Extended Key Usages
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Behavioral task
behavioral1
Sample
07e826d9b16c03c675bbe1349027227e_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
07e826d9b16c03c675bbe1349027227e_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Target
07e826d9b16c03c675bbe1349027227e_JaffaCakes118
Size
200KB
MD5
07e826d9b16c03c675bbe1349027227e
SHA1
aaaf12ea12bb60458178633afe7a58e5713e2faf
SHA256
410c24c39948ec3be8b8e18a95ccd0b1c08a440e35a9734e3cc686a06a156b16
SHA512
a7c6ddd0fe010bd0074119c20e35dd2a4ec7e8ddaee924aa7a754a9420330db447139676dab0dab27e633b3544ceccf5679edf1a963db2b4d544a2a37fa235da
SSDEEP
6144:l7oBtDkJ3abnk6cV+EwmAoBNcX2NOkpwCi21gRQnfRqPQF4kCrVg6:l78AqbaVcmAo7cGNpwCi+eQZrFIpg6
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ