YARA Threat Detection Lab
Tags
attack-pattern: Data Malicious File - T1204.002 Malware - T1587.001 Malware - T1588.001 Python - T1059.006 Software - T1592.002 Tool - T1588.002 Sudo - T1169
Show in Graph
Common Information
Type Value
UUID f1999c1e-98db-45a0-b58c-ab9f60e951ae
Fingerprint 7469995300a7bb91
Analysis status DONE
Considered CTI value 2
Text language
Published Aug. 12, 2023, 11:46 p.m.
Added to db Aug. 13, 2023, 10:23 a.m.
Last updated Nov. 17, 2024, 11:40 p.m.
Headline YARA Threat Detection Lab
Title YARA Threat Detection Lab
Detected Hints/Tags/Attributes 44/1/46
Source URLs
Redirection Url
Details Source https://medium.com/@john.batshon/yara-threat-detection-lab-ab182962f0cc?source=rss------cybersecurity-5
URL Provider
Details Provider Source level domain
Details medium.com medium.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 167 Cybersecurity on Medium https://medium.com/feed/tag/cybersecurity 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 4128 
github.com
Details Domain 12 
bootstrap.sh
Details Domain 1 
lab.sh
Details Domain 4 
yargen.py
Details Domain 7 
yara.readthedocs.io
Details Domain 1 
arya.py
Details Domain 4 
cyberwoxacademy.com
Details Domain 154 
youtu.be
Details File 131 
tar.gz
Details File 26 
2.tar
Details File 26 
1.tar
Details File 1 
kenobi.txt
Details File 1 
kenobistrings.txt
Details File 1 
grievous.txt
Details File 1 
groevous.txt
Details File 1 
yoda.txt
Details File 1 
deathstar.txt
Details File 144 
requirements.txt
Details File 4 
yargen.py
Details File 3 
writingrules.html
Details File 1 
arya.py
Details File 1 
youdidit.exe
Details Github username 12 
virustotal
Details Github username 35 
neo23x0
Details Github username 2 
claroty
Details Github username 1 
jayteaare
Details md5 1 
f1bc52b1c4da8b1d9dbe44bf41697d9d
Details md5 1 
e10edced67b747f31ce544a5ec39b4eb
Details md5 1 
17879abd086b7494b0d40f5aa6a712fe
Details md5 1 
046d58458878c1cbafa660dfa497e86c
Details sha1 1 
acf20e2e687005925149527e979220d21ded5696
Details sha1 1 
d6a51843f65d032abfb2ec500ce11f32ea72e39d
Details sha1 1 
6fd8ba400fffdbc3c214cc13804e2acab3e9bf39
Details sha256 1 
a6592f3b045c0bd897899a25b3b0b10a4c8444e28764cfcf2717dee1b67d3ecb
Details sha256 1 
0833077daa6d59e306178a61efde6063cbe45eb2d107d4c28649ce579b70826f
Details sha256 1 
2b15dbc85887bed44ff3317572aa5a54c343cc19c22435119d948bcb5f972a87
Details IPv4 8 
4.3.2.1
Details Url 1 
https://github.com/virustotal/yara/archive/refs/tags/v4.3.2.tar.gz
Details Url 1 
https://github.com/virustotal/yara/archive/refs/tags
Details Url 1 
https://github.com/neo23x0/yargen.git
Details Url 1 
https://github.com/claroty/arya.git
Details Url 1 
https://github.com/jayteaare/labscript.git
Details Url 2 
https://yara.readthedocs.io/en/stable/writingrules.html
Details Url 1 
https://cyberwoxacademy.com
Details Url 1 
https://cyberwoxacademy.com/intro-to-threat-detection
Details Url 1 
https://youtu.be/bq5torvuze4