Swift Copy[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Swift Copy.exe
Size

885KB
MD5

56c549f58a5599f70ff46119d85e4294
SHA1

60af63e3de940c609929f0101867dd3b2bb2c24c
SHA256

36bd2802a452a2bee1659648b0a4b1de0cde1ebac09d0d5ebe0e2c1189483432
SHA512

23afe59ab921c040aa44412f978c6c9a7c53c9203b767712375d07dbd2189cc9f9051d9eb16fb9510fa0b19439b29c59ab7b4a14a2f4f2fcc895541e014e4137
SSDEEP

24576:W8ZUsk4Zy5lZoZgY8IrRmV9lKyRyBD2qm82YwP0:JZUwklWZghaMTl98d27YwP0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Swift Copy.exe

Files

Swift Copy.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 882KB - Virtual size: 882KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ