hawkeye | 0db7268e25f57dc173b46953dd1a178c0ad10dcc867e38f126742b0ab625c4e6 | Triage

Sharing

General

Target

JaffaCakes118_6548d0f048b74ffabe80c3b864682651
Size

183KB
Sample

250102-p9qhwawjdp
MD5

6548d0f048b74ffabe80c3b864682651
SHA1

a341d3999dbd47325ae8bf757f50897f9c410f93
SHA256

0db7268e25f57dc173b46953dd1a178c0ad10dcc867e38f126742b0ab625c4e6
SHA512

d0648bac6b80c1411c5e08b0081ae51377d5a0266545e26f184391a8e63532fe8a0b0a9173d2662dde28be85831bbf43dc7687ef5a9adbdfdba37e85d92cd150
SSDEEP

3072:oQIURTXJBvSeqEmnCsmj74Cv3Bt6Hu9bC6Jh9d0iFdi1heQhu3upGXA/tMmeBqd1:oszvHkCBgoBMgbC6Jb6iHiSQiupGw/t5

Score

10^/10

hawkeye discovery keylogger spyware stealer trojan

Malware Config

Targets

- Target
  
  JaffaCakes118_6548d0f048b74ffabe80c3b864682651
- Size
  
  183KB
- MD5
  
  6548d0f048b74ffabe80c3b864682651
- SHA1
  
  a341d3999dbd47325ae8bf757f50897f9c410f93
- SHA256
  
  0db7268e25f57dc173b46953dd1a178c0ad10dcc867e38f126742b0ab625c4e6
- SHA512
  
  d0648bac6b80c1411c5e08b0081ae51377d5a0266545e26f184391a8e63532fe8a0b0a9173d2662dde28be85831bbf43dc7687ef5a9adbdfdba37e85d92cd150
- SSDEEP
  
  3072:oQIURTXJBvSeqEmnCsmj74Cv3Bt6Hu9bC6Jh9d0iFdi1heQhu3upGXA/tMmeBqd1:oszvHkCBgoBMgbC6Jb6iHiSQiupGw/t5
Score

3^/10

discovery
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/InstallOptions.dll
- Size
  
  14KB
- MD5
  
  0dc0cc7a6d9db685bf05a7e5f3ea4781
- SHA1
  
  5d8b6268eeec9d8d904bc9d988a4b588b392213f
- SHA256
  
  8e287326f1cdd5ef2dcd7a72537c68cbe4299ceb1f820707c5820f3aa6d8206c
- SHA512
  
  814dd17ebb434f4a3356f716c783ab7f569f9ee34ce5274fa50392526925f044798f8006198ac7afe3d1c2ca83a2ca8c472ca53fec5f12bbfbbe0707abacd6b0
- SSDEEP
  
  192:n6d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jPK72dwF7dBEnbok:n6UdHXcIiY535zBt2jP+BEnbo
Score

3^/10

discovery
behavioral3 behavioral4
- Target
  
  $PLUGINSDIR/System.dll
- Size
  
  11KB
- MD5
  
  00a0194c20ee912257df53bfe258ee4a
- SHA1
  
  d7b4e319bc5119024690dc8230b9cc919b1b86b2
- SHA256
  
  dc4da2ccadb11099076926b02764b2b44ad8f97cd32337421a4cc21a3f5448f3
- SHA512
  
  3b38a2c17996c3b77ebf7b858a6c37415615e756792132878d8eddbd13cb06710b7da0e8b58104768f8e475fc93e8b44b3b1ab6f70ddf52edee111aaf5ef5667
- SSDEEP
  
  192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw
Score

3^/10

discovery
behavioral5 behavioral6
- Target
  
  $PLUGINSDIR/UserInfo.dll
- Size
  
  4KB
- MD5
  
  1e8e11f465afdabe97f529705786b368
- SHA1
  
  ea42bed65df6618c5f5648567d81f3935e70a2a0
- SHA256
  
  7d099352c82612ab27ddfd7310c1aa049b58128fb04ea6ea55816a40a6f6487b
- SHA512
  
  16566a8c1738e26962139aae893629098dc759e4ac87df3e8eb9819df4e0e422421836bb1e4240377e00fb2f4408ce40f40eee413d0f6dd2f3a4e27a52d49a0b
Score

3^/10

discovery
behavioral7 behavioral8
- Target
  
  $PLUGINSDIR/UtilsPlugin.dll
- Size
  
  7KB
- MD5
  
  2fc8c6de8c23517ad10e8a2a32b42c03
- SHA1
  
  5c07797527ddccabe464c3c5be0c2d3a256a0c54
- SHA256
  
  c41c424f90adb1d49a291dde3865f30dd3afbf7216c51655aeedd37296a8007e
- SHA512
  
  86eb4c47b117a7f9cb3aa5ba40a79c6a286cd28e01dea6c5fd3cb4c4569545c68c735fa3e88c3b5c46bed95d08c38dde9cbd17fa4592d60a3b7f325da5f84196
- SSDEEP
  
  96:llK4UsceZhmPmu2LaDTgx8slHD7f9wDVuiAoc33JOxxxYPVzJBpkXQykPa0mCtE:l4neZPtGPslHWMiGHAxxQVQpk3
Score

3^/10

discovery
behavioral10 behavioral9
- Target
  
  UnityBugReporter.exe
- Size
  
  191KB
- MD5
  
  8e8dbe3944fd253ea3f134674312b0c0
- SHA1
  
  068d706d33e3c259b4a9355086f06a84b49faccf
- SHA256
  
  dc0b6e70c8b71a506d40f62ee08ef2770d5cf3e4d2baf43d48d542ef918c6b13
- SHA512
  
  571e1b5e76d2dea11f891231764dc346a3009f39941a566419716fba385ecc097bfed97648ca4084929265314a35b29e13fb027326a956bcaaa89c701a7e1c0b
- SSDEEP
  
  3072:sWQRVOJT5QdfhO/BqTEO4M+iI7LcUbJm+jlhYdzl9h5RoSeqycnbaT:sWWVO3Qd94jiULboYzcho16bM
Score

10^/10

hawkeye discovery keylogger spyware stealer trojan
- HawkEye
  HawkEye is a malware kit that has seen continuous development since at least 2013.
  keylogger trojan stealer spyware hawkeye
- Hawkeye family
  hawkeye
behavioral11 behavioral12
- Target
  
  UnityWebPlayerUpdate.exe
- Size
  
  109KB
- MD5
  
  47239eb4a793ea0dc7c283a71f401493
- SHA1
  
  646c4ea410906e8b42a0699a089c18efbbbc145e
- SHA256
  
  f4cac82538e1db31d276f6c643a4610d7b614cf9e7f3102f4294f8a29fbe80c8
- SHA512
  
  ce4ba2d2336a1c06254a6b5295c253e4e19989d40981e0228bbddc85730046863835cb57727c63ab60fe5e9f5669785c064262bae31b4becfba63bf1d84e4036
- SSDEEP
  
  1536:s/SzPJCn1TIiVouuOuk06PbYXoKxA2Fp522tG6Seqycnqf:sqz9J8CxA2r524SeqycnC
Score

3^/10

discovery
behavioral13 behavioral14
- Target
  
  mono/2.x.x/mono-1-vc.dll
- Size
  
  2KB
- MD5
  
  bb470a880b48b47e789016f99fbecf3b
- SHA1
  
  fd965abe43de979c8b5518742b94a6fd5de0f4e0
- SHA256
  
  a45723df88058c5fe1df89aa6b451f3b4c561c3e1f05d73a80141174a00798ae
- SHA512
  
  55691b41fac0a04f6ef6967814f43c2768ae4a5f427281d4e7e64302fa3cb554482ceffdfeb8db18f1af19b7243cff990a5e80368b11953e57998e8d476502d6
Score

3^/10

discovery
behavioral15 behavioral16

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11

hawkeyediscoverykeyloggerspywarestealertrojan

behavioral12

hawkeyediscoverykeyloggerspywarestealertrojan

behavioral13

behavioral14

behavioral15

behavioral16