Overview

overview

7

Static

static

3

SWIFT COPY...72.exe

windows7-x64

7

SWIFT COPY...72.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    SWIFT COPY HSBC BANK-97472.exe

  • Size

    424KB

  • Sample

    231103-jrjpqaea9x

  • MD5

    bb2f6f761601354804f42e55b2b8594a

  • SHA1

    70c089ad407452f5f8f781d0ccab08e17293e3f9

  • SHA256

    7adbcdba6b07a49776e4a3b41d67f8f93a400ae6151f7f729ee20bef0eaed9d7

  • SHA512

    ce4871557b56759a657ad0a374cb02c9766c49e0ba6969391a5c8d35214451e6cbf48f3870cd771a031de00dfea5a42aa925e6ad10249884b7c7031a4fb91f02

  • SSDEEP

    12288:/mA3ilmS253dMSoqerY6v1GrXvz3eBFLQ:/265tMSoh/8

Score
7/10

Malware Config

Targets

    • Target

      SWIFT COPY HSBC BANK-97472.exe

    • Size

      424KB

    • MD5

      bb2f6f761601354804f42e55b2b8594a

    • SHA1

      70c089ad407452f5f8f781d0ccab08e17293e3f9

    • SHA256

      7adbcdba6b07a49776e4a3b41d67f8f93a400ae6151f7f729ee20bef0eaed9d7

    • SHA512

      ce4871557b56759a657ad0a374cb02c9766c49e0ba6969391a5c8d35214451e6cbf48f3870cd771a031de00dfea5a42aa925e6ad10249884b7c7031a4fb91f02

    • SSDEEP

      12288:/mA3ilmS253dMSoqerY6v1GrXvz3eBFLQ:/265tMSoh/8

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks