Swift_Copy[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Swift_Copy.exe
Size

769KB
MD5

f906634cd9a7f7fc0fc1941d1802af8e
SHA1

daa64f7ece1287daf58ac398cb9c58a2064dbc0a
SHA256

e1f05e0397304dd8436638ed0d1a199ce46174bf0b12530f6e3cce41f22a2024
SHA512

c891949060b1db367ac1ba4e3977550f719b8b0b975c3a55cd4f755fb3d1309459ca537e44a107caeb2024d456e31229eb7e1317e03ed6dba5061a8b9ba7e9ee
SSDEEP

12288:ZytsJ8EzhvCevx4DB2+5H/jKM3LhAJ1wiUXwCluGvazvdNctJ505Nx+wI9:1qe60OjTbJq1GK0e5Nx+wg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Swift_Copy.exe

Files

Swift_Copy.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 604KB - Virtual size: 604KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ