MalwareBazaar Database
This page shows some basic information the YARA rule SUSP_SFX_cmd including corresponding malware samples.
Database Entry
| YARA Rule: | SUSP_SFX_cmd |
|---|---|
| Author: | Florian Roth |
| Description: | Detects suspicious SFX as used by Gamaredon group |
| Firstseen: | 2020-08-13 09:12:48 UTC |
| Lastseen: | 2025-01-22 19:04:17 UTC |
| Sightings: | 12 |
Malware Samples
The table below shows all malware samples that matching this particular YARA rule (max 1000).
| Firstseen (UTC) | SHA256 hash | Tags | Signature | Reporter |
|---|