Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
e229cc39a477c92e2d66c10e24abd438_JaffaCakes118.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
e229cc39a477c92e2d66c10e24abd438_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Target
e229cc39a477c92e2d66c10e24abd438_JaffaCakes118
Size
198KB
MD5
e229cc39a477c92e2d66c10e24abd438
SHA1
966c2ee5382315f79b24d1b9d68ab9f12a3b5643
SHA256
7147b3c4e6aaeb0f1aea0e09ccfb16b3a1315145c8b9f6e4680ed45d55a62683
SHA512
32063e7433739603b6e07f80cc5fd084da84a2b99f1a162580131930c045ccf58f096f5d9ac2cd44f79500b2eb541ef45740d9f196f805564cf68b3dc9bf45dd
SSDEEP
6144:3FH2w7eJotYp0WBlkAgZiRULxwUJfALZn89ayT1Mwu7:3HYotudoiRU1wUJfIadx
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ