Extended Key Usages
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
Key Usages
KeyUsageCertSign
KeyUsageCRLSign
Behavioral task
behavioral1
Sample
4b0f6dfbadbca4cc720bc911317dbc41_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
4b0f6dfbadbca4cc720bc911317dbc41_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Target
4b0f6dfbadbca4cc720bc911317dbc41_JaffaCakes118
Size
202KB
MD5
4b0f6dfbadbca4cc720bc911317dbc41
SHA1
3811391cd218d5303fd21927cbf6cbd92e8b05a4
SHA256
77b4b49cd7585d0ed9ad160deefb3836aadb3bc944c9c85ca98b924d26421c58
SHA512
1764b7ae90e87f52012b710befd7708a1ce09e303c70314d9ee7dd732bf6ac922b0fdc298ffddfb93c81faa2333ce677a0278518b93cbb0fd67590d8aa52d041
SSDEEP
3072:SuxYhpIkxhwuT+vS5s+2x06Hk7BbiRzmGT7zgjiCHpTd5SPrncxi84btmZW1oEW:S0YhjwuTT396HSjGT7UZ5SPzcxt48ZCW
| resource | yara_rule |
|---|---|
| sample | upx |
Checks for missing Authenticode signature.
| resource |
|---|
| unpack001/out.upx |
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ