HKTL_PEzor_Packer_Oct20_1

Rule Info

Rule Hash
3b2dc6463c020cfa75247990554c1caf
Required Modules
[]
Av Ratio
12.25
Author
Florian Roth
Score
75
Name
HKTL_PEzor_Packer_Oct20_1
Minimum Yara
1.7
Description
Detects PEzor packed executables
Date
2020-10-26
Tags
['HKTL', 'T1045', 'EXE', 'FILE']

Antivirus Verdicts

Rating
Number of Samples
Malicious (>= 10 engines)
8
Suspicious (< 10 engines)
26
Clean (0 engines)
0

Rule Matches

Positives
Total
Hash
Timestamp
VT
6
70
5e43893a7edfa4eefc8035ab64b3a4ad692fe413d67abb92a03f78bb6d49cbd7
2020-11-27 01:36:38
9
71
ca2dd5661979158f6c692abf8c50c9ab42a838d8ac435056c3d7f243c75c78a6
2020-11-24 16:12:03
15
50
8876c66587b0f0c26cf00fa623ad1680859603c16a87c7c4054d5f856f50d2aa
2020-11-24 16:10:22
14
70
02ee41b25a4b9bacca524e0a65ed3cb9f7fb27f1c991785c5063ff3ef65de6c9
2020-11-24 16:09:28
8
68
7997602149029c1513994da6b018b58a16a6547b20e4ec54b28b0f251e6369e6
2020-11-24 09:28:43
2
71
2375867b31d0cf504139fe0b2cbbbe80f4a7dc553b32b1adfc3a6b21b3a0fb39
2020-11-24 05:54:35
3
71
83527b0a19a5e9c3fd37fb0e56d8f0f6b89d95b42d28f2c151700d20724ef261
2020-11-24 05:24:46
6
72
66ee6784dc8c6121965cf27d717c190eb14180d02045fd915a3a059fb451a9f0
2020-11-19 18:11:21
6
71
3820b27225f901877f75332f326b20fd26eaa5cf90b8e389a3d2239ad5ea5c3e
2020-11-19 18:01:54
13
72
7420dd51a3787549711b370c1c279e62b9dd5025f0a29f1b9ed7035a07639b08
2020-11-19 16:50:04
11
72
60954e7500b1806ece83f50131988e1dacf0bb9cbe355276ae1219bbd7e717e1
2020-11-19 13:07:32
5
71
810e83adbb9ba404e0fe1f53a281dcd878b2d0aba764bace94a51b9a490bc043
2020-11-18 19:25:11
6
71
6330a56b5a9951e96b36cc4ce249831621ce6cdbe4593b653f88d0ec1b0bac89
2020-11-18 17:47:10
8
68
39736e169b510479ddea35d457af6a4b403ffc42979bff5548bbf2d0b4b57a07
2020-11-18 15:49:03
4
72
ac17c072f10541d123dfd58f2610c95f7a59d490dc6698261ccac8722a9403f4
2020-11-18 15:47:38
8
72
800c7bea011b04797825014291179a71cfc022d34d91abcd2475d835483ce8bd
2020-11-17 16:56:33
19
72
01362069c31287bef2a26ed8e781667573ef8767e9ddeacb0e8434ac65a7ca16
2020-11-17 15:55:19
3
70
14dce17f99955f86b05970aa13e35680e879aaa190e598bdcdc4dbf54ee90734
2020-11-14 13:14:07
1
60
bae2b1fe61602413ca6b39f7f8f35fcfcdd593c976f246942143313527dfe27f
2020-11-14 13:14:07
1
72
911656867993801faa37fbf144d5a89165ae83404e7dfee31e49a40e93964029
2020-11-13 14:32:53
4
72
3a2fd3d968f949eb6dc610f1b2d8bef040178cef1b64ec0d8c44719e9e001a2c
2020-11-13 14:31:27
4
72
922894aa8d222db48d1763697bbd10ab96c0e6b45bfb13ce26e725a357e7b880
2020-11-13 14:29:59
29
71
b41b5ebc76485e6a4277d1a60f64d5e880939b8e32d8273aa030f1813eb39b15
2020-11-13 02:35:05
29
71
f0878ba6e096cbb8c0ac052187ae0ace26d49e96120cd3ebe636502dd26bbac9
2020-11-12 19:38:56
2
72
a9c3cfe4c116643ac3381901822bc105bd5cca239648c8900d6a6063679d89d8
2020-11-10 07:18:11
6
71
777e01f426bbea31862ac1d2d30780f26a3c2695cb34ee2bbe29dbb0258777ac
2020-11-08 06:37:07
2
72
41e7433cb6b147d244ae97c24c36f6cbb337fa138e217571e77ba2e3665d2ef0
2020-11-07 08:01:20
6
71
b75e78e7e540178f4a19de2bb64bcb637deedaf27832865bd85b56ef03611040
2020-11-07 07:56:10
4
71
81cb0c20d05fc55b8e0d1cbdd8960ae67ddc185da92040033efe1126d96c4654
2020-11-07 07:16:34
4
72
f4ac9f0ca9a5b14576be993cffa993bc93904c0d6527fe3a37e4a950ee20949b
2020-11-05 14:06:59
2
71
d9acf1de4894adee25e01f176aeac3d66a1dfd94ca3bf69e92fb6b946c110866
2020-11-05 12:53:45
6
71
ef975cbfd36772bd974738db9f40a9802ff01e0c0d52aeb8a35079fd1ffe5e5a
2020-11-05 12:40:12
6
69
bbfae4694a715a531ac8c1c84352566f8127b0fa4c52052f431469151e795997
2020-10-30 17:23:35
36
69
1f8cf6c64db9c12188dc2c94af624ac4ca54804fa4dc0854aa4ab8983c81aba6
2020-10-27 11:35:30

Rule Matches per Month (last 24 months)