YARAify Scan Results

You are viewing the YARAify database entry for the file with the SHA256 hash 0b09be0d8aa884b26b95a0d13c111da9fb0fdef35a2b79848e5889df3c289d5c.

Scan Results

SHA256 hash: 0b09be0d8aa884b26b95a0d13c111da9fb0fdef35a2b79848e5889df3c289d5c
File size:236'227 bytes
File download: Original
MIME type:application/x-dosexec
MD5 hash: 03b583baa9f5963582d3c73e308e11ea
SHA1 hash: 4996f8b0c7f5b6dd14dfa50a7d87a3ce8bc54997
SHA3-384 hash: 5bb15d67b5f6c49f6b2601bea5c770f91a274d235b72b9fc5328c1fa71f0f0ceb14e9792152175be0f4f4fca770ee4a0
First seen:2025-11-21 19:00:50 UTC
Last seen:Never
Sightings:1
imphash : 09d0478591d4f788cb3e5ea416c25237
Create hunting rule
ssdeep : 3072:/MDCkU0Pj25agjZhUwuxCkKg34um3ZW7zcyEB66tRNy9+ikEV9aUMjIh14t/K:UZxL2vaCk77zZEY69iT3aUMU2C
TLSH :n/a
telfhash :n/a
gimphash :n/a
dhash icon : 818da080a0a0a0a2
Create hunting rule

Tasks

There are 1 tasks on YARAify for this particular file. The 10 most recent ones are shown below.

Task Information

Task ID:65893651-c70c-11f0-a73e-42010aa4000b
File name:03b583baa9f5963582d3c73e308e11ea
Task parameters:ClamAV scan:True
Unpack:False
Share file:True

ClamAV Results

The file matched the following open source and commercial ClamAV rules.

Signature:Win.Trojan.Agent-1353930
Create hunting rule

YARA Results

Static Analysis

The following YARA rules matched on the file (static analysis).

Rule name:pecompact2
Create hunting rule
Author:Kevin Falcoz
Description:PECompact
TLP:TLP:WHITE
Rule name:PECompact2xxBitSumTechnologies
Create hunting rule
Author:malware-lu
TLP:TLP:WHITE
Repository:
Rule name:PECompactV2XBitsumTechnologies
Create hunting rule
Author:malware-lu
TLP:TLP:WHITE
Repository:
Rule name:PECompactv2xx
Create hunting rule
Author:malware-lu
TLP:TLP:WHITE
Repository:

Unpacker

The following YARA rules matched on the unpacked file.

Unpacked Files

The following files could be unpacked from this sample.