YARAify Scan Results

You are viewing the YARAify database entry for the file with the SHA256 hash d8f773af11ef9d72e4fe5482465afb117979cc4748004d749ceb0f553ecd61b7.

Scan Results

SHA256 hash: d8f773af11ef9d72e4fe5482465afb117979cc4748004d749ceb0f553ecd61b7
File size:88'351 bytes
File download: Original
MIME type:application/x-dosexec
MD5 hash: eee0d50d4b43179c4d7718786f8b0c2d
SHA1 hash: 69def587885a7390b0534b94b69abd7a79f4f020
SHA3-384 hash: f738af8e951f26bce3c0ad40cb1f0e5ab6015c836d8668139e84dd5d881ef39491a0345cf5b4a8e1b52d6e4c0dc519a2
First seen:2026-01-15 15:28:29 UTC
Last seen:Never
Sightings:1
imphash : c552a31531df962b2298e689961d15c2
Create hunting rule
ssdeep : 1536:/gRh6VPamHMiZ4Um6wjGv5ut4qDeEJW9BixrD7rgbY:/g/4PaMZ4Hg5uHDeEJW9Qft
TLSH :n/a
telfhash :n/a
gimphash :n/a
dhash icon : 39f8c486dcd06060
Create hunting rule

Tasks

There are 1 tasks on YARAify for this particular file. The 10 most recent ones are shown below.

Task Information

Task ID:d84cf9c7-f226-11f0-9df4-42010aa4000b
File name:eee0d50d4b43179c4d7718786f8b0c2d
Task parameters:ClamAV scan:True
Unpack:False
Share file:True

ClamAV Results

The file matched the following open source and commercial ClamAV rules.

Signature:SecuriteInfo.com.Win32.Application.Agent.AXY.UNOFFICIAL
Create hunting rule

YARA Results

Static Analysis

The following YARA rules matched on the file (static analysis).

Rule name:DebuggerCheck__API
Create hunting rule
Reference:https://github.com/naxonez/yaraRules/blob/master/AntiDebugging.yara
TLP:TLP:WHITE
Rule name:Detect_NSIS_Nullsoft_Installer
Create hunting rule
Author:Obscurity Labs LLC
Description:Detects NSIS installers by .ndata section + NSIS header string
TLP:TLP:WHITE

Unpacker

The following YARA rules matched on the unpacked file.

Unpacked Files

The following files could be unpacked from this sample.