admin/nuclei-templates
1
0
Fork 0
mirror of https://github.com/projectdiscovery/nuclei-templates.git synced 2026-02-13 14:13:34 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
e2e9901bf9ec94de03e5ed7490847aac0ccbc598
nuclei-templates/file/malware/hash/blackenergy-killdisk-malware-hash.yaml
Prince Chaddha ea7a5969c8 Revert "chore: update TemplateMan 🤖" 
This reverts commit c31d574176.
2025-05-27 10:39:47 +08:00

23 lines
993 B
YAML
Raw Blame History

id: blackenergy-killdisk-malware-hash
info:
name: BlackEnergy KillDisk Malware Hash - Detect
author: pussycat0x
severity: info
description: Detects KillDisk malware from BlackEnergy
reference:
- https://github.com/Yara-Rules/rules/blob/master/malware/APT_Blackenergy.yar
tags: malware,blackenergy
file:
- extensions:
- all
matchers:
- type: dsl
dsl:
- "sha256(raw) == '11b7b8a7965b52ebb213b023b6772dd2c76c66893fc96a18a9a33c8cf125af80'"
- "sha256(raw) == '5d2b1abc7c35de73375dd54a4ec5f0b060ca80a1831dac46ad411b4fe4eac4c6'"
- "sha256(raw) == 'c7536ab90621311b526aefd56003ef8e1166168f038307ae960346ce8f75203d'"
- "sha256(raw) == 'f52869474834be5a6b5df7f8f0c46cbc7e9b22fa5cb30bee0f363ec6eb056b95'"
condition: or
# digest: 4a0a00473045022100fb5c08d79a74c289df6a632433bc2883016287d242e2caf1cf62832e194e377e0220209bc4051f5b89b783376699c0f778b1745190746c381925e64ff749f6a5ee89:922c64590222798bb761d5b6d8e72950
Reference in New Issue View Git Blame Copy Permalink