Malicious
Malicious

94bd25efad5ff7b092139bc068abf0b1.SWIFT COPY.exe

AutoIt Compiled Script
|
MD5: 94bd25efad5ff7b092139bc068abf0b1
|
Size: 1.19 MB
|
application/x-dosexec

Print
Infection Chain
Summary by MalvaGPT
Characteristics
Hash
 Hash Value
MD5
94bd25efad5ff7b092139bc068abf0b1
Sha1
e411ebd3c7dcd3775e8c306fb5e79cefd84d455b
Sha256
71e7c57e81b21e39e4279230e92102f606aa2b6a75c82d14186018bfc750439d
Sha384
202a1ab6d58aa6b924639fe68561aa2ab42659dc38e6ff5a475e0e7ac9f87a1c21ed6997f3aec36d46213eb88f3e6f9e
Sha512
f49bd670e8e0906c7222c3ed049c56c81fca5166378a690471c8ef9f7e8a4d701ce39e15fbe811c5b309b45c7f80bef365366cdfd943dc845167f1cdf86d80c8
SSDeep
24576:Itb20pkaCqT5TBWgNQ7auSo61Uy7zaXn6A:RVg5tQ7auSDyyK5
TLSH
0C45D01273DE8361C3B25273BA267701AEBF782506B1F56B2FD4093DF920162525EA73

PeID

Microsoft Visual C++ 6.0 DLL (Debug)
Microsoft Visual C++ 7.0 - 8.0
Microsoft Visual C++ 8
Microsoft Visual C++ 8
Microsoft Visual C++ v6.0 DLL
VC8 -> Microsoft Corporation
File Structure
94bd25efad5ff7b092139bc068abf0b1.SWIFT COPY.exe
Malicious
aut7218.tmp.tok
Malicious
[Cleaned].au3
Malicious
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:2057
ID:0002
ID:2057
ID:0003
ID:2057
ID:0004
ID:2057
ID:0005
ID:2057
ID:0006
ID:2057
ID:0007
ID:2057
ID:0008
ID:2057
ID:0009
ID:2057
RT_STRING
ID:0007
ID:2057
ID:0008
ID:2057
ID:0009
ID:2057
ID:000A
ID:2057
ID:000B
ID:2057
ID:000C
ID:2057
ID:0139
ID:2057
RT_RCDATA
ID:0000
ID:0
RT_GROUP_CURSOR4
ID:0063
ID:2057
ID:00A9
ID:2057
RT_VERSION
ID:0001
ID:2057
RT_MANIFEST
ID:0001
ID:2057
94bd25efad5ff7b092139bc068abf0b1.SWIFT COPY.exe (1.19 MB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙