Overview

overview

10

Static

static

3

47f9f582d0...97.exe

windows7-x64

10

47f9f582d0...97.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    JaffaCakes118_1936c6e0187e7a298d0b7a8fd62e92f0324eda99cf448a7c256b8cd8e6cae4d7

  • Size

    394KB

  • Sample

    241225-r5elxsvqht

  • MD5

    3de924930fd5f05edf22dd9f158af163

  • SHA1

    d4404aacdc0c8d822e3e63b56ff01fb4ccc36cef

  • SHA256

    1936c6e0187e7a298d0b7a8fd62e92f0324eda99cf448a7c256b8cd8e6cae4d7

  • SHA512

    aa42c2385c32a4dd4ee2fa1941d4bf40c12b2952f06bf6d49cf9102a155d007016af36d507c3694a131659517907ffc09a16af8df8ee0b8a8288ef0a6c13e382

  • SSDEEP

    6144:XeBDwAjEAG1GfI/V1q8UWgZzrhEK0ZjjWO1rcU3xm7b7HLoYp4Drhq3J9R:O/AR1GQxcXWjprP3xm7nmHhq3JD

Score
10/10
raccoonafb5c633c4650f69312baef49db9dfa4discoverystealer

Malware Config

Extracted

Family

raccoon

Botnet

afb5c633c4650f69312baef49db9dfa4

C2

http://193.56.146.177

Attributes
  • user_agent

    mozzzzzzzzzzz

xor.plain

Targets

    • Target

      47f9f582d0ffb05d5965b32efc8b5d0946fb6f23e1ddf0b7f4ea8db5c5fd9c97

    • Size

      755KB

    • MD5

      b60ce38a5a9f0a79fa081d571414fb74

    • SHA1

      9a424f4bde5457a993ebf905d39a018fa4c53da6

    • SHA256

      47f9f582d0ffb05d5965b32efc8b5d0946fb6f23e1ddf0b7f4ea8db5c5fd9c97

    • SHA512

      1b61a163ea56f7b876999817f809387af128f166aec9b6e512161da210349b91bb5ac1c9d9473de391333c8453e3849b1470307fb2a0db723974e6b40017c5dc

    • SSDEEP

      12288:yeEi/ncDf0RRXvU8o03rT8J36hWIOfyec/N8h98G0yZ5+eSyAxdRpPA7F7W:civcAzFo0S3v6ZI5+3xFPA7

    Score
    10/10
    raccoonafb5c633c4650f69312baef49db9dfa4discoverystealer

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

      stealerraccoon

    • Raccoon family

      raccoon
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks