YARAify Scan Results

You are viewing the YARAify database entry for the file with the SHA256 hash 31a1671ff555a6e75efc37154f7b20a954721c95f5cf3e8705adc8374a38c612.

Scan Results


SHA256 hash: 31a1671ff555a6e75efc37154f7b20a954721c95f5cf3e8705adc8374a38c612
File size:108'004 bytes
File download: Original
MIME type:application/x-dosexec
MD5 hash: 2d8464e916a0b6c7ce9fb72228d070e4
SHA1 hash: 3f9b6ac115bc5ac9ce29eab22f7553410e7574eb
SHA3-384 hash: 9e14e5496b21cdf927f691798366fd9c7970cf96704ea02f5a531ae8ed0c44f791f36528f6b8da8982931f835d156073
First seen:2022-11-24 19:46:47 UTC
Last seen:Never
Sightings:1
imphash : 9efb14f05c244ed47adef5719b436a1f
ssdeep : 1536:EDKmoCwVWeyrPkzIYXm2Dz445IcIHtnhZ:EDReVW1UDScI9h
TLSH : T1D2B328CDDBC2ADF2D842727664977336D6FD49690236D663EE04D8220962331E6EB1CC
telfhash :n/a
gimphash :n/a
dhash icon :n/a

Tasks


You can browse the 10 most recent tasks associated with this file blow.

Task Information


Task ID:bb73b42a-6c30-11ed-a71a-42010aa4000b
File name:4740000.dll
Task parameters:ClamAV scan:True
Unpack:False
Share file:True

ClamAV Results


The file matched the following open source and commercial ClamAV rules.

Signature:PUA.Win.Packer.Upack-1
Signature:PUA.Win.Packer.Upack-14
Signature:PUA.Win.Packer.Upack-24
Signature:Win.Packed.Onlinegames-9938969-0

YARA Results


Static Analysis

The following YARA rules matched on the file (static analysis).

Rule name:win_9002_auto
Author:Felix Bilstein - yara-signator at cocacoding dot com
Description:Detects win.9002.
TLP:TLP:WHITE
Repository:malpedia

Unpacker

The following YARA rules matched on the unpacked file.

Unpacked Files


The following files could be unpacked from this sample.