Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
2501fd19b0e7ae94d434e16c281f3a89_JaffaCakes118.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
2501fd19b0e7ae94d434e16c281f3a89_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Target
2501fd19b0e7ae94d434e16c281f3a89_JaffaCakes118
Size
263KB
MD5
2501fd19b0e7ae94d434e16c281f3a89
SHA1
f828800208de4fd529e471f7e920428a4321a9ab
SHA256
e53fa6d6fdcf481ed5e97702adf12525312749ac1b5f5ad95e78e07957f1dbfa
SHA512
4790d2dccde3458626b2e1fb4e4d88ba428f05f1a2ace21b032a65adc52df96aa9e8f198136e0add482863871d972255ba3b244c68d3007d83742e91348cce84
SSDEEP
6144:fL6v8Q/gy51jFA4XG30tFTOpeMtfHAX38jqCun7:uvNTxAuI0epJfO38e7
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ