Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
69875a254c72671100217eb1c9bb9688_JaffaCakes118.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
69875a254c72671100217eb1c9bb9688_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Target
69875a254c72671100217eb1c9bb9688_JaffaCakes118
Size
196KB
MD5
69875a254c72671100217eb1c9bb9688
SHA1
72a474a60e647a110b533056f5866930c96898a3
SHA256
24c3d78368fa8bfa2d57c44492e8e6edbd754e5f37cac4123e245c5f237bc308
SHA512
daa6574af71d01e76ba4d4fa918012930c9946707d412211457f6b2d7f6a2d2371e3aba4edfcd1733ee01776e4351b029c1bf8b83f41304dcc6affe256b0394b
SSDEEP
6144:cvr1LkOhUH8coShbQL6GtgYyV69MgyS7t:or1LkA+zNhsL6G6jFgySJ
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ