Index updated

antidebug_antivm_index.yar

 /*
 Generated by Yara-Rules
-On 21-06-2020
+On 01-07-2020
 */
 include "./antidebug_antivm/antidebug_antivm.yar"

capabilities_index.yar

 /*
 Generated by Yara-Rules
-On 21-06-2020
+On 01-07-2020
 */
 include "./capabilities/capabilities.yar"

crypto_index.yar

 /*
 Generated by Yara-Rules
-On 21-06-2020
+On 01-07-2020
 */
 include "./crypto/crypto_signatures.yar"

cve_rules_index.yar

 /*
 Generated by Yara-Rules
-On 21-06-2020
+On 01-07-2020
 */
 include "./cve_rules/CVE-2010-0805.yar"
 include "./cve_rules/CVE-2010-0887.yar"

email_index.yar

 /*
 Generated by Yara-Rules
-On 21-06-2020
+On 01-07-2020
 */
 include "./email/EMAIL_Cryptowall.yar"
 include "./email/Email_fake_it_maintenance_bulletin.yar"

exploit_kits_index.yar

 /*
 Generated by Yara-Rules
-On 21-06-2020
+On 01-07-2020
 */
 include "./exploit_kits/EK_Angler.yar"
 include "./exploit_kits/EK_Blackhole.yar"

index.yar

 /*
 Generated by Yara-Rules
-On 21-06-2020
+On 01-07-2020
 */
 include "./antidebug_antivm/antidebug_antivm.yar"
 include "./capabilities/capabilities.yar"
@@ -58,6 +58,7 @@ include "./maldocs/Maldoc_Suspicious_OLE_target.yar"
 include "./maldocs/Maldoc_UserForm.yar"
 include "./maldocs/Maldoc_VBA_macro_code.yar"
 include "./maldocs/Maldoc_Word_2007_XML_Flat_OPC.yar"
+include "./maldocs/Maldoc_hancitor_dropper.yar"
 include "./maldocs/Maldoc_malrtf_ole2link.yar"
 include "./maldocs/maldoc_somerules.yar"
 include "./malware/000_common_rules.yar"
@@ -110,6 +111,7 @@ include "./malware/APT_Minidionis.yar"
 include "./malware/APT_Mirage.yar"
 include "./malware/APT_Molerats.yar"
 include "./malware/APT_Mongall.yar"
+include "./malware/APT_MoonlightMaze.yar"
 include "./malware/APT_NGO.yar"
 include "./malware/APT_OPCleaver.yar"
 include "./malware/APT_Oilrig.yar"
@@ -123,8 +125,11 @@ include "./malware/APT_Platinum.yar"
 include "./malware/APT_Poseidon_Group.yar"
 include "./malware/APT_Prikormka.yar"
 include "./malware/APT_PutterPanda.yar"
+include "./malware/APT_RedLeaves.yar"
 include "./malware/APT_Regin.yar"
 include "./malware/APT_RemSec.yar"
+include "./malware/APT_Sauron.yar"
+include "./malware/APT_Sauron_extras.yar"
 include "./malware/APT_Scarab_Scieron.yar"
 include "./malware/APT_Seaduke.yar"
 include "./malware/APT_Shamoon_StoneDrill.yar"
@@ -186,6 +191,7 @@ include "./malware/MALW_Derkziel.yar"
 include "./malware/MALW_Dexter.yar"
 include "./malware/MALW_DiamondFox.yar"
 include "./malware/MALW_DirtJumper.yar"
+include "./malware/MALW_Eicar.yar"
 include "./malware/MALW_Elex.yar"
 include "./malware/MALW_Elknot.yar"
 include "./malware/MALW_Emotet.yar"
@@ -311,6 +317,7 @@ include "./malware/MALW_Zegost.yar"
 include "./malware/MALW_Zeus.yar"
 include "./malware/MALW_adwind_RAT.yar"
 include "./malware/MALW_hancitor.yar"
+include "./malware/MALW_kirbi_mimikatz.yar"
 include "./malware/MALW_kpot.yar"
 include "./malware/MALW_marap.yar"
 include "./malware/MALW_shifu_shiz.yar"
@@ -388,13 +395,22 @@ include "./malware/RANSOM_MS17-010_Wannacrypt.yar"
 include "./malware/RANSOM_Maze.yar"
 include "./malware/RANSOM_PetrWrap.yar"
 include "./malware/RANSOM_Petya.yar"
+include "./malware/RANSOM_Petya_MS17_010.yar"
+include "./malware/RANSOM_Pico.yar"
 include "./malware/RANSOM_SamSam.yar"
 include "./malware/RANSOM_Satana.yar"
+include "./malware/RANSOM_Shiva.yar"
 include "./malware/RANSOM_Sigma.yar"
 include "./malware/RANSOM_Snake.yar"
 include "./malware/RANSOM_Stampado.yar"
 include "./malware/RANSOM_TeslaCrypt.yar"
 include "./malware/RANSOM_Tox.yar"
+include "./malware/RANSOM_acroware.yar"
+include "./malware/RANSOM_jeff_dev.yar"
+include "./malware/RANSOM_locdoor.yar"
+include "./malware/RANSOM_screenlocker_5h311_1nj3c706.yar"
+include "./malware/RANSOM_shrug2.yar"
+include "./malware/RANSOM_termite.yar"
 include "./malware/RAT_Adwind.yar"
 include "./malware/RAT_Adzok.yar"
 include "./malware/RAT_Asyncrat.yar"
@@ -418,6 +434,7 @@ include "./malware/RAT_Meterpreter_Reverse_Tcp.yar"
 include "./malware/RAT_Nanocore.yar"
 include "./malware/RAT_NetwiredRC.yar"
 include "./malware/RAT_Njrat.yar"
+include "./malware/RAT_Orcus.yar"
 include "./malware/RAT_PlugX.yar"
 include "./malware/RAT_PoetRATDoc.yar"
 include "./malware/RAT_PoetRATPython.yar"

index_w_mobile.yar

 /*
 Generated by Yara-Rules
-On 21-06-2020
+On 01-07-2020
 */
 include "./antidebug_antivm/antidebug_antivm.yar"
 include "./capabilities/capabilities.yar"
@@ -58,6 +58,7 @@ include "./maldocs/Maldoc_Suspicious_OLE_target.yar"
 include "./maldocs/Maldoc_UserForm.yar"
 include "./maldocs/Maldoc_VBA_macro_code.yar"
 include "./maldocs/Maldoc_Word_2007_XML_Flat_OPC.yar"
+include "./maldocs/Maldoc_hancitor_dropper.yar"
 include "./maldocs/Maldoc_malrtf_ole2link.yar"
 include "./maldocs/maldoc_somerules.yar"
 include "./malware/000_common_rules.yar"
@@ -110,6 +111,7 @@ include "./malware/APT_Minidionis.yar"
 include "./malware/APT_Mirage.yar"
 include "./malware/APT_Molerats.yar"
 include "./malware/APT_Mongall.yar"
+include "./malware/APT_MoonlightMaze.yar"
 include "./malware/APT_NGO.yar"
 include "./malware/APT_OPCleaver.yar"
 include "./malware/APT_Oilrig.yar"
@@ -123,8 +125,11 @@ include "./malware/APT_Platinum.yar"
 include "./malware/APT_Poseidon_Group.yar"
 include "./malware/APT_Prikormka.yar"
 include "./malware/APT_PutterPanda.yar"
+include "./malware/APT_RedLeaves.yar"
 include "./malware/APT_Regin.yar"
 include "./malware/APT_RemSec.yar"
+include "./malware/APT_Sauron.yar"
+include "./malware/APT_Sauron_extras.yar"
 include "./malware/APT_Scarab_Scieron.yar"
 include "./malware/APT_Seaduke.yar"
 include "./malware/APT_Shamoon_StoneDrill.yar"
@@ -186,6 +191,7 @@ include "./malware/MALW_Derkziel.yar"
 include "./malware/MALW_Dexter.yar"
 include "./malware/MALW_DiamondFox.yar"
 include "./malware/MALW_DirtJumper.yar"
+include "./malware/MALW_Eicar.yar"
 include "./malware/MALW_Elex.yar"
 include "./malware/MALW_Elknot.yar"
 include "./malware/MALW_Emotet.yar"
@@ -311,6 +317,7 @@ include "./malware/MALW_Zegost.yar"
 include "./malware/MALW_Zeus.yar"
 include "./malware/MALW_adwind_RAT.yar"
 include "./malware/MALW_hancitor.yar"
+include "./malware/MALW_kirbi_mimikatz.yar"
 include "./malware/MALW_kpot.yar"
 include "./malware/MALW_marap.yar"
 include "./malware/MALW_shifu_shiz.yar"
@@ -388,13 +395,22 @@ include "./malware/RANSOM_MS17-010_Wannacrypt.yar"
 include "./malware/RANSOM_Maze.yar"
 include "./malware/RANSOM_PetrWrap.yar"
 include "./malware/RANSOM_Petya.yar"
+include "./malware/RANSOM_Petya_MS17_010.yar"
+include "./malware/RANSOM_Pico.yar"
 include "./malware/RANSOM_SamSam.yar"
 include "./malware/RANSOM_Satana.yar"
+include "./malware/RANSOM_Shiva.yar"
 include "./malware/RANSOM_Sigma.yar"
 include "./malware/RANSOM_Snake.yar"
 include "./malware/RANSOM_Stampado.yar"
 include "./malware/RANSOM_TeslaCrypt.yar"
 include "./malware/RANSOM_Tox.yar"
+include "./malware/RANSOM_acroware.yar"
+include "./malware/RANSOM_jeff_dev.yar"
+include "./malware/RANSOM_locdoor.yar"
+include "./malware/RANSOM_screenlocker_5h311_1nj3c706.yar"
+include "./malware/RANSOM_shrug2.yar"
+include "./malware/RANSOM_termite.yar"
 include "./malware/RAT_Adwind.yar"
 include "./malware/RAT_Adzok.yar"
 include "./malware/RAT_Asyncrat.yar"
@@ -418,6 +434,7 @@ include "./malware/RAT_Meterpreter_Reverse_Tcp.yar"
 include "./malware/RAT_Nanocore.yar"
 include "./malware/RAT_NetwiredRC.yar"
 include "./malware/RAT_Njrat.yar"
+include "./malware/RAT_Orcus.yar"
 include "./malware/RAT_PlugX.yar"
 include "./malware/RAT_PoetRATDoc.yar"
 include "./malware/RAT_PoetRATPython.yar"

maldocs_index.yar

 /*
 Generated by Yara-Rules
-On 21-06-2020
+On 01-07-2020
 */
 include "./maldocs/Maldoc_APT10_MenuPass.yar"
 include "./maldocs/Maldoc_APT19_CVE-2017-1099.yar"
@@ -19,5 +19,6 @@ include "./maldocs/Maldoc_Suspicious_OLE_target.yar"
 include "./maldocs/Maldoc_UserForm.yar"
 include "./maldocs/Maldoc_VBA_macro_code.yar"
 include "./maldocs/Maldoc_Word_2007_XML_Flat_OPC.yar"
+include "./maldocs/Maldoc_hancitor_dropper.yar"
 include "./maldocs/Maldoc_malrtf_ole2link.yar"
 include "./maldocs/maldoc_somerules.yar"

malware_index.yar

 /*
 Generated by Yara-Rules
-On 21-06-2020
+On 01-07-2020
 */
 include "./malware/000_common_rules.yar"
 include "./malware/APT_APT1.yar"
@@ -52,6 +52,7 @@ include "./malware/APT_Minidionis.yar"
 include "./malware/APT_Mirage.yar"
 include "./malware/APT_Molerats.yar"
 include "./malware/APT_Mongall.yar"
+include "./malware/APT_MoonlightMaze.yar"
 include "./malware/APT_NGO.yar"
 include "./malware/APT_OPCleaver.yar"
 include "./malware/APT_Oilrig.yar"
@@ -65,8 +66,11 @@ include "./malware/APT_Platinum.yar"
 include "./malware/APT_Poseidon_Group.yar"
 include "./malware/APT_Prikormka.yar"
 include "./malware/APT_PutterPanda.yar"
+include "./malware/APT_RedLeaves.yar"
 include "./malware/APT_Regin.yar"
 include "./malware/APT_RemSec.yar"
+include "./malware/APT_Sauron.yar"
+include "./malware/APT_Sauron_extras.yar"
 include "./malware/APT_Scarab_Scieron.yar"
 include "./malware/APT_Seaduke.yar"
 include "./malware/APT_Shamoon_StoneDrill.yar"
@@ -128,6 +132,7 @@ include "./malware/MALW_Derkziel.yar"
 include "./malware/MALW_Dexter.yar"
 include "./malware/MALW_DiamondFox.yar"
 include "./malware/MALW_DirtJumper.yar"
+include "./malware/MALW_Eicar.yar"
 include "./malware/MALW_Elex.yar"
 include "./malware/MALW_Elknot.yar"
 include "./malware/MALW_Emotet.yar"
@@ -253,6 +258,7 @@ include "./malware/MALW_Zegost.yar"
 include "./malware/MALW_Zeus.yar"
 include "./malware/MALW_adwind_RAT.yar"
 include "./malware/MALW_hancitor.yar"
+include "./malware/MALW_kirbi_mimikatz.yar"
 include "./malware/MALW_kpot.yar"
 include "./malware/MALW_marap.yar"
 include "./malware/MALW_shifu_shiz.yar"
@@ -330,13 +336,22 @@ include "./malware/RANSOM_MS17-010_Wannacrypt.yar"
 include "./malware/RANSOM_Maze.yar"
 include "./malware/RANSOM_PetrWrap.yar"
 include "./malware/RANSOM_Petya.yar"
+include "./malware/RANSOM_Petya_MS17_010.yar"
+include "./malware/RANSOM_Pico.yar"
 include "./malware/RANSOM_SamSam.yar"
 include "./malware/RANSOM_Satana.yar"
+include "./malware/RANSOM_Shiva.yar"
 include "./malware/RANSOM_Sigma.yar"
 include "./malware/RANSOM_Snake.yar"
 include "./malware/RANSOM_Stampado.yar"
 include "./malware/RANSOM_TeslaCrypt.yar"
 include "./malware/RANSOM_Tox.yar"
+include "./malware/RANSOM_acroware.yar"
+include "./malware/RANSOM_jeff_dev.yar"
+include "./malware/RANSOM_locdoor.yar"
+include "./malware/RANSOM_screenlocker_5h311_1nj3c706.yar"
+include "./malware/RANSOM_shrug2.yar"
+include "./malware/RANSOM_termite.yar"
 include "./malware/RAT_Adwind.yar"
 include "./malware/RAT_Adzok.yar"
 include "./malware/RAT_Asyncrat.yar"
@@ -360,6 +375,7 @@ include "./malware/RAT_Meterpreter_Reverse_Tcp.yar"
 include "./malware/RAT_Nanocore.yar"
 include "./malware/RAT_NetwiredRC.yar"
 include "./malware/RAT_Njrat.yar"
+include "./malware/RAT_Orcus.yar"
 include "./malware/RAT_PlugX.yar"
 include "./malware/RAT_PoetRATDoc.yar"
 include "./malware/RAT_PoetRATPython.yar"

mobile_malware_index.yar

 /*
 Generated by Yara-Rules
-On 21-06-2020
+On 01-07-2020
 */

packers_index.yar

 /*
 Generated by Yara-Rules
-On 21-06-2020
+On 01-07-2020
 */
 include "./packers/JJencode.yar"
 include "./packers/Javascript_exploit_and_obfuscation.yar"

webshells_index.yar

 /*
 Generated by Yara-Rules
-On 21-06-2020
+On 01-07-2020
 */
 include "./webshells/WShell_APT_Laudanum.yar"
 include "./webshells/WShell_ASPXSpy.yar"