Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
2c2a6753274cc28dc6ee6657810260f7_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
2c2a6753274cc28dc6ee6657810260f7_JaffaCakes118.exe
Resource
win10v2004-20240704-en
Target
2c2a6753274cc28dc6ee6657810260f7_JaffaCakes118
Size
236KB
MD5
2c2a6753274cc28dc6ee6657810260f7
SHA1
17016ad2ef7338a5eb2501d8cd4517536ab3ab9c
SHA256
3267b1d53e27c314c293a472aa94fcd8bdf191c0685f3ac76fdea286538daade
SHA512
bb3b43b4f3f4c8264c187d187aca553b775645fc5770d8119a474a6312afdf5fa7991abcb9f22cf81caeef0a71df8e125175d122ef4c12eb9c572b9df2e8cfaa
SSDEEP
6144:b03XFuM4nLSgTh2IcymPCHWIlm1Fa1asHPncBsh8oSki7T/r:bc1udnLSg03ymK2Ilm1F4a4kOhFWX/r
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ