Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
40999eeb9f3486d2fdfe31b41363ab01_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
40999eeb9f3486d2fdfe31b41363ab01_JaffaCakes118.exe
Resource
win10v2004-20240709-en
Target
40999eeb9f3486d2fdfe31b41363ab01_JaffaCakes118
Size
241KB
MD5
40999eeb9f3486d2fdfe31b41363ab01
SHA1
a39dd0abef10180f4f891790d9fa843a8f0016ef
SHA256
35ad2750f50ebfd07d3f2224455ec68f297b377fcee597f99d158fabc4ba30f3
SHA512
b51e48e532f7805c5ef80714f3a9f11b8a4031c0033dcdb9839b880d5e5a88533f438db6a9314fed02bbd69628b0cb6fbe7fa9f24c1620c3c36d4921233fdcdb
SSDEEP
6144:GkeENDvTSn2SV/GuhYdViC7X57+nM9Fwi6cakLAqm:GNEND/k/GLPX57+naFwfOlm
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ