Mirrors/reversinglabs-reversinglabs-yara-rules
1
0
Fork 0
mirror of https://github.com/reversinglabs/reversinglabs-yara-rules synced 2026-06-11 03:01:18 +00:00
Code Issues Packages Projects Releases Wiki Activity

Added new YARA rules.

Browse Source
This commit is contained in:
Threat Analyst
2021-08-12 13:00:02 +02:00
parent a229464ddb
commit 2fe4c89e24
14 changed files with 390 additions and 390 deletions
Download Patch File Download Diff File Expand all files Collapse all files
yara/ransomware/Win32.Ransomware.Cring.yara → yara/ransomware/ByteCode.MSIL.Ransomware.Cring.yara
+1 -1
View File
@@ -1,4 +1,4 @@
rule Win32_Ransomware_Cring : tc_detection malicious rule ByteCode_MSIL_Ransomware_Cring : tc_detection malicious
{ {
meta: meta:
yara/ransomware/Win32.Ransomware.Dusk.yara → yara/ransomware/ByteCode.MSIL.Ransomware.Dusk.yara
+1 -1
View File
@@ -1,4 +1,4 @@
rule Win32_Ransomware_Dusk : tc_detection malicious rule ByteCode_MSIL_Ransomware_Dusk : tc_detection malicious
{ {
meta: meta:
yara/ransomware/Win32.Ransomware.Fantom.yara → yara/ransomware/ByteCode.MSIL.Ransomware.Fantom.yara
+1 -1
View File
@@ -1,4 +1,4 @@
rule Win32_Ransomware_Fantom : tc_detection malicious rule ByteCode_MSIL_Ransomware_Fantom : tc_detection malicious
{ {
meta: meta:
yara/ransomware/Win32.Ransomware.GhosTEncryptor.yara → yara/ransomware/ByteCode.MSIL.Ransomware.GhosTEncryptor.yara
+1 -1
View File
@@ -1,4 +1,4 @@
rule Win32_Ransomware_GhosTEncryptor : tc_detection malicious rule ByteCode_MSIL_Ransomware_GhosTEncryptor : tc_detection malicious
{ {
meta: meta:
yara/ransomware/Win32.Ransomware.Namaste.yara → yara/ransomware/ByteCode.MSIL.Ransomware.Namaste.yara
+1 -1
View File
@@ -1,4 +1,4 @@
rule Win32_Ransomware_Namaste : tc_detection malicious rule ByteCode_MSIL_Ransomware_Namaste : tc_detection malicious
{ {
meta: meta:
yara/ransomware/Win32.Ransomware.Oct.yara → yara/ransomware/ByteCode.MSIL.Ransomware.Oct.yara
+1 -1
View File
@@ -1,4 +1,4 @@
rule Win32_Ransomware_Oct : tc_detection malicious rule ByteCode_MSIL_Ransomware_Oct : tc_detection malicious
{ {
meta: meta:
yara/ransomware/Win32.Ransomware.Pacman.yara → yara/ransomware/ByteCode.MSIL.Ransomware.Pacman.yara
+1 -1
View File
@@ -1,4 +1,4 @@
rule Win32_Ransomware_Pacman : tc_detection malicious rule ByteCode_MSIL_Ransomware_Pacman : tc_detection malicious
{ {
meta: meta:
yara/ransomware/Win32.Ransomware.Povlsomware.yara → yara/ransomware/ByteCode.MSIL.Ransomware.Povlsomware.yara
+1 -1
View File
@@ -1,4 +1,4 @@
rule Win32_Ransomware_Povlsomware : tc_detection malicious rule ByteCode_MSIL_Ransomware_Povlsomware : tc_detection malicious
{ {
meta: meta:
yara/ransomware/Win32.Ransomware.Retis.yara → yara/ransomware/ByteCode.MSIL.Ransomware.Retis.yara
+1 -1
View File
@@ -1,4 +1,4 @@
rule Win32_Ransomware_Retis : tc_detection malicious rule ByteCode_MSIL_Ransomware_Retis : tc_detection malicious
{ {
meta: meta:
yara/ransomware/Win32.Ransomware.Thanos.yara → yara/ransomware/ByteCode.MSIL.Ransomware.Thanos.yara
+1 -1
View File
@@ -1,4 +1,4 @@
rule Win32_Ransomware_Thanos : tc_detection malicious rule ByteCode_MSIL_Ransomware_Thanos : tc_detection malicious
{ {
meta: meta:
yara/ransomware/Win32.Ransomware.WildFire.yara → yara/ransomware/ByteCode.MSIL.Ransomware.WildFire.yara
+1 -1
View File
@@ -1,4 +1,4 @@
rule Win32_Ransomware_WildFire : tc_detection malicious rule ByteCode_MSIL_Ransomware_WildFire : tc_detection malicious
{ {
meta: meta:
yara/ransomware/Win32.Ransomware.WormLocker.yara → yara/ransomware/ByteCode.MSIL.Ransomware.WormLocker.yara
+1 -1
View File
@@ -1,4 +1,4 @@
rule Win32_Ransomware_WormLocker : tc_detection malicious rule ByteCode_MSIL_Ransomware_WormLocker : tc_detection malicious
{ {
meta: meta:
yara/ransomware/Win32.Ransomware.ZeroLocker.yara → yara/ransomware/ByteCode.MSIL.Ransomware.ZeroLocker.yara
+1 -1
View File
@@ -1,4 +1,4 @@
rule Win32_Ransomware_ZeroLocker : tc_detection malicious rule ByteCode_MSIL_Ransomware_ZeroLocker : tc_detection malicious
{ {
meta: meta:
yara/ransomware/Win32.Ransomware.CobraLocker.yara → yara/ransomware/Bytecode.MSIL.Ransomware.CobraLocker.yara
+1 -1
View File
@@ -1,4 +1,4 @@
rule Win32_Ransomware_CobraLocker : tc_detection malicious rule Bytecode_MSIL_Ransomware_CobraLocker : tc_detection malicious
{ {
meta: meta: