Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
b58b6ca4bb2d85d575f63ad5ccb4a7ef_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
b58b6ca4bb2d85d575f63ad5ccb4a7ef_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Target
b58b6ca4bb2d85d575f63ad5ccb4a7ef_JaffaCakes118
Size
206KB
MD5
b58b6ca4bb2d85d575f63ad5ccb4a7ef
SHA1
079523ee835e1961acdc8a3c61c7e4b021a8dc47
SHA256
e7f7c5f6c6f8adfe87dcd8cb1f27e9f89840b987184351ca3d2841a6d1d20fb0
SHA512
48bd958f997cca4389fc086a03a0e20765dfdc82d5d98b6312181b4d97e6c970f1aa637260af472e2115c5d812dad0f4553bcffe1e9d343afd81eb9e8e2b12ce
SSDEEP
3072:YP/PSUcHQ+yOWkXYn7JBaczSIzdFGDQRQM6yYP1DauS9/zQ7jSgaeM4g/P1/fVPs:W3Sn2OWkXyFpe+VeOQJ0K70eMxxfSfN
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ