daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #9586 from Kazgangap/upstyle- 

upstyle malware detect add
patch-4
Dhiyaneshwaran 2024-06-21 17:55:07 +08:00 committed by GitHub
parent e70923eae9 0974a43395
commit 1a720669c3
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 21 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

21
file/malware/hash/upstyle-malware-hash.yaml Normal file
View File

@ -0,0 +1,21 @@
id: upstyle-malware-hash
info:
name: Upstyle Malware Hash - Detect
author: Kazgangap
severity: info
reference:
- https://github.com/volexity/threat-intel/blob/main/2024/2024-04-12%20Palo%20Alto%20Networks%20GlobalProtect/indicators/rules.yar
tags: malware,upstyle
file:
- extensions:
- all
matchers:
- type: dsl
dsl:
- "sha256(raw) == '3de2a4392b8715bad070b2ae12243f166ead37830f7c6d24e778985927f9caac'"
- "sha256(raw) == '0d59d7bddac6c22230187ef6cf7fa22bca93759edc6f9127c41dc28a2cea19d8'"
- "sha256(raw) == '4dd4bd027f060f325bf6a90d01bfcf4e7751a3775ad0246beacc6eb2bad5ec6f'"
condition: or