Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
Behavioral task
behavioral1
Sample
JaffaCakes118_eb44bfea15585a4d23b8bcb84c9ba166bf2c0d301dc1d2a1edc597892381738a.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
JaffaCakes118_eb44bfea15585a4d23b8bcb84c9ba166bf2c0d301dc1d2a1edc597892381738a.exe
Resource
win10v2004-20241007-en
Target
JaffaCakes118_eb44bfea15585a4d23b8bcb84c9ba166bf2c0d301dc1d2a1edc597892381738a
Size
778.6MB
MD5
09c6875214def62b316d9d8f40f25742
SHA1
24a317685809eec394720b33090e05a83b0976eb
SHA256
eb44bfea15585a4d23b8bcb84c9ba166bf2c0d301dc1d2a1edc597892381738a
SHA512
7bcca9b57ad0590b766882aa1410899159b09b3ea6d8ff63ce87890db3dc533d4e2b09cad0bb58c46614ef1211b040e1c9bfd92cb44bb69a4d13ceca30269a62
SSDEEP
25165824:1nnnnnnnnnnnnnnnnnnnnnnnnmnnnnnnnnnnnnnnnnnnnnnn:1nnnnnnnnnnnnnnnnnnnnnnnnmnnnnnn
resource | yara_rule |
---|---|
sample | vmprotect |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sleep
GetSystemTimeAsFileTime
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress
CoCreateInstance
VariantInit
CryptStringToBinaryA
CharUpperBuffW
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ