Extended Key Usages
ExtKeyUsageTimeStamping
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
423da041fdf42d79dc3546ec6e8296b1_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
423da041fdf42d79dc3546ec6e8296b1_JaffaCakes118.exe
Resource
win10v2004-20240709-en
Target
423da041fdf42d79dc3546ec6e8296b1_JaffaCakes118
Size
691KB
MD5
423da041fdf42d79dc3546ec6e8296b1
SHA1
b5171a01bac2efef97aad154c5cf9c4b01c2726d
SHA256
f8d3d07208a6c1a3f582e87237d11a3b435b0cc684e6ac56bc8c6fef58a0cb9d
SHA512
49d86bdd3fcf733d2f145980e74453b66a84edf4c6d634ef0dea75ff5315c907f4f3d843d102bd60298d3adbe963db4d5943759960c3f7226a6045fc0b24553f
SSDEEP
12288:oe4axZCfV7PSIxAhDhQaLVC70v8R/m3AZfEpCIifTnlum:DFxc7PSIxAhDPpCpRuwWLifTnUm
resource | yara_rule |
---|---|
sample | modiloader_stage2 |
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.