5aa044942b7550df69e367310c9228b1_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5aa044942b7550df69e367310c9228b1_JaffaCakes118
Size

204KB
MD5

5aa044942b7550df69e367310c9228b1
SHA1

29ff48c08e266808cb14aef63367676e26eea306
SHA256

daee40a58be8b3b9d5e08083465108d8abe59f6048ed7bcefc12981717d0864e
SHA512

a787e7b5792ec3823742536ebaccedceabfa6acdd970526d3ef9103f9e02398a172e49d6d897536446970710f74a9756ac9f6b353738b837f1098de4b5351eb9
SSDEEP

3072:o0/lrtnw5R5Upj5DyV+oVA2ditvtDyZMQ2lkbd/QXwibf324LuI837MKrPp0gFKQ:xr1wH5U6A2W1yX2lko32tIU7MMdM3g

Score

3^/10

Malware Config

Signatures

Unsigned PE 4 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Trial reset/Plugins/Alcohol 1.x.dll
unpack001/Trial reset/Plugins/Empty Key.dll
unpack001/Trial reset/Plugins/SlySoft.dll
unpack001/Trial reset/Trial-Reset.exe

Files

5aa044942b7550df69e367310c9228b1_JaffaCakes118
.zip
Trial reset/Alcohol_Plugin-src/Alcohol.vbp
Trial reset/Alcohol_Plugin-src/Alcohol.vbw
Trial reset/Alcohol_Plugin-src/Plugin.bas
.vbs
Trial reset/Alcohol_Plugin-src/Registry.bas
.vbs
Trial reset/Plugins/Alcohol 1.x.dll
.exe windows:6 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

LoadLi
Size: 4KB - Virtual size: 1830.1MB

Size: 48KB - Virtual size: 4B

��
Size: - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
Trial reset/Plugins/Empty Key.dll
.exe windows:6 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

LoadLi
Size: 4KB - Virtual size: 1830.1MB

Size: 60KB - Virtual size: 4B

��
Size: - Virtual size:
Trial reset/Plugins/SlySoft.dll
.exe windows:6 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

LoadLi
Size: 4KB - Virtual size: 1830.1MB

Size: 56KB - Virtual size: 4B

��
Size: - Virtual size:

IMAGE_SCN_CNT_INITIALIZED_DATA
Trial reset/Sample/AkaraExeLock320 .txt
Trial reset/Sample/BitsumAll.txt
Trial reset/Sample/EasyGIFAnimator32.txt
Trial reset/Sample/ExeGuard18.txt
Trial reset/Sample/ExeWrapper23.txt
Trial reset/Sample/Exif2htl.txt
Trial reset/Sample/FairBot14.txt
Trial reset/Sample/GoldWave.txt
Trial reset/Sample/NoNamePacker.txt
Trial reset/Sample/RegDefend13.txt
Trial reset/Sample/RegHide.txt
Trial reset/Sample/Reggie.txt
Trial reset/Sample/WinRAR3x.txt
Trial reset/Sample/WinRK2x.txt
Trial reset/Sample/ZipZag173.txt
Trial reset/Trial-Reset.chm
.chm
Trial reset/Trial-Reset.exe
.exe windows:6 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

LoadLi
Size: 4KB - Virtual size: 1830.1MB

Size: 1.1MB - Virtual size: 4B

��
Size: - Virtual size:

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Sections

LoadLi Size: 4KB - Virtual size: 1830.1MB

Size: 48KB - Virtual size: 4B

���� Size: - Virtual size:

Headers

File Characteristics

Sections

LoadLi Size: 4KB - Virtual size: 1830.1MB

Size: 60KB - Virtual size: 4B

���� Size: - Virtual size:

Headers

File Characteristics

Sections

LoadLi Size: 4KB - Virtual size: 1830.1MB

Size: 56KB - Virtual size: 4B

���� Size: - Virtual size:

Headers

File Characteristics

Sections

LoadLi Size: 4KB - Virtual size: 1830.1MB

Size: 1.1MB - Virtual size: 4B

���� Size: - Virtual size:

LoadLi
Size: 4KB - Virtual size: 1830.1MB

��
Size: - Virtual size:

LoadLi
Size: 4KB - Virtual size: 1830.1MB

��
Size: - Virtual size:

LoadLi
Size: 4KB - Virtual size: 1830.1MB

��
Size: - Virtual size:

LoadLi
Size: 4KB - Virtual size: 1830.1MB

��
Size: - Virtual size: