Detection Rule List

Rule Name Rule Type Technique Count Creation Date
CAPA_Unhook-FreeLibrary CAPA 1 5 days, 9 hours
YARA_Detect_createthreadpoolwait YARA 1 3 months
YARA_Detect_XOR YARA 1 3 months, 1 week
YARA_Detect_ShortcutHiding YARA 1 3 months, 1 week
YARA_CheckName YARA 1 3 months, 2 weeks
YARA_Detect_SysmonUnload YARA 1 3 months, 2 weeks
YARA_DetectParentProcess YARA 1 3 months, 2 weeks
YARA_Detect_Interrupts YARA 1 3 months, 2 weeks
YARA_DLLProxying YARA 1 3 months, 2 weeks
YARA_DLLSearchOrderHijacking YARA 1 3 months, 2 weeks
YARA_ModifyDLLExportName YARA 1 3 months, 2 weeks
CAPA_Hook_Injection1 CAPA 0 3 months, 2 weeks
CAPA_Hook_Injection CAPA 0 3 months, 2 weeks
SIGMA_Hook_Injection SIGMA 1 3 months, 2 weeks
YARA_Hook_Injection YARA 1 3 months, 2 weeks
YARA_Detect_Bobsoft YARA 1 8 months, 4 weeks
YARA_detect_Pespin YARA 1 8 months, 4 weeks
YARA_Detect_Obsidium YARA 1 8 months, 4 weeks
YARA_Detect_Pelock YARA 1 8 months, 4 weeks
YARA_Detect_nspack YARA 1 8 months, 4 weeks
YARA_Detect_Asprotect YARA 1 8 months, 4 weeks
YARA_Detect_Crinkler YARA 1 8 months, 4 weeks
YARA_Detect_Petite YARA 1 8 months, 4 weeks
YARA_Detect_Aspack YARA 1 8 months, 4 weeks
YARA_Detect_vmprotect YARA 1 8 months, 4 weeks
YARA_detect_FSG YARA 1 8 months, 4 weeks
YARA_Detect_Mew YARA 1 8 months, 4 weeks
YARA_Detect_Themida YARA 1 8 months, 4 weeks
YARA_Detect_Exestealth YARA 1 8 months, 4 weeks
YARA_Detect_MPRESS YARA 1 8 months, 4 weeks
Filter
Clear