YARAify Scan Results

You are viewing the YARAify database entry for the file with the SHA256 hash c401286faeb727113baa31257ca617352eca96a30cd7df7fdd83536077aa19e3.

Scan Results

SHA256 hash: c401286faeb727113baa31257ca617352eca96a30cd7df7fdd83536077aa19e3
File size:104'084 bytes
File download: Original
MIME type:application/x-dosexec
MD5 hash: 7ccf421cbfcc86fa12335136340b3083
SHA1 hash: 48016de42492dcdcbcbe35a209b78a4ab06ad2c9
SHA3-384 hash: 1f39c3506c12980b9327ab5ddcf3309188bda01b0249126a018cf046ed1b506e22302f8318434e897b6bd07ec2a7635d
First seen:2026-01-15 15:29:29 UTC
Last seen:Never
Sightings:1
imphash : 8cdec05f61bb1fe71c4a3d444ea206c8
Create hunting rule
ssdeep : 1536:oZWqY6qOxorXEskXUfI3Hc37Rz5MIv/NWxpKcG4K+peNUcZeR2N4j:oZEO4EF67Rz5nzpGJue84j
TLSH :n/a
telfhash :n/a
gimphash :n/a
dhash icon : 4ecc6e1e4e4cec5c
Create hunting rule

Tasks

There are 1 tasks on YARAify for this particular file. The 10 most recent ones are shown below.

Task Information

Task ID:fbc5df13-f226-11f0-9df4-42010aa4000b
File name:7ccf421cbfcc86fa12335136340b3083
Task parameters:ClamAV scan:True
Unpack:False
Share file:True

ClamAV Results

The file matched the following open source and commercial ClamAV rules.

Signature:Win.Trojan.Agent-1116071
Create hunting rule
Signature:Win.Trojan.Agent-1380545
Create hunting rule

YARA Results

Static Analysis

The following YARA rules matched on the file (static analysis).

Rule name:CAS_Malware_Hunting
Create hunting rule
Author:Michael Reinprecht
Description:DEMO CAS YARA Rules for sample2.exe
TLP:TLP:WHITE
Repository:MalwareBazaar
Rule name:DebuggerCheck__API
Create hunting rule
Reference:https://github.com/naxonez/yaraRules/blob/master/AntiDebugging.yara
TLP:TLP:WHITE

Unpacker

The following YARA rules matched on the unpacked file.

Unpacked Files

The following files could be unpacked from this sample.