YARAify Scan Results

You are viewing the YARAify database entry for the file with the SHA256 hash a51138c909fbd1ae170cd0ea35f73f7d8c0ac3677026a3eacebd0401cb1b8e71.

SHA256 hash:	a51138c909fbd1ae170cd0ea35f73f7d8c0ac3677026a3eacebd0401cb1b8e71
File size:	768'000 bytes
File download:	Original
MIME type:	application/x-dosexec
MD5 hash:	ec4f2245d331fa312937ed9c67ce5f77
SHA1 hash:	534b179903d1bf7ad3c636b845e47b00b617a3f3
SHA3-384 hash:	9645866bfbca799a9f46040958e0e53cc6adc8e1b33ca67ab2ab49022e4d2f2564d210cc828bfeec703e28d9af6496ce
First seen:	2025-12-16 23:34:32 UTC
Last seen:	Never
Sightings:	1
imphash :	5271d5ce8b44dd47bc92563e27585466 Create hunting rule
ssdeep :	12288:VMmCy3fENPW4gYePwe/8A6sPfqcMdJ8ZV3Jtwhq4f3AnHa5ttHOfNA7NZe:2mCy3KW0awet6sPf7Mb8Z3t81ffnN
TLSH :	n/a
telfhash :	n/a
gimphash :	n/a
dhash icon :	n/a

There are 1 tasks on YARAify for this particular file. The 10 most recent ones are shown below.

The file matched the following open source and commercial ClamAV rules.

No matches

The following YARA rules matched on the file (static analysis).

Rule name:	CP_Script_Inject_Detector Create hunting rule
Author:	DiegoAnalytics
Description:	Detects attempts to inject code into another process across PE, ELF, Mach-O binaries
TLP:	TLP:WHITE
Repository:	YARAify

Rule name:	DebuggerCheck__API Create hunting rule
Reference:	https://github.com/naxonez/yaraRules/blob/master/AntiDebugging.yara
TLP:	TLP:WHITE

Rule name:	DebuggerException__SetConsoleCtrl Create hunting rule
Reference:	https://github.com/naxonez/yaraRules/blob/master/AntiDebugging.yara
TLP:	TLP:WHITE

Rule name:	golang_bin_JCorn_CSC846 Create hunting rule
Author:	Justin Cornwell
Description:	CSC-846 Golang detection ruleset
TLP:	TLP:WHITE
Repository:	YARAify

The following YARA rules matched on the unpacked file.

Disabled by submitter

The following files could be unpacked from this sample.

Disabled by submitter

2025-12-16 23:34:32 UTC Static: 4 Unpacker: 0 ClamAV: 0