General

  • Target

    swift-early-beta.zip

  • Size

    14.5MB

  • MD5

    fd11b362d868da62124931587c070ebc

  • SHA1

    e699f1705f0f7c0964886c28657a7521d8e6f14b

  • SHA256

    3573bd0c41efeef30431665930926c4def4db23b9dc26ba23289e0b267362243

  • SHA512

    1140ff4da0c40717d790234420e1f94e7ce84daf02b4e8a5b044c2acdfac0180c6eb377ae63d7399de59e858a7b6ad9e6883d8e197991930149d156a339ad74d

  • SSDEEP

    393216:/Fi+JngyBc5jjOR0dVyx6Kzv9U5LV616YIV:8CgyBeXXdS1zv9+nV

Score
7/10

Malware Config

Signatures

  • Themida packer 1 IoCs

    Detects Themida, an advanced Windows software protection system.

  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • swift-early-beta.zip
    .zip
  • __MACOSX/._swift-early-beta
  • __MACOSX/swift-early-beta/._.DS_Store
  • __MACOSX/swift-early-beta/._Swift.exe
  • __MACOSX/swift-early-beta/._autoexec
  • __MACOSX/swift-early-beta/._bin
  • __MACOSX/swift-early-beta/._notbin
  • __MACOSX/swift-early-beta/._readme.txt
  • __MACOSX/swift-early-beta/._scripts
  • __MACOSX/swift-early-beta/._workspace
  • __MACOSX/swift-early-beta/bin/._Dll3.dll
  • __MACOSX/swift-early-beta/bin/._injector.exe
  • __MACOSX/swift-early-beta/bin/._settings.json
  • __MACOSX/swift-early-beta/notbin/._exec
  • __MACOSX/swift-early-beta/notbin/._inj
  • __MACOSX/swift-early-beta/notbin/inj/._Swift-Injected-2292
  • swift-early-beta/.DS_Store
  • swift-early-beta/Swift.exe
    .exe windows:6 windows x64 arch:x64

    70a8bc8aa956d69427765807f7cfd3f1


    Headers

    Imports

    Sections

  • swift-early-beta/bin/Dll3.dll
    .dll windows:6 windows x64 arch:x64

    4398ca0a1c9dcd6745271c52d14018f5


    Headers

    Imports

    Exports

    Sections

  • swift-early-beta/bin/injector.exe
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections

  • swift-early-beta/bin/settings.json
  • swift-early-beta/notbin/inj/Swift-Injected-2292
  • swift-early-beta/readme.txt