Overview

overview

10

Static

static

3

JaffaCakes...b5.exe

windows7-x64

10

JaffaCakes...b5.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_657f32bef4fa5b7c9507888304200a07720296a6eb5d046111a95a1d83106fb5

  • Size

    743KB

  • Sample

    241229-qeyfnsslgj

  • MD5

    46168c270608e1c95cde6b8f744a12e4

  • SHA1

    c1e5d664ef70d272bcb6544d405c7dc949c1c2a0

  • SHA256

    657f32bef4fa5b7c9507888304200a07720296a6eb5d046111a95a1d83106fb5

  • SHA512

    b4475dd3f143e1e1d00d705c14ef8c4cdc48c276ef76f46808154f4965148ba33b2cbe5bd40277d3b08e433e6d0993a65593b9bed3484688dfa1e4396ee233c8

  • SSDEEP

    12288:N/1tTk46QbqKYT7PCsj9wptoOgIBbh5MpUAvRfJc0dT+k9h23XBDjyPA7G:N9xn628P9j0WOgIJh5M9JcKKk95PA7

Score
10/10
raccoonafb5c633c4650f69312baef49db9dfa4discoverystealer

Malware Config

Extracted

Family

raccoon

Botnet

afb5c633c4650f69312baef49db9dfa4

C2

http://193.56.146.177

Attributes
  • user_agent

    mozzzzzzzzzzz

xor.plain

Targets

    • Target

      JaffaCakes118_657f32bef4fa5b7c9507888304200a07720296a6eb5d046111a95a1d83106fb5

    • Size

      743KB

    • MD5

      46168c270608e1c95cde6b8f744a12e4

    • SHA1

      c1e5d664ef70d272bcb6544d405c7dc949c1c2a0

    • SHA256

      657f32bef4fa5b7c9507888304200a07720296a6eb5d046111a95a1d83106fb5

    • SHA512

      b4475dd3f143e1e1d00d705c14ef8c4cdc48c276ef76f46808154f4965148ba33b2cbe5bd40277d3b08e433e6d0993a65593b9bed3484688dfa1e4396ee233c8

    • SSDEEP

      12288:N/1tTk46QbqKYT7PCsj9wptoOgIBbh5MpUAvRfJc0dT+k9h23XBDjyPA7G:N9xn628P9j0WOgIJh5M9JcKKk95PA7

    Score
    10/10
    raccoonafb5c633c4650f69312baef49db9dfa4discoverystealer

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

      stealerraccoon

    • Raccoon family

      raccoon
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks