Static task
static1
Behavioral task
behavioral1
Sample
swift copy 00000393999400004049494900.exe
Resource
win7-20241010-en
General
-
Target
e3c93460ccf7d778241415dc52dd476df239eb197f842d65e3b064c99f9f65df
-
Size
299KB
-
MD5
486b539b9362113f1decad5bf16c9057
-
SHA1
652b775ce88e640d34db34480b29a40287075fe7
-
SHA256
e3c93460ccf7d778241415dc52dd476df239eb197f842d65e3b064c99f9f65df
-
SHA512
a5cfe883db36534883ef1d3d1233a87826e3a5bf94d61604f40eb76d3ddbb35de7996136560d0721c63e6c5de917adbd90722a85c8a00c8ea9d9cf7509604832
-
SSDEEP
6144:q7WYpe70HLQ3IvmPWGezCK1OwrKSUd/MNiXuS/Y1IuIBoQeXEX0:q6aDLq/PJUCwO3/MNiBg1SBo7H
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Processes:
resource unpack001/swift copy 00000393999400004049494900.exe
Files
-
e3c93460ccf7d778241415dc52dd476df239eb197f842d65e3b064c99f9f65df.rar
-
swift copy 00000393999400004049494900.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 371KB - Virtual size: 370KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ