YARAify Scan Results

You are viewing the YARAify database entry for the file with the SHA256 hash 24ecde762ddb4d79a36fc7da0f86ebbbd4cc5a042b5302a18287b7978bb03fc3.

SHA256 hash:	24ecde762ddb4d79a36fc7da0f86ebbbd4cc5a042b5302a18287b7978bb03fc3
File size:	749'568 bytes
File download:	Original
MIME type:	application/octet-stream
MD5 hash:	352c881787535f44328c1a28f5b8f3b7
SHA1 hash:	162a1cee023052f0134bfa7083848330822f9d86
SHA3-384 hash:	6260e79c531e55e8c3154239d997117de2e0c2f05ab8ce2f3eb302fa6048f356a9e3ad5f30be3c15be9617dbe96b1882
First seen:	2026-02-11 17:21:54 UTC
Last seen:	Never
Sightings:	1
imphash :	n/a
ssdeep :	12288:MtudwPzheR/shLTUlnbZdL/jmuEKbQTI0tuTOKrC:MLrhehsdUlbrLKuDbX1OKr
TLSH :	n/a
telfhash :	n/a
gimphash :	n/a
dhash icon :	n/a

There are 1 tasks on YARAify for this particular file. The 10 most recent ones are shown below.

The file matched the following open source and commercial ClamAV rules.

No matches

The following YARA rules matched on the file (static analysis).

Rule name:	CP_Script_Inject_Detector Create hunting rule
Author:	DiegoAnalytics
Description:	Detects attempts to inject code into another process across PE, ELF, Mach-O binaries
TLP:	TLP:WHITE
Repository:	YARAify

Rule name:	DebuggerCheck__API Create hunting rule
Reference:	https://github.com/naxonez/yaraRules/blob/master/AntiDebugging.yara
TLP:	TLP:WHITE

Rule name:	DetectEncryptedVariants Create hunting rule
Author:	Zinyth
Description:	Detects 'encrypted' in ASCII, Unicode, base64, or hex-encoded
TLP:	TLP:WHITE
Repository:	YARAify

Rule name:	dgaagas Create hunting rule
Author:	Harshit
Description:	Uses certutil.exe to download a file named test.txt
TLP:	TLP:WHITE
Repository:	YARAify

Rule name:	RANSOMWARE Create hunting rule
Author:	ToroGuitar
TLP:	TLP:WHITE
Repository:	YARAify

The following YARA rules matched on the unpacked file.

Disabled by submitter

The following files could be unpacked from this sample.

Disabled by submitter

2026-02-11 17:21:55 UTC Static: 5 Unpacker: 0 ClamAV: 0