Overview
overview
10Static
static
1GalaxySwap...al.dll
windows7-x64
1GalaxySwap...al.dll
windows10-2004-x64
1GalaxySwap....3.exe
windows7-x64
3GalaxySwap....3.exe
windows10-2004-x64
10GalaxySwap...xy.dll
windows7-x64
1GalaxySwap...xy.dll
windows10-2004-x64
1GalaxySwap...dk.dll
windows7-x64
1GalaxySwap...dk.dll
windows10-2004-x64
1GalaxySwap...rt.dll
windows7-x64
1GalaxySwap...rt.dll
windows10-2004-x64
1GalaxySwap...nt.dll
windows7-x64
1GalaxySwap...nt.dll
windows10-2004-x64
1GalaxySwap...pr.dll
windows7-x64
1GalaxySwap...pr.dll
windows10-2004-x64
1GalaxySwap...pr.dll
windows7-x64
1GalaxySwap...pr.dll
windows10-2004-x64
1GalaxySwap...gr.dll
windows7-x64
1GalaxySwap...gr.dll
windows10-2004-x64
1GalaxySwap...gr.dll
windows7-x64
1GalaxySwap...gr.dll
windows10-2004-x64
1GalaxySwap...p4.dll
windows7-x64
1GalaxySwap...p4.dll
windows10-2004-x64
1GalaxySwap...re.dll
windows7-x64
1GalaxySwap...re.dll
windows10-2004-x64
1GalaxySwap...re.dll
windows7-x64
1GalaxySwap...re.dll
windows10-2004-x64
1GalaxySwap...st.dll
windows7-x64
1GalaxySwap...st.dll
windows10-2004-x64
1GalaxySwap...re.dll
windows7-x64
1GalaxySwap...re.dll
windows10-2004-x64
1GalaxySwap...ts.dll
windows7-x64
1GalaxySwap...ts.dll
windows10-2004-x64
1Analysis
-
max time kernel
139s -
max time network
139s -
platform
windows10-2004_x64 -
resource
win10v2004-20240611-en -
resource tags
arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system -
submitted
01-07-2024 18:46
Static task
static1
Behavioral task
behavioral1
Sample
GalaxySwapper v2.0.3/AcXtrnal.dll
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
GalaxySwapper v2.0.3/AcXtrnal.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral3
Sample
GalaxySwapper v2.0.3/Galaxy Swapper v2.0.3.exe
Resource
win7-20231129-en
Behavioral task
behavioral4
Sample
GalaxySwapper v2.0.3/Galaxy Swapper v2.0.3.exe
Resource
win10v2004-20240611-en
Behavioral task
behavioral5
Sample
GalaxySwapper v2.0.3/acproxy.dll
Resource
win7-20240611-en
Behavioral task
behavioral6
Sample
GalaxySwapper v2.0.3/acproxy.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral7
Sample
GalaxySwapper v2.0.3/alibabacloud-oss-cpp-sdk.dll
Resource
win7-20240508-en
Behavioral task
behavioral8
Sample
GalaxySwapper v2.0.3/alibabacloud-oss-cpp-sdk.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral9
Sample
GalaxySwapper v2.0.3/com/COMSupport.dll
Resource
win7-20240221-en
Behavioral task
behavioral10
Sample
GalaxySwapper v2.0.3/com/COMSupport.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral11
Sample
GalaxySwapper v2.0.3/com/ColorManagment.dll
Resource
win7-20231129-en
Behavioral task
behavioral12
Sample
GalaxySwapper v2.0.3/com/ColorManagment.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral13
Sample
GalaxySwapper v2.0.3/com/cpr.dll
Resource
win7-20240508-en
Behavioral task
behavioral14
Sample
GalaxySwapper v2.0.3/com/cpr.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral15
Sample
GalaxySwapper v2.0.3/cpr.dll
Resource
win7-20240220-en
Behavioral task
behavioral16
Sample
GalaxySwapper v2.0.3/cpr.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral17
Sample
GalaxySwapper v2.0.3/data/DecoderMgr.dll
Resource
win7-20240611-en
Behavioral task
behavioral18
Sample
GalaxySwapper v2.0.3/data/DecoderMgr.dll
Resource
win10v2004-20240226-en
Behavioral task
behavioral19
Sample
GalaxySwapper v2.0.3/data/DemuxMgr.dll
Resource
win7-20240221-en
Behavioral task
behavioral20
Sample
GalaxySwapper v2.0.3/data/DemuxMgr.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral21
Sample
GalaxySwapper v2.0.3/data/dav2mp4.dll
Resource
win7-20240220-en
Behavioral task
behavioral22
Sample
GalaxySwapper v2.0.3/data/dav2mp4.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral23
Sample
GalaxySwapper v2.0.3/lekeystore.dll
Resource
win7-20240508-en
Behavioral task
behavioral24
Sample
GalaxySwapper v2.0.3/lekeystore.dll
Resource
win10v2004-20240611-en
Behavioral task
behavioral25
Sample
GalaxySwapper v2.0.3/net/FCore.dll
Resource
win7-20240611-en
Behavioral task
behavioral26
Sample
GalaxySwapper v2.0.3/net/FCore.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral27
Sample
GalaxySwapper v2.0.3/net/FFAdvancedColorAdjust.dll
Resource
win7-20240221-en
Behavioral task
behavioral28
Sample
GalaxySwapper v2.0.3/net/FFAdvancedColorAdjust.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral29
Sample
GalaxySwapper v2.0.3/net/FFCore.dll
Resource
win7-20240611-en
Behavioral task
behavioral30
Sample
GalaxySwapper v2.0.3/net/FFCore.dll
Resource
win10v2004-20240508-en
Behavioral task
behavioral31
Sample
GalaxySwapper v2.0.3/net/FFEffectWidgets.dll
Resource
win7-20240611-en
Behavioral task
behavioral32
Sample
GalaxySwapper v2.0.3/net/FFEffectWidgets.dll
Resource
win10v2004-20240226-en
General
-
Target
GalaxySwapper v2.0.3/cpr.dll
-
Size
159KB
-
MD5
7a006dc458d9c9bc4666a0f03d354d3d
-
SHA1
b5a716748ccdc13be07ce8dd249647046273715f
-
SHA256
91e513aed4cefc9cbc8ccd014310e75d5c098c958a23b1ac0780b07170f91f1d
-
SHA512
bd962c90a7d1e928ba8beb974441906aa7966f83fa2a1daf1d72608509df1722573e055c7f1739bf809106670fe05feda1c377c57332cc3d1ff42a6a1fc01666
-
SSDEEP
1536:YiKmyTp0GcE7+RQX868xxUJZCS21b+i67DoK3UuksYHcY3UFY7TPx17PPxdg:Yz5d0vE7+R3dCq1B6D3kXHcY3bfx1Dxy
Malware Config
Signatures
Processes
-
C:\Windows\system32\rundll32.exerundll32.exe "C:\Users\Admin\AppData\Local\Temp\GalaxySwapper v2.0.3\cpr.dll",#11⤵
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=3776,i,6870419347051655189,5491911050420577193,262144 --variations-seed-version --mojo-platform-channel-handle=4124 /prefetch:81⤵