Authenticate for API access | If you are experiencing issues with receiving data from abuse.ch platforms via API, please ensure your requests are authenticated.
➡️ Read here for more info

MalwareBazaar Database

This page shows some basic information the YARA rule INDICATOR_SUSPICIOUS_Stomped_PECompilation_Timestamp_InTheFu including corresponding malware samples.

Database Entry

YARA Rule:INDICATOR_SUSPICIOUS_Stomped_PECompilation_Timestamp_InTheFu
Create hunting rule
Author:ditekSHen
Description:Detect executables with stomped PE compilation timestamp that is greater than local current time
Firstseen:2021-02-01 02:32:35 UTC
Lastseen:2025-05-07 11:21:51 UTC
Sightings:5'168

Malware Samples

The table below shows all malware samples that matching this particular YARA rule (max 1000).

Firstseen (UTC)SHA256 hashTagsSignatureReporter