Extended Key Usages
ExtKeyUsageTimeStamping
Behavioral task
behavioral1
Sample
608f98a3283c49e3e92f2b2f7fef9ff6_JaffaCakes118.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
608f98a3283c49e3e92f2b2f7fef9ff6_JaffaCakes118.dll
Resource
win10v2004-20240709-en
Target
608f98a3283c49e3e92f2b2f7fef9ff6_JaffaCakes118
Size
9.0MB
MD5
608f98a3283c49e3e92f2b2f7fef9ff6
SHA1
8ee96554d981c3ee619bdba2e3085d68b12bc7ba
SHA256
0fab8705e7c4281272c13f1970016887bf881b7dbfbcd8b6a606178a2da6c1a3
SHA512
a3f1421a8b609ce44df9feecfbc9dc4761df4cff7678cb376ced14bf07c9cff8b651d09c09bcd8ca3daccc3fdf2f41024ea02c589b2ad543596d20cede570819
SSDEEP
49152:WDzx2I8boQhfD6UDvxvykXk1rBsgyegFKvc4clwYqpCxpCy2RAR5FeA6wcDzx2IW:WDF0DmlCPCGODF0DmHv
resource | yara_rule |
---|---|
sample | family_blackmoon |
ExtKeyUsageTimeStamping
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ