Overview

overview

10

Static

static

3

JaffaCakes...95.exe

windows7-x64

10

JaffaCakes...95.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_8471cee99f505d64feae7665f83dc195

  • Size

    582KB

  • Sample

    250105-chyzqaxnhs

  • MD5

    8471cee99f505d64feae7665f83dc195

  • SHA1

    de2ced3db0aa885ea69972ab915dbe46f042e2d0

  • SHA256

    439263a456e2fee01dc2a9336c79fad187c95979e62b8dc2406430056cdf7a28

  • SHA512

    9007f65357026dd65dc940cac08900a95febcd018df30a9ccb87b6d6705681f23bda093431694843627169a40315f7661da18bd49d17350a82c06710cd91b7e6

  • SSDEEP

    12288:jtYItSPg3gBwlKOQ6ov8hrmqw3kPhULAlSp4r/n1cWFkcmLhAh:j1Sh6lw8mqwUPu0l11cWF5

Score
10/10
raccoon7ebf9b416b72a203df65383eec899dc689d2c3d7discoverystealer

Malware Config

Extracted

Family

raccoon

Botnet

7ebf9b416b72a203df65383eec899dc689d2c3d7

Attributes
  • url4cnc

    http://telegatt.top/agrybirdsgamerept

    http://telegka.top/agrybirdsgamerept

    http://telegin.top/agrybirdsgamerept

    https://t.me/agrybirdsgamerept

rc4.plain
rc4.plain

Targets

    • Target

      JaffaCakes118_8471cee99f505d64feae7665f83dc195

    • Size

      582KB

    • MD5

      8471cee99f505d64feae7665f83dc195

    • SHA1

      de2ced3db0aa885ea69972ab915dbe46f042e2d0

    • SHA256

      439263a456e2fee01dc2a9336c79fad187c95979e62b8dc2406430056cdf7a28

    • SHA512

      9007f65357026dd65dc940cac08900a95febcd018df30a9ccb87b6d6705681f23bda093431694843627169a40315f7661da18bd49d17350a82c06710cd91b7e6

    • SSDEEP

      12288:jtYItSPg3gBwlKOQ6ov8hrmqw3kPhULAlSp4r/n1cWFkcmLhAh:j1Sh6lw8mqwUPu0l11cWF5

    Score
    10/10
    raccoon7ebf9b416b72a203df65383eec899dc689d2c3d7discoverystealer

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

      stealerraccoon

    • Raccoon Stealer V1 payload

    • Raccoon family

      raccoon
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks