Overview

overview

10

Static

static

3

7a1fd70901...2b.exe

windows7-x64

10

7a1fd70901...2b.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7a1fd70901b8bba8c06b21645b9bec2b

  • Size

    50KB

  • Sample

    240127-nmyejabca9

  • MD5

    7a1fd70901b8bba8c06b21645b9bec2b

  • SHA1

    f07d874927e594ffa2fc6757a3ca21563e0f6d03

  • SHA256

    6a2fdcb4b33b1d960784616702b91b2b6ae24e77f35eda2eb31b5eaa7c2122ec

  • SHA512

    b9874bc0cadc0e998d8808a9f28efdc7d8a24f6e60572205daf2b75f0f4e04052b8c8baea6c8881436712db2458e5caf419891117b454418c204d1398f9321f5

  • SSDEEP

    768:uynwbvLWh5pOAL2PK4FTp7XdO7ILhWJ16R7YNInfa8CnwUs2Ty:tn+OAAL2PKaNka9RucfuwUi

Score
10/10
hawkeyekeyloggerpersistencespywarestealertrojan

Malware Config

Targets

    • Target

      7a1fd70901b8bba8c06b21645b9bec2b

    • Size

      50KB

    • MD5

      7a1fd70901b8bba8c06b21645b9bec2b

    • SHA1

      f07d874927e594ffa2fc6757a3ca21563e0f6d03

    • SHA256

      6a2fdcb4b33b1d960784616702b91b2b6ae24e77f35eda2eb31b5eaa7c2122ec

    • SHA512

      b9874bc0cadc0e998d8808a9f28efdc7d8a24f6e60572205daf2b75f0f4e04052b8c8baea6c8881436712db2458e5caf419891117b454418c204d1398f9321f5

    • SSDEEP

      768:uynwbvLWh5pOAL2PK4FTp7XdO7ILhWJ16R7YNInfa8CnwUs2Ty:tn+OAAL2PKaNka9RucfuwUi

    Score
    10/10
    hawkeyekeyloggerpersistencespywarestealertrojan

    • HawkEye

      HawkEye is a malware kit that has seen continuous development since at least 2013.

      keyloggertrojanstealerspywarehawkeye

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks