Statistics

YARAify produces detailed statistics on files scanned, including associated detections - find the available statistics below.

You can also access Spamhaus's Malware Digest report, based on YARAify data:

File Scans

The chart below shows the number of file scans conducted by YARAify over the past 30 days.

Data Scanned

This chart shows the amount of data scanned in Megabytes over the past 30 days.

API requests

The illustration below documents the number of API requests over the past 30 days.

Most matching YARA rules

YARA rules that matched most on files scanned on YARAify in the past 14 days.

Task countYARA RuleAuthorLast match
120'679golang_bin_JCorn_CSC846Justin Cornwell2025-11-22
111'072vmdetectnex2025-11-22
99'367DebuggerCheck__API2025-11-22
95'439CP_Script_Inject_DetectorDiegoAnalytics2025-11-22
85'751NETmalware-lu2025-11-22
77'567FreddyBearDropperDwarozh Hoshiar2025-11-22
60'700Sus_CMD_Powershell_UsageXiAnzheng2025-11-22
58'916classifiedclassified2025-11-22
53'263MD5_Constantsphoul (@phoul)2025-11-22
46'475DetectEncryptedVariantsZinyth2025-11-22
42'693ThreadControl__Context2025-11-22
41'990SHA1_Constantsphoul (@phoul)2025-11-22
41'990RIPEMD160_Constantsphoul (@phoul)2025-11-22
40'175pe_detect_tls_callbacks2025-11-22
33'100UPXV200V290MarkusOberhumerLaszloMolnarJohnReisermalware-lu2025-11-22

ClamAV Most matching ClamAV signature

ClamAV signature that matched most on files scanned on YARAify in the past 14 days.

Task countClamAV SignatureLast match
42'383Porcupine.Malware.60561.UNOFFICIAL2025-11-16
26'597PUA.Win.Packer.Lccwin-22025-11-22
23'377SecuriteInfo.com.BackDoor.HangUp.43914.UNOFFICIAL2025-11-22
19'816Pdf.Phishing.Trojan-d2568dad23a94d95-d2568dad23a94d95-10044375-02025-11-19
17'734Win.Trojan.Obfus-382025-11-22
13'513Win.Malware.Qukart-6838239-02025-11-22
13'032Win.Trojan.Padodor-10016488-02025-11-22
13'030Win.Trojan.Qukart-6874817-02025-11-22
12'312SecuriteInfo.com.Trojan.DownLoader9.42839.UNOFFICIAL2025-11-22
10'314Win.Trojan.Berbew-9845290-12025-11-22
8'975SecuriteInfo.com.PDF.URI-55.UNOFFICIAL2025-11-19
8'879SecuriteInfo.com.BackDoor.HangUp.43791.UNOFFICIAL2025-11-22
8'870PUA.Win.Packer.AcprotectUltraprotect-12025-11-22
8'734SecuriteInfo.com.BackDoor.IRC.Tdongs.13538.21428.UNOFFICIAL2025-11-22
7'283Win.Malware.Barys-10002593-02025-11-22

Most seen files

Most seen files scanned by YARAify in the past 14 days.

Task countSHA256 hashLast seen
1'850497be5f773cd826c4e352aef2ba0ceac18117e7709a3353a413eef2fddfef2ae2025-11-03
1'644c75d9d08ef0b4ad27cbaf720483e630152e9f1b5c181356703aef83faeea4cd72025-11-08
1'5361396a4c3165249bb6aadb6711160c6f9bbdab361ee868a88559f00ea1e5750d62025-11-08
1'40936caf3ba9df00968517e783cc25747cb9e1b0c30124c1f6d75bf2341f98f4c7b2025-11-07
930207f084b0cc2eb26c4a7c680a886e3f9bd65f45eed695d504743d6bbaafa98562025-11-06
301ab9f9e62b82b5f5b771eafaee55181780f147c88224d710fe3d37c6215053bb82025-11-06
2950943e65777709b0684389b2d641a90c49a876ee885440724a5bafc66cc087fe22025-11-03
1513bee0b067e35450783deb2fe8683042c55b060953e7ec78587fc8c94591ce0342024-09-27
1391b394490817e9ffc5c83984bc972f5415513dcd686b8322846cd67adb5b3878e2025-10-19
133b3986e04464339cec16157cf8c8bffec3a8a8c5eae57997974d45f5369fa16552021-07-07
1331115b6c913a207b9d81f8482613b2a9c2929ca81399861d2d2c47422e244060d2022-02-07
132c7c9af246fcdf073ea694d6c0a97299373c3eeee1b26e28c9fa1050a3846e2332021-08-11
132d2329bdc73f00d584a630b9bfe47cef45a389a14bc0dec61d876c64760c358c62021-08-11
13287479e089e6852958dab4026e07bc01ed1f31af423b1d26db462ef7493a537f12022-02-08
13239e48a3fc7e67968ff5d6e3cf8e12a7256af93ccabbce4da20d28c79237d95e82022-01-06

Top dhash icon

Top dhash icon observed on files scanned by YARAify in the past 14 days.

Task countdhash iconLast seen
6'09302c0b0746c60b0182025-11-22
4'58500ccc4d0c4fc7c002025-11-22
4'440b9696969606c74ec2025-11-22
3'2761003873d31213f102025-11-22
3'051818da080a0a0a0a22025-11-22
2'99820c74d09232b3c832025-11-22
2'92269ccd4d49696cc712025-11-22
2'49804ccfee2ece4a4842025-11-22
1'8441003873db9313e102025-11-22
1'551e9f4aa8accc6c6642025-11-22
1'48900ccc4d0c4fcfc452025-11-22
1'2941003873db9313e162025-11-22
1'0834ab96ccc94d173242025-11-22
97100928e8e8686b8002025-11-22
949afae0faeaf2faeaf2025-11-22

Top imphash

Top imphash observed on files scanned by YARAify in the past 14 days.

Task countimphashLast seen
11'971f34d5f2d4577ed6d9ceec516c1f5a7442025-11-23
10'663c9246f292a6fdc22d70e6e581898a0262025-11-23
8'775dae02f32a21e03ce65412f6e56942daa2025-11-23
6'49976515d04dff07b5b4a25c41ca10134842025-11-23
5'2796db997463de98ce64bf5b6b8b0f77a452025-11-23
4'7843f8d79e42b0b7cecf379b1ddce4e422a2025-11-22
4'37946f03ef2495b21d7ad3e8d36dc03315d2025-11-23
3'9444dcbc0931c6f88874a69f966c86889d92025-11-22
3'87869928e1032af8287e2ff241b863576352025-11-20
3'5885d6cad172c5535e4b6b6bbd2465716212025-11-23
3'5775271d5ce8b44dd47bc92563e275854662025-11-23
3'29875d930149d98b9b34c55459c6a79b2932025-11-23
3'018d78ef7473613a0b61e6e5179b69761d72025-11-23
2'8445af7b7a29b6ca9cf4b52f600adcaa68b2025-11-23
2'307a3df475500e5e30f4680b397c2ee13f12025-11-23

Top tlsh

Top tlsh observed on files scanned by YARAify in the past 14 days.

Task counttlshLast seen
194T190C46C2AA4604176E4F5213121FE7A672CBD2E6443ED24D377A05E8D6DA41F3B2381EF2021-11-18
141T176E48D61F185C075E0F116B0A6FE7A5B146C2975471D38E3EB98BEC929740F27A3C28B2021-08-11
141T133E48D51F185C076E0F116B0A6FE7A5B146C2975471D38E3EB98BEC929740F27A3C28B2021-08-11
136T1EF16DD42A3F94608F6F77F7469B916604E3BBCA6AD79C21C1284505E5EB2E40CDB0B732022-01-06
136T153819E61842314C4F557CFF0D61BD82AAFA5334684584E1123E0606A4BCF60427041E32022-02-07
135T10016DD42A3F94608F6F77F7469B916604E3BBCA6AD79C21C1284505E5EB2E40CDB0B732022-01-06
135T1D7819E61842314C4F557CEF4D51BE869BFA5734550584E1423E0705A4BCBA1427551A32022-02-08
134T1C8E052F688E090AC080023A82BDF2CA5437B03BD00202A0BF20BA04D022DF72E30A3F02021-07-07
133T1C5D66B68E683D8F6DC4207754087BAAF22B8A770C779CE27DA046C58DB37E9645373062025-07-20
131T1BD812B4525A230CAC056C270ED52C158ABD9BC37AF44D3BBF1B90FDD83112451CC1B0B2022-02-07
130T10E8132A0832FBA4ADC96847151DEE1E16667307604E5C50161DA26DEDB83AE4EF78C332022-02-08
130T160030B9736E31000FB09BE32E554C24FEF06CF59B976974ED39826C72350A78662E45B2022-02-07
130T1A58162A0432FB74ADC5680B151DEA0E16667707204E5CA0551C916ADDB829F0EF74C332022-02-08
130T1B5033E9736E31000FB09BE35C654834FEF06CF59B97A9B4ED39826C72371A78629E0592022-02-07
130T13A03389736E31100FB08FE32C554838FEF86CF69B976974AD79826C72350A78621E45E2022-02-08

Top telfhash

Top telfhash observed on files scanned by YARAify in the past 14 days.

Task counttelfhashLast seen
54t1e8617558953c05d9de230d19a4a96be34997f13a22e5bb1dff1acdc4085e82cf264e0f2025-11-14
38t14c11ce52a4fa8a6c5ef2542098fc16741a92721731627e706f5dc1849c37002b629fce2025-11-18
37t1564165181e7817b063356c4e159cef3b96a320db7e176c378e51e86aab699835d10c0c2025-11-21
33t17951bbb0399939d8a2fbfb37730be9a45cb50a6015e172d1ceb769e2de417840cb14632025-11-22
30t12e11401a8f942e4eaff4000e869ea21b547075592f2b78538c2a752b93831c2f06dc532025-11-21
27t1cd11af55a4fa4a6c5ef2542098fc17741aa772273162be706f5dc5849c3b002b539fce2025-11-18
25t173111069cfd8159e2fe08244e15db44e9a74726d1f6735925d756a8fd1428e3306cc202025-11-21
24t14b11d0590e7a18019e5385a4afa88e68813f4201950bfe35de34d17c88f22fdd216fdf2025-11-12
24t10b014b58883c13f0d3824d9dabedff76e09080df9a265e37ce10f99a5b219469d00c2c2025-11-15
21t1c051df703e5a39a831d77766b30fea79d9ba0d2009d072d59e73bde48e23b880c458562025-11-20
20t13611d04270b6891d2bb659245cbc42b5165536236381be75bf0ec5c45537002ba79e8b2025-11-18
20t1e1d0a7d19e681c48e9f4805dc4ef61679340b5d17f1494877df16d029a320c9703110e2025-11-21
18t18e21e035273611296961c920eddd97f2141c8b132744fb73df35c4cc241a09ae62bc4f2025-11-10
18t1cfb002e78be4dffd2f516c39df2b2267221b652819667230c8f9c3b80230516112be512025-11-22
17t13aa002285ba5578e4e768555c25351055e1e31c70e047c90c24f574f0a82256ad461362025-11-20

File Scans

The chart below shows the number of file scans conducted by YARAify over the past 12 months.

Data Scanned

This chart shows the amount of data scanned in Megabytes over the past past 12 months.

API requests

The illustration below documents the number of API requests over the past past 12 months.

Most matching YARA rules

YARA rules that matched most on files scanned on YARAify in the past 12 months.

Task countYARA RuleAuthorLast match
56'741'755Sus_Obf_Enc_Spoof_Hide_PEXiAnzheng2025-09-16
12'272'912CP_AllMal_DetectorDiegoAnalytics2025-10-08
5'967'771golang_bin_JCorn_CSC846Justin Cornwell2025-11-22
4'708'801DebuggerCheck__API2025-11-22
4'157'300vmdetectnex2025-11-22
3'694'122NETmalware-lu2025-11-22
3'365'383SEH__vba2025-11-22
2'870'735pe_detect_tls_callbacks2025-11-22
2'426'575UPXV200V290MarkusOberhumerLaszloMolnarJohnReisermalware-lu2025-11-22
2'089'060MD5_Constantsphoul (@phoul)2025-11-22
1'948'957UPXv20MarkusLaszloReisermalware-lu2025-11-22
1'797'894SHA1_Constantsphoul (@phoul)2025-11-22
1'797'891RIPEMD160_Constantsphoul (@phoul)2025-11-22
1'701'604RANSOMWAREToroGuitar2025-11-22
1'696'034ThreadControl__Context2025-11-22

ClamAV Most matching ClamAV signature

ClamAV signature that matched most on files scanned on YARAify in the past 12 Mmonths.

Task countClamAV SignatureLast match
11'731'734PUA.Win.Packer.Lccwin-22025-11-22
7'813'930Win.Trojan.Obfus-382025-11-22
5'968'984Win.Trojan.Qukart-6874817-02025-11-22
5'966'665Win.Trojan.Padodor-10016488-02025-11-22
5'576'450Win.Malware.Qukart-6838239-02025-11-22
3'779'476Win.Trojan.Padodor-9877164-02025-11-22
2'671'723SecuriteInfo.com.BackDoor.HangUp.43791.UNOFFICIAL2025-11-22
2'099'755Win.Dropper.Ajku-10014126-02025-11-22
2'052'005Win.Dropper.Vbclone-10036195-02025-11-22
2'038'417Win.Malware.Midie-6847981-02025-11-22
2'011'820Win.Trojan.Barys-10005825-02025-11-22
1'830'858Win.Malware.Generickdz-10004857-02025-11-22
1'820'092Win.Malware.Midie-6848630-02025-11-22
1'781'113Win.Malware.Midie-6847894-02025-11-22
1'743'652Win.Trojan.Berbew-9845290-12025-11-22

Most seen files

Most seen files scanned by YARAify in the past 12 months.

Task countSHA256 hashLast seen
8'900e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b8552021-07-12
4'5795ddfdd55fac3a23673a52fb3a75bed7dee266fb6fc8b10ced3746ab43064aef52025-03-12
3'4755c4d7270bb8923af5e914e087eb04857b5a39b25f20fd169f260fff4a95c25372025-03-05
3'457b3986e04464339cec16157cf8c8bffec3a8a8c5eae57997974d45f5369fa16552021-07-07
3'45023c2d2b0c6cec3e69cb07f942c9e56f2087aeb24015be25823897faafc4708ae2022-02-07
3'44639e48a3fc7e67968ff5d6e3cf8e12a7256af93ccabbce4da20d28c79237d95e82022-01-06
3'446e0af7f483f4965dca90eb5921ae004a7e41593b39284a63af97a9105b96718e72022-01-06
3'44369c88b4d5ea84620d1b762d5119fe9293c34e68268e7006cb503b865e963b2512021-07-09
3'4135ea4d94c695189639e9ab7afe8d76d231030921fbfdd95e1941c7c0a05fb8f032022-02-07
3'411ebd6320e24d47c0d638749a149f14f4c94b1c98afa228dba1f48eea19a2c72572021-07-09
3'408e9926dc2559ae45dfffbe4628710240c6ad0c56073bd8f8e1a10bed2b29468e92021-07-08
3'4074d3a1915ae5f6353bae216494095c50ea2a67dca5db49bd7004476e1d92bb2ff2021-07-08
3'4011115b6c913a207b9d81f8482613b2a9c2929ca81399861d2d2c47422e244060d2022-02-07
3'376edb0c4e65c501671a7ba72f108798f8ec36e47e4e86c8ca8406f19f4af7bd3632025-03-05
3'37453c22863323c0f5ff94f4ae86df27a51db4eae7232cc38333346ee8be9df5aa62022-02-07

Top dhash icon

Top dhash icon observed on files scanned by YARAify in the past 12 months.

Task countdhash iconLast seen
689'67318b1b1b17068c8802025-11-22
440'03700ccc4d0c4fc7c002025-11-23
314'24358b1b1b17068c8802025-11-22
311'11904ccfee2ece4a4842025-11-23
288'2981003873d31213f102025-11-23
164'1841003873db9313e102025-11-23
133'220e9f4aa8accc6c6642025-11-23
127'36969ccd4d49696cc712025-11-23
90'745e0f0e48c8ca4c0e02025-11-23
80'79302c0b0746c60b0182025-11-23
78'118526e32661e3a2a102025-11-23
73'199b298acbab2ca7a722025-11-23
63'949399998ecd4d46c0e2025-11-23
63'769818da080a0a0a0a22025-11-23
50'480e8b03c727a9ad0e82025-11-23

Top imphash

Top imphash observed on files scanned by YARAify in the past 12 months.

Task countimphashLast seen
3'566'14846f03ef2495b21d7ad3e8d36dc03315d2025-11-23
1'284'9723f8d79e42b0b7cecf379b1ddce4e422a2025-11-24
1'254'9895d6cad172c5535e4b6b6bbd2465716212025-11-23
1'086'9674dcbc0931c6f88874a69f966c86889d92025-11-23
754'146c9246f292a6fdc22d70e6e581898a0262025-11-24
727'07687914047e74de74a89c530e3bb19409e2025-11-24
485'945f34d5f2d4577ed6d9ceec516c1f5a7442025-11-24
453'8636db997463de98ce64bf5b6b8b0f77a452025-11-24
451'4702640d4b5d04a2d6756ecdf3ec765cc1a2025-10-30
303'53891f4b88d25daa33c7443253d9beb1bb32025-11-24
283'978dae02f32a21e03ce65412f6e56942daa2025-11-24
173'7282c2ad1dd2c57d1bd5795167a7236b0452025-11-23
155'46809d0478591d4f788cb3e5ea416c252372025-11-23
127'65788478c1f74f94f7e1e9654193a1e02b32025-11-24
106'536a3df475500e5e30f4680b397c2ee13f12025-11-24

Top tlsh

Top tlsh observed on files scanned by YARAify in the past 14 months.

Task counttlshLast seen
3'832T190C46C2AA4604176E4F5213121FE7A672CBD2E6443ED24D377A05E8D6DA41F3B2381EF2021-11-18
3'475T165B4223FE8150C66E8CECBB4FF25F80E1386731436C7B5C264720E627769A8DA55229C2025-03-05
3'458T1C8E052F688E090AC080023A82BDF2CA5437B03BD00202A0BF20BA04D022DF72E30A3F02021-07-07
3'450T1B5033E9736E31000FB09BE35C654834FEF06CF59B97A9B4ED39826C72371A78629E0592022-02-07
3'450T1EF16DD42A3F94608F6F77F7469B916604E3BBCA6AD79C21C1284505E5EB2E40CDB0B732022-01-06
3'450T10016DD42A3F94608F6F77F7469B916604E3BBCA6AD79C21C1284505E5EB2E40CDB0B732022-01-06
3'447T138118CABCBE6ACF1C80C10B4070B8D013674883443E1C3170EA5007E7CA22FCD8B6E022021-07-09
3'415T1CCE2F87B94C24337C001EFB60B95C9AEBB736D306564C0E32BD42B1F892B9687D5D4692021-07-09
3'411T1FBE47D21F1C18079E4F5157096FF7A5B246C69A64B2838E3E7987EC928741F27A3C2C72021-07-08
3'411T160030B9736E31000FB09BE32E554C24FEF06CF59B976974ED39826C72350A78662E45B2022-02-07
3'410T1BCE47D21F1C18079E4F5157096FF7A5B246C69A64B2838E3E7987EC928741F27A3C2C72021-07-08
3'406T153819E61842314C4F557CFF0D61BD82AAFA5334684584E1123E0606A4BCF60427041E32022-02-07
3'376T19C039D79F48D1C8CE5C3C7CBE1F63CAEA56F72229ACCB5C224B54B123C1A44567652A32025-03-05
3'374T1BD812B4525A230CAC056C270ED52C158ABD9BC37AF44D3BBF1B90FDD83112451CC1B0B2022-02-07
3'361T1D7819E61842314C4F557CEF4D51BE869BFA5734550584E1423E0705A4BCBA1427551A32022-02-08

Top telfhash

Top telfhash observed on files scanned by YARAify in the past 12 months.

Task counttelfhashLast seen
5'724t126f09018093456e197116ec8673dff7ad56220ef6a055e378f00fda79b699426e10c0c2025-06-05
1'754t10ab0011070740bb84308e12d5cdcae5679f20cc3fe470c27db6047a159b54434d00d182025-07-15
1'698t186c08c8c0fd401beba7d72a203bef2bf61a072f0be0224920404eb6f074c584028144c2025-07-15
1'210t140317403a83f8f3ac5a298b0dc650765516b5701b4f9d7109f3ca9d06c79016702aacd2025-08-12
659t13611d04270b6891d2bb659245cbc42b5165536236381be75bf0ec5c45537002ba79e8b2025-11-18
592t178310071567851269aa1ec64d9ed97b2652ac7171340ff32df26c0cc281a449f62ac0f2025-11-21
496t10751b1fa6dba08ecfbd0a804c75e5bd33669ca7b153025b0406398b532f79954475c3a2025-11-21
463t1564165181e7817b063356c4e159cef3b96a320db7e176c378e51e86aab699835d10c0c2025-11-21
460t12e11401a8f942e4eaff4000e869ea21b547075592f2b78538c2a752b93831c2f06dc532025-11-21
435t17951bbb0399939d8a2fbfb37730be9a45cb50a6015e172d1ceb769e2de417840cb14632025-11-22
429t1e1d0a7d19e681c48e9f4805dc4ef61679340b5d17f1494877df16d029a320c9703110e2025-11-21
411t173111069cfd8159e2fe08244e15db44e9a74726d1f6735925d756a8fd1428e3306cc202025-11-21
404t1d211020260b689282bb259205cbc42f1165526233341be75bf0ec5c4993b002aa78e8b2025-11-18
397t1fe11104270b6891c2bb259245cbc42b0165532232381be74bf0ec5c05937002ba79e8b2025-11-18
378t1e7e02640ec759e1c68cb6974accc06b09601222260664b00cf10daf4c83f450e30ca4a2025-11-20