General

  • Target

    JaffaCakes118_2e4d91a879d8c386bc26d11835394e95e8c01bf987b10469420334970c7be689

  • Size

    1.1MB

  • Sample

    241224-t7yhxs1rgy

  • MD5

    9951fb979bc39dcd9e7f508dd3385567

  • SHA1

    c78a1f0ba1a69d9e4c7215549659c487e1824e4a

  • SHA256

    2e4d91a879d8c386bc26d11835394e95e8c01bf987b10469420334970c7be689

  • SHA512

    b5736bc293741f4f79ba61bcfc0bfb488def1a06f751437183375c16bac7c2cf439af807cca6b1cb6748c1f5e8c05bb31952a92da80f4cffb22be92bd21defb2

  • SSDEEP

    24576:NrGC4D73azrTzWBB1M2SgbJKRPwZ9f3EYX:pAnsq67XY

Malware Config

Extracted

Family

raccoon

Botnet

afb5c633c4650f69312baef49db9dfa4

C2

http://77.73.132.84

Attributes
  • user_agent

    mozzzzzzzzzzz

rc4.plain

Targets

    • Target

      JaffaCakes118_2e4d91a879d8c386bc26d11835394e95e8c01bf987b10469420334970c7be689

    • Size

      1.1MB

    • MD5

      9951fb979bc39dcd9e7f508dd3385567

    • SHA1

      c78a1f0ba1a69d9e4c7215549659c487e1824e4a

    • SHA256

      2e4d91a879d8c386bc26d11835394e95e8c01bf987b10469420334970c7be689

    • SHA512

      b5736bc293741f4f79ba61bcfc0bfb488def1a06f751437183375c16bac7c2cf439af807cca6b1cb6748c1f5e8c05bb31952a92da80f4cffb22be92bd21defb2

    • SSDEEP

      24576:NrGC4D73azrTzWBB1M2SgbJKRPwZ9f3EYX:pAnsq67XY

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

    • Raccoon Stealer V2 payload

    • Raccoon family

MITRE ATT&CK Enterprise v15

Tasks