Overview

overview

8

Static

static

7

SWA V2.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SWAV2.zip

  • Size

    6.7MB

  • MD5

    208d379e5f8f7d8d05f0cb2ed034a1d0

  • SHA1

    de3f4eb66fea90972f4812636ecda1e9a88e23af

  • SHA256

    05c23da20c882d0070b1dcaa7ac3d05bfce04a4af53bca1753b902fa4239e6f0

  • SHA512

    99fb344b620ca0944edfd9c2092bbfcfe7c8fefda6c46f712656a7a0d23a24aac9f352f9d806b6a24cf49af7de4e15c63e5dba0db75d6926a4c46068cf716f70

  • SSDEEP

    196608:PJ6oiYEZietNBVmDHHzgfJJ1SFT5JogBzxv7M:PBirZiULVmDHERHSFdJo2M

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 2 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • SWAV2.zip
    .zip
  • Guna.UI2.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • Newtonsoft.Json.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • SWA V2.dll
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • SWA V2.exe
    .exe windows:6 windows x64 arch:x64

    f1337675ec6045e5ae28db4638b77208


    Headers

    Imports

    Sections

  • SWA V2.runtimeconfig.json
  • System.Management.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections