Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
amd software.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
amd software.exe
Resource
win10v2004-20221111-en
Behavioral task
behavioral3
Sample
icucnv67.msi
Resource
win7-20220812-en
Behavioral task
behavioral4
Sample
icucnv67.msi
Resource
win10v2004-20220812-en
Behavioral task
behavioral5
Sample
icudt67.msi
Resource
win7-20220812-en
Behavioral task
behavioral6
Sample
icudt67.msi
Resource
win10v2004-20220812-en
Target
Amd.zip
Size
6.4MB
MD5
bee2709e1c101e80f8ae4298ecebafe1
SHA1
5aac68d3fdc03abb6a9f3a79d9a706b6d0de4eec
SHA256
0e6f2d58c9c816acc484d8f68e7b9c5e5a650ea92116bd07298e39ee00e5b57e
SHA512
e46a845345f2de5097b96da0954933322e24641e4a851aeae75a60d5c657015259105958570e91832926b2a84a3c05e9a0ba558608838c28e45989dc53cae02d
SSDEEP
98304:jGHUoDWJsY+Y34PSwZD80YDF5njGrN1YDs3yso15Cva0jLWzstCnv:jsD4Bt3wSwj+vyfYDs3e8djLWLv
Processes:
resource | yara_rule |
---|---|
static1/unpack001/amd software.exe | themida |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
CN=Google LLC,O=Google LLC,L=Mountain View,ST=ca,C=US
CN=DigiCert SHA2 Assured ID Code Signing CA,OU=www.digicert.com,O=DigiCert Inc,C=US
CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE