raccoon | 7d970f5be24c72e8124cd91aec8f61a55e7a252f0f0dea5f778352339ce56022 | Triage

Submit
Reports

Overview

overview

Static

static

3

JaffaCakes...f9.exe

windows7-x64

JaffaCakes...f9.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_b91baa9270d29171c447d04f63c979f9
Size

542KB
Sample

250109-cwkn9awrbr
MD5

b91baa9270d29171c447d04f63c979f9
SHA1

2af58727d649f58a75a482635f0bb6a15abf5996
SHA256

7d970f5be24c72e8124cd91aec8f61a55e7a252f0f0dea5f778352339ce56022
SHA512

0c2b785d412a8d09d34c3706a2454429b3919d175ecc5bf2d5b1d8aa08a903288cd334aef662e37551b0dfa69d66e107249126ab84b2c7079662e1f71832fb0d
SSDEEP

12288:Di7AsbjUib1WzwpkJ9RWNkx4IK1OSdlBJGT:D1uoi4zw2JrWN+NGKT

Score

10^/10

raccoon 04425bba3d867526c049c14993222a0ca17902a6 discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_b91baa9270d29171c447d04f63c979f9.exe

Resource

win7-20240903-en

raccoon 04425bba3d867526c049c14993222a0ca17902a6 discovery stealer

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_b91baa9270d29171c447d04f63c979f9.exe

Resource

win10v2004-20241007-en

raccoon 04425bba3d867526c049c14993222a0ca17902a6 discovery stealer

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Botnet

04425bba3d867526c049c14993222a0ca17902a6

Attributes

url4cnc
http://telegatt.top/ogaolittlebro2

http://telegka.top/ogaolittlebro2

http://telegin.top/ogaolittlebro2

https://t.me/ogaolittlebro2

rc4.plain

rc4.plain

Targets

- Target
  
  JaffaCakes118_b91baa9270d29171c447d04f63c979f9
- Size
  
  542KB
- MD5
  
  b91baa9270d29171c447d04f63c979f9
- SHA1
  
  2af58727d649f58a75a482635f0bb6a15abf5996
- SHA256
  
  7d970f5be24c72e8124cd91aec8f61a55e7a252f0f0dea5f778352339ce56022
- SHA512
  
  0c2b785d412a8d09d34c3706a2454429b3919d175ecc5bf2d5b1d8aa08a903288cd334aef662e37551b0dfa69d66e107249126ab84b2c7079662e1f71832fb0d
- SSDEEP
  
  12288:Di7AsbjUib1WzwpkJ9RWNkx4IK1OSdlBJGT:D1uoi4zw2JrWN+NGKT
Score

10^/10

raccoon 04425bba3d867526c049c14993222a0ca17902a6 discovery stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
- Raccoon family
  raccoon
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

raccoon04425bba3d867526c049c14993222a0ca17902a6discoverystealer

behavioral2

raccoon04425bba3d867526c049c14993222a0ca17902a6discoverystealer

© 2018-2025

Terms | Privacy