Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
52257a87f13c72e3ebdcb2f4cfcd0a6c.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
52257a87f13c72e3ebdcb2f4cfcd0a6c.exe
Resource
win10v2004-20231215-en
Target
52257a87f13c72e3ebdcb2f4cfcd0a6c
Size
204KB
MD5
52257a87f13c72e3ebdcb2f4cfcd0a6c
SHA1
e1e12801a48d76b4121dc3311b3c90749aeb65fd
SHA256
983559d85fdd6a9f7165f4698372f2bd1f81e1f6c9c99d9535c9c4c3ba289016
SHA512
07bc2ff7ef6f585cf5c12a07f0b8734a43da9a69d18925cf9266cd4ae70cb0b035a9dbe18cea0cb20da51a38de94649692e806dfcce58d9729120769b265402b
SSDEEP
6144:HcPoIqLuz+GChekKdevWTkDulHp5gKAK3c:HMoIYuzkektveU+p57AK3c
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ