IOC Details

pos malware rules
YARA
 by @patrickrolsen
sha1:

d8c788a3f34f92623344a3641a489e77ecba4caa
long description:

rescator pdb strings within binaries
included rules:

pos_memory_scrapper, pos_malwre_dexter_stardust, pos_malware_project_hook, pdb_strings_rescator
comments powered by Disqus