YARAify Scan Results

You are viewing the YARAify database entry for the file with the SHA256 hash 219498c1d5077ed29790f06bfd8543cc559bd939e7c86f44893c9b63edc740a1.

Scan Results


SHA256 hash: 219498c1d5077ed29790f06bfd8543cc559bd939e7c86f44893c9b63edc740a1
File size:8'192 bytes
File download: Original
MIME type:application/octet-stream
MD5 hash: b92b0ad77771d7df3b46365c97ba5c8e
SHA1 hash: fc7e98bfe2501463c672dc7173b9c3c3dda94906
SHA3-384 hash: ce3cdd990cecbba48062543d6b1852d965f26b2475acd72827e1163cc8aa29116f26fe7151eac10f7de8e8fe010ba962
First seen:2023-01-25 09:30:48 UTC
Last seen:2023-01-25 09:30:48 UTC
Sightings:2
imphash :n/a
ssdeep : 96:WYzrLhNM2mP2wpQcggdxlZim7LnBVJlXlggDMUKWbizc5+g9/hJEk4QkhJEk4Qz:WYXQNP2wHgeeGTGzc5fXJE1QqJE1Qz
TLSH : T12DF108CB098233C2E6B214B0545B86DFF0BAD7FB02448A7BB79462109FF32965E1E644
telfhash :n/a
gimphash :n/a
dhash icon :n/a

Tasks


You can browse the 10 most recent tasks associated with this file blow.

Task Information


Task ID:f396ef6f-9c92-11ed-98c2-42010aa4000b
File name:63e0000.corrupt_dll
Task parameters:ClamAV scan:True
Unpack:False
Share file:True

ClamAV Results


The file matched the following open source and commercial ClamAV rules.

YARA Results


Static Analysis

The following YARA rules matched on the file (static analysis).

Rule name:win_sality_auto
Author:Felix Bilstein - yara-signator at cocacoding dot com
Description:Detects win.sality.
TLP:TLP:WHITE
Repository:malpedia

Unpacker

The following YARA rules matched on the unpacked file.

Unpacked Files


The following files could be unpacked from this sample.

Task Information


Task ID:f3ec74e9-9c92-11ed-98c2-42010aa4000b
File name:63e0000.shc
Task parameters:ClamAV scan:True
Unpack:False
Share file:True

ClamAV Results


The file matched the following open source and commercial ClamAV rules.

YARA Results


Static Analysis

The following YARA rules matched on the file (static analysis).

Rule name:win_sality_auto
Author:Felix Bilstein - yara-signator at cocacoding dot com
Description:Detects win.sality.
TLP:TLP:WHITE
Repository:malpedia

Unpacker

The following YARA rules matched on the unpacked file.

Unpacked Files


The following files could be unpacked from this sample.