(YARA) Yara_Detect_OutputDebugString

June 22, 2022, 4:32 a.m. | 2 weeks 
            rule Detect_OutputDebugStringA_iat: AntiDebug
{
	meta:
		Author = "http://twitter.com/j0sm1"
		Description = "Detect in IAT OutputDebugstringA"
		Date = "20/04/2015"

	condition:
		pe.imports("kernel32.dll","OutputDebugStringA")
}
Download Raw

Associated Techniques

Technique Name Technique ID's Has Snippet(s)
OutputDebugString U0117

Comment