Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
4adc4488a349ca432c56e05a2f2252cc_JaffaCakes118.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
4adc4488a349ca432c56e05a2f2252cc_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Target
4adc4488a349ca432c56e05a2f2252cc_JaffaCakes118
Size
317KB
MD5
4adc4488a349ca432c56e05a2f2252cc
SHA1
7b3359c437f03a5eb379b55b371fae5a34303585
SHA256
bda26c8585bba6f6d58565facf7814e5488f2715ff7b9c559576dc2edd9737ae
SHA512
4a102e08ef029dacf8d086c9e82ef9e3156e21f2e1ff1f387a4a4e4dd929279cd397828baab4b3a12c558fe49682cae0aabd0abe1b24086cadf40e9c7ffbf35c
SSDEEP
6144:eaG+0uxW6ncmOkK279Aoef2JhfdDivHz+TCgj09vZk1nLNUSM9KriUi/:eCfxWrTkJWfkJTCy09oLpCKrc/
| resource | yara_rule |
|---|---|
| sample | upx |
Checks for missing Authenticode signature.
| resource |
|---|
| unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ