Analysis
-
max time kernel
122s -
max time network
123s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system -
submitted
24-12-2024 13:27
Static task
static1
Behavioral task
behavioral1
Sample
c81931f9425889fd9552532636ee97260aa3ab96366414e1c923f1ed59cdcde3.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
c81931f9425889fd9552532636ee97260aa3ab96366414e1c923f1ed59cdcde3.exe
Resource
win10v2004-20241007-en
General
-
Target
c81931f9425889fd9552532636ee97260aa3ab96366414e1c923f1ed59cdcde3.exe
-
Size
755KB
-
MD5
efb3bb1315c6bed973131a143b8f9ade
-
SHA1
884df087c4f38a7ffeca0c403870b418f91b489d
-
SHA256
c81931f9425889fd9552532636ee97260aa3ab96366414e1c923f1ed59cdcde3
-
SHA512
32f7abcf9cd2c9ebb53c6dec1e39975cd765f13323cdbdc32301e5f9ad6b617ec37fa94354c8364c656c96ba6aa1c672bdd0bcf926b9966fdd2b95f2b2de779b
-
SSDEEP
12288:yeEi/ncDf0RRXvU8o03rT8J36hWIOfyec/N8h98G0yZ5+eSyAxdRdPA7F7W:civcAzFo0S3v6ZI5+3x5PA7
Malware Config
Extracted
raccoon
afb5c633c4650f69312baef49db9dfa4
http://193.56.146.177
-
user_agent
mozzzzzzzzzzz
Signatures
-
Raccoon family
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
description ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language c81931f9425889fd9552532636ee97260aa3ab96366414e1c923f1ed59cdcde3.exe