Swift_copy[.]pdf[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Swift_copy.pdf.exe
Size

1.1MB
MD5

fb51b30f148db3ba2f1eae4ce322ad83
SHA1

79afaafeb81b024c32bacad3bcb4483841a5db1a
SHA256

a3725ea9334bec0277fd70f8960e1e54cd9bd96f91eda5b3a30ddaf2b42f1230
SHA512

faa362ea4894994b28f37bed4fd4af52235d1da08f8d029e7b37979a3e2afa5d435bf009d6f81da9d5cd52b1c8e6e8c7bf909333081d83da1362f42e88e96706
SSDEEP

24576:acD/a0IkfrIkf4EVwTqLqTCMQ8HJNIVAhi/ZpU:DbePaVAohp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Swift_copy.pdf.exe

Files

Swift_copy.pdf.exe
.exe windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 974KB - Virtual size: 973KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ