Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
680a379bdbcaf06406ef868953d5d7df_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
680a379bdbcaf06406ef868953d5d7df_JaffaCakes118.exe
Resource
win10v2004-20240709-en
Target
680a379bdbcaf06406ef868953d5d7df_JaffaCakes118
Size
236KB
MD5
680a379bdbcaf06406ef868953d5d7df
SHA1
3f4a94bc21bda5c9060a1bc42364406709d3811b
SHA256
c6fa8045c2fac17d315d2f4e2eada4d9ebcc7849bb96ab7a676fc68a723d68e7
SHA512
63560509da30ef75191ff1d3480d2d081ce2952736c00efcf0f9fed3abae4db92f274b36303bd89e40a4b1121e77228c66d00bfc5d6eeee9d4ddc7378c370041
SSDEEP
3072:hlELL7XOCw0xQCdMey44tVkZj+8FzB7C1XWLmjPUXiYR8PyqsQSWxJBxTQOG2Jxv:K3kOMeaavF17EP6qyqs2zBhQOGS1tNt
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ