raccoon | 3a619f6a2a5d63b3228f9b896547383ae47aa9ae94c7f1864f627e76eff9504f | Triage

Sharing

General

Target

JaffaCakes118_3a619f6a2a5d63b3228f9b896547383ae47aa9ae94c7f1864f627e76eff9504f
Size

724KB
Sample

241230-ftvm8ayqfk
MD5

30250a52ae9e9d5eeb4520611cfdb01a
SHA1

abf9e140333c6d7d656e84de85ffa33552c9938c
SHA256

3a619f6a2a5d63b3228f9b896547383ae47aa9ae94c7f1864f627e76eff9504f
SHA512

caddec5405d2fbd55d44a4f31cb064b3d88e30bc6b15ca5bb29a1528337390b7323663b9547f85c359e363b1d7953cf8e016aae668c2216ab9e252be7a382e04
SSDEEP

12288:yOBNiB81tCGJeO5joAsBrSaHxSnq7N8KdXwBkZwZgcOoo5gSc:yqNiKuO+vRf8Agc

Score

10^/10

raccoon findfirstfilew discovery

Malware Config

Extracted

Family

raccoon

Botnet

FindFirstFileW

rc4.plain

Targets

- Target
  
  JaffaCakes118_3a619f6a2a5d63b3228f9b896547383ae47aa9ae94c7f1864f627e76eff9504f
- Size
  
  724KB
- MD5
  
  30250a52ae9e9d5eeb4520611cfdb01a
- SHA1
  
  abf9e140333c6d7d656e84de85ffa33552c9938c
- SHA256
  
  3a619f6a2a5d63b3228f9b896547383ae47aa9ae94c7f1864f627e76eff9504f
- SHA512
  
  caddec5405d2fbd55d44a4f31cb064b3d88e30bc6b15ca5bb29a1528337390b7323663b9547f85c359e363b1d7953cf8e016aae668c2216ab9e252be7a382e04
- SSDEEP
  
  12288:yOBNiB81tCGJeO5joAsBrSaHxSnq7N8KdXwBkZwZgcOoo5gSc:yqNiKuO+vRf8Agc
Score

3^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

findfirstfilewraccoon

behavioral1

behavioral2