YARAify Scan Results

You are viewing the YARAify database entry for the file with the SHA256 hash 468c3ba004e21b26fcccca5e551b489f038d3c7521fda298da1577b6f97b03ef.

Scan Results


SHA256 hash: 468c3ba004e21b26fcccca5e551b489f038d3c7521fda298da1577b6f97b03ef
File size:280'576 bytes
File download: Original
MIME type:application/vnd.ms-excel
MD5 hash: 77a15806aab70e692c0916aa5e940aeb
SHA1 hash: 0f33ba728abd290a03b3697e84c5e25240b717e3
SHA3-384 hash: 99e4d8a88bf375b7030a27365aa5c04b0e72fec64473be9367dd01d1db6bc938d9a47fd6503ffb758dacd8b692ae13fd
First seen:2022-11-24 19:39:07 UTC
Last seen:Never
Sightings:1
imphash :n/a
ssdeep : 6144:MuBKyYPGn/84e15Xg1VYv3NGn1s7e7BuAh+Dvlq7NywH7Dh2yKqYzRmw:0Ahylq7L3hfY
TLSH : T1BB549D93FB827969C14193741CA387166F61DC029A530B6F334C7A197FF2660DA33A7A
telfhash :n/a
gimphash :n/a
dhash icon :n/a

Tasks


You can browse the 10 most recent tasks associated with this file blow.

Task Information


Task ID:a92d96e5-6c2f-11ed-a71a-42010aa4000b
File name:77a15806aab70e692c0916aa5e940aeb
Task parameters:ClamAV scan:True
Unpack:False
Share file:True

ClamAV Results


The file matched the following open source and commercial ClamAV rules.

YARA Results


Static Analysis

The following YARA rules matched on the file (static analysis).

Rule name:informational_win_ole_protected
Author:Jeff White (karttoon@gmail.com) @noottrak
Description:Identify OLE Project protection within documents.
TLP:TLP:WHITE
Repository:karttoon

Unpacker

The following YARA rules matched on the unpacked file.

Unpacked Files


The following files could be unpacked from this sample.