Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
37ce672f40409bf99741bda69f107907_JaffaCakes118.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
37ce672f40409bf99741bda69f107907_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Target
37ce672f40409bf99741bda69f107907_JaffaCakes118
Size
205KB
MD5
37ce672f40409bf99741bda69f107907
SHA1
2d4b57fde02b79b3dcac97478f4fbb8d38a861ca
SHA256
43382c4fa875c73e4caba7f73e593013caebef518c252bc410d82c2c21fda1ea
SHA512
d3456638d61162140240d270c64b23042853faf3485d397f11ce44d6722bf4242bd1750c666d10d01d9b6a88cf264a76dd67090056620f747cd7bd370da75ff4
SSDEEP
6144:G0yXtBZbJGMwZdH96WSREd+Y/acdBZBA6ow:G0y9Bu3d9mEQY/rL4Jw
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ