Extended Key Usages
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Behavioral task
behavioral1
Sample
4474cda5b219ff7997db09f9bd1bb301_JaffaCakes118.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
4474cda5b219ff7997db09f9bd1bb301_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Target
4474cda5b219ff7997db09f9bd1bb301_JaffaCakes118
Size
198KB
MD5
4474cda5b219ff7997db09f9bd1bb301
SHA1
8dd07bc6769530844777285b16192da1dbeacc57
SHA256
0a8c7815037c68e2373ba2bed9343a88516a8b7ebbc89136167d4eaaf0241edd
SHA512
ecb9f0cf36793e6ab7e5996a43fb6b17d4ce80a22f0eabc10bff08c7a3111708f066e48a191a811eff12c940ea006c3b0a602854f489f59e735e7afe7ded3c6e
SSDEEP
3072:HVKhO5Bb0S69IWtqVJoB9Iu0B0A3p1HYKE8/FgtC3FzFitB4OaQxXnFJyZEXL:kc5NW3d6H4ViFgU3ZA/HJxXvyOL
resource | yara_rule |
---|---|
sample | upx |
Checks for missing Authenticode signature.
resource |
---|
unpack001/out.upx |
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ