Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
Behavioral task
behavioral1
Sample
2024-01-29_ca108d163681bea73587d40eeead97f3_mafia_revil.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
2024-01-29_ca108d163681bea73587d40eeead97f3_mafia_revil.exe
Resource
win10v2004-20231215-en
Target
2024-01-29_ca108d163681bea73587d40eeead97f3_mafia_revil
Size
10.6MB
MD5
ca108d163681bea73587d40eeead97f3
SHA1
702a5a8d73fe4670eb90e4ca4a6a84c8b0766a12
SHA256
8a21db4a5911309c5fb3a693ca577a3f0f151e7a7fd85a993c9d6922b7436762
SHA512
2fe6be8a947d7f08397b0fffeb9d175708568da9ad7bc1afb5496143b935b2054672aa160619c5f030a7da392502f7fba591d70c7e8d4b00ad7b9127a0fc7726
SSDEEP
98304:J3Hymfdaqx06wQ7hMbjFBKZbVsQdf60jpeuqVO/uDNQRfI4+hplRSWYj1mQF+R2Z:J3HynznbjOZbVj60suqiGlcJh3l7
resource | yara_rule |
---|---|
sample | INDICATOR_EXE_Packed_VMProtect |
resource | yara_rule |
---|---|
sample | vmprotect |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
D:\ss_branches\ss_project\trunk\ss_v2.0_cp_privatised\package\pub\client\scp\kernel\system\senseshield.pdb
PathRemoveFileSpecA
freeaddrinfo
DestroyEnvironmentBlock
MiniDumpWriteDump
na_set_logger
SHCreateDirectoryExA
VerQueryValueA
BuildExplicitAccessWithNameA
GetAdaptersInfo
GetProcessMemoryInfo
GetVersion
GetVersionExA
GetSystemTimeAsFileTime
GetModuleFileNameW
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess
ReleaseDC
CreateCompatibleBitmap
CoUninitialize
VariantClear
SetupDiEnumDeviceInterfaces
UuidCreate
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ