raccoon | 5f4c117cd7f2a02006da52cd5725d8c2579d2cab1fa8a1dd85faaab47fd04ecb | Triage

Submit
Reports

Overview

overview

Static

static

3

5f4c117cd7...cs.exe

windows7-x64

5f4c117cd7...cs.exe

windows10-2004-x64

Sharing

General

Target

5f4c117cd7f2a02006da52cd5725d8c2579d2cab1fa8a1dd85faaab47fd04ecb_NeikiAnalytics.exe
Size

494KB
Sample

240623-l641bayare
MD5

1fd4e62013aa31b99b3db397b6db9ce0
SHA1

8d3baf8e1f19bd44903afa2cdb87a4d31fb4a938
SHA256

5f4c117cd7f2a02006da52cd5725d8c2579d2cab1fa8a1dd85faaab47fd04ecb
SHA512

42215bba99a745ae1778b4f6296db0142ce25ea546fc59c8f3820ba00b486e26b2308819e4e44d994aad1dd42a975d6b75ed1cbbbc7e21c1e01df5a7cd5d2ae5
SSDEEP

12288:IrFu5n+lFTv5qVxivxwJrsdbvutQdaEsBu:I45n2v8VxGwJkbvutLEsBu

Score

10^/10

raccoon 5d224fd6c26c50ca4fea125e43d52eff1b8373e6 stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

5f4c117cd7f2a02006da52cd5725d8c2579d2cab1fa8a1dd85faaab47fd04ecb_NeikiAnalytics.exe

Resource

win7-20240220-en

raccoon 5d224fd6c26c50ca4fea125e43d52eff1b8373e6 stealer

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

5f4c117cd7f2a02006da52cd5725d8c2579d2cab1fa8a1dd85faaab47fd04ecb_NeikiAnalytics.exe

Resource

win10v2004-20240611-en

raccoon 5d224fd6c26c50ca4fea125e43d52eff1b8373e6 stealer

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Extracted

Family

raccoon

Botnet

5d224fd6c26c50ca4fea125e43d52eff1b8373e6

Attributes

url4cnc
https://drive.google.com/uc?export=download&id=1qOwjltN62v2z1O2ar8qbu8ru2QwxaRnr

rc4.plain

rc4.plain

Targets

- Target
  
  5f4c117cd7f2a02006da52cd5725d8c2579d2cab1fa8a1dd85faaab47fd04ecb_NeikiAnalytics.exe
- Size
  
  494KB
- MD5
  
  1fd4e62013aa31b99b3db397b6db9ce0
- SHA1
  
  8d3baf8e1f19bd44903afa2cdb87a4d31fb4a938
- SHA256
  
  5f4c117cd7f2a02006da52cd5725d8c2579d2cab1fa8a1dd85faaab47fd04ecb
- SHA512
  
  42215bba99a745ae1778b4f6296db0142ce25ea546fc59c8f3820ba00b486e26b2308819e4e44d994aad1dd42a975d6b75ed1cbbbc7e21c1e01df5a7cd5d2ae5
- SSDEEP
  
  12288:IrFu5n+lFTv5qVxivxwJrsdbvutQdaEsBu:I45n2v8VxGwJkbvutLEsBu
Score

10^/10

raccoon 5d224fd6c26c50ca4fea125e43d52eff1b8373e6 stealer
- Raccoon
  Raccoon is an infostealer written in C++ and first seen in 2019.
  stealer raccoon
- Raccoon Stealer V1 payload
- Legitimate hosting services abused for malware hosting/C2
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Web Service

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

raccoon5d224fd6c26c50ca4fea125e43d52eff1b8373e6stealer

behavioral2

raccoon5d224fd6c26c50ca4fea125e43d52eff1b8373e6stealer

© 2018-2024

Terms | Privacy