Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Behavioral task
behavioral1
Sample
53ea1ba86fa87309a2f4cc82c1759892_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
53ea1ba86fa87309a2f4cc82c1759892_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Target
53ea1ba86fa87309a2f4cc82c1759892_JaffaCakes118
Size
456KB
MD5
53ea1ba86fa87309a2f4cc82c1759892
SHA1
cec2659c0a908e8d025a6607763bb9251ad43899
SHA256
fac9606802ad2bfbd5b9c9d6ccc5577872650c16c49bfd23afe4d460da402426
SHA512
3e4be8ffb2871ed9ab12101d2a0af2764140cde3b60e27af956c755e34b29035831bb9549dc728ac01da2a23c91ce02192d081d2a13e7440fcd5da1c46c25572
SSDEEP
6144:cwxTrFQqkWqcxsnS+qwLn2anC57o89YoMCNzfZ7ms:c9VKZyozEs
Processes:
resource | yara_rule |
---|---|
sample | revengerat |
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
C:\CHIP\Release 04\dmr\DMR\obj\Debug\DMR.pdb
_CorExeMain
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ