raccoon | 59cef9507de8dde37b90b56c4517a05e60fd4abf3b16960e5dbf7914ca5374c5 | Triage

Sharing

General

Target

JaffaCakes118_59cef9507de8dde37b90b56c4517a05e60fd4abf3b16960e5dbf7914ca5374c5
Size

317KB
Sample

241222-ggdplswnhp
MD5

b90ceb604fd2d47587f44cee75b1da24
SHA1

f29f8027e13c417e1fac6e2ee113b5c771d69b7c
SHA256

59cef9507de8dde37b90b56c4517a05e60fd4abf3b16960e5dbf7914ca5374c5
SHA512

297e1609d697ede45d0df08ebd9c6e0cd6d999aad0c67b2a85a6de8e96b3e46db4f42ec57ec07c57aae198bd8ac4801750df7ff4837abf9c06504fc646522de1
SSDEEP

6144:gOng99RsJXPwxgTsqDyODlWJn+6vjbR+yCzBIBID7ontvj9ijmvA60fbKQr/+F:tng99iwx4OnBvR12gI4B9ijKAfD+F

Score

10^/10

raccoon afb5c633c4650f69312baef49db9dfa4 discovery stealer

Malware Config

Extracted

Family

raccoon

Botnet

afb5c633c4650f69312baef49db9dfa4

C2

http://193.56.146.177

Attributes

user_agent
mozzzzzzzzzzz

xor.plain

Targets

- Target
  
  151d4e336ece23439b1581eb84a0458dc2a81d7cccc92f7f174ce066cbae837a
- Size
  
  600KB
- MD5
  
  a7e665da58c774ecba4615b148c5f889
- SHA1
  
  eb84ff21e09db80ba9d3119f1989479c4df3201e
- SHA256
  
  151d4e336ece23439b1581eb84a0458dc2a81d7cccc92f7f174ce066cbae837a
- SHA512
  
  8580665b95f9c030c8245276c4457e5497b5bd2065e886a08711bfe18c79715dfe9812cdc1b99ab1457b962c6855d446a7e526e4aa5b6a1d11f67e5f77ca98f2
- SSDEEP
  
  12288:MjiNWSEaZ/ygfMlruZ/ZPv3rS4O/Z3X6tFpPA7G:Mj2v1crE/h7SGFpPA7
Score

10^/10

raccoon afb5c633c4650f69312baef49db9dfa4 discovery stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon family
  raccoon
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

raccoonafb5c633c4650f69312baef49db9dfa4discoverystealer

behavioral2

raccoonafb5c633c4650f69312baef49db9dfa4discoverystealer