Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
9187bcbc4dac444b6184e2023b0b5277_JaffaCakes118.exe
Resource
win7-20240221-en
Target
9187bcbc4dac444b6184e2023b0b5277_JaffaCakes118
Size
678KB
MD5
9187bcbc4dac444b6184e2023b0b5277
SHA1
e8374eca1f679bf14bcd58ef476a8aa0d76b6dca
SHA256
14aaa2dfe851314518582baae84cd36f15cc06e4d93ef99a5e09903a3545b809
SHA512
7c7b11994753e086dcac81926c73da3c36409f82eaca0e7e42cf455b1b3e4db1a676ae22905b36ba31e008daf2e24c517eb96fbf5b8ac513c1ae1a7ecb6a44d0
SSDEEP
12288:NQ+8YcSdcdp7GqDd7o4YINDz6/AAgYShiuFfIihBtwVabCMUA4+6vlF7f:biSmrpDd75d68hiuF5H8abCMUN+YlF7
Processes:
| resource | yara_rule |
|---|---|
| sample | upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE