Raccoon Infostealer Malware Returns with New TTPS – Detection & Response - Security Investigation
Tags
maec-delivery-vectors: Watering Hole
attack-pattern: Data Ip Addresses - T1590.005 Malicious File - T1204.002 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Software - T1592.002
Show in Graph
Common Information
Type Value
UUID 696dcfaf-b667-4080-9a7b-8fe90704e76d
Fingerprint d1890e50e4eed39a
Analysis status DONE
Considered CTI value 2
Text language
Published Aug. 18, 2022, 3:38 p.m.
Added to db Sept. 26, 2022, 9:33 a.m.
Last updated Nov. 15, 2024, 5:40 p.m.
Headline Raccoon Infostealer Malware Returns with New TTPS – Detection & Response
Title Raccoon Infostealer Malware Returns with New TTPS – Detection & Response - Security Investigation
Detected Hints/Tags/Attributes 28/2/26
Source URLs
Redirection Url
Details Source https://www.socinvestigation.com/raccoon-infostealer-malware-returns-with-new-ttps-detection-response/
URL Provider
Details Provider Source level domain
Details socinvestigation.com www.socinvestigation.com
Attributes
Details Type #Events CTI Value
Details md5 1 
c8f9b86af75c8cb9f973683dbee27f93
Details md5 1 
704cb6b7d8863165857bca2c33283fa0
Details md5 1 
e490eacd7d52073891790cd3411a1221
Details md5 1 
52b4394897b2ddd3c47ec410ea1ff869
Details md5 1 
2eb2d4dc60b185e1961746b120d45f97
Details IPv4 4 
85.192.63.46
Details IPv4 3 
88.119.170.241
Details Url 1 
http://85.192.63.46/an7jd0qo6kt5bk5bq4er8fe1xp7hl2vk/nss3.dll
Details Url 1 
http://85.192.63.46
Details Url 1 
http://88.119.170.241
Details Domain 285 
microsoft.net
Details File 1 
ecc322f22da7cee63fb2ee0bfd5df59c.exe
Details File 72 
regsvcs.exe
Details File 71 
nss3.dll
Details File 1 
c:\users\balaganesh\appdata\locallow\nss3.dll
Details File 1 
c:\users\balaganesh\appdata\locallow\mozglue.dll
Details File 51 
mozglue.dll
Details File 4 
%.exe
Details File 1 
%.dll
Details File 49 
process.exe
Details File 6 
image.key
Details File 2 
targetfilename.key
Details md5 1 
ecc322f22da7cee63fb2ee0bfd5df59c
Details md5 1 
51c33c00a3823180a7b39ab838542d9d
Details md5 1 
7a1618c1616dae2aa4402b2f9f0febc7
Details md5 1 
1de2a5e94f070e9d6e8d70fe63e87175