Rule Info
Name
HKTL_Nim_Shellcode_Loader_NimShellcodeFluctuation_Oct22
Author
Florian Roth
Description
Detects NimShellcodeFluctuation shell code loader
Score
80
Date
2022-10-10
Minimum Yara
3.5.0
Rule Hash
bb2d9658fd806cbcf5d6a236737a4cc6
Tags
['SCRIPT', 'HKTL']
Required Modules
[]
Antivirus Verdicts
Rating
Number of Samples
Malicious (>= 10 engines)
5
Suspicious (< 10 engines)
0
Clean (0 engines)
1
Rule Matches
Timestamp
Positives
Total
Hash
VT
Rule Matches per Month (last 24 months)
Scan your endpoints, forensic images or collected files with our portable scanner THOR