Extended Key Usages
ExtKeyUsageCodeSigning
Key Usages
KeyUsageDigitalSignature
Behavioral task
behavioral1
Sample
Device/HarddiskVolume5/USERS/Administrator/AppData/Local/Temp/HYDF2AB.tmp.1644086939_permissionsCopy/updates/3.5.5_46010.exe
Resource
win7-20240508-en
Target
3.5.5_46010.exe
Size
2.0MB
MD5
f5f6abd3de579fc72ff366ff51465f93
SHA1
1029fa9840deb853838bee703e15ceba7da9cd40
SHA256
4b0da03a819d6fd43e4632521e98e5b7206343fb88fc84ab120255a9ab530d1a
SHA512
a3f6d361bf9b7dcb50d0fc73f1c962a81d7042c61cf7b511989a1bd71518b23f929aae0bd677f3777913d42db9bb138585a1da4ef28c528cbe819b2dee7df16d
SSDEEP
49152:jZGd9L1Y8nISQ/a7ViQGWGUAqj+Olh75rlQZi3+gd:ML1hISQ/aByKAFOlh75rSZkd
Processes:
resource | yara_rule |
---|---|
static1/unpack001/Device/HarddiskVolume5/USERS/Administrator/AppData/Local/Temp/HYDF2AB.tmp.1644086939_permissionsCopy/updates/3.5.5_46010.exe | upx |
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE