Overview

overview

3

Static

static

3

Trial-Rese...in.vbs

windows7-x64

1

Trial-Rese...in.vbs

windows10-2004-x64

1

Trial-Rese...ry.vbs

windows7-x64

1

Trial-Rese...ry.vbs

windows10-2004-x64

1

Trial-Rese....x.exe

windows7-x64

1

Trial-Rese....x.exe

windows10-2004-x64

1

Trial-Rese...ey.exe

windows7-x64

1

Trial-Rese...ey.exe

windows10-2004-x64

1

Trial-Rese...ft.exe

windows7-x64

1

Trial-Rese...ft.exe

windows10-2004-x64

1

Trial-Rese...et.chm

windows7-x64

1

Trial-Rese...et.chm

windows10-2004-x64

1

Trial-Rese...et.exe

windows7-x64

1

Trial-Rese...et.exe

windows10-2004-x64

1

nsane productions.url

windows7-x64

1

nsane productions.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7e7f21e54f3b0d0bc49c1e36ccc82dc7

  • Size

    187KB

  • MD5

    7e7f21e54f3b0d0bc49c1e36ccc82dc7

  • SHA1

    01dbc8e145fe1752360418a16127f5e6f8923296

  • SHA256

    39cb6547594c577f61af044630c2c327561c9cc4e43ba17ce19c6b22bfd305ce

  • SHA512

    94b8878b2c59c2b96941cffdce1d7d95b20d38f151f3b0b115ef6f3541708b537b08d0984e4b5b842804355773a89990b349901a643a81f06b5407bd12cd68c2

  • SSDEEP

    3072:k/7oU+2Bj+Yu6SzHsKqOgqIPbEvHypYTbnsv9+Qlf4OoTFHgoSsd6n:kl+oY6N44AHypunq9+EHoTWolYn

Score
3/10

Malware Config

Signatures

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

Files

  • 7e7f21e54f3b0d0bc49c1e36ccc82dc7
    .rar
  • Trial-Reset/Alcohol_Plugin-src/Alcohol.vbp
  • Trial-Reset/Alcohol_Plugin-src/Alcohol.vbw
  • Trial-Reset/Alcohol_Plugin-src/Plugin.bas
    .vbs
  • Trial-Reset/Alcohol_Plugin-src/Registry.bas
    .vbs
  • Trial-Reset/Plugins/Alcohol 1.x.dll
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections

  • Trial-Reset/Plugins/Empty Key.dll
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections

  • Trial-Reset/Plugins/SlySoft.dll
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections

  • Trial-Reset/Trial-Reset.chm
    .chm
  • Trial-Reset/Trial-Reset.exe
    .exe .ps1 windows:6 windows x86 arch:x86 polyglot


    Headers

    Sections

  • _README.txt
  • nsane productions.url