APT_MAL_HemiGate_DLL_Loader_Sep23

Rule Info

Name
APT_MAL_HemiGate_DLL_Loader_Sep23
Author
X__Junior
Description
Detects DLL that loads HemiGate backdoor
Score
80
Date
2023-09-12
Minimum Yara
1.7
Rule Hash
cc3080e899aedddd21fccbe6f325cdf6
Tags
['APT', 'MAL', 'FILE']
Required Modules
[]

Antivirus Verdicts

Rating
Number of Samples
Malicious (>= 10 engines)
4
Suspicious (< 10 engines)
1
Clean (0 engines)
0

Rule Matches

Timestamp
Positives
Total
Hash
VT
2024-03-15 14:25:41
30
68
77dd87842f56750439b802a432b18714d345c86edfca61564db566c2737a988d
2024-01-11 23:07:05
3
68
67e3f336315db1677fa0805cb605af6552cd809930c87318fbf4310a157a263e
2023-10-04 15:24:18
49
71
e1a7e5f27362aaf0d12b58b96a816ef61a2a498def9805297aa81f6f83729230
2023-09-27 15:44:33
46
68
eeb3d2e87d343b2acf6bc8e4e4122d76a9ad200ae52340c61e537a80666705ed
2023-09-21 20:15:33
37
70
cdadad8d7ced1370baa5d1ffe435bed78c2d58ed4cda364b8a7484e3c7cdac98

Rule Matches per Month (last 24 months)