raccoon | edadaf903ccfd5a373cf002b76d6d211ff635e06fcb04b8b0e4ad1833bc84e95 | Triage

Submit
Reports

Overview

overview

Static

static

3

edadaf903c...95.exe

windows7-x64

edadaf903c...95.exe

windows10-2004-x64

Sharing

General

Target

edadaf903ccfd5a373cf002b76d6d211ff635e06fcb04b8b0e4ad1833bc84e95.exe
Size

406KB
Sample

250217-b8nq1awlat
MD5

d2db2691cd2418f5d6ade777a9627f3d
SHA1

4a4b55cddeb44914c1c1dc9864aabcf60617387b
SHA256

edadaf903ccfd5a373cf002b76d6d211ff635e06fcb04b8b0e4ad1833bc84e95
SHA512

df0a2d76fd20c863720ed602d47c17925c1483fb5c18a60914f6803905cc28a5831dbf75b5ccef471bf0fb48c41d8868a3fbde74b23507b0a576c24ac34d0d04
SSDEEP

12288:+eCC68kSBNSGhQK3b+910DbEo3fQ6eBZY0lVJgG:Z68X6Gv+0DbEMfQl7rlngG

Score

10^/10

raccoon d0a4bfbf53b7cfb0f2c36ea3dac687a23a8d514e discovery stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

edadaf903ccfd5a373cf002b76d6d211ff635e06fcb04b8b0e4ad1833bc84e95.exe

Resource

win7-20241010-en

raccoon d0a4bfbf53b7cfb0f2c36ea3dac687a23a8d514e discovery stealer

windows7-x64

7 signatures

120 seconds

Behavioral task

behavioral2

Sample

edadaf903ccfd5a373cf002b76d6d211ff635e06fcb04b8b0e4ad1833bc84e95.exe

Resource

win10v2004-20250211-en

raccoon d0a4bfbf53b7cfb0f2c36ea3dac687a23a8d514e discovery stealer

windows10-2004-x64

8 signatures

120 seconds

Malware Config

Extracted

Family

raccoon

Botnet

d0a4bfbf53b7cfb0f2c36ea3dac687a23a8d514e

Attributes

url4cnc
https://drive.google.com/uc?export=download&id=1bFIJe6mzezYRts1ADNHaG0Wi8T1yMIYo

rc4.plain

rc4.plain

Targets

- Target
  
  edadaf903ccfd5a373cf002b76d6d211ff635e06fcb04b8b0e4ad1833bc84e95.exe
- Size
  
  406KB
- MD5
  
  d2db2691cd2418f5d6ade777a9627f3d
- SHA1
  
  4a4b55cddeb44914c1c1dc9864aabcf60617387b
- SHA256
  
  edadaf903ccfd5a373cf002b76d6d211ff635e06fcb04b8b0e4ad1833bc84e95
- SHA512
  
  df0a2d76fd20c863720ed602d47c17925c1483fb5c18a60914f6803905cc28a5831dbf75b5ccef471bf0fb48c41d8868a3fbde74b23507b0a576c24ac34d0d04
- SSDEEP
  
  12288:+eCC68kSBNSGhQK3b+910DbEo3fQ6eBZY0lVJgG:Z68X6Gv+0DbEMfQl7rlngG
Score

10^/10

raccoon d0a4bfbf53b7cfb0f2c36ea3dac687a23a8d514e discovery stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
- Raccoon family
  raccoon
- Downloads MZ/PE file
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Web Service

Exfiltration

Impact

Tasks

static1

behavioral1

raccoond0a4bfbf53b7cfb0f2c36ea3dac687a23a8d514ediscoverystealer

behavioral2

raccoond0a4bfbf53b7cfb0f2c36ea3dac687a23a8d514ediscoverystealer

© 2018-2025

Terms | Privacy