Overview

overview

10

Static

static

3

0f56a3d1e7...18.exe

windows7-x64

10

0f56a3d1e7...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0f56a3d1e74e85ccbb1588218c8ab4a5_JaffaCakes118

  • Size

    542KB

  • Sample

    240625-yp3r5sscnl

  • MD5

    0f56a3d1e74e85ccbb1588218c8ab4a5

  • SHA1

    70ab361fe1245f762e6f03229ae71493482c960c

  • SHA256

    7cd0e04ae6cb26444707130e0d56860e56345c9a2153078621eb7bd511ed1f29

  • SHA512

    abfb8e73e43a076e2e9cb007de58d88989704b5a414520cc1b4e3c6cad69a80f92e7ab981d7ac6790fb44450d70b295aa155a0626a5cbb783faa3e41baffbae4

  • SSDEEP

    6144:leqYQcoPj2WlQGQfqu6FrEaAE7tKGfL6C6JPVFMMuFEGSZ7WX9tZP6fQ2ROhxxp3:HYXc2W2GEwP7dfL6DnKG6njzxp6L

Score
10/10
raccoone672747afc67feb221ca60f8fc9e03adcf10f038stealer

Malware Config

Extracted

Family

raccoon

Version

1.8.2

Botnet

e672747afc67feb221ca60f8fc9e03adcf10f038

Attributes
  • url4cnc

    http://teletop.top/youyouhell0world

    http://teleta.top/youyouhell0world

    https://t.me/youyouhell0world

rc4.plain
rc4.plain

Targets

    • Target

      0f56a3d1e74e85ccbb1588218c8ab4a5_JaffaCakes118

    • Size

      542KB

    • MD5

      0f56a3d1e74e85ccbb1588218c8ab4a5

    • SHA1

      70ab361fe1245f762e6f03229ae71493482c960c

    • SHA256

      7cd0e04ae6cb26444707130e0d56860e56345c9a2153078621eb7bd511ed1f29

    • SHA512

      abfb8e73e43a076e2e9cb007de58d88989704b5a414520cc1b4e3c6cad69a80f92e7ab981d7ac6790fb44450d70b295aa155a0626a5cbb783faa3e41baffbae4

    • SSDEEP

      6144:leqYQcoPj2WlQGQfqu6FrEaAE7tKGfL6C6JPVFMMuFEGSZ7WX9tZP6fQ2ROhxxp3:HYXc2W2GEwP7dfL6DnKG6njzxp6L

    Score
    10/10
    raccoone672747afc67feb221ca60f8fc9e03adcf10f038stealer

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

      stealerraccoon

    • Raccoon Stealer V1 payload

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks