YARAify Scan Results

You are viewing the YARAify database entry for the file with the SHA256 hash f42a0068d9923e075d0c38bba0efde859c2fd5496b85ea64420a078f977c61c3.

SHA256 hash:	f42a0068d9923e075d0c38bba0efde859c2fd5496b85ea64420a078f977c61c3
File size:	971'230 bytes
File download:	Original
MIME type:	application/x-dosexec
MD5 hash:	a803fcce2d1e6538e779bac9842dd4b2
SHA1 hash:	e452acfd03e0340e8a41582d458b9f1514aff7f1
SHA3-384 hash:	8057228a4e166a3e9168747b8efe3251d23ad3016163c1722235ec07c63c91dc2c3889b020aa41ed48a7bdc6ab116ef3
First seen:	2023-01-25 09:29:49 UTC
Last seen:	Never
Sightings:	1
imphash :	d8b32e731e5438c6329455786e51ab4b Create hunting rule
ssdeep :	3072:MGjhaq5iL0beJQZt32wLji5DlsODxRPNDkjJHzW9hUd56JsuBSjw75W6vfH2i1wf:Hha8iAx+1zwjJHd6vB/75W6Xmwy3cx
TLSH :	T1E5252E15ABF60B26F2F74E34A8AA9914BC32BC92BE01C79D0546464C0C66F51DD72F2F Create hunting rule
telfhash :	n/a
gimphash :	n/a
dhash icon :	n/a

You can browse the 10 most recent tasks associated with this file blow.

The file matched the following open source and commercial ClamAV rules.

Signature:	PUA.Win.Packer.Acprotect-2 Create hunting rule

Signature:	PUA.Win.Packer.Acprotect-3 Create hunting rule

Signature:	PUA.Win.Packer.Acprotect-4 Create hunting rule

Signature:	PUA.Win.Packer.Acprotect-5 Create hunting rule

Signature:	PUA.Win.Packer.AcprotectUltrap-1 Create hunting rule

Signature:	PUA.Win.Packer.AcprotectUltraprotect-1 Create hunting rule

Signature:	PUA.Win.Packer.Embedpe-3 Create hunting rule

Signature:	PUA.Win.Packer.Ep-7 Create hunting rule

Signature:	Win.Malware.Scar-9946848-0 Create hunting rule

Signature:	Win.Trojan.Agent-1192165 Create hunting rule

The following YARA rules matched on the file (static analysis).

Rule name:	meth_get_eip Create hunting rule
Author:	Willi Ballenthin
TLP:	TLP:WHITE
Repository:	yaraify

The following YARA rules matched on the unpacked file.

Disabled by submitter

The following files could be unpacked from this sample.

Disabled by submitter

2023-01-25 09:29:49 UTC Static: 1 Unpacker: 0 ClamAV: 10