1dd8b72ef392332edcba95ddd45 discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f3c1ca6c21854cc277949b03bb48a914_JaffaCakes118.exe

Resource

win7-20240903-en

raccoon fa93985ba268e1dd8b72ef392332edcba95ddd45 discovery stealer

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

f3c1ca6c21854cc277949b03bb48a914_JaffaCakes118.exe

Resource

win10v2004-20241007-en

raccoon fa93985ba268e1dd8b72ef392332edcba95ddd45 discovery stealer

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Version

1.7.3

Botnet

fa93985ba268e1dd8b72ef392332edcba95ddd45

Attributes

url4cnc
https://telete.in/h_ghaibin2_1

rc4.plain

rc4.plain

Targets

- Target
  
  f3c1ca6c21854cc277949b03bb48a914_JaffaCakes118
- Size
  
  511KB
- MD5
  
  f3c1ca6c21854cc277949b03bb48a914
- SHA1
  
  6772e6defb3c8f4c16017d016a2ddebd20528f08
- SHA256
  
  98a7e96cfbf4701c29c85de103f6145e9bab2b9d710651805e1a6c3165c26ee5
- SHA512
  
  f7e84180f8d7e96cf9b95ff89e862bf2c4ee21d1f5604140fa0323a62a983f410d2033e0cab0dd90446bedd27a32ffb2422fdf4a5522c22eeb4472d66978816e
- SSDEEP
  
  12288:ySsSkpvGm3ChmiQRktQ8wfTr0YFti339C5:ySsSkpPyhaowfcpn9
Score

10^/10

raccoon fa93985ba268e1dd8b72ef392332edcba95ddd45 discovery stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
- Raccoon family
  raccoon
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

raccoonfa93985ba268e1dd8b72ef392332edcba95ddd45discoverystealer

behavioral2

raccoonfa93985ba268e1dd8b72ef392332edcba95ddd45discoverystealer

© 2018-2024

Terms | Privacy