Overview

overview

7

Static

static

1

Swezy.s.Mu....2.exe

windows7-x64

3

Swezy.s.Mu....2.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Swezy.s.Multi.Tool.v9.2.exe

  • Size

    540KB

  • Sample

    230331-ytjj3aed3y

  • MD5

    1dd785001c303c66b654bbbcfcf39b43

  • SHA1

    39d5fcb23bb8ffea6b66a34ceac0533517cfcdf2

  • SHA256

    a5d633dedf1d5b228f419de8ab67f7ccbbcc4306a9800fe0d6ad1e637734f3cc

  • SHA512

    c4094e9d2f729fe763160368bd481546caddc96c3ee42e6cf73f99e504fd780b163f7f19f9b137122ff227237e62943eb087dd72119d6c7503869a4ce253364c

  • SSDEEP

    6144:iBlkZvaF4NTBdV3BTwfi/nojlkgsfZWb0d798aMgLpO7iaGkN:ioSWNTHVu2nojlkgmZWa798aMAIiaT

Score
7/10

Malware Config

Targets

    • Target

      Swezy.s.Multi.Tool.v9.2.exe

    • Size

      540KB

    • MD5

      1dd785001c303c66b654bbbcfcf39b43

    • SHA1

      39d5fcb23bb8ffea6b66a34ceac0533517cfcdf2

    • SHA256

      a5d633dedf1d5b228f419de8ab67f7ccbbcc4306a9800fe0d6ad1e637734f3cc

    • SHA512

      c4094e9d2f729fe763160368bd481546caddc96c3ee42e6cf73f99e504fd780b163f7f19f9b137122ff227237e62943eb087dd72119d6c7503869a4ce253364c

    • SSDEEP

      6144:iBlkZvaF4NTBdV3BTwfi/nojlkgsfZWb0d798aMgLpO7iaGkN:ioSWNTHVu2nojlkgmZWa798aMAIiaT

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks