Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
ebeae7bc3ec7cdfe35208f6afd5d1a27_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
ebeae7bc3ec7cdfe35208f6afd5d1a27_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Target
ebeae7bc3ec7cdfe35208f6afd5d1a27_JaffaCakes118
Size
241KB
MD5
ebeae7bc3ec7cdfe35208f6afd5d1a27
SHA1
8a45fe2bad5fb74337b6487d2279dd29497ce826
SHA256
cc50ae80b24d854a6b3c3cf060846c17011ff5e1584878c5f336092cae8181a9
SHA512
4b4a6a5c81b34d96c1c65ec641bf65b270affbfecd4103d0153df14c9834f876923b1423c05645dc3c7b0fe6e40bdb0f8c432fd6e22dfce787c341a99ef0dd3d
SSDEEP
6144:XkeENDvTSn2SV/GuhYdViC7X57+nM3Omfvb3n6FgM:XNEND/k/GLPX57+n/mnb3n6FgM
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ