General
-
Target
MT103-Swift.exe
-
Size
332KB
-
Sample
200713-l3jjpzthzx
-
MD5
ff143f71d0e4587e2f48989ef1f0299d
-
SHA1
7e73614061675f7862de68bc74dbcbafde02f487
-
SHA256
95035a7201b03830ecb4d63aca8288e276a5cd7236a164d5df7290f7b2123148
-
SHA512
6d1bc2138730da8d344226841c5dee242889b6acc05c61b30b57518333492968c7019498e1cf1221d524b9e22bb9336ee74cc43779442050bfbeafbc440834bf
Static task
static1
Behavioral task
behavioral1
Sample
MT103-Swift.exe
Resource
win7
Behavioral task
behavioral2
Sample
MT103-Swift.exe
Resource
win10
Malware Config
Targets
-
-
Target
MT103-Swift.exe
-
Size
332KB
-
MD5
ff143f71d0e4587e2f48989ef1f0299d
-
SHA1
7e73614061675f7862de68bc74dbcbafde02f487
-
SHA256
95035a7201b03830ecb4d63aca8288e276a5cd7236a164d5df7290f7b2123148
-
SHA512
6d1bc2138730da8d344226841c5dee242889b6acc05c61b30b57518333492968c7019498e1cf1221d524b9e22bb9336ee74cc43779442050bfbeafbc440834bf
Score8/10-
Adds Run entry to policy start application
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run entry to start application
-
js
-
Suspicious use of SetThreadContext
-