Detection Rule List

Rule Name Rule Type Technique Count Creation Date
VBAPurging YARA 1 2 months
YARA_Detect_WindowsDefender_AVEmulator YARA 1 3 months
YARA_Detect_AlKhaser_AntiDebug_WriteWatch YARA 1 3 months
Impair Defenses Through Disable Windows Event Logging was Detected SIGMA 1 3 months
Cronos-Crypter YARA 1 3 months
YARA_HDDInfo YARA 1 8 months
YARA_BuildCommDCBAndTimeouts YARA 1 8 months
Yara_LimeCRypter YARA 1 10 months
YARA_SUSP_OBF_PyArmor YARA 1 10 months
YARA_Check_Install_software YARA 1 10 months
YARA_SUSP_RLO_Exe_Extension_Spoofin YARA 1 10 months
YARA_SUSP_Direct_Syscall_Shellcode_Invocation YARA 1 10 months
YARA_NixImports_Loader2 YARA 1 10 months, 1 week
YARA_NixImports_Loader YARA 1 10 months, 1 week
YARA_POwershell_Special_Chars YARA 1 10 months, 1 week
YARA_Base64 YARA 1 10 months, 1 week
YARA_SUSP_OBF_NET_Reactor YARA 1 10 months, 1 week
YARA_PureCrypter YARA 1 10 months, 1 week
YARA_OBF_NET_ConfuserEx_Packer YARA 1 10 months, 1 week
YARA_TrueCrypt_crypter YARA 1 10 months, 2 weeks
YARA_SUSP_OBF_NET_Reactor_Native YARA 1 10 months, 2 weeks
YARA_EasyCrypter YARA 1 10 months, 2 weeks
YARA_CRYPT_hXOR YARA 1 10 months, 2 weeks
YARA_OBF_NET_ConfuserEx YARA 1 10 months, 2 weeks
YARA_XOR_Hunt YARA 1 10 months, 2 weeks
YARA_SI_CRYPT_ScrubCrypt_BAT_Jan24 YARA 1 10 months, 2 weeks
Hunting_Rule_ShikataGaNai YARA 1 1 year, 4 months
CAPA_Unhook-FreeLibrary CAPA 1 1 year, 8 months
YARA_Detect_createthreadpoolwait YARA 1 1 year, 10 months
YARA_Detect_XOR YARA 1 1 year, 11 months
Filter
Clear