id: ironpanda-htran-malware-hash
info:
  name: Iron Panda Malware Htran Hash - Detect
  author: pussycat0x
  severity: info
  description: |
    Iron Panda Malware Htran
  reference:
    - https://goo.gl/E4qia9
    - https://github.com/Yara-Rules/rules/blob/master/malware/APT_Irontiger.yar
  tags: malware,ironpanda

file:
  - extensions:
      - all

    matchers:
      - type: dsl
        dsl:
          - "sha256(raw) == '7903f94730a8508e9b272b3b56899b49736740cea5037ea7dbb4e690bcaf00e7'"
# digest: 4a0a00473045022100d46d3b9acc96f4f2d0e9d79c1fea714162bffb0316d45fedbb295bbc340ee9ff022046c6f4bb7568faccfca86380525231205674d4981d46dbb71997fe16c40acd17:922c64590222798bb761d5b6d8e72950