Update Yara_Patchwork_July_2020_1.yar

This commit is contained in:
StrangerealIntel 2020-07-23 11:04:38 +02:00 committed by GitHub
parent 9809148366
commit 186011b934
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23

View File

@ -65,7 +65,7 @@ rule Mal_BozokRAT_July2020_2 {
author = "Arkbird_SOLG" author = "Arkbird_SOLG"
reference = "https://github.com/StrangerealIntel/CyberThreatIntel/tree/master/Indian/APT/Patchwork/2020-07-23/Analysis.md" reference = "https://github.com/StrangerealIntel/CyberThreatIntel/tree/master/Indian/APT/Patchwork/2020-07-23/Analysis.md"
date = "2020-07-15" date = "2020-07-15"
hash1 = " cc8867a5fd62b82e817afc405807f88716960af5744040999b619b126a9ecf57" hash1 = "cc8867a5fd62b82e817afc405807f88716960af5744040999b619b126a9ecf57"
strings: strings:
$s1 = "ouemm/emm!!!!!!!!!!!!!" fullword ascii $s1 = "ouemm/emm!!!!!!!!!!!!!" fullword ascii
$s2 = "Vtfs43/emm" fullword ascii $s2 = "Vtfs43/emm" fullword ascii