Overview

overview

7

Static

static

3

Swift Copy.exe

windows7-x64

7

Swift Copy.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    Swift Copy.exe

  • Size

    273KB

  • Sample

    230719-lb4q3abe6x

  • MD5

    f30ceb259770f1610b1a260eb8ace7fb

  • SHA1

    52acc659712baef11861eb17c3426f4868d4a4a5

  • SHA256

    d8df70587d4b8949c88b3eb4324a66ac4b5b8ce9ea8e236c599431263069aa85

  • SHA512

    cb646f2675c17cb95b9efa74a8bf09ccf9f8aa0e331e0736f44cbbd1f28691016d72f0737dcc2bf1bc47fd25953827cbe5ca187858ea05f7a45639f2df75e9ee

  • SSDEEP

    6144:/Ya6F9TqqF+fVNjLnpSqTSE6JdgdehxYwSbZOPPYBkgom:/YX9TqC+tZL7TSE0dEQxYweOHIlom

Score
7/10

Malware Config

Targets

    • Target

      Swift Copy.exe

    • Size

      273KB

    • MD5

      f30ceb259770f1610b1a260eb8ace7fb

    • SHA1

      52acc659712baef11861eb17c3426f4868d4a4a5

    • SHA256

      d8df70587d4b8949c88b3eb4324a66ac4b5b8ce9ea8e236c599431263069aa85

    • SHA512

      cb646f2675c17cb95b9efa74a8bf09ccf9f8aa0e331e0736f44cbbd1f28691016d72f0737dcc2bf1bc47fd25953827cbe5ca187858ea05f7a45639f2df75e9ee

    • SSDEEP

      6144:/Ya6F9TqqF+fVNjLnpSqTSE6JdgdehxYwSbZOPPYBkgom:/YX9TqC+tZL7TSE0dEQxYweOHIlom

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks