MalwareBazaar Database
This page shows some basic information the YARA rule INDICATOR_SUSPICIOUS_EXE_References_Confidential_Data_Store including corresponding malware samples.
Database Entry
| YARA Rule: | INDICATOR_SUSPICIOUS_EXE_References_Confidential_Data_Store |
|---|---|
| Author: | ditekSHen |
| Description: | Detects executables referencing many confidential data stores found in browsers, mail clients, cryptocurreny wallets, etc. Observed in information stealers |
| Firstseen: | 2020-11-05 22:26:01 UTC |
| Lastseen: | 2025-12-01 11:50:47 UTC |
| Sightings: | 8'012 |
Malware Samples
The table below shows all malware samples that matching this particular YARA rule (max 1000).
| Firstseen (UTC) | SHA256 hash | Tags | Signature | Reporter |
|---|