cef2e62993951b11b10aecd28d294e0426a7987058c4f1a49705712ea0402689

Submit
Reports

Overview

overview

Static

static

Swinsian 3...1).dmg

macos-10.15-amd64

Swinsian 3...T].dmg

macos-10.15-amd64

Swinsian 3.../rhash

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3...reader

macos-10.15-amd64

Swinsian 3...sxfuse

macos-10.15-amd64

Swinsian 3...n.html

macos-10.15-amd64

Swinsian 3...s.html

macos-10.15-amd64

Swinsian 3...g.html

macos-10.15-amd64

Swinsian 3...g.html

macos-10.15-amd64

Swinsian 3...s.html

macos-10.15-amd64

Swinsian 3...k.html

macos-10.15-amd64

Analysis

max time kernel
17s
max time network
104s
platform
macos-10.15_amd64
resource
macos-20241106-en
resource tags

arch:amd64arch:i386image:macos-20241106-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
submitted
28/03/2025, 15:47

Sharing

Copy URL

Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

Swinsian 3.0 Preview 5 (1).dmg

Resource

macos-20241106-en

defense_evasion discovery

macos-10.15-amd64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

Swinsian 3.0 Preview 5/Manual install/Swinsian 3.0 Preview 5 [TNT].dmg

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

Swinsian 3.0 Preview 5/Extra/rhash

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libFLAC.dylib

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libGME.dylib

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libavcodec.dylib

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libavformat.dylib

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libavutil.dylib

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libexpat.dylib

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgcrypt.dylib

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgdk_pixbuf-2.0.dylib

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgio.dylib

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libglib-2.0.dylib

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgmodule.dylib

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgmp.dylib

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgnutls.dylib

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgobject.dylib

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgpg-error.dylib

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgpod.dylib

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgthread.dylib

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libhogweed.dylib

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libimobiledevice.dylib

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libintl.dylib

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/MacOS/device_name_reader

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/MacOS/ifuse-osxfuse

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Resources/Swinsian.help/Contents/Resources/English.lproj/Swinsian.html

Resource

macos-20241106-en

defense_evasion

macos-10.15-amd64

1 signatures

150 seconds

Behavioral task

behavioral27

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Resources/Swinsian.help/Contents/Resources/English.lproj/pgs/airtunes.html

Resource

macos-20241101-en

defense_evasion

macos-10.15-amd64

1 signatures

150 seconds

Behavioral task

behavioral28

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Resources/Swinsian.help/Contents/Resources/English.lproj/pgs/folder_watching.html

Resource

macos-20241106-en

defense_evasion

macos-10.15-amd64

1 signatures

150 seconds

Behavioral task

behavioral29

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Resources/Swinsian.help/Contents/Resources/English.lproj/pgs/importing.html

Resource

macos-20241101-en

defense_evasion

macos-10.15-amd64

1 signatures

150 seconds

Behavioral task

behavioral30

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Resources/Swinsian.help/Contents/Resources/English.lproj/pgs/ipods.html

Resource

macos-20241101-en

defense_evasion

macos-10.15-amd64

1 signatures

150 seconds

Behavioral task

behavioral31

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Resources/Swinsian.help/Contents/Resources/English.lproj/pgs/playback.html

Resource

macos-20241106-en

defense_evasion

macos-10.15-amd64

1 signatures

150 seconds

Report Analysis Logs

General

Target

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgmp.dylib
Size

440KB
MD5

44651b3ae8ec3d2421943b4db38de3cd
SHA1

a95bae8a2b87f61b1c3cc41fc417866f1adea718
SHA256

a514e80583366bd464c7bdf85f71b73ad9d38d6d6f67d490caf805f49b34b209
SHA512

db9c3677b3550edd6f8d67544a85553aadd73c66bdb9ef9536070c6bd673c0225ca28e98b2612aaadc561cb60a299affd2adb1081751504bb659888291f4c1a9
SSDEEP

6144:RhhLmqVxtHlBIzTlNvPEutiMFZFZZK8UeXYLS2LpzibZ4919XJw3SCD++h:Rh/dHl8tPF68UoDYf+3j

Score

1^/10

Malware Config

Signatures

Processes

/bin/sh
sh -c "sudo /bin/zsh -c \"/Users/run/Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgmp.dylib\""
1⤵
PID:491

/bin/bash
sh -c "sudo /bin/zsh -c \"/Users/run/Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgmp.dylib\""
1⤵
PID:491

/usr/bin/sudo
sudo /bin/zsh -c "/Users/run/Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgmp.dylib"
1⤵
PID:491
- /bin/zsh
  /bin/zsh -c "/Users/run/Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgmp.dylib"
  2⤵
  PID:496
- /Users/run/Swinsian
  /Users/run/Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgmp.dylib
  2⤵
  PID:496

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads