Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
efe85752575d3c5c33d9d55a47c98972_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
efe85752575d3c5c33d9d55a47c98972_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Target
efe85752575d3c5c33d9d55a47c98972_JaffaCakes118
Size
316KB
MD5
efe85752575d3c5c33d9d55a47c98972
SHA1
7dedaa47d1457e136d12e95e8a1160169094a58c
SHA256
dc0a557b66d2ea76840d8ac1c967730389b5e042ba6bad8385254d0f2f80cab3
SHA512
f7d29b55893a77fe81116da7ac54b62bcd36551d9bd8f872fc56828c00332e062b19119c1fd2e415dcdb8f4ed7cd60b36528858ab440dc5cb54d58194ea0c85e
SSDEEP
6144:/JiMpm+TDRlPswEvuB5xJRCSIVnuewQ7hpl15Fojrh+yB/0SjdRtk:/42vRlPsBvmxzC/GQVpvjojV+yBcSjd8
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ