Detection Rule List

Rule Name	Rule Type	Technique Count	Creation Date
YARA_uac_bypass	YARA	1	5 months, 1 week
YARA_Findcrypt	YARA	2	5 months, 1 week
YARA_mac_detection	YARA	0	5 months, 1 week
YARA_PACKER_antiunpack	YARA	2	5 months, 1 week
YARA_Check_installed_software	YARA	0	5 months, 1 week
YARA_disable_antivirus	YARA	0	5 months, 1 week
YARA_Shamoon_Wiper	YARA	1	5 months, 1 week
YARA_disable_process	YARA	1	5 months, 1 week
YARA_VBOX_REGISTRY	YARA	1	5 months, 1 week
YARA_SHADOW_COPY_DELETION	YARA	1	5 months, 1 week
CAPA_vm_artefact	CAPA	1	5 months, 1 week
CAPA_vm_artefact2	CAPA	1	5 months, 1 week
CAPA_vm_instruction	CAPA	0	5 months, 1 week
CAPA_gettickcount	CAPA	1	5 months, 1 week
CAPA_debugger_api	CAPA	1	5 months, 1 week
CAPA_debugged_flag	CAPA	1	5 months, 1 week
CAPA_mouse_cursor	CAPA	1	5 months, 1 week
CAPA_stackstring_obf	CAPA	0	5 months, 1 week
CAPA_detect_vm_process	CAPA	2	5 months, 1 week
CAPA_device_pipe	CAPA	0	5 months, 1 week
CAPA_QueryPerformanceCounter	CAPA	1	5 months, 1 week
CAPA_output_debug_string	CAPA	1	5 months, 1 week
CAPA_clear_log	CAPA	1	5 months, 1 week
CAPA_timestomp	CAPA	0	5 months, 1 week
CAPA_crash_eventlog	CAPA	2	5 months, 1 week
CAPA_ntglobalflag	CAPA	1	5 months, 1 week
CAPA_debug_register	CAPA	1	5 months, 1 week
CAPA_kill_process	CAPA	1	5 months, 1 week
CAPA_resize_volume_shadow_copy_storage	CAPA	0	5 months, 1 week
CAPA_sandbox_name	CAPA	1	5 months, 1 week