Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
4ac7cbe2cae2adff1bda8a4584069ede_JaffaCakes118.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
4ac7cbe2cae2adff1bda8a4584069ede_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Target
4ac7cbe2cae2adff1bda8a4584069ede_JaffaCakes118
Size
205KB
MD5
4ac7cbe2cae2adff1bda8a4584069ede
SHA1
98e1fe52669471a963a2640c357cf681bcb17f23
SHA256
2bd8f550443897e1bf5bfb1c419659167e7c95a924d175a898e3577f9989330c
SHA512
eeefbdf817c291899478ec01f49e5871d19ef3e1e6dee45fc71def3928fb9b69ec9009ad4abcde3eda471a10baa6344664b9e7c1dea8a67a98494c6f079e9f0d
SSDEEP
6144:AKqQGZ33GYS29XS3FsJeYFLJ5c2uc0RWacLz9iP:vq1Z3S2WoJtuXWa2z9A
| resource | yara_rule |
|---|---|
| sample | upx |
Checks for missing Authenticode signature.
| resource |
|---|
| unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ