A collection of yara rules that I created during analysis / for blog posts
-
-
1.1 Banker
- 1.1.1 danabot_main.yar
-
1.2 Crypter
-
1.2.1 huan_crypter.yar
-
1.2.2 zipExec_crypter.yar
-
-
1.3 Ransomware
-
1.3.1 deathransom.yar
-
1.3.2 germanwiper.yar
-
1.3.3 netwalker.yar
-
1.3.4 wannacry.yar
-
-
1.4 UAC
- 1.4.1 ICMLuaUtil_UACMe_M41.yar
-
-
-
2.1 Crypter
- 2.1.1 ezuri_revised.yar
-
2.2 Ransomware
- 2.2.1 revil_linux.yar
-
-
-
3.1 ESXi
-