aa0e8034558a9ebd9de52b8161fc0b5e060631c3d30ccad3f3955b9610f46f33 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

aa0e8034558a9ebd9de52b8161fc0b5e060631c3d30ccad3f3955b9610f46f33
Size

606KB
MD5

3e9f5948146a69b6618fc0afe5095ea4
SHA1

6e675471fe845cb940f252b69c91b9886706a609
SHA256

aa0e8034558a9ebd9de52b8161fc0b5e060631c3d30ccad3f3955b9610f46f33
SHA512

8a2fd9cdb755be4188bfc97734c1e792bc46756bc0481f5a0bba87d5fa58e126d3e93b89fbed2a4c91e9f2e7e9ab4c3b676b5684367085e573ce23b6ea2525ca
SSDEEP

12288:bL3SZukN9XKMuPyRZPhbQ6rSSTRVAP+rRPtXqWaM+MUWi3RiRr1P1MLfapnhTBpA:bLiZuUtKTgfbXtKP+rL1P22r1PEapn1g

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Swift copy.exe

Files

aa0e8034558a9ebd9de52b8161fc0b5e060631c3d30ccad3f3955b9610f46f33
.rar
Swift copy.exe
.exe windows:4 windows x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 593KB - Virtual size: 593KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 138KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ