payment swift[.]r00 | Triage

Submit
Reports

Overview

overview

Static

static

1

payment swift.exe

windows7-x64

payment swift.exe

windows10-2004-x64

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

payment swift.exe

Resource

win7-20230220-en

agenttesla collection keylogger spyware stealer trojan

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

payment swift.exe

Resource

win10v2004-20230220-en

agenttesla collection keylogger spyware stealer trojan

windows10-2004-x64

9 signatures

150 seconds

General

Target

payment swift.r00
Size

738KB
MD5

385cc3f155f279a40f1f0ac2b7988c13
SHA1

e4cc4abf162180c0f3e8e5fd1c582a3280619a6f
SHA256

733d9a1dd0a0d8ba860e9d4fe0edf2b6a33b373b20dc2187625c8f1b44ff7d51
SHA512

4901319bbc579219dcdc9fc7fffb32fdcc2ab5fa5c7970227b592b943daacf3fab8afa2bba3407a3f5ca285d2239dbfe7923bc665189393e0d1dbdbb8412dc67
SSDEEP

12288:4TLgFCjnoE1Ef0wY1csa71J1wWgZ2uXFoizom/dTwN9pm/gWwDikSK9EyY:Yfjno/PY1csoBwYuXFBhd3/gWsEkvY

Score

1^/10

Malware Config

Signatures

Files

payment swift.r00
.rar
payment swift.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 1003KB - Virtual size: 1003KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2024

Terms | Privacy