hawkeye

General

Target

JaffaCakes118_a56e6726c21288e1e677d23bedc91393
Size

281KB
Sample

250206-a3l5jszlbj
MD5

a56e6726c21288e1e677d23bedc91393
SHA1

3fe0012e58171c30984c439e311487d1586f8495
SHA256

803b3a4c338b73b14fd8cbc047e4e613a6eb43e7241199ba1b3e134b4e397a45
SHA512

122afafe1a57d71a107ea35960460edfe8c9fef276ec958aeafbd2adc3bc2047e7f06be8ae3598df35f09cc497d4e018df5b60b53a9cb2a4457d2e186db0c0fc
SSDEEP

6144:V7P5ujCdSCNRhTs39J/6zaz9QhWK8zXjV23LMc5:rm1oRxs3H9Umhot5

Score

10^/10

Malware Config

Targets

- Target
  
  JaffaCakes118_a56e6726c21288e1e677d23bedc91393
- Size
  
  281KB
- MD5
  
  a56e6726c21288e1e677d23bedc91393
- SHA1
  
  3fe0012e58171c30984c439e311487d1586f8495
- SHA256
  
  803b3a4c338b73b14fd8cbc047e4e613a6eb43e7241199ba1b3e134b4e397a45
- SHA512
  
  122afafe1a57d71a107ea35960460edfe8c9fef276ec958aeafbd2adc3bc2047e7f06be8ae3598df35f09cc497d4e018df5b60b53a9cb2a4457d2e186db0c0fc
- SSDEEP
  
  6144:V7P5ujCdSCNRhTs39J/6zaz9QhWK8zXjV23LMc5:rm1oRxs3H9Umhot5
Score

10^/10

hawkeye discovery keylogger spyware stealer trojan
- HawkEye
  HawkEye is a malware kit that has seen continuous development since at least 2013.
  keylogger trojan stealer spyware hawkeye
- Hawkeye family
  hawkeye
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1

T1012

System Information Discovery

2

T1082

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Hawkeye family

Checks computer location settings

Deletes itself

Executes dropped EXE

Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2