YARAify Scan Results

You are viewing the YARAify database entry for the file with the SHA256 hash 404c1978332bac5b6d10aaef597805c87402679881d820c6a3acec61caa615b0.

Scan Results


SHA256 hash: 404c1978332bac5b6d10aaef597805c87402679881d820c6a3acec61caa615b0
File size:8'192 bytes
File download: Original
MIME type:application/octet-stream
MD5 hash: 2438114d108a4d8279e2ad96befe7ebc
SHA1 hash: 3ba1d92c63adeb0d2560a4702a6fd7cb4f1330c5
SHA3-384 hash: bab02f4c5e519c642b8764bec62a79fef5b72ac002eabda8de8c9996a96658538a2b4cc1fc7c1a1650aa68d7e49f7434
First seen:2022-11-24 19:48:40 UTC
Last seen:2022-11-24 19:48:41 UTC
Sightings:2
imphash :n/a
ssdeep : 96:Emk4ozYLhNsfuUj9Gh8hq2M4XMyoymY0sUWC0Y5SgLTLuiPDxndukSXm5D4UpI7q:ttoMgf9jEh8h2c151Y5LfikDxDJReCR
TLSH : T184F12B9209463367DDA624B0FC1A06CE65DAC7FA07449DFB730D98625FF32E68E74248
telfhash :n/a
gimphash :n/a
dhash icon :n/a

Tasks


You can browse the 10 most recent tasks associated with this file blow.

Task Information


Task ID:fef8d3bc-6c30-11ed-a71a-42010aa4000b
File name:25c0000.shc
Task parameters:ClamAV scan:True
Unpack:False
Share file:True

ClamAV Results


The file matched the following open source and commercial ClamAV rules.

YARA Results


Static Analysis

The following YARA rules matched on the file (static analysis).

Rule name:win_sality_auto
Author:Felix Bilstein - yara-signator at cocacoding dot com
Description:Detects win.sality.
TLP:TLP:WHITE
Repository:malpedia

Unpacker

The following YARA rules matched on the unpacked file.

Unpacked Files


The following files could be unpacked from this sample.

Task Information


Task ID:fefe2590-6c30-11ed-a71a-42010aa4000b
File name:25c0000.corrupt_dll
Task parameters:ClamAV scan:True
Unpack:False
Share file:True

ClamAV Results


The file matched the following open source and commercial ClamAV rules.

YARA Results


Static Analysis

The following YARA rules matched on the file (static analysis).

Rule name:win_sality_auto
Author:Felix Bilstein - yara-signator at cocacoding dot com
Description:Detects win.sality.
TLP:TLP:WHITE
Repository:malpedia

Unpacker

The following YARA rules matched on the unpacked file.

Unpacked Files


The following files could be unpacked from this sample.