Overview

overview

10

Static

static

1

SFHAMMER.exe

windows7-x64

10

SFHAMMER.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SFHAMMER.exe

  • Size

    13.5MB

  • Sample

    230328-bf3z8agb66

  • MD5

    b53dc2fbd0b26a1617d2d6c08ca8b567

  • SHA1

    b4547184e8181905222b0604234c7f5cacc6c455

  • SHA256

    6e021131e08f2f2dc661ebedbc1ea0f6f720900e4cab861a0d272fe66e58c788

  • SHA512

    f6de00bfb61f72b3461ef06423cf14d3f6e7acc8a9df437fb7f310fedcecbbb12e662e04a8312fa01d8b1e9cdca0295b124035940b91f096607211e814cee8c2

  • SSDEEP

    393216:x1nw6bdySv8RhqVQDT1x5L6hIvtDojHK3PJ:E6bBvczDd6KVDo+R

Score
10/10
raccoonf26f614d4c0bc2bcd6601785661fb5cfstealer

Malware Config

Extracted

Family

raccoon

Botnet

f26f614d4c0bc2bcd6601785661fb5cf

C2

http://45.9.74.170

http://77.73.134.43
rc4.plain

Targets

    • Target

      SFHAMMER.exe

    • Size

      13.5MB

    • MD5

      b53dc2fbd0b26a1617d2d6c08ca8b567

    • SHA1

      b4547184e8181905222b0604234c7f5cacc6c455

    • SHA256

      6e021131e08f2f2dc661ebedbc1ea0f6f720900e4cab861a0d272fe66e58c788

    • SHA512

      f6de00bfb61f72b3461ef06423cf14d3f6e7acc8a9df437fb7f310fedcecbbb12e662e04a8312fa01d8b1e9cdca0295b124035940b91f096607211e814cee8c2

    • SSDEEP

      393216:x1nw6bdySv8RhqVQDT1x5L6hIvtDojHK3PJ:E6bBvczDd6KVDo+R

    Score
    10/10
    raccoonf26f614d4c0bc2bcd6601785661fb5cfstealer

    • Raccoon

      Raccoon is an infostealer written in C++ and first seen in 2019.

      stealerraccoon

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks