YARAify Scan Results

You are viewing the YARAify database entry for the file with the SHA256 hash 77b95e51458015a60c102cc296e484e93b467b8e9c5c4f207163dc4f414bc7bd.

SHA256 hash:	77b95e51458015a60c102cc296e484e93b467b8e9c5c4f207163dc4f414bc7bd
File size:	768'000 bytes
File download:	Original
MIME type:	application/x-dosexec
MD5 hash:	96b6f859ca5628165b11f8a4079b1037
SHA1 hash:	ecfebea2fea304d8dfd4f6d54fa58098d2bd97f5
SHA3-384 hash:	2ac72f49b3962a1efce893b6165e1f9fc8b088255224900b650a55fe0087c59c69bccf0847681f16c9af412909c8ceed
First seen:	2025-12-26 20:44:16 UTC
Last seen:	Never
Sightings:	1
imphash :	5271d5ce8b44dd47bc92563e27585466 Create hunting rule
ssdeep :	12288:vMmCy3/ks81ppWeCyxjPYwMavCr8ZCiG3ZUoukVAhZCqY7jucmm7lBNe:EmCy3K12byxzYwMavK8Z+3+hkjfB
TLSH :	n/a
telfhash :	n/a
gimphash :	n/a
dhash icon :	n/a

There are 1 tasks on YARAify for this particular file. The 10 most recent ones are shown below.

The file matched the following open source and commercial ClamAV rules.

No matches

The following YARA rules matched on the file (static analysis).

Rule name:	CP_Script_Inject_Detector Create hunting rule
Author:	DiegoAnalytics
Description:	Detects attempts to inject code into another process across PE, ELF, Mach-O binaries
TLP:	TLP:WHITE
Repository:	YARAify

Rule name:	DebuggerCheck__API Create hunting rule
Reference:	https://github.com/naxonez/yaraRules/blob/master/AntiDebugging.yara
TLP:	TLP:WHITE

Rule name:	DebuggerException__SetConsoleCtrl Create hunting rule
Reference:	https://github.com/naxonez/yaraRules/blob/master/AntiDebugging.yara
TLP:	TLP:WHITE

Rule name:	golang_bin_JCorn_CSC846 Create hunting rule
Author:	Justin Cornwell
Description:	CSC-846 Golang detection ruleset
TLP:	TLP:WHITE
Repository:	YARAify

The following YARA rules matched on the unpacked file.

Disabled by submitter

The following files could be unpacked from this sample.

Disabled by submitter

2025-12-26 20:44:17 UTC Static: 4 Unpacker: 0 ClamAV: 0