Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
279f81a9914950a9decb4420d7e76f8a_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
279f81a9914950a9decb4420d7e76f8a_JaffaCakes118.exe
Resource
win10v2004-20240704-en
Target
279f81a9914950a9decb4420d7e76f8a_JaffaCakes118
Size
236KB
MD5
279f81a9914950a9decb4420d7e76f8a
SHA1
8986134a4c8343dc7b5e226ac781769083f0f1ef
SHA256
b00b22144ac041670695717c9cf3075c463c0bf5669677661e5e7f655f0f9221
SHA512
53461d0c6550ecce1e77dd42c8c899140582953d4d8a718457f56b2b6f79b034e63c31c3424f75e1ce9cd2c89a1f5c5a54733496ebb3b0ef4e5022262e61816e
SSDEEP
6144:103XFuM4nLSgTh2IcymPCHWIlm1Fa1asHPncBxSPGM2dPr2:1c1udnLSg03ymK2Ilm1F4a4kXqGndj2
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ