Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
2887b300d84bfb5b225e885a515b5a49_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
2887b300d84bfb5b225e885a515b5a49_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Target
2887b300d84bfb5b225e885a515b5a49_JaffaCakes118
Size
328KB
MD5
2887b300d84bfb5b225e885a515b5a49
SHA1
02959cd48e3ad5d06e136d1a84bfe5948ea0e518
SHA256
d6d1a749a48e1989f6df9518a76d38f32bc27829aa83b1bc013708b6b692b3b4
SHA512
8345deed9f786a357628b4d3abc4f6c2cfdfd81b6766d1ba5afaaaf41a8c25fc858ee298297b94b982a1c4c9ff7037e380c63fbec0aa93caec8f836e4b58d16f
SSDEEP
6144:qcMedZ3FTDSm9PXfrtVNgzSdVr3gRGPKuSUzzrtnuJjQVTs4R38Gqxx:X9Z3FTDx9PP51T3dPNz5nuFE38Nxx
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ