General

  • Target

    JaffaCakes118_b3ee26616f56dfeda4bb216445699604749d7894feb59743f52661803f694545

  • Size

    888KB

  • Sample

    241223-sezpvasqa1

  • MD5

    14e1c546f8db9cb4dab5524dc718c55d

  • SHA1

    9c3719dd3248f522b285a1364f3c13bf9c505e54

  • SHA256

    b3ee26616f56dfeda4bb216445699604749d7894feb59743f52661803f694545

  • SHA512

    f1593dc81f658c9653483d96ad440fb72c2898021dd067547100403042f75a54ff5f322e413656d5764c90da537e1dfd88f4c6310489dd6cb6bdc0efd2c1bbe4

  • SSDEEP

    12288:2dC0txw9ntKz41IGjvUdWHz30mmEXEwvcpWr4X5JcveC/UniTBkgPv6:C1G441zsIHzuhwvMWr4X5eWC8gygPv

Malware Config

Extracted

Family

raccoon

Botnet

afb5c633c4650f69312baef49db9dfa4

C2

http://193.56.146.177

Attributes
  • user_agent

    mozzzzzzzzzzz

xor.plain

Targets

    • Target

      JaffaCakes118_b3ee26616f56dfeda4bb216445699604749d7894feb59743f52661803f694545

    • Size

      888KB

    • MD5

      14e1c546f8db9cb4dab5524dc718c55d

    • SHA1

      9c3719dd3248f522b285a1364f3c13bf9c505e54

    • SHA256

      b3ee26616f56dfeda4bb216445699604749d7894feb59743f52661803f694545

    • SHA512

      f1593dc81f658c9653483d96ad440fb72c2898021dd067547100403042f75a54ff5f322e413656d5764c90da537e1dfd88f4c6310489dd6cb6bdc0efd2c1bbe4

    • SSDEEP

      12288:2dC0txw9ntKz41IGjvUdWHz30mmEXEwvcpWr4X5JcveC/UniTBkgPv6:C1G441zsIHzuhwvMWr4X5eWC8gygPv

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

    • Raccoon family

MITRE ATT&CK Enterprise v15

Tasks