/yara-rules

Collection of YARA signatures from individual research

Primary LanguageYARAThe UnlicenseUnlicense

Say Thanks

yara-rules

Collection of YARA signatures from recent malware research

Ruleset

Dacls Trojan

APT32 KerrDown


ACBackdoor - Linux build


Unnamed Linux Golang Ransomware


KPOT v2


WatchBog Linux botnet


EvilGnome Linux malware


APT34 PICKPOCKET


APT34 LONGWATCH


APT34 VALUEVAULT


RedGhost Linux tool


SilentTrinity


DNSpionage


TA505 FlowerPippi


REMCOS RAT


GodLua Linux Backdoor


APT32 Ratsnif


OSX/CrescentCore

side note: when will we all decide to change mac sig names to macOS/? its way past time, imho


WarZone RAT aka Ave Maria Stealer


Winnti Linux