Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
956fec1c80c76393e510e64cbf567cd83e61f78aefdde4f89e9934fff2478a48.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
956fec1c80c76393e510e64cbf567cd83e61f78aefdde4f89e9934fff2478a48.exe
Resource
win10v2004-20241007-en
Target
956fec1c80c76393e510e64cbf567cd83e61f78aefdde4f89e9934fff2478a48
Size
328KB
MD5
34b664f4338a425276fd79638279127a
SHA1
6e1ce9a16372d9ebecf9b2ac4918f7a6ac8c7acc
SHA256
956fec1c80c76393e510e64cbf567cd83e61f78aefdde4f89e9934fff2478a48
SHA512
cd7d69ac24cf2554e77725d0286360bb6b4f9f37ef88f203a654e762ea55399dac2bb4110faf4b7c6939204658d917ca573cf0ae41b04a05ce0360055d5e944a
SSDEEP
6144:hcMedZ3FTDSm9PXfrtVNgzSdVr3gRGPKuSUzz1GFrx2ZT37Ylg5R+6Mf2:e9Z3FTDx9PP51T3dPNz0Ft2ZTE6c2
| resource | yara_rule |
|---|---|
| sample | upx |
Checks for missing Authenticode signature.
| resource |
|---|
| unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ