YARAify Scan Results

You are viewing the YARAify database entry for the file with the SHA256 hash b060c692319daeefe131b751847d1f921d2e9a50682081c6f2caf50ba9d53200.

Scan Results

SHA256 hash: b060c692319daeefe131b751847d1f921d2e9a50682081c6f2caf50ba9d53200
File size:14'781'992 bytes
File download: Original
MIME type:application/x-dosexec
MD5 hash: 0aa658f76b6ac306cf4120828bf232df
SHA1 hash: 0bb50999ab6bfdb7ddc8648288e20277c74ac21d
SHA3-384 hash: d926f358302c274d15819e06ec3755983dd064e25d4eb58980ef72bf2bdf5147c5fabbf7d3318ff4a8932fb75d091afa
First seen:2025-11-21 18:57:25 UTC
Last seen:Never
Sightings:1
imphash : 0c40996f6e1e5f2a82b51e9950881bf1
Create hunting rule
ssdeep : 393216:YRF/OiT86xvk7HiMPo7c7rd+ljUxrwn5UcmQMD1u:MrRxvoC/7a0jUxX7h1u
TLSH : T15FE633527C88DBBFD4212770C6419B77529B7A74481018AB6F0C1CB66FB38CDE529B87
Create hunting rule
telfhash :n/a
gimphash :n/a
dhash icon : 848c5454baf47474
Create hunting rule

Tasks

There are 1 tasks on YARAify for this particular file. The 10 most recent ones are shown below.

Task Information

Task ID:eb53e782-c70b-11f0-a73e-42010aa4000b
File name:0aa658f76b6ac306cf4120828bf232df
Task parameters:ClamAV scan:True
Unpack:False
Share file:True

ClamAV Results

The file matched the following open source and commercial ClamAV rules.

Signature:SecuriteInfo.com.Heur.IPZ.1.UNOFFICIAL
Create hunting rule

YARA Results

Static Analysis

The following YARA rules matched on the file (static analysis).

Rule name:PE_Digital_Certificate
Create hunting rule
Author:albertzsigovits
TLP:TLP:WHITE
Repository:
Rule name:ScanStringsInsocks5systemz
Create hunting rule
Author:Byambaa@pubcert.mn
Description:Scans presence of the found strings using the in-house brute force method
TLP:TLP:WHITE
Repository:YARAify

Unpacker

The following YARA rules matched on the unpacked file.

Unpacked Files

The following files could be unpacked from this sample.