Static task
static1
Behavioral task
behavioral1
Sample
Swift Copy.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
Swift Copy.exe
Resource
win10v2004-20240226-en
General
-
Target
Swift Copy.exe
-
Size
688KB
-
MD5
0fa4032ed284b81ff95c3f6886ebf6cb
-
SHA1
88e5e8dbeede71c2b85a5c3dea55813370f0e2dd
-
SHA256
b8b0ef5e1eca2de4e4431daab1ca28c7c00bbf0cd13c8e7647746acf57fea206
-
SHA512
08dddead6d590d1dc01245cf79c25eb238a36a96fafa2fea6fa90cb16b01946bfd07beb0b73b22a3815d84ea1f110039b498103ada07c731068dc2b90cf255c8
-
SSDEEP
12288:mEhcLGkR10zrZIWZFuWf5sjJVMaIH4CQSF86CEUcR2RSR8pHqmB+pxYCRxokL/Bj:RcLGkk6WrPf5sjzVIHHtEi45+fRxxJj
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Swift Copy.exe
Files
-
Swift Copy.exe.exe windows:4 windows x64 arch:x64
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Sections
.text Size: 682KB - Virtual size: 681KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ