Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
a88afe903482a7f4db52216e85aafa81_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
a88afe903482a7f4db52216e85aafa81_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Target
a88afe903482a7f4db52216e85aafa81_JaffaCakes118
Size
208KB
MD5
a88afe903482a7f4db52216e85aafa81
SHA1
ac8a193c2ac8e4ae2360857ec2e9dc7ca1042fa3
SHA256
6007455be932c6923f17989d53c76c1c3b7c294c997cc8813947c48123d4431f
SHA512
9a1ea797be6c433cee13771836739add75d90cffe3539503a5268c9ca3d54a9842e11a52bc59dc2d1b5172f147752087787026fd472a5b9ad48b6d5b5eb8b62e
SSDEEP
6144:lozMw1Zn/OgHRmHwffT39pcJ/TVQ4zZHEai/+cYl:Yn/3vf+xQ4zpBw+9l
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ