Extended Key Usages
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Behavioral task
behavioral1
Sample
41202700a291fb3925a3c0da3469c089_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
41202700a291fb3925a3c0da3469c089_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Target
41202700a291fb3925a3c0da3469c089_JaffaCakes118
Size
203KB
MD5
41202700a291fb3925a3c0da3469c089
SHA1
2050b054729371acaa963d40321f27a8b7948b2c
SHA256
9b222d7cf8bb44305bcd1cc474ead6977db8efdce13eb7f754ad647a717940b6
SHA512
a99a6bd85e0639d823ae9abcd279487c983a25d750c1a7b550baf8fcf8cd33a6c71b33c7f2b2b0249e94933a9865b7c4d24b57ae92227ec76cf919c8c745791e
SSDEEP
3072:ykkMh68ASc74sjvJV6kDfDAYmjv1y5wg5dD+uoGD3oIeKyoOAEUgl:ykkB+Q9JV3DRw1y576FGDsdBhl
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ