YARAify Scan Results

You are viewing the YARAify database entry for the file with the SHA256 hash 30b498b339456860d1ea1192e756a721145d84e6fbcd9663683743624af28447.

Scan Results

SHA256 hash: 30b498b339456860d1ea1192e756a721145d84e6fbcd9663683743624af28447
File size:86'926 bytes
File download: Original
MIME type:application/x-dosexec
MD5 hash: 8189c390aee03628c1d7b17ad1ef0c31
SHA1 hash: 4ff7f7a8e61524ef8a07e16f1fa71bde09801f2f
SHA3-384 hash: 1d26eb2ec665c5bc2013669941c7b814187151ab537542f3d0ab78a24cdc5a4f71e4f144d4ff5012fa351be9630e3ebb
First seen:2026-01-15 15:29:08 UTC
Last seen:Never
Sightings:1
imphash : c552a31531df962b2298e689961d15c2
Create hunting rule
ssdeep : 1536:/gRh6VPamHMiZ4Um6wjGv5ut4qDeEJW9BixrD7rgbo:/g/4PaMZ4Hg5uHDeEJW9Qfn
TLSH :n/a
telfhash :n/a
gimphash :n/a
dhash icon : 39f8c486dcd06060
Create hunting rule

Tasks

There are 1 tasks on YARAify for this particular file. The 10 most recent ones are shown below.

Task Information

Task ID:ef71aeef-f226-11f0-9df4-42010aa4000b
File name:8189c390aee03628c1d7b17ad1ef0c31
Task parameters:ClamAV scan:True
Unpack:False
Share file:True

ClamAV Results

The file matched the following open source and commercial ClamAV rules.

Signature:SecuriteInfo.com.Win32.Application.Agent.AXY.UNOFFICIAL
Create hunting rule

YARA Results

Static Analysis

The following YARA rules matched on the file (static analysis).

Rule name:DebuggerCheck__API
Create hunting rule
Reference:https://github.com/naxonez/yaraRules/blob/master/AntiDebugging.yara
TLP:TLP:WHITE
Rule name:Detect_NSIS_Nullsoft_Installer
Create hunting rule
Author:Obscurity Labs LLC
Description:Detects NSIS installers by .ndata section + NSIS header string
TLP:TLP:WHITE

Unpacker

The following YARA rules matched on the unpacked file.

Unpacked Files

The following files could be unpacked from this sample.