General
-
Target
f875336962e8a166ed871858b6f624961ff9b7f1317d5c6ad55bb2782c4c327e
-
Size
149KB
-
Sample
230130-a7c3fabf93
-
MD5
0fac315ec4746ef1c689913d24313442
-
SHA1
e194946ac76e6b72d727a51bcbd842184c88fb3d
-
SHA256
f875336962e8a166ed871858b6f624961ff9b7f1317d5c6ad55bb2782c4c327e
-
SHA512
b9b77964d138812df7605362f0d06d5bf202a56ed9661de6178afb4dea15e2b31e096807d6387ead174d8143202aa31b3d24c3c36087989542fed0973b0f4b52
-
SSDEEP
3072:pdHHCd42U7jKXznulGJ5gywZCHjWV/2IBh5wtOZ7Q:pxHN7juznxvgyiEjWVeIBh5IOW
Malware Config
Targets
-
-
Target
f875336962e8a166ed871858b6f624961ff9b7f1317d5c6ad55bb2782c4c327e
-
Size
149KB
-
MD5
0fac315ec4746ef1c689913d24313442
-
SHA1
e194946ac76e6b72d727a51bcbd842184c88fb3d
-
SHA256
f875336962e8a166ed871858b6f624961ff9b7f1317d5c6ad55bb2782c4c327e
-
SHA512
b9b77964d138812df7605362f0d06d5bf202a56ed9661de6178afb4dea15e2b31e096807d6387ead174d8143202aa31b3d24c3c36087989542fed0973b0f4b52
-
SSDEEP
3072:pdHHCd42U7jKXznulGJ5gywZCHjWV/2IBh5wtOZ7Q:pxHN7juznxvgyiEjWVeIBh5IOW
Score10/10-
HawkEye
HawkEye is a malware kit that has seen continuous development since at least 2013.
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-