Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
1649c7372ec62cf3e2088602d8f68e64_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
1649c7372ec62cf3e2088602d8f68e64_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Target
1649c7372ec62cf3e2088602d8f68e64_JaffaCakes118
Size
205KB
MD5
1649c7372ec62cf3e2088602d8f68e64
SHA1
41dd4099816510a22aabafa72229c1fcf80cc26e
SHA256
0b7467ac6e1502324601625d26c245f0070c3a7208b898589ddf5eafa5ed08d9
SHA512
65b0c0b24ab2a94909163b4f2b2a0172da7b28b118e22ddb0887a17f785e39cf6c75f9c2e726c1bc2ba06ab3e6026d4979498e84605404ac51accb6b93beff4a
SSDEEP
6144:N0yXtBZbJGMwZdH96WSREd+Y/acdBZBA5eHV:N0y9Bu3d9mEQY/rL4wHV
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ