raccoon | 4a2aa1c96230767fd269d331e747c95662c041eea0eda1e2f460615fb6ea64d2 | Triage

Submit
Reports

Overview

overview

Static

static

3

2025-01-24...ia.exe

windows7-x64

2025-01-24...ia.exe

windows10-2004-x64

Sharing

General

Target

2025-01-24_bccd7ee1ecfdc960bb93c174e458e9cb_mafia
Size

544KB
Sample

250124-jd5p2axkev
MD5

bccd7ee1ecfdc960bb93c174e458e9cb
SHA1

0e4452d98dc1744003efccd3d07c30121d0d34ad
SHA256

4a2aa1c96230767fd269d331e747c95662c041eea0eda1e2f460615fb6ea64d2
SHA512

b6cee268576d1cdc61c50dff72bbd742e1afd41b13ef19f7d60e735d662a7e5979863bad7ce8d654675e059c19b504e6a2a7b8e1f7e39a280ff3c57b6c7dd608
SSDEEP

12288:imV8bAHBatyrQ46L2oGCPh5eAEJ1+rCxjiN5d:imV8bVt+Q41pxJG5

Score

10^/10

raccoon faea3ab5ea06a40f0cc8f655e526972689ca1b1f discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2025-01-24_bccd7ee1ecfdc960bb93c174e458e9cb_mafia.exe

Resource

win7-20240903-en

raccoon faea3ab5ea06a40f0cc8f655e526972689ca1b1f discovery stealer

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

2025-01-24_bccd7ee1ecfdc960bb93c174e458e9cb_mafia.exe

Resource

win10v2004-20241007-en

raccoon faea3ab5ea06a40f0cc8f655e526972689ca1b1f discovery stealer

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Botnet

faea3ab5ea06a40f0cc8f655e526972689ca1b1f

Attributes

url4cnc
https://drive.google.com/uc?export=download&id=1QQXAXArU8BU4kJZ6IBsSCCyLtmLftiOV

rc4.plain

rc4.plain

Targets

- Target
  
  2025-01-24_bccd7ee1ecfdc960bb93c174e458e9cb_mafia
- Size
  
  544KB
- MD5
  
  bccd7ee1ecfdc960bb93c174e458e9cb
- SHA1
  
  0e4452d98dc1744003efccd3d07c30121d0d34ad
- SHA256
  
  4a2aa1c96230767fd269d331e747c95662c041eea0eda1e2f460615fb6ea64d2
- SHA512
  
  b6cee268576d1cdc61c50dff72bbd742e1afd41b13ef19f7d60e735d662a7e5979863bad7ce8d654675e059c19b504e6a2a7b8e1f7e39a280ff3c57b6c7dd608
- SSDEEP
  
  12288:imV8bAHBatyrQ46L2oGCPh5eAEJ1+rCxjiN5d:imV8bVt+Q41pxJG5
Score

10^/10

raccoon faea3ab5ea06a40f0cc8f655e526972689ca1b1f discovery stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
- Raccoon family
  raccoon
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

raccoonfaea3ab5ea06a40f0cc8f655e526972689ca1b1fdiscoverystealer

behavioral2

raccoonfaea3ab5ea06a40f0cc8f655e526972689ca1b1fdiscoverystealer

© 2018-2025

Terms | Privacy