Extended Key Usages
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Behavioral task
behavioral1
Sample
6ddeeb36a6569a8a145e7a85a152a5d2_JaffaCakes118.exe
Resource
win7-20240221-en
Target
6ddeeb36a6569a8a145e7a85a152a5d2_JaffaCakes118
Size
155KB
MD5
6ddeeb36a6569a8a145e7a85a152a5d2
SHA1
29f9bbf8b56429bbbb3ca3d34cbd0100ce2eff25
SHA256
24c9154acd3eb56367df51d49ded984f64b312a048c6c72da24d28577e538116
SHA512
56f20d9457d64e7242f6c26ae0fc880665804853f7ab246e7f2100cfdc9a9863679165e46c7ba184c0033f900fbe3657bf13819299245fd7964d53d720d3c114
SSDEEP
3072:veAiXfLb9Dw86q4VRrV5tidHTY4dvoSGxsfcARUFxZJY11qQNIYK2QnmX0qoutCg:2AiH9xIRHtcokchFxLY11tHKDnooSCs5
Processes:
| resource | yara_rule |
|---|---|
| sample | upx |
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE