HKTL_Netcat_Memory_May21

Rule Info

Tags
['HKTL', 'MEMORY']
Name
HKTL_Netcat_Memory_May21
Minimum Yara
1.7
Rule Hash
4428c1c78ed54f9a9708e3d0526d417c
Av Ratio
0.0
Score
75
Author
Florian Roth
Date
2021-05-26
Description
Detects netcat hacktool in memory
Required Modules
[]
Reference
Internal Research

Antivirus Verdicts

Rating
Number of Samples
Malicious (>= 10 engines)
0
Suspicious (< 10 engines)
0
Clean (0 engines)
13

Rule Matches

Hash
Timestamp
Total
Positives
VT
c0156cdbf94b0c65346b79e1c0e6a2e1dcf4cde56c0d118f87b13bd2ecd237de
2021-06-09 08:31:00
61
0
c71b00565f03c120767a27f59d5188b8f1272159516889a97d95202faa82522e
2021-06-09 07:37:23
61
0
0cb823fd0121a619eecf9a030f4dacdd15fb2f28ede2ebbb580519d53de36eb0
2021-06-02 04:12:18
69
0
f2d6bb42b6c1dd25a8de3087dc3d4e64dba5788a4b62efbe16af37b421313ce9
2021-06-01 08:17:01
60
0
94c63af9c0fd721063d1aa3aec4d4d62755988d0fed6485ce288332c6e24f7c6
2021-06-01 07:26:28
61
0
05945699a4c4604482726ed02ec54fed6ca5a5e75c09ec3d312c2318994274bf
2021-06-01 07:23:17
61
0
ef6db26d5e26bc7c36d05e633ab7139fac82eaf06c75d0a200533581d3ddf2b6
2021-06-01 07:23:16
61
0
2e8d9a40ce24672cad45cfbc85e4995f94acd676ecfd391c46c419fac312ff9c
2021-06-01 07:21:11
61
0
40a024dbb533346a8491e6756386b4c786cecf3368cb7923471295533d6ab67a
2021-05-31 10:49:48
61
0
1c5e82e2b9d5ca26757fefc4e5a1f90eaca89d58fedcde9bfcb8eaa0d5f8d51e
2021-05-31 10:32:03
61
0
dfe37bf2f284955ce446dd1ad708681e9965c0534e6c9480a23b847ce80c45ba
2021-05-31 10:17:48
60
0
7b41a0d319ba996f640c1b396ed8e12c9955a3b24e1e4c2ab81b1928c34472a0
2021-05-30 12:00:01
61
0
0acbb5f72f1021f4d095a0a8517cb763b2779ea07031f60cc9cc332ba19958d6
2021-05-30 11:41:29
61
0

Rule Matches per Month (last 24 months)