YARAify Scan Results

You are viewing the YARAify database entry for the file with the SHA256 hash 65afd57317679928a951a5faa635413b5901b6b2d90b61793dca63bdfe7ebe87.

Scan Results

SHA256 hash: 65afd57317679928a951a5faa635413b5901b6b2d90b61793dca63bdfe7ebe87
File size:101'495 bytes
File download: Original
MIME type:application/vnd.openxmlformats-officedocument.wordprocessingml.document
MD5 hash: 06727aaaa2b893194fe0aaec773caab8
SHA1 hash: fd8a4b7558877ec8b6092b7bc1a1291a319e9f71
SHA3-384 hash: 070364784b02f261491710bfedbf452faf929188e5362558e7c388efeafda2eb78317d093844ce419cdac21d51d31f89
First seen:2026-01-21 16:45:31 UTC
Last seen:Never
Sightings:1
imphash :n/a
ssdeep : 3072:WNVm7rZH1CTmSS+cOghY/YsbUNe8m6jsde0Nb:WNMnZ4ajOggbAef6jmNb
TLSH :n/a
telfhash :n/a
gimphash :n/a
dhash icon :n/a

Tasks

There are 0 tasks on YARAify for this particular file. The 10 most recent ones are shown below.

Task Information

Task ID:99be048b-f6e8-11f0-9df4-42010aa4000b
File name:06727aaaa2b893194fe0aaec773caab8
Task parameters:ClamAV scan:True
Unpack:False
Share file:True

ClamAV Results

The file matched the following open source and commercial ClamAV rules.

YARA Results

Static Analysis

The following YARA rules matched on the file (static analysis).

Rule name:DetectEncryptedVariants
Create hunting rule
Author:Zinyth
Description:Detects 'encrypted' in ASCII, Unicode, base64, or hex-encoded
TLP:TLP:WHITE
Repository:YARAify
Rule name:RANSOMWARE
Create hunting rule
Author:ToroGuitar
TLP:TLP:WHITE
Repository:YARAify
Rule name:telebot_framework
Create hunting rule
Author:vietdx.mb
TLP:TLP:WHITE
Repository:YARAify

Unpacker

The following YARA rules matched on the unpacked file.

Unpacked Files

The following files could be unpacked from this sample.