Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
60892f7a0a5aa0ff20195cb7d76d7ec2_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
60892f7a0a5aa0ff20195cb7d76d7ec2_JaffaCakes118.exe
Resource
win10v2004-20240709-en
Target
60892f7a0a5aa0ff20195cb7d76d7ec2_JaffaCakes118
Size
241KB
MD5
60892f7a0a5aa0ff20195cb7d76d7ec2
SHA1
64d1e2ff309babde050ed4ca2e472cea68731a04
SHA256
82fa257aab9055cecf6b9c5b80c7bf2fe6ad2e5283bc2b50461c9668ad0e1c98
SHA512
e84cc20a42be8b965762870cea6423ad63370536b78a04f0680e41cd2438b5b035b1357ff67dd2e9c4ef55fd6ce08e3df2c124e9634493ea4c346a67a7ad66e8
SSDEEP
6144:2keENDvTSn2SV/GuhYdViC7X57+nM/e4uGqc0uTbi:2NEND/k/GLPX57+naeNGqc0Cbi
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ