Detection Rule List

Rule Name Rule Type Technique Count Creation Date
Detect_EnumProcess YARA 1 9 months, 1 week
YARA_Detect_ExceptionHandler YARA 1 9 months, 1 week
Detect_Interrupts YARA 3 9 months, 1 week
Detect_OllyDbg_BadFormat_Trick YARA 1 9 months, 1 week
YARA_Detect_GuardPages YARA 1 9 months, 1 week
YARA_Detect_IsDebuggerPresent YARA 1 9 months, 1 week
YARA_Detect_SetDebugFilterState YARA 1 9 months, 1 week
YARA_Detect_SuspendThread YARA 1 9 months, 1 week
YARA_Findcrypt YARA 2 9 months, 1 week
YARA_uac_bypass YARA 1 9 months, 1 week
YARA_disable_antivirus YARA 0 9 months, 1 week
YARA_detect_tlscallback YARA 1 9 months, 1 week
YARA_Detect_Possible_GetForegroundWindow_Evasion YARA 0 9 months, 1 week
YARA_Check_installed_software YARA 0 9 months, 1 week
YARA_DebuggerCheck_GlobalFlags YARA 1 9 months, 1 week
YARA_wiping_event YARA 0 9 months, 1 week
YARA_DebuggerCheck__RemoteAPI YARA 0 9 months, 1 week
YARA_Detect_AntiVMWithTemperature YARA 0 9 months, 1 week
YARA_QEMU_REGISTRY YARA 1 9 months, 1 week
YARA_SHADOW_COPY_DELETION YARA 1 9 months, 1 week
YARA_VBOX_REGISTRY YARA 1 9 months, 1 week
YARA_PACKER_antiunpack YARA 2 9 months, 1 week
YARA_mac_detection YARA 0 9 months, 1 week
YARA_disable_process YARA 1 9 months, 1 week
YARA_Shamoon_Wiper YARA 1 9 months, 1 week
CAPA_SANBOX_AV_CHECK CAPA 1 9 months, 1 week
CAPA_resize_volume_shadow_copy_storage CAPA 0 9 months, 1 week
CAPA_sandbox_name CAPA 1 9 months, 1 week
CAPA_Delete_Volume_Shadow_Copy CAPA 1 9 months, 1 week
CAPA_SetHandleInformation CAPA 1 9 months, 1 week
Filter
Clear