raccoon | 2303422cfd92ecbe065fd81e2c5aeed6b593dec5f656e1f8874ff45d51159129 | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...29.exe

windows7-x64

JaffaCakes...29.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_2303422cfd92ecbe065fd81e2c5aeed6b593dec5f656e1f8874ff45d51159129
Size

726.1MB
Sample

241225-w46fgasmhl
MD5

e580f38a938645eb0dbb4d43ec95424e
SHA1

78f97da2dddd86ebd1d1ccb3903afaca802bf991
SHA256

2303422cfd92ecbe065fd81e2c5aeed6b593dec5f656e1f8874ff45d51159129
SHA512

280df5712f731a2a4ca65151cce4c88a556e4338dee07a45a61cad7bc04f678e524adadefe8407d3aba2a70ff92705205769fc1cf79c662103fe1ef0fcc522f7
SSDEEP

196608:BaUEEJboOWCr9fARjy8LWXShRFh9TSsqT2qXYyKo:EUEExoOWCr9Y3hfDqKqKo

Score

10^/10

raccoon a4e43a9be1ceda1bbe132b4222e215bb discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_2303422cfd92ecbe065fd81e2c5aeed6b593dec5f656e1f8874ff45d51159129.exe

Resource

win7-20240903-en

raccoon a4e43a9be1ceda1bbe132b4222e215bb discovery stealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_2303422cfd92ecbe065fd81e2c5aeed6b593dec5f656e1f8874ff45d51159129.exe

Resource

win10v2004-20241007-en

raccoon a4e43a9be1ceda1bbe132b4222e215bb discovery stealer

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Botnet

a4e43a9be1ceda1bbe132b4222e215bb

C2

http://51.195.166.180/

Attributes

user_agent
x

xor.plain

Targets

- Target
  
  JaffaCakes118_2303422cfd92ecbe065fd81e2c5aeed6b593dec5f656e1f8874ff45d51159129
- Size
  
  726.1MB
- MD5
  
  e580f38a938645eb0dbb4d43ec95424e
- SHA1
  
  78f97da2dddd86ebd1d1ccb3903afaca802bf991
- SHA256
  
  2303422cfd92ecbe065fd81e2c5aeed6b593dec5f656e1f8874ff45d51159129
- SHA512
  
  280df5712f731a2a4ca65151cce4c88a556e4338dee07a45a61cad7bc04f678e524adadefe8407d3aba2a70ff92705205769fc1cf79c662103fe1ef0fcc522f7
- SSDEEP
  
  196608:BaUEEJboOWCr9fARjy8LWXShRFh9TSsqT2qXYyKo:EUEExoOWCr9Y3hfDqKqKo
Score

10^/10

raccoon a4e43a9be1ceda1bbe132b4222e215bb discovery stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V2 payload
- Raccoon family
  raccoon
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

raccoona4e43a9be1ceda1bbe132b4222e215bbdiscoverystealer

behavioral2

raccoona4e43a9be1ceda1bbe132b4222e215bbdiscoverystealer

© 2018-2024

Terms | Privacy