YARAify Scan Results

You are viewing the YARAify database entry for the file with the SHA256 hash 74322ebad87f9bcb81aba0bd86805cf1d7b8dc827188cea884c09adc3dae3f00.

Scan Results

SHA256 hash: 74322ebad87f9bcb81aba0bd86805cf1d7b8dc827188cea884c09adc3dae3f00
File size:245'760 bytes
File download: Original
MIME type:application/octet-stream
MD5 hash: 6a566ebe08c40a194ccf47d86341db05
SHA1 hash: 3519663a5ca2b35df95b2a512fafd9f2c67bdcd6
SHA3-384 hash: eb8772300c51e9522a8cc53ac1c5befb43ae20cfe557d2c444dbefa18ceb73d0dacd3ddf988535d7bd2f99b105be7059
First seen:2026-01-10 10:27:43 UTC
Last seen:Never
Sightings:1
imphash :n/a
ssdeep : 1536:0WpnblAHvopjH7CZWIB9oG6XzCNUP39HqK6MAC+XD6SEZJ1qnP77fQa4:0InpMvopjH7GWIYKyPYKi
TLSH :n/a
telfhash :n/a
gimphash :n/a
dhash icon :n/a

Tasks

There are 1 tasks on YARAify for this particular file. The 10 most recent ones are shown below.

Task Information

Task ID:ffade0db-ee0e-11f0-9df4-42010aa4000b
File name:2703000.shc
Task parameters:ClamAV scan:True
Unpack:False
Share file:True

ClamAV Results

The file matched the following open source and commercial ClamAV rules.

YARA Results

Static Analysis

The following YARA rules matched on the file (static analysis).

Rule name:DetectEncryptedVariants
Create hunting rule
Author:Zinyth
Description:Detects 'encrypted' in ASCII, Unicode, base64, or hex-encoded
TLP:TLP:WHITE
Repository:YARAify
Rule name:meth_peb_parsing
Create hunting rule
Author:Willi Ballenthin
TLP:TLP:WHITE
Repository:YARAify
Rule name:NET
Create hunting rule
Author:malware-lu
TLP:TLP:WHITE
Repository:
Rule name:RANSOMWARE
Create hunting rule
Author:ToroGuitar
TLP:TLP:WHITE
Repository:YARAify
Rule name:Windows_Shellcode_Rdi_eee75d2c
Create hunting rule
Author:Elastic Security
TLP:TLP:WHITE
Repository:elastic

Unpacker

The following YARA rules matched on the unpacked file.

Unpacked Files

The following files could be unpacked from this sample.