raccoon | 0e8509172356d527eac4b14a90bbb8d541625884f720b88e902fc88e30d007bc | Triage

Submit
Reports

Overview

overview

Static

static

3

0e85091723...bc.exe

windows7-x64

0e85091723...bc.exe

windows10-2004-x64

Sharing

General

Target

0e8509172356d527eac4b14a90bbb8d541625884f720b88e902fc88e30d007bc
Size

337KB
Sample

240422-xghasseg7x
MD5

eaafa70d95f1ac8d0ba678002c316870
SHA1

f716edc6c1897549c86a82ca763ce4b04224d5ea
SHA256

0e8509172356d527eac4b14a90bbb8d541625884f720b88e902fc88e30d007bc
SHA512

01d70885d95132a292c6cbabb0a2dc4517cc7e1821bad6adbb5ddd9ba1cbcfbf71addbf0974792797202dd49230a22bf19b7af93c98feec78bc3bb59c5e16004
SSDEEP

3072:ZdF2c/3qO8qQDzNbR8tYZm597CbWSCPvKXw/Z/c8p3o:LF2s3z8qQVtYYM5tCbteiA/B

Score

10^/10

raccoon 1b186ec3b9bf16462aab87ee1bbfe070 stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

0e8509172356d527eac4b14a90bbb8d541625884f720b88e902fc88e30d007bc.exe

Resource

win7-20240215-en

raccoon 1b186ec3b9bf16462aab87ee1bbfe070 stealer

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

0e8509172356d527eac4b14a90bbb8d541625884f720b88e902fc88e30d007bc.exe

Resource

win10v2004-20240412-en

raccoon 1b186ec3b9bf16462aab87ee1bbfe070 stealer

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Botnet

1b186ec3b9bf16462aab87ee1bbfe070

C2

http://193.27.14.212:80

Attributes

user_agent
SunShineMoonLight

xor.plain

Targets

- Target
  
  0e8509172356d527eac4b14a90bbb8d541625884f720b88e902fc88e30d007bc
- Size
  
  337KB
- MD5
  
  eaafa70d95f1ac8d0ba678002c316870
- SHA1
  
  f716edc6c1897549c86a82ca763ce4b04224d5ea
- SHA256
  
  0e8509172356d527eac4b14a90bbb8d541625884f720b88e902fc88e30d007bc
- SHA512
  
  01d70885d95132a292c6cbabb0a2dc4517cc7e1821bad6adbb5ddd9ba1cbcfbf71addbf0974792797202dd49230a22bf19b7af93c98feec78bc3bb59c5e16004
- SSDEEP
  
  3072:ZdF2c/3qO8qQDzNbR8tYZm597CbWSCPvKXw/Z/c8p3o:LF2s3z8qQVtYYM5tCbteiA/B
Score

10^/10

raccoon 1b186ec3b9bf16462aab87ee1bbfe070 stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V2 payload
- Detects executables containing SQL queries to confidential data stores. Observed in infostealers
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

raccoon1b186ec3b9bf16462aab87ee1bbfe070stealer

behavioral2

raccoon1b186ec3b9bf16462aab87ee1bbfe070stealer

© 2018-2024

Terms | Privacy