Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
952cf2bed1f9f0854866d3cef43ad7dc_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
952cf2bed1f9f0854866d3cef43ad7dc_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Target
952cf2bed1f9f0854866d3cef43ad7dc_JaffaCakes118
Size
205KB
MD5
952cf2bed1f9f0854866d3cef43ad7dc
SHA1
b054bcfff2e93aa0f6c55d264bb9d346ea3231a4
SHA256
7d984027afd7ffd4ccdbe6890c1f29d3ce3d24ca3e93bc1233351f2e93e952ff
SHA512
dce30ee96815facd2f50dfe320e24fff7f5c83c7be7f8a72a3183708c736f15a8abba1ad46ced0d6e07d4099be109991d326328b209b39cfd5f8a27d7663623a
SSDEEP
6144:t1MaBwtBdjkbWSUkD5xbUnsXLRg+Rf7bNt0:t13wKiiD5xbX7Rg+Rf7Jt0
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ