General

  • Target

    JaffaCakes118_eed6575ac3cb7a7643abc657fdac344cd06ed49de4b36d9c7e28f0cfa4b8cef2

  • Size

    726.5MB

  • Sample

    241224-yk3lksvrdz

  • MD5

    2e0ab6548c06c100a67d471778608436

  • SHA1

    18b0f0af434cbbc2457f80d64478d57af9f51ae8

  • SHA256

    eed6575ac3cb7a7643abc657fdac344cd06ed49de4b36d9c7e28f0cfa4b8cef2

  • SHA512

    6bd36dd304c99363ce3f524c7bc0249c53fa910d8d61ed9582223223eebad191edc156d113c98d27d66fe5e428398bdf557360322d2ed107a18b271f64e5c32c

  • SSDEEP

    98304:SAyyvi1bgwGIZNW4I+WCRKDe4sWbGpXz0TGndsIVAngiEgLqEai976GnFRutzFY:P0RgBIvW6KDe3XzsfvsG7fb8zF

Malware Config

Extracted

Family

raccoon

Botnet

fcfc256ec04f34118490eadaac61e88d

C2

http://83.217.11.34

http://83.217.11.35

Attributes
  • user_agent

    901785252112

xor.plain

Targets

    • Target

      JaffaCakes118_eed6575ac3cb7a7643abc657fdac344cd06ed49de4b36d9c7e28f0cfa4b8cef2

    • Size

      726.5MB

    • MD5

      2e0ab6548c06c100a67d471778608436

    • SHA1

      18b0f0af434cbbc2457f80d64478d57af9f51ae8

    • SHA256

      eed6575ac3cb7a7643abc657fdac344cd06ed49de4b36d9c7e28f0cfa4b8cef2

    • SHA512

      6bd36dd304c99363ce3f524c7bc0249c53fa910d8d61ed9582223223eebad191edc156d113c98d27d66fe5e428398bdf557360322d2ed107a18b271f64e5c32c

    • SSDEEP

      98304:SAyyvi1bgwGIZNW4I+WCRKDe4sWbGpXz0TGndsIVAngiEgLqEai976GnFRutzFY:P0RgBIvW6KDe3XzsfvsG7fb8zF

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

    • Raccoon Stealer V2 payload

    • Raccoon family

MITRE ATT&CK Enterprise v15

Tasks