cef2e62993951b11b10aecd28d294e0426a7987058c4f1a49705712ea0402689

Submit
Reports

Overview

overview

Static

static

Swinsian 3...1).dmg

macos-10.15-amd64

Swinsian 3...T].dmg

macos-10.15-amd64

Swinsian 3.../rhash

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3....dylib

macos-10.15-amd64

Swinsian 3...reader

macos-10.15-amd64

Swinsian 3...sxfuse

macos-10.15-amd64

Swinsian 3...n.html

macos-10.15-amd64

Swinsian 3...s.html

macos-10.15-amd64

Swinsian 3...g.html

macos-10.15-amd64

Swinsian 3...g.html

macos-10.15-amd64

Swinsian 3...s.html

macos-10.15-amd64

Swinsian 3...k.html

macos-10.15-amd64

Analysis

max time kernel
92s
max time network
141s
platform
macos-10.15_amd64
resource
macos-20241101-en
resource tags

arch:amd64arch:i386image:macos-20241101-enkernel:19b77alocale:en-usos:macos-10.15-amd64system
submitted
28/03/2025, 15:47

Sharing

Copy URL

Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

Swinsian 3.0 Preview 5 (1).dmg

Resource

macos-20241106-en

defense_evasion discovery

macos-10.15-amd64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

Swinsian 3.0 Preview 5/Manual install/Swinsian 3.0 Preview 5 [TNT].dmg

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

Swinsian 3.0 Preview 5/Extra/rhash

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libFLAC.dylib

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libGME.dylib

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libavcodec.dylib

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libavformat.dylib

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libavutil.dylib

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libexpat.dylib

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgcrypt.dylib

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgdk_pixbuf-2.0.dylib

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgio.dylib

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libglib-2.0.dylib

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgmodule.dylib

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgmp.dylib

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral16

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgnutls.dylib

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgobject.dylib

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgpg-error.dylib

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgpod.dylib

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgthread.dylib

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral21

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libhogweed.dylib

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral22

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libimobiledevice.dylib

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libintl.dylib

Resource

macos-20241101-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/MacOS/device_name_reader

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral25

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/MacOS/ifuse-osxfuse

Resource

macos-20241106-en

macos-10.15-amd64

0 signatures

150 seconds

Behavioral task

behavioral26

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Resources/Swinsian.help/Contents/Resources/English.lproj/Swinsian.html

Resource

macos-20241106-en

defense_evasion

macos-10.15-amd64

1 signatures

150 seconds

Behavioral task

behavioral27

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Resources/Swinsian.help/Contents/Resources/English.lproj/pgs/airtunes.html

Resource

macos-20241101-en

defense_evasion

macos-10.15-amd64

1 signatures

150 seconds

Behavioral task

behavioral28

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Resources/Swinsian.help/Contents/Resources/English.lproj/pgs/folder_watching.html

Resource

macos-20241106-en

defense_evasion

macos-10.15-amd64

1 signatures

150 seconds

Behavioral task

behavioral29

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Resources/Swinsian.help/Contents/Resources/English.lproj/pgs/importing.html

Resource

macos-20241101-en

defense_evasion

macos-10.15-amd64

1 signatures

150 seconds

Behavioral task

behavioral30

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Resources/Swinsian.help/Contents/Resources/English.lproj/pgs/ipods.html

Resource

macos-20241101-en

defense_evasion

macos-10.15-amd64

1 signatures

150 seconds

Behavioral task

behavioral31

Sample

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Resources/Swinsian.help/Contents/Resources/English.lproj/pgs/playback.html

Resource

macos-20241106-en

defense_evasion

macos-10.15-amd64

1 signatures

150 seconds

Report Analysis Logs

General

Target

Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgobject.dylib
Size

296KB
MD5

f450ecc45fec52e26a904f5be29b6ace
SHA1

c4fd8f92af9598b48125184ee4b62953d90586c2
SHA256

250e071bb20410e6062c236e712d57c7d234f6f1dd2d93bbd06218e0374f4f55
SHA512

c482bc6be584366b220da9bdd9db8f1b65e15d21b5f6bb7094af7f5a87d4a88e610090189f3c8a0d991d88b0a4476624531f3496ba7e6cb5512c51e68b0aaeaa
SSDEEP

6144:Tllcpbl0rg4xh135myXuaouh02HyXzlkQpe5LhmiVkrsPNu:QpbfU7Xuluh02MRg5ys1

Score

1^/10

Malware Config

Signatures

Processes

/bin/sh
sh -c "sudo /bin/zsh -c \"/Users/run/Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgobject.dylib\""
1⤵
PID:484

/bin/bash
sh -c "sudo /bin/zsh -c \"/Users/run/Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgobject.dylib\""
1⤵
PID:484

/usr/bin/sudo
sudo /bin/zsh -c "/Users/run/Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgobject.dylib"
1⤵
PID:484
- /bin/zsh
  /bin/zsh -c "/Users/run/Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgobject.dylib"
  2⤵
  PID:487
- /Users/run/Swinsian
  /Users/run/Swinsian 3.0 Preview 5/Swinsian.app/Contents/Frameworks/libgobject.dylib
  2⤵
  PID:487

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads