Automated Malware Analysis - Joe Sandbox Cloud Basic

Threat	Antivirus	Time & Date	Name
HawkEye MailPassView	94%	21.01.2022 01:08:20	ORDER-NEW....pdf.exe
HawkEye Remcos AgentTesla AveMaria MailP	89%	04.01.2022 15:02:12	SW0P9o9ksjpBsnr.exe
HawkEye MailPassView	78%	10.12.2021 14:02:15	SecuriteInfo.com.Trojan.AutoIt.316.10986.exe
HawkEye MailPassView	58%	10.12.2021 13:47:17	SecuriteInfo.com.Trojan.AutoIt.449.29642.exe
HawkEye MailPassView	41%	07.12.2021 18:15:33	5.exe
HawkEye AgentTesla MailPassView SpyEx	76%	07.12.2021 13:33:44	cMXrP6YXvo.exe
Remcos AgentTesla AveMaria HawkEye MailP	76%	07.12.2021 13:33:43	xxTzyGLZx5.exe
HawkEye MailPassView Njrat	100%	18.11.2021 10:12:14	Hpdyv8oO3j.exe
HawkEye MailPassView	27%	05.11.2021 15:20:11	DHL_AWB 65335643399___pdf.exe
HawkEye MailPassView	None	28.10.2021 14:42:07	NEW PO.exe
HawkEye MailPassView	41%	20.10.2021 10:58:22	201021.exe
HawkEye MailPassView	39%	19.10.2021 16:12:20	987421.exe
HawkEye MailPassView	30%	18.10.2021 12:15:12	DHL_AWB 51887788299___pdf.exe
HawkEye MailPassView	33%	13.10.2021 17:07:23	DHL_AWB 518877882999_887755468_pdf.exe
RemCom RemoteAdmin Mimikatz HawkEye Immi	45%	12.10.2021 16:25:11	FAKTURA I PARAGONY.exe
HawkEye MailPassView	None	12.10.2021 10:40:18	DHL_AWB_DOCUMENT_pdf.exe
HawkEye MailPassView	None	12.10.2021 10:30:27	DHL_AWB_DOCUMENT_pdf.exe
RemCom RemoteAdmin Mimikatz HawkEye Immi	33%	12.10.2021 09:27:19	Foreign_Bank Account Details.exe
RemCom RemoteAdmin Mimikatz HawkEye Immi	13%	12.10.2021 04:24:18	Arrival_Notice-AutonotificationimportsEUR-sealandmaersk.com_october2021.vbs
RemCom RemoteAdmin Mimikatz HawkEye Immi	13%	08.10.2021 10:52:16	FACTURA.exe

Windows:

InjectsWrites Registry keysDrops PE FilesHas more than one ProcessHas Email attachmentDisassembly is available

Android: Receives SMS Sends SMS Reboot Native CMD

Common: Generates Internet Traffic Generates HTTP Network Traffic Expired Sample Creates malicious files

Search results for "threatnames:Hawkeye" (limited to max. 20)

Search started

Yara Super Rule creation started