Overview

overview

7

Static

static

1

Swift-Copy.exe

windows7-x64

7

Swift-Copy.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Swift-Copy.exe

  • Size

    250KB

  • Sample

    230306-mqjj4sbc3s

  • MD5

    0fcbbeb8d255f58d082dfdf6d412e525

  • SHA1

    2f97f0fa0173128257a384f47f4ff35bf52a8ee1

  • SHA256

    cd5a3db769491e5e9b19fe8f2703456f82dbd128babacf54ac1c494587665f72

  • SHA512

    36b20cd846596aa268c2ccf099c4f88615f88bf63fb905b49d195bb94b6dd017a113082c1d8bd88fe6af2a825e18ea4505d315ee544de62c57badea9e14f8969

  • SSDEEP

    6144:/Ya6qhDgMVhB67CvXsTIINfZmXOTPxyBYAJX4M:/YMGMeqYNAeTEyaX4M

Score
7/10

Malware Config

Targets

    • Target

      Swift-Copy.exe

    • Size

      250KB

    • MD5

      0fcbbeb8d255f58d082dfdf6d412e525

    • SHA1

      2f97f0fa0173128257a384f47f4ff35bf52a8ee1

    • SHA256

      cd5a3db769491e5e9b19fe8f2703456f82dbd128babacf54ac1c494587665f72

    • SHA512

      36b20cd846596aa268c2ccf099c4f88615f88bf63fb905b49d195bb94b6dd017a113082c1d8bd88fe6af2a825e18ea4505d315ee544de62c57badea9e14f8969

    • SSDEEP

      6144:/Ya6qhDgMVhB67CvXsTIINfZmXOTPxyBYAJX4M:/YMGMeqYNAeTEyaX4M

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks