Overview

overview

10

Static

static

3

JaffaCakes...b7.exe

windows7-x64

10

JaffaCakes...b7.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_26c3de3646a013cbeada52512119647a2ff6d72647fba2243c89f856523d82b7

  • Size

    888KB

  • Sample

    241226-zkys3azkbm

  • MD5

    f1aaa7e448dde7b031173d002f12a88c

  • SHA1

    99c2b2ab9029362ad137827f973f8e237d01145d

  • SHA256

    26c3de3646a013cbeada52512119647a2ff6d72647fba2243c89f856523d82b7

  • SHA512

    bf15fefe997ee7cc515880843f4ed13c709b605273694b4cd4eea0dcf0c8d363ec83b266c2a778c5371c718d37ca32f68f2ea0c06de19444f512d8ef91bc5efb

  • SSDEEP

    12288:2dC0txw9ntKz41IGjvUdWHz30mmEXEwvcpWr4X5JcveC/UniTB+gPv6:C1G441zsIHzuhwvMWr4X5eWC8g0gPv

Score
10/10
raccoonafb5c633c4650f69312baef49db9dfa4discoverystealer

Malware Config

Extracted

Family

raccoon

Botnet

afb5c633c4650f69312baef49db9dfa4

C2

http://193.56.146.177

Attributes
  • user_agent

    mozzzzzzzzzzz

xor.plain

Targets

    • Target

      JaffaCakes118_26c3de3646a013cbeada52512119647a2ff6d72647fba2243c89f856523d82b7

    • Size

      888KB

    • MD5

      f1aaa7e448dde7b031173d002f12a88c

    • SHA1

      99c2b2ab9029362ad137827f973f8e237d01145d

    • SHA256

      26c3de3646a013cbeada52512119647a2ff6d72647fba2243c89f856523d82b7

    • SHA512

      bf15fefe997ee7cc515880843f4ed13c709b605273694b4cd4eea0dcf0c8d363ec83b266c2a778c5371c718d37ca32f68f2ea0c06de19444f512d8ef91bc5efb

    • SSDEEP

      12288:2dC0txw9ntKz41IGjvUdWHz30mmEXEwvcpWr4X5JcveC/UniTB+gPv6:C1G441zsIHzuhwvMWr4X5eWC8g0gPv

    Score
    10/10
    raccoonafb5c633c4650f69312baef49db9dfa4discoverystealer

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

      stealerraccoon

    • Raccoon family

      raccoon
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks