Overview

overview

7

Static

static

3

Swift Copy.exe

windows7-x64

7

Swift Copy.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    Swift Copy.exe

  • Size

    273KB

  • Sample

    230719-n66v1seg7v

  • MD5

    05cb3b3b1f0aea5ea1db293d68384165

  • SHA1

    a1d4b2e20fc7c5c83c701a0bff2a881fa967a7e1

  • SHA256

    fba331672fff828156620f2174204ce1e69f0609d5bc6e18991a1834afbacac9

  • SHA512

    5f9760c7d1d02be03ef1a7c3e395dc9a70ef65d6123fd22d204b672d16ccb3306d399c34cbf378cf3b9337197825906be7dd870851ee1df6c87efdab1c8ba23d

  • SSDEEP

    6144:PYa6V/3r2bCBFWr6MIIjTQDsrgqjjl1XUBwDhourNQpc:PYXHGcGRjjLkUhce

Score
7/10

Malware Config

Targets

    • Target

      Swift Copy.exe

    • Size

      273KB

    • MD5

      05cb3b3b1f0aea5ea1db293d68384165

    • SHA1

      a1d4b2e20fc7c5c83c701a0bff2a881fa967a7e1

    • SHA256

      fba331672fff828156620f2174204ce1e69f0609d5bc6e18991a1834afbacac9

    • SHA512

      5f9760c7d1d02be03ef1a7c3e395dc9a70ef65d6123fd22d204b672d16ccb3306d399c34cbf378cf3b9337197825906be7dd870851ee1df6c87efdab1c8ba23d

    • SSDEEP

      6144:PYa6V/3r2bCBFWr6MIIjTQDsrgqjjl1XUBwDhourNQpc:PYXHGcGRjjLkUhce

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks