Detection Rule List

Rule Name Rule Type Technique Count Creation Date
YARA_XprotectDecryption YARA 1 4 months, 2 weeks
YARA_SMTP_Exfiltration YARA 1 4 months, 2 weeks
Detect Disassembly Obfuscation Rogue Byte YARA 1 6 months, 1 week
VBAPurging YARA 1 8 months, 1 week
YARA_Detect_WindowsDefender_AVEmulator YARA 1 9 months, 1 week
YARA_Detect_AlKhaser_AntiDebug_WriteWatch YARA 1 9 months, 1 week
Impair Defenses Through Disable Windows Event Logging was Detected SIGMA 1 9 months, 1 week
Cronos-Crypter YARA 1 9 months, 1 week
YARA_HDDInfo YARA 1 1 year, 2 months
YARA_BuildCommDCBAndTimeouts YARA 1 1 year, 2 months
Yara_LimeCRypter YARA 1 1 year, 4 months
YARA_SUSP_OBF_PyArmor YARA 1 1 year, 4 months
YARA_Check_Install_software YARA 1 1 year, 4 months
YARA_SUSP_RLO_Exe_Extension_Spoofin YARA 1 1 year, 4 months
YARA_SUSP_Direct_Syscall_Shellcode_Invocation YARA 1 1 year, 4 months
YARA_NixImports_Loader2 YARA 1 1 year, 4 months
YARA_NixImports_Loader YARA 1 1 year, 4 months
YARA_POwershell_Special_Chars YARA 1 1 year, 4 months
YARA_Base64 YARA 1 1 year, 4 months
YARA_SUSP_OBF_NET_Reactor YARA 1 1 year, 4 months
YARA_PureCrypter YARA 1 1 year, 4 months
YARA_OBF_NET_ConfuserEx_Packer YARA 1 1 year, 4 months
YARA_TrueCrypt_crypter YARA 1 1 year, 4 months
YARA_SUSP_OBF_NET_Reactor_Native YARA 1 1 year, 4 months
YARA_EasyCrypter YARA 1 1 year, 4 months
YARA_CRYPT_hXOR YARA 1 1 year, 4 months
YARA_OBF_NET_ConfuserEx YARA 1 1 year, 4 months
YARA_XOR_Hunt YARA 1 1 year, 4 months
YARA_SI_CRYPT_ScrubCrypt_BAT_Jan24 YARA 1 1 year, 4 months
Hunting_Rule_ShikataGaNai YARA 1 1 year, 10 months
Filter
Clear