YARAify Scan Results

You are viewing the YARAify database entry for the file with the SHA256 hash aa03ef133817ad1e8f58c6e208cc248da7e035cc683b3f08d6385029c5c231db.

Scan Results

SHA256 hash: aa03ef133817ad1e8f58c6e208cc248da7e035cc683b3f08d6385029c5c231db
File size:484'636 bytes
File download: Original
MIME type:application/x-dosexec
MD5 hash: 0b4e433e9726cf9c1c926facc5a4ed70
SHA1 hash: dc21f7a5ae9531d0c327e45c5b88dcf9d7322e53
SHA3-384 hash: fa95439a0ee019a8da5f860dce90e64c8c850a095ea22f2c8e7183b805d3bd6e61d982348c093b247da03064268d6928
First seen:2025-11-21 02:45:20 UTC
Last seen:Never
Sightings:1
imphash : 63f15802acc982191ba85dbc4f78ca91
Create hunting rule
ssdeep : 6144:FzEVn4twrhYuczz3uqd7sg7xX4tsRb26+DHJ708y8P2m/cd54cZT3f0ixCFH125z:JEV4K23um7sg7Wt93lnP2m/Y54M9X6K
TLSH :n/a
telfhash :n/a
gimphash :n/a
dhash icon : c1dae2f0fc8cecec
Create hunting rule

Tasks

There are 1 tasks on YARAify for this particular file. The 10 most recent ones are shown below.

Task Information

Task ID:1f1bef63-c684-11f0-adeb-42010aa4000b
File name:0b4e433e9726cf9c1c926facc5a4ed70
Task parameters:ClamAV scan:True
Unpack:False
Share file:True

ClamAV Results

The file matched the following open source and commercial ClamAV rules.

YARA Results

Static Analysis

The following YARA rules matched on the file (static analysis).

Rule name:DebuggerCheck__API
Create hunting rule
Reference:https://github.com/naxonez/yaraRules/blob/master/AntiDebugging.yara
TLP:TLP:WHITE
Rule name:DebuggerException__SetConsoleCtrl
Create hunting rule
Reference:https://github.com/naxonez/yaraRules/blob/master/AntiDebugging.yara
TLP:TLP:WHITE
Rule name:PE_Digital_Certificate
Create hunting rule
Author:albertzsigovits
TLP:TLP:WHITE
Repository:

Unpacker

The following YARA rules matched on the unpacked file.

Unpacked Files

The following files could be unpacked from this sample.