/vx/Papers/Yara Rules/Win32/VirTool/

0 directories 320 files
Name Size Modified
Go up
Abjector.yara 2.1 KiB
AccessMe.yara 940 B
Acillatem.yara 1.2 KiB
Adeximport.yara 1.2 KiB
Admipesz.yara 1.1 KiB
Adrelaz.yara 896 B
Afrootix.yara 3.9 KiB
Aholic.yara 1.6 KiB
Alanloader.yara 1.2 KiB
Alanzoh.yara 3.5 KiB
Amkillz.yara 1.0 KiB
Antinza.yara 962 B
Antium.yara 898 B
Arpoc.yara 782 B
AtExecCommand.yara 686 B
AutInject.yara 25 KiB
Avet.yara 2.1 KiB
AvetDllInject.yara 877 B
Backstab.yara 1.3 KiB
Bekeresz.yara 2.1 KiB
Berentesz.yara 1.4 KiB
BilapLdz.yara 1011 B
Binder.yara 939 B
Blemesez.yara 1.5 KiB
Bofadduser.yara 750 B
Bofadreq.yara 711 B
Bofenableuser.yara 824 B
Bofpless.yara 805 B
Bofprocdes.yara 705 B
Bofprocdump.yara 793 B
Bofprochandle.yara 868 B
BofRegdelete.yara 753 B
BofRegsave.yara 813 B
BofRegset.yara 745 B
BofScconfig.yara 800 B
BopToolz.yara 1018 B
Browsersnatch.yara 1.2 KiB
Bruterat.yara 6.7 KiB
BruterShell.yara 2.1 KiB
Bypesesz.yara 1.6 KiB
Bypesetz.yara 1.2 KiB
Carlniz.yara 1.8 KiB
Catchyikn.yara 899 B
Cdknstubof.yara 802 B
CeeInject.yara 596 KiB
CertUtlRegHive.yara 2.2 KiB
ChromeKey.yara 784 B
ClipInject.yara 1.4 KiB
CobalInject.yara 1.0 KiB
CobaltStrike.yara 16 KiB
Codienece.yara 2.3 KiB
CoffLdz.yara 1.2 KiB
Cofflodesz.yara 1.3 KiB
CoinMiner.yara 3.6 KiB
ColorUAC.yara 849 B
Conjecture.yara 3.9 KiB
Cristesz.yara 1.4 KiB
CryptDropper.yara 1.3 KiB
Cryptdru.yara 888 B
CryptInject.yara 9.4 KiB
CVE-2009-1136.yara 938 B
CVE-2022-30166.yara 1.3 KiB
CVE-2025-21333.yara 924 B
CVE-2025-48799.yara 1.2 KiB
Dakdosc.yara 812 B
DcomExecCommand.yara 779 B
Defnot.yara 928 B
DelfInject.yara 123 KiB
Delfsnif.yara 1.3 KiB
Dijecto.yara 1.1 KiB
Discratz.yara 933 B
Disedr.yara 1.0 KiB
Dllhij.yara 821 B
DllInject.yara 1.1 KiB
DllInjector.yara 1.1 KiB
Dogho.yara 1017 B
Dogrobot.yara 860 B
Dojeloadesz.yara 1.5 KiB
DomDiscovery.yara 1.1 KiB
Dominicus.yara 707 B
DownRefDllz.yara 1.2 KiB
Dragzxor.yara 1.4 KiB
DripLoz.yara 1.1 KiB
Drobedesz.yara 1.3 KiB
DrunzPkto.yara 2.1 KiB
Dumphash.yara 1.3 KiB
DumpHive.yara 7.3 KiB
DumpLsassProc.yara 4.9 KiB
DupDumz.yara 1.3 KiB
Dupinject.yara 829 B
Ekocit.yara 891 B
Elevator.yara 685 B
Empire.yara 6.1 KiB
EmpirePy.yara 1.9 KiB
EsentutlDmp.yara 1.3 KiB
Eumbra.yara 5.8 KiB
Excheposez.yara 1.0 KiB
ExcludeProc.yara 4.8 KiB
ExecutionFromADS.yara 829 B
Farkaz.yara 2.4 KiB
Fcrypter.yara 1.4 KiB
Feline.yara 3.8 KiB
Filnesez.yara 1.3 KiB
FireJoiner.yara 2.4 KiB
Fkeysteal.yara 719 B
Foger.yara 1.9 KiB
Freloadesz.yara 1.1 KiB
Gatvm.yara 694 B
Goarch.yara 848 B
Golazagne.yara 977 B
Goodump.yara 988 B
Gopurp.yara 950 B
GoRat.yara 1.7 KiB
Gosam.yara 1.3 KiB
GoSecDmpz.yara 1.1 KiB
HackerHouse.yara 963 B
Hacty.yara 2.3 KiB
Havokiz.yara 1.9 KiB
Headentesz.yara 1.1 KiB
HeavGatez.yara 1.2 KiB
Hebex.yara 1.4 KiB
Hepenshellz.yara 1.0 KiB
Hercules.yara 1.0 KiB
Heroinz.yara 782 B
Herpaderping.yara 4.8 KiB
Hidesz.yara 1.1 KiB
Hitijekt.yara 3.7 KiB
HookGina.yara 3.1 KiB
HtWorkz.yara 917 B
Icenipto.yara 945 B
Impacket.yara 1.3 KiB
Imponatz.yara 4.8 KiB
Injector.yara 210 KiB
InjectRemoteThread.yara 657 B
Injedehesz.yara 1.3 KiB
Injeobesz.yara 1.8 KiB
Injeshimesz.yara 3.2 KiB
Joiner.yara 4.1 KiB
Junkdata.yara 919 B
Kackperk.yara 715 B
kangiz.yara 1.8 KiB
Kekeo.yara 1.0 KiB
Kerbrute.yara 953 B
Keser.yara 1.7 KiB
Keylogger.yara 912 B
Khaosz.yara 1.1 KiB
Killav.yara 836 B
Koadic.yara 5.5 KiB
Kofeloadz.yara 1.3 KiB
Larcen.yara 2.9 KiB
Lasdumpz.yara 2.0 KiB
Lazagne.yara 964 B
Leakwall.yara 1.3 KiB
Lodrypt.yara 1.1 KiB
LsassDump.yara 2.5 KiB
Lsassy.yara 1007 B
LzDump.yara 1.2 KiB
Mader.yara 1.3 KiB
Magniber.yara 10 KiB
Makarand.yara 964 B
MaleficAms.yara 781 B
Malizk.yara 1.9 KiB
Mangle.yara 767 B
MaRak.yara 947 B
Meterpreter.yara 3.9 KiB
Mimispoolz.yara 1.2 KiB
Minidatp.yara 1.3 KiB
Mirrordumpz.yara 1.3 KiB
Mook.yara 1.9 KiB
Moteum.yara 5.3 KiB
MSFPsExecCommand.yara 1.0 KiB
Myrddin.yara 2.2 KiB
Mythagent.yara 1.2 KiB
Naprat.yara 1.0 KiB
Natoch.yara 847 B
Nicodemus.yara 916 B
Nimboz.yara 1.0 KiB
NimPlant.yara 1020 B
Ninject.yara 5.9 KiB
Nitematz.yara 1.6 KiB
Nodefiloadesz.yara 1.3 KiB
Nosrawec.yara 734 B
Ntpacker.yara 1.4 KiB
ObfuscateShell.yara 974 B
Obfuscator.yara 894 KiB
Obfuscator_Cpuid.yara 661 B
ObfuscatorGd.yara 5.3 KiB
OfsBuilz.yara 741 B
Ofsenot.yara 864 B
Oitorn.yara 842 B
Orbyt.yara 2.4 KiB
Parlsz.yara 1.0 KiB
Pastiche.yara 1.1 KiB
Patcher.yara 849 B
Patpoopy.yara 8.5 KiB
PeCloak.yara 779 B
Persibakz.yara 1.0 KiB
PeStaple.yara 1.6 KiB
Phantemesz.yara 1.0 KiB
Pharos.yara 818 B
Pheweq.yara 674 B
PhycheStoic.yara 993 B
PipImpos.yara 1.6 KiB
Plashelln.yara 1.2 KiB
PoshC2.yara 1015 B
PossibleMikatz.yara 1.8 KiB
Powerhub.yara 1.7 KiB
PPLdump.yara 756 B
Preinjesz.yara 1.3 KiB
Pringetesz.yara 1.2 KiB
Priviadrisz.yara 1.1 KiB
Procdopplegang.yara 1.1 KiB
ProcKill.yara 1.9 KiB
Proholz.yara 1.1 KiB
PsDnsTxtExec.yara 992 B
PsExesvcAsrBlock.yara 728 B
Pucrpt.yara 853 B
Pyrazt.yara 771 B
Radkt.yara 1.2 KiB
Redosdru.yara 824 B
RefDllInj.yara 932 B
Refledelesz.yara 1.4 KiB
Reflexon.yara 2.8 KiB
RefLoad.yara 1.1 KiB
Rekcap.yara 1.7 KiB
Releposesz.yara 1.1 KiB
RemcInj.yara 705 B
Remeshelsz.yara 1022 B
Remetecez.yara 1.2 KiB
RemoteExploit.yara 777 B
RemotePot.yara 1.3 KiB
RenPsEncode.yara 2.5 KiB
Reshler.yara 1.1 KiB
Revesekasz.yara 1.3 KiB
Reviver.yara 1.1 KiB
RogPotz.yara 3.1 KiB
RogueP.yara 1.7 KiB
RoguePot.yara 1.4 KiB
Rootkit.yara 1017 B
Rootkitdrv.yara 5.6 KiB
Runcrypt.yara 1.1 KiB
Samdumpz.yara 2.1 KiB
Sardar.yara 2.3 KiB
Sertoh.yara 1.1 KiB
Sespawnz.yara 988 B
Shadeloadesz.yara 1.7 KiB
Sharpscshell.yara 1.8 KiB
Shelentesz.yara 1.4 KiB
ShellDownloader.yara 1.1 KiB
Shelljec.yara 1.0 KiB
Shelpluk.yara 1.1 KiB
ShlzLch.yara 1.3 KiB
Shrine.yara 766 B
Shrub.yara 1.7 KiB
SilentCleanupUACBypass.yara 1.5 KiB
Silentload.yara 1.1 KiB
Sliver.yara 12 KiB
SmbExecCommand.yara 820 B
Smestesz.yara 1.1 KiB
SOCKRDP.yara 1.2 KiB
Streespyer.yara 903 B
Sunderlox.yara 1.2 KiB
SuspCodeExec.yara 1.3 KiB
SuspDeleteEventlog.yara 1.1 KiB
SuspExec.yara 924 B
SuspKillService.yara 795 B
SuspMshtaExec.yara 824 B
SuspMsiExec.yara 932 B
SuspPowerShellCmd.yara 3.1 KiB
SuspPowershellCommand.yara 5.3 KiB
SuspPsExecRenamedProc.yara 1.7 KiB
SuspRemoteCmdCommand.yara 8.9 KiB
SuspRenPsexec.yara 803 B
SuspSchTaskCmd.yara 1.1 KiB
SuspSchtasksCreate.yara 978 B
SuspSchtasksMod.yara 1.2 KiB
SuspScriptCommand.yara 638 B
SuspServiceBinMod.yara 1.6 KiB
SuspServWmiCommand.yara 6.0 KiB
SuspSystemDiscovery.yara 1.7 KiB
SuspWmic.yara 1.4 KiB
SuspWscriptCommand.yara 686 B
SvcStealer.yara 676 B
Swedrimesz.yara 1012 B
SwifGenerator.yara 1.2 KiB
Tacko.yara 815 B
Tamfer.yara 947 B
Tater.yara 886 B
Telzsor.yara 1.1 KiB
Temeresz.yara 1.1 KiB
Tetanus.yara 945 B
Thedstikspoz.yara 1.3 KiB
Thopu.yara 773 B
Threadesz.yara 1.2 KiB
Thredesiz.yara 1.2 KiB
Threqesz.yara 1.1 KiB
ThrowBack.yara 1.1 KiB
Tinmet.yara 929 B
Tinmetz.yara 2.6 KiB
Toksteal.yara 2.4 KiB
TonickInject.yara 2.0 KiB
TurulC2.yara 1.2 KiB
UACBypassExp.yara 18 KiB
UACBypassExpReg.yara 961 B
Usepesz.yara 1.1 KiB
Vanti.yara 2.9 KiB
VB.yara 3.2 KiB
Vbcrypt.yara 23 KiB
Vbicry.yara 900 B
Vbinder.yara 16 KiB
VBInject.yara 555 KiB
Vcladru.yara 1010 B
Vebject.yara 3.3 KiB
Vetibuz.yara 1.8 KiB
Vile.yara 890 B
WierdFunguz.yara 877 B
Williez.yara 870 B
WmiExecCommand.yara 695 B
Wovdnut.yara 22 KiB
Wraith.yara 2.5 KiB