MalwareBazaar Database
This page shows some basic information the YARA rule mal_syscall_hellshall including corresponding malware samples.
Database Entry
| YARA Rule: | mal_syscall_hellshall |
|---|---|
| Author: | Maxime THIEBAUT (@0xThiebaut) |
| Description: | Detects suspicious syscall extraction and indirect syscall used in HellsHall |
| Firstseen: | 2024-05-27 07:51:08 UTC |
| Lastseen: | 2025-04-11 08:18:17 UTC |
| Sightings: | 2 |
Malware Samples
The table below shows all malware samples that matching this particular YARA rule (max 1000).
| Firstseen (UTC) | SHA256 hash | Tags | Signature | Reporter |
|---|