General
-
Target
827338e15d2324535297ef02ac161e6e30a1d04848f4e07cc4ecf24bb2f17f0e
-
Size
1.0MB
-
Sample
210515-4fx59n712j
-
MD5
9d299bc1efaee4989c052ca5e5b9d211
-
SHA1
2203ad2b0fe38f0bbbc8c5ced0af49b24db0675a
-
SHA256
827338e15d2324535297ef02ac161e6e30a1d04848f4e07cc4ecf24bb2f17f0e
-
SHA512
3d278f207d915de09e24c1b1b5a73cf4e3deb6fb5f99c8ebb3002bf06f73b1f585cf84d2e72b51b53a5ddb80b514cceac5030c2f38e75bc88abdceacba9aa033
Static task
static1
Behavioral task
behavioral1
Sample
827338e15d2324535297ef02ac161e6e30a1d04848f4e07cc4ecf24bb2f17f0e.exe
Resource
win7v20210410
Behavioral task
behavioral2
Sample
827338e15d2324535297ef02ac161e6e30a1d04848f4e07cc4ecf24bb2f17f0e.exe
Resource
win10v20210408
Malware Config
Extracted
hawkeye_reborn
- fields
- name
Targets
-
-
Target
827338e15d2324535297ef02ac161e6e30a1d04848f4e07cc4ecf24bb2f17f0e
-
Size
1.0MB
-
MD5
9d299bc1efaee4989c052ca5e5b9d211
-
SHA1
2203ad2b0fe38f0bbbc8c5ced0af49b24db0675a
-
SHA256
827338e15d2324535297ef02ac161e6e30a1d04848f4e07cc4ecf24bb2f17f0e
-
SHA512
3d278f207d915de09e24c1b1b5a73cf4e3deb6fb5f99c8ebb3002bf06f73b1f585cf84d2e72b51b53a5ddb80b514cceac5030c2f38e75bc88abdceacba9aa033
-
HawkEye Reborn
HawkEye Reborn is an enhanced version of the HawkEye malware kit.
-
M00nd3v_Logger
M00nd3v Logger is a .NET stealer/logger targeting passwords from browsers and email clients.
-
M00nD3v Logger Payload
Detects M00nD3v Logger payload in memory.
-
NirSoft MailPassView
Password recovery tool for various email clients
-
NirSoft WebBrowserPassView
Password recovery tool for various web browsers
-
Nirsoft
-
Uses the VBS compiler for execution
-
Suspicious use of SetThreadContext
-