Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
4b00a4c51d0c752ed134b2145553ab45_JaffaCakes118.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
4b00a4c51d0c752ed134b2145553ab45_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Target
4b00a4c51d0c752ed134b2145553ab45_JaffaCakes118
Size
205KB
MD5
4b00a4c51d0c752ed134b2145553ab45
SHA1
95e628b01d0c66eae010d0c7a3c2c513e816d607
SHA256
f9903057fe32662e3cd48f64fba7172ac08523f52771c5a5ae8b6df2c58b8bc4
SHA512
cff7fdecfcc14a4dce77d3b0454df12c3d98347be6afc4da0683735f1e8ce8c147a1fca9f5f4f1bc869272f5eb1636b244464ee323088d9c23641ee819a0c2f8
SSDEEP
6144:/vZ2IZbgekfZLlGGKZp+s8ohYRNudNI6SCG6abNB:/vZ1bge0LMPjpORN8INC7axB
| resource | yara_rule |
|---|---|
| sample | upx |
Checks for missing Authenticode signature.
| resource |
|---|
| unpack001/out.upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ