Detection Rule List

Rule Name Rule Type Technique Count Creation Date
YARA_Detect_CloseHandle YARA 1 1 year, 3 months
Detect_EnumProcess YARA 1 1 year, 3 months
YARA_Detect_ExceptionHandler YARA 1 1 year, 3 months
Detect_Interrupts YARA 3 1 year, 3 months
Detect_OllyDbg_BadFormat_Trick YARA 1 1 year, 3 months
YARA_Detect_GuardPages YARA 1 1 year, 3 months
YARA_Detect_IsDebuggerPresent YARA 1 1 year, 3 months
YARA_Detect_SetDebugFilterState YARA 1 1 year, 3 months
YARA_Detect_SuspendThread YARA 1 1 year, 3 months
YARA_Findcrypt YARA 2 1 year, 3 months
YARA_uac_bypass YARA 1 1 year, 3 months
YARA_disable_antivirus YARA 0 1 year, 3 months
YARA_detect_tlscallback YARA 1 1 year, 3 months
YARA_Detect_Possible_GetForegroundWindow_Evasion YARA 0 1 year, 3 months
YARA_Check_installed_software YARA 0 1 year, 3 months
YARA_DebuggerCheck_GlobalFlags YARA 1 1 year, 3 months
YARA_wiping_event YARA 0 1 year, 3 months
YARA_DebuggerCheck__RemoteAPI YARA 0 1 year, 3 months
YARA_Detect_AntiVMWithTemperature YARA 0 1 year, 3 months
YARA_QEMU_REGISTRY YARA 1 1 year, 3 months
YARA_SHADOW_COPY_DELETION YARA 1 1 year, 3 months
YARA_VBOX_REGISTRY YARA 1 1 year, 3 months
YARA_PACKER_antiunpack YARA 2 1 year, 3 months
YARA_mac_detection YARA 0 1 year, 3 months
YARA_disable_process YARA 1 1 year, 3 months
YARA_Shamoon_Wiper YARA 1 1 year, 3 months
CAPA_SANBOX_AV_CHECK CAPA 1 1 year, 3 months
CAPA_resize_volume_shadow_copy_storage CAPA 0 1 year, 3 months
CAPA_sandbox_name CAPA 1 1 year, 3 months
CAPA_Delete_Volume_Shadow_Copy CAPA 1 1 year, 3 months
Filter
Clear