Skip to content
Projects
Groups
Snippets
Help
This project
Loading...
Sign in / Register
Toggle navigation
R
rules
Overview
Overview
Details
Activity
Cycle Analytics
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Charts
Issues
0
Issues
0
List
Board
Labels
Milestones
Merge Requests
0
Merge Requests
0
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Charts
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Charts
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
fact-depend
rules
Commits
b66d9c3b
Commit
b66d9c3b
authored
Jun 13, 2016
by
mmorenog
Committed by
GitHub
Jun 13, 2016
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
Update Ransom_DMALocker.yar
parent
834b87de
Hide whitespace changes
Inline
Side-by-side
Showing
1 changed file
with
19 additions
and
0 deletions
+19
-0
Ransom_DMALocker.yar
malware/Ransom_DMALocker.yar
+19
-0
No files found.
malware/Ransom_DMALocker.yar
View file @
b66d9c3b
...
...
@@ -3,6 +3,7 @@ rule DMALocker
{
meta:
Description = "Deteccion del ransomware DMA Locker desde la version 1.0 a la 4.0"
ref = "https://blog.malwarebytes.org/threat-analysis/2016/02/dma-locker-a-new-ransomware-but-no-reason-to-panic/"
Author = "SadFud"
Date = "30/05/2016"
...
...
@@ -16,3 +17,21 @@ rule DMALocker
any of them
}
//More at reversecodes.wordpress.com
rule DMALocker4.0
{
meta:
Description = "Deteccion del ransomware DMA Locker version 4.0"
ref = "https://blog.malwarebytes.org/threat-analysis/2016/02/dma-locker-a-new-ransomware-but-no-reason-to-panic/"
Author = "SadFud"
Date = "30/05/2016"
Hash = "e3106005a0c026fc969b46c83ce9aeaee720df1bb17794768c6c9615f083d5d1"
strings:
$clave = { 21 44 4d 41 4c 4f 43 4b 34 2e 30 }
condition:
$clave
}
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment
