YARAify Scan Results

You are viewing the YARAify database entry for the file with the SHA256 hash 8320945692734eef7400cdf62ee2cc690a9ca9286a5f2e8e43b21a7eaefd55b3.

Scan Results

SHA256 hash: 8320945692734eef7400cdf62ee2cc690a9ca9286a5f2e8e43b21a7eaefd55b3
File size:109'083 bytes
File download: Original
MIME type:text/html
MD5 hash: b8f681ae98c8f3ee808a68eaed7bc36f
SHA1 hash: 1caa5481969325a39a1f73ab06586c5239cc4edc
SHA3-384 hash: 6baf454a8619e1a0f82091e948447e8d02e204c958504244b1bdb80eff08da62952146268abd5d5e3a18f7603b76e8ca
First seen:2026-06-08 20:02:04 UTC
Last seen:2026-06-08 20:05:01 UTC
Sightings:4
imphash :n/a
ssdeep : 3072:QB8jrtaRCJ1z4XZ7LIOmPjnuVanEupZDy7c/Al8nsN0:QtZwD1
TLSH :n/a
telfhash :n/a
gimphash :n/a
dhash icon :n/a

Tasks

There are 4 tasks on YARAify for this particular file. The 10 most recent ones are shown below.

Task Information

Task ID:54d115e9-6375-11f1-a8a0-42010aa4000b
File name:8320945692734eef7400cdf62ee2cc690a9ca9286a5f2e8e43b21a7eaefd55b3.html
Task parameters:ClamAV scan:True
Unpack:True
Share file:True

ClamAV Results

The file matched the following open source and commercial ClamAV rules.

YARA Results

Static Analysis

The following YARA rules matched on the file (static analysis).

Rule name:Sus_CMD_Powershell_Usage
Create hunting rule
Author:XiAnzheng
Description:May Contain(Obfuscated or no) Powershell or CMD Command that can be abused by threat actor(can create FP)
TLP:TLP:WHITE
Repository:YARAify

Unpacker

The following YARA rules matched on the unpacked file.

Unpacked Files

The following files could be unpacked from this sample.

Task Information

Task ID:31998d75-6375-11f1-a8a0-42010aa4000b
File name:8320945692734eef7400cdf62ee2cc690a9ca9286a5f2e8e43b21a7eaefd55b3.html
Task parameters:ClamAV scan:True
Unpack:True
Share file:True

ClamAV Results

The file matched the following open source and commercial ClamAV rules.

YARA Results

Static Analysis

The following YARA rules matched on the file (static analysis).

Rule name:Sus_CMD_Powershell_Usage
Create hunting rule
Author:XiAnzheng
Description:May Contain(Obfuscated or no) Powershell or CMD Command that can be abused by threat actor(can create FP)
TLP:TLP:WHITE
Repository:YARAify

Unpacker

The following YARA rules matched on the unpacked file.

Unpacked Files

The following files could be unpacked from this sample.

Task Information

Task ID:0e01def9-6375-11f1-a8a0-42010aa4000b
File name:8320945692734eef7400cdf62ee2cc690a9ca9286a5f2e8e43b21a7eaefd55b3.html
Task parameters:ClamAV scan:True
Unpack:True
Share file:True

ClamAV Results

The file matched the following open source and commercial ClamAV rules.

YARA Results

Static Analysis

The following YARA rules matched on the file (static analysis).

Rule name:Sus_CMD_Powershell_Usage
Create hunting rule
Author:XiAnzheng
Description:May Contain(Obfuscated or no) Powershell or CMD Command that can be abused by threat actor(can create FP)
TLP:TLP:WHITE
Repository:YARAify

Unpacker

The following YARA rules matched on the unpacked file.

Unpacked Files

The following files could be unpacked from this sample.

Task Information

Task ID:eb665dfa-6374-11f1-a8a0-42010aa4000b
File name:8320945692734eef7400cdf62ee2cc690a9ca9286a5f2e8e43b21a7eaefd55b3.html
Task parameters:ClamAV scan:True
Unpack:True
Share file:True

ClamAV Results

The file matched the following open source and commercial ClamAV rules.

YARA Results

Static Analysis

The following YARA rules matched on the file (static analysis).

Rule name:Sus_CMD_Powershell_Usage
Create hunting rule
Author:XiAnzheng
Description:May Contain(Obfuscated or no) Powershell or CMD Command that can be abused by threat actor(can create FP)
TLP:TLP:WHITE
Repository:YARAify

Unpacker

The following YARA rules matched on the unpacked file.

Unpacked Files

The following files could be unpacked from this sample.