Show in Graph
Common Information
Type Value
Value 
import "hash"
import "console"
import "pe"

rule PeHashes {
	condition:
		pe.is_pe and console.log("Imphash:\t", pe.imphash()) and console.log("Rich Header Hash:\t", hash.md5(pe.rich_signature.clear_data))
}
Category
Type Yara Rule
Misp Type
Description
Details Published Attributes CTI Title
Details Website 2023-07-14 19 Faster Malware Triage with YARA