General

  • Target

    433e06e3f01a1bc01e41d1744fd3771545b3ced73bae4dbf8bf14e0e27b07bba

  • Size

    506KB

  • Sample

    220310-2n6n7afeam

  • MD5

    5c133b44ce34e70c8d046f488b96e33d

  • SHA1

    393d4232540c82c067c5259f0f89a970cd8f04ce

  • SHA256

    433e06e3f01a1bc01e41d1744fd3771545b3ced73bae4dbf8bf14e0e27b07bba

  • SHA512

    f6799f09e1d42385b7c22a6b6bcefc89d1318eecc406dac447bfef2fd40e0fdf231bfd00a2c9d5001dc59e29c052ee5e36d02a2d00a5d42f94d0cbbf341c1bc4

Malware Config

Targets

    • Target

      433e06e3f01a1bc01e41d1744fd3771545b3ced73bae4dbf8bf14e0e27b07bba

    • Size

      506KB

    • MD5

      5c133b44ce34e70c8d046f488b96e33d

    • SHA1

      393d4232540c82c067c5259f0f89a970cd8f04ce

    • SHA256

      433e06e3f01a1bc01e41d1744fd3771545b3ced73bae4dbf8bf14e0e27b07bba

    • SHA512

      f6799f09e1d42385b7c22a6b6bcefc89d1318eecc406dac447bfef2fd40e0fdf231bfd00a2c9d5001dc59e29c052ee5e36d02a2d00a5d42f94d0cbbf341c1bc4

    • HawkEye

      HawkEye is a malware kit that has seen continuous development since at least 2013.

    • Adds Run key to start application

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

MITRE ATT&CK Enterprise v6

Tasks