Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
06e44fc7affb72f45a36845f9ec5e383_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
06e44fc7affb72f45a36845f9ec5e383_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Target
06e44fc7affb72f45a36845f9ec5e383_JaffaCakes118
Size
202KB
MD5
06e44fc7affb72f45a36845f9ec5e383
SHA1
15dd9383ad423499a8aa66f6d0e6c725c72215a5
SHA256
f590affb36531cf876d67cead82974e3ec5a6191ba148621e1b555a5dd104d71
SHA512
91cab923440eb1f05c547fda3d9cbd1d19829f370c97637d8fa453f182d39bb039869a09d0b57cb8f8a6d8528f1c013bac55f2b4c100d6bdabc988b38a70d934
SSDEEP
3072:Vz5V04aH+/F9alhgfDpilQMCqQrZVOpX2kN+whLSMf7qD2pCE:lQ4K+/F9aDg9HMCHlIpXrTdSs+Q
| resource | yara_rule |
|---|---|
| sample | upx |
Checks for missing Authenticode signature.
| resource |
|---|
| unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ