Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
df9f8dfab816657c002aa893cb91fa27_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
df9f8dfab816657c002aa893cb91fa27_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Target
df9f8dfab816657c002aa893cb91fa27_JaffaCakes118
Size
229KB
MD5
df9f8dfab816657c002aa893cb91fa27
SHA1
18c056bb4045aff193fd4e5e4f4abec8da23cbf5
SHA256
82d21e52026a95e58864ada1226ca08fc3ce68a6e0c91278cc5473716d9b41e2
SHA512
a9739ea7faa5ac09c9d7ddabb458266ba86c8b7595e05dd508e90197317b444b60266b05c94019dbf53e272bacba99490346225fc061f6f10f071962c9357301
SSDEEP
6144:aOryRlmR0msyezC0BAVPZ/JUy6K0ih7q/a:XmR9mzR1BJUyWihm
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ