raccoon | 2a70a3ac47c3a77554a0b34d28417b07ff1e80ef10fc99f842588a1e1ca94dd8 | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...d8.exe

windows7-x64

JaffaCakes...d8.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_2a70a3ac47c3a77554a0b34d28417b07ff1e80ef10fc99f842588a1e1ca94dd8
Size

1.4MB
Sample

241227-a5v58swrdw
MD5

b3b30a92aa7111173397d8eec171dcd6
SHA1

c80afe622d3704a41e95a61206df50b5f99d857c
SHA256

2a70a3ac47c3a77554a0b34d28417b07ff1e80ef10fc99f842588a1e1ca94dd8
SHA512

115a96072719af15f52e2cca123bdae0daebab263d49fa31b6ae30de3d9d3a82f298d7b197f44dfa973ef754e499f1740a2bea0812bf0a97b6cf0e79d495b979
SSDEEP

24576:rk8gmqh7swb4tnsvkZYVFVVWYgbUf8vaz+WOucFve2:rWB7rFDp1cFm

Score

10^/10

raccoon afb5c633c4650f69312baef49db9dfa4 discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_2a70a3ac47c3a77554a0b34d28417b07ff1e80ef10fc99f842588a1e1ca94dd8.exe

Resource

win7-20241023-en

raccoon afb5c633c4650f69312baef49db9dfa4 discovery stealer

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_2a70a3ac47c3a77554a0b34d28417b07ff1e80ef10fc99f842588a1e1ca94dd8.exe

Resource

win10v2004-20241007-en

raccoon afb5c633c4650f69312baef49db9dfa4 discovery stealer

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Botnet

afb5c633c4650f69312baef49db9dfa4

C2

http://77.73.132.84

Attributes

user_agent
mozzzzzzzzzzz

rc4.plain

Targets

- Target
  
  JaffaCakes118_2a70a3ac47c3a77554a0b34d28417b07ff1e80ef10fc99f842588a1e1ca94dd8
- Size
  
  1.4MB
- MD5
  
  b3b30a92aa7111173397d8eec171dcd6
- SHA1
  
  c80afe622d3704a41e95a61206df50b5f99d857c
- SHA256
  
  2a70a3ac47c3a77554a0b34d28417b07ff1e80ef10fc99f842588a1e1ca94dd8
- SHA512
  
  115a96072719af15f52e2cca123bdae0daebab263d49fa31b6ae30de3d9d3a82f298d7b197f44dfa973ef754e499f1740a2bea0812bf0a97b6cf0e79d495b979
- SSDEEP
  
  24576:rk8gmqh7swb4tnsvkZYVFVVWYgbUf8vaz+WOucFve2:rWB7rFDp1cFm
Score

10^/10

raccoon afb5c633c4650f69312baef49db9dfa4 discovery stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V2 payload
- Raccoon family
  raccoon
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

raccoonafb5c633c4650f69312baef49db9dfa4discoverystealer

behavioral2

raccoonafb5c633c4650f69312baef49db9dfa4discoverystealer

© 2018-2024

Terms | Privacy