Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
Behavioral task
behavioral1
Sample
d3379b78f72c4d706cc5c4d4c2014322dc484c15768abc91c7d3f67f8a7448da.exe
Resource
win7-20220715-en
Target
d3379b78f72c4d706cc5c4d4c2014322dc484c15768abc91c7d3f67f8a7448da
Size
5.9MB
MD5
1a3d56b85808cfd70ce4fc16f08e2985
SHA1
ab0141d6dfc701e63cb4968fcd2ba4026385d064
SHA256
d3379b78f72c4d706cc5c4d4c2014322dc484c15768abc91c7d3f67f8a7448da
SHA512
7ca95f92a280c2d10dab16bfd06dd27baaa91566cc0075ce5a6f15826e4d796e7bd4681c9f74485944d9f95bfec8252711731ce99501f974aaead9acaa489ae1
SSDEEP
98304:UUVNoYm6tPKcqCiHE1hfco1dsFIYoclIb9Ww9Sp4yXu6iwDEsv+wuXA6GbCM7E4e:UUbntPKb9ghfcgsFKdbgwUphXu6iwwFh
Processes:
resource | yara_rule |
---|---|
sample | themida |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE