General

  • Target

    JaffaCakes118_8bd0a6cd1f060a688d14e40792aafd18edbbc209e24b77d5bb04bb22d99545e6

  • Size

    1.4MB

  • Sample

    241224-bqsx1axng1

  • MD5

    b5f9bad5a783f10dcaf335e2d152ba69

  • SHA1

    7886c0fa180bb6dc8ce40c0b2faf4a05a125bb98

  • SHA256

    8bd0a6cd1f060a688d14e40792aafd18edbbc209e24b77d5bb04bb22d99545e6

  • SHA512

    6fe2074915544917fb58bd909e9bf9120ae492a0cee4ae29cb62edc4f13d6f16ec4bf5e464829d5253cce67c2f09adce17e2e0ebf51cf36369a477c27a095e69

  • SSDEEP

    24576:rk8gmqh7swb4tnsvkZYVFVVWYgbUf8vaz+WOucFvee:rWB7rFDp1cFm

Malware Config

Extracted

Family

raccoon

Botnet

afb5c633c4650f69312baef49db9dfa4

C2

http://77.73.132.84

Attributes
  • user_agent

    mozzzzzzzzzzz

rc4.plain

Targets

    • Target

      JaffaCakes118_8bd0a6cd1f060a688d14e40792aafd18edbbc209e24b77d5bb04bb22d99545e6

    • Size

      1.4MB

    • MD5

      b5f9bad5a783f10dcaf335e2d152ba69

    • SHA1

      7886c0fa180bb6dc8ce40c0b2faf4a05a125bb98

    • SHA256

      8bd0a6cd1f060a688d14e40792aafd18edbbc209e24b77d5bb04bb22d99545e6

    • SHA512

      6fe2074915544917fb58bd909e9bf9120ae492a0cee4ae29cb62edc4f13d6f16ec4bf5e464829d5253cce67c2f09adce17e2e0ebf51cf36369a477c27a095e69

    • SSDEEP

      24576:rk8gmqh7swb4tnsvkZYVFVVWYgbUf8vaz+WOucFvee:rWB7rFDp1cFm

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

    • Raccoon Stealer V2 payload

    • Raccoon family

MITRE ATT&CK Enterprise v15

Tasks