Extended Key Usages
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Behavioral task
behavioral1
Sample
3caa8862d906a38b2720a70e2e6a8fa1.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
3caa8862d906a38b2720a70e2e6a8fa1.exe
Resource
win10v2004-20231215-en
Target
3caa8862d906a38b2720a70e2e6a8fa1
Size
201KB
MD5
3caa8862d906a38b2720a70e2e6a8fa1
SHA1
0a791752f7132f37d43e73f0f4928b53688f6b0a
SHA256
ca880b17c37e83150d972d9a7b9e836e9aef08f71be1634b929aa454dc4fd1fc
SHA512
878e6325d4a6074dac83ae9fabc6fd0964702c739cf010157eda605dccac922241c8f7224491f207dd02afb4f9c550f93e32ba6f12d29154417cee7274e5db67
SSDEEP
3072:uF6uHgUCMahqqhHBot5SqLgoxxWSjXYMbz4mg5mHoST2W7BUQw51xdPf:uF6OYhHBoLZXYMXymIST2gBQ1xRf
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ