Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Target
140969-scary-jin.zip
Size
5.5MB
MD5
322b606affd0045261a2a20d36cc11bc
SHA1
2f881617b793637ec8e842901dad3ab29676227b
SHA256
abdaba4b0e3c1a16127833f781db83f6159fa3340f04afaffa5197ec6ea9d896
SHA512
2f698fe0f2f22a071533cdadb026e4e9534ab2075f41bd701df8231c428ee49506154872c393d0b111cf452bf49a13677806b542670207985a72b62b5cc29981
SSDEEP
98304:Q96/tdmrOZ5fdGDfLqMaBEkJMyNAkWs+w7sk/SFlELFsQRQW7yCyGF3iUurqRU5:QQ/tdoW0DfLyBEiMyNwfw7sx+Fsmy3oa
resource | yara_rule |
---|---|
static1/unpack001/140969-scary-jin.exe | upx |
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
CN=WOM (WOM CORPORATION OU),O=WOM (WOM CORPORATION OU),POSTALCODE=10315,STREET=Randla tn 13-201,L=Tallinn,ST=Estonian region,C=EE
CN=Sectigo RSA Code Signing CA,O=Sectigo Limited,L=Salford,ST=Greater Manchester,C=GB
CN=USERTrust RSA Certification Authority,O=The USERTRUST Network,L=Jersey City,ST=New Jersey,C=US
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE