hawkeye | be4e6e428abbddc9ae13c274c65f86d9633a274ee45aaff9c32311b1a0e2b471 | Triage

Submit
Reports

Overview

overview

Static

static

Zahlungsbe...ng.exe

windows7_x64

Zahlungsbe...ng.exe

windows10_x64

Sharing

Copy URL Twitter E-mail

General

Target

Zahlungsbestätigung.exe
Size

583KB
Sample

200707-4la3ae3f7x
MD5

3c330f32f0b8812e072568e98adf1f1c
SHA1

cd1a65820235eeb9e6655e8290326f422270115c
SHA256

be4e6e428abbddc9ae13c274c65f86d9633a274ee45aaff9c32311b1a0e2b471
SHA512

db394c95c979fa5637e142210cb7119f9f72af11f6daf9dacae6862452ebf479f9622baed66067345e6f3519890820b70cafcd51f2487ce6d9b831b7823a0447

Score

10^/10

hawkeye keylogger spyware stealer trojan

Static task

static1

Behavioral task

behavioral1

Sample

Zahlungsbestätigung.exe

Resource

win7

keylogger trojan stealer spyware hawkeye

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Zahlungsbestätigung.exe

Resource

win10

keylogger trojan stealer spyware hawkeye

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  Zahlungsbestätigung.exe
- Size
  
  583KB
- MD5
  
  3c330f32f0b8812e072568e98adf1f1c
- SHA1
  
  cd1a65820235eeb9e6655e8290326f422270115c
- SHA256
  
  be4e6e428abbddc9ae13c274c65f86d9633a274ee45aaff9c32311b1a0e2b471
- SHA512
  
  db394c95c979fa5637e142210cb7119f9f72af11f6daf9dacae6862452ebf479f9622baed66067345e6f3519890820b70cafcd51f2487ce6d9b831b7823a0447
Score

10^/10

keylogger trojan stealer spyware hawkeye
- HawkEye
  HawkEye is a malware kit that has seen continuous development since at least 2013.
  keylogger trojan stealer spyware hawkeye
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware
- Uses the VBS compiler for execution
- Looks up external IP address via web service
  Uses a legitimate IP lookup service to find the infected system's external IP.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Scripting

Credential Access

Credentials in Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

keyloggertrojanstealerspywarehawkeye

behavioral2

keyloggertrojanstealerspywarehawkeye

© 2018-2025

Terms | Privacy