General

  • Target

    JaffaCakes118_3f775a04430ff5839a9f001a83e17c43bbe561fccb2c2db804f32cd5dbcc8e85

  • Size

    317KB

  • Sample

    241222-ybajfaxlap

  • MD5

    546559e51e113a8a9913b375222b530d

  • SHA1

    fe9da37e4db83ac2d65726aaf9f7ded3a569e76f

  • SHA256

    3f775a04430ff5839a9f001a83e17c43bbe561fccb2c2db804f32cd5dbcc8e85

  • SHA512

    7508199d51a44e916e7c3dec4575b1922b7b42e30ebe2de2a983d4c647db7b765796333dcb28f9ca93c9e21957978682354b271c70d7946a452299d3658b16e7

  • SSDEEP

    6144:bOng99RsJXPwxgTsqDyODlWJn+6vjbR+yCzBIBID7ontvj9ijmvHAubaDEMU:6ng99iwx4OnBvR12gI4B9ijKraD6

Malware Config

Extracted

Family

raccoon

Botnet

afb5c633c4650f69312baef49db9dfa4

C2

http://193.56.146.177

Attributes
  • user_agent

    mozzzzzzzzzzz

xor.plain

Targets

    • Target

      6d6498c5ac989ba9fda6223b48bef8ec8ae92b4abaff24ef839edc06a940856b

    • Size

      600KB

    • MD5

      64e477486ce10c7517b4533e734490ff

    • SHA1

      508376e13b2dfb0cc4fb40e877482ad2cfede043

    • SHA256

      6d6498c5ac989ba9fda6223b48bef8ec8ae92b4abaff24ef839edc06a940856b

    • SHA512

      d21ccc0cf3452ddafe497a13d2fe6f79abeca931b9df19573efa051cd238f8a177b765e47cf3abdef94fbba1bbd6c55444728a95d82342e0d1a095a52a2d5c52

    • SSDEEP

      12288:MjiNWSEaZ/ygfMlruZ/ZPv3rS4O/Z3X6tFhPA7G:Mj2v1crE/h7SGFhPA7

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

    • Raccoon family

MITRE ATT&CK Enterprise v15

Tasks