raccoon | c0acf031062c99ad91d69dd8913337a302510dcc49e9ee938abcb1c614856386 | Triage

Submit
Reports

Overview

overview

Static

static

3

c0acf03106...86.exe

windows7-x64

c0acf03106...86.exe

windows10-2004-x64

Sharing

General

Target

c0acf031062c99ad91d69dd8913337a302510dcc49e9ee938abcb1c614856386.exe
Size

469KB
Sample

250117-h3yscaxkcl
MD5

685104925e8da798f239b22d54689675
SHA1

e4f115ddf7e03176d2dfab93c65d7c5b39c2e682
SHA256

c0acf031062c99ad91d69dd8913337a302510dcc49e9ee938abcb1c614856386
SHA512

1fefd5559b740926d0f848174abdbf8ae423576a49ad15d3ffe83af2b9f7a5568cd650d3c4ffc9a9add7b0cf0a1046dda471cbb88635609c459d65585ec79aa7
SSDEEP

12288:A6jlhP4uVOeWkH7r5lIWqh0cURICpfHLjK:ZRV4uV//IWqhE3fH/K

Score

10^/10

raccoon faea3ab5ea06a40f0cc8f655e526972689ca1b1f discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

c0acf031062c99ad91d69dd8913337a302510dcc49e9ee938abcb1c614856386.exe

Resource

win7-20240708-en

raccoon faea3ab5ea06a40f0cc8f655e526972689ca1b1f discovery stealer

windows7-x64

7 signatures

120 seconds

Behavioral task

behavioral2

Sample

c0acf031062c99ad91d69dd8913337a302510dcc49e9ee938abcb1c614856386.exe

Resource

win10v2004-20241007-en

raccoon faea3ab5ea06a40f0cc8f655e526972689ca1b1f discovery stealer

windows10-2004-x64

6 signatures

120 seconds

Malware Config

Extracted

Family

raccoon

Botnet

faea3ab5ea06a40f0cc8f655e526972689ca1b1f

Attributes

url4cnc
https://drive.google.com/uc?export=download&id=1QQXAXArU8BU4kJZ6IBsSCCyLtmLftiOV

rc4.plain

rc4.plain

Targets

- Target
  
  c0acf031062c99ad91d69dd8913337a302510dcc49e9ee938abcb1c614856386.exe
- Size
  
  469KB
- MD5
  
  685104925e8da798f239b22d54689675
- SHA1
  
  e4f115ddf7e03176d2dfab93c65d7c5b39c2e682
- SHA256
  
  c0acf031062c99ad91d69dd8913337a302510dcc49e9ee938abcb1c614856386
- SHA512
  
  1fefd5559b740926d0f848174abdbf8ae423576a49ad15d3ffe83af2b9f7a5568cd650d3c4ffc9a9add7b0cf0a1046dda471cbb88635609c459d65585ec79aa7
- SSDEEP
  
  12288:A6jlhP4uVOeWkH7r5lIWqh0cURICpfHLjK:ZRV4uV//IWqhE3fH/K
Score

10^/10

raccoon faea3ab5ea06a40f0cc8f655e526972689ca1b1f discovery stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
- Raccoon family
  raccoon
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

raccoonfaea3ab5ea06a40f0cc8f655e526972689ca1b1fdiscoverystealer

behavioral2

raccoonfaea3ab5ea06a40f0cc8f655e526972689ca1b1fdiscoverystealer

© 2018-2025

Terms | Privacy