Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
2531210f435d40e50bc77ae594bdbc61_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
2531210f435d40e50bc77ae594bdbc61_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Target
2531210f435d40e50bc77ae594bdbc61_JaffaCakes118
Size
241KB
MD5
2531210f435d40e50bc77ae594bdbc61
SHA1
d197ace93a037e643c0c12e93d8b1dc5ee85627c
SHA256
3c0f3ce30b9c01ab874d487e5d5a861652d276ec3e93ea6cdb2e37a2a7715f1f
SHA512
20b2e5dd2356f42ea048c27228135ad027140c99be8bd307e752b26c85c7b8352acb888d6e1f08f43019e4b558ab49c8bfe5cdafe16c9866e239e2d8f2efadcd
SSDEEP
6144:PkeENDvTSn2SV/GuhYdViC7X57+nM+aiiDYwmvF56dUh:PNEND/k/GLPX57+nlafDY559h
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ