1.5 KiB
1.5 KiB
List of Different Raccoon_v2 Campaigns additional payloads
Campaign 1: The boring one
| url | Detected | Loads | C2 | Sha-256 |
|---|---|---|---|---|
| hxxp://77.73.134.24/Clip1.exe | Clipper | ea39461a954cc634f226716dd740f00ea449a4f7d45b6504d83aba045b853d1e | ||
| hxxp://77.73.134.35/bebra.exe | Unknown Stealer | dbf287872ae50281d3136c7f0b890bc534439d36c9b6f594d29b6453f7656e9b |
Campaign 2: Laplas Only
| url | Detected | Loads | C2 | Sha-256 |
|---|---|---|---|---|
| hxxp://104.193.254.97/conhost.exe | Laplas Clipper | NaN | hxxp://185.223.93.251/ | 14529dca41abfea65abb51c84ec34ba0a951581586f98cef60213ae949a78320 |
Campaign 3: Github 1
| url | Detected | Loads | C2 | Sha-256 |
|---|---|---|---|---|
| hxxps://github.com/wddawdawxaw/dfvdfvdfv/releases/download/vsd/bgfbv.exe | ||||
| hxxps://github.com/wddawdawxaw/dfvdfvdfv/releases/download/vsd/GUI_MODERNISTA.exe | A downloader for cracked software. Comes with pw protected zips, might load additional malware | hxxps://exp-soft.org/ (EvilCrackz Store) | ||
| hxxps://github.com/wddawdawxaw/dfvdfvdfv/releases/download/vsd/ghxkehgertedtyp.c.exe | Laplas Clipper | hxxp://212.113.106.172 | ||
| hxxps://github.com/wddawdawxaw/dfvdfvdfv/releases/download/vsf/vawax.exe | Laplas Clipper | NaN | hxxp://212.113.106.172 |
Campaign 4: Github 2
| url | Detected | Loads | C2 | Sha-256 |
|---|---|---|---|---|
| hxxp://77.73.134.24/Clip1.exe | Clipper | |||
| hxxp://77.73.134.35/bebra.exe | Unknown Stealer |
Campaign 5: 2 loaded, 2 in opendir
| url | Detected | Loads | C2 | Sha-256 |
|---|---|---|---|---|
| hxxp://77.73.134.24/Clip1.exe | Clipper | |||
| hxxp://77.73.134.35/bebra.exe | Unknown Stealer |