Static task
static1
Behavioral task
behavioral1
Sample
TT SWIFT COPY $37,000.00.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
TT SWIFT COPY $37,000.00.exe
Resource
win10v2004-20230220-en
General
-
Target
TT SWIFT COPY $37,000.00.zip
-
Size
507KB
-
MD5
ea3f3a0c8e12bc153f91c2872c5a8442
-
SHA1
eb72c8a0b22e361e0c1bba552db1a56ad6d0ea91
-
SHA256
db21d3b937591adbc97ed7470468fe89e1163859ea6fa6aad1180ebbadc4466e
-
SHA512
27e64c37ec34a9b45f6fad9e20f8cb40b03bc3ff48791a4d3ea0ef3b79aecd7804a325cee46d478b5b0f24bbdc4310aa42d2b7c53348b2550660e0fe991706c7
-
SSDEEP
12288:Q9XaGEE2LKfIL2hTmiJoMDdFqv9626Gm7okH10:+azqhTJzdFq162Sk80
Malware Config
Signatures
Files
-
TT SWIFT COPY $37,000.00.zip.zip
-
TT SWIFT COPY $37,000.00.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 719KB - Virtual size: 719KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ