Improve results scanning for Linux malware (#608)
Warnings found
| Status | Count | |
|---|---|---|
| 🟢 | Files OK | 960 |
| 🟠 | Files with warnings | 12 |
| 🔴 | Files with errors | 0 |
| ⚪ | Files ignored | 660 |
Annotations
Check warning on line 10 in rules/anti-static/base64/obfuscated_caller.yara
virustotal-yara-ci / Rules Analysis
rules/anti-static/base64/obfuscated_caller.yara#L10
rule "base64_str_replace": string "$b" may slow down scanning
Check warning on line 9 in rules/anti-static/binary/opaque.yara
virustotal-yara-ci / Rules Analysis
rules/anti-static/binary/opaque.yara#L9
rule "opaque_binary": string "$word_with_spaces" may slow down scanning
Check warning on line 10 in rules/anti-static/obfuscation/php.yara
virustotal-yara-ci / Rules Analysis
rules/anti-static/obfuscation/php.yara#L10
rule "base64_str_replace": string "$b" may slow down scanning
Check warning on line 23 in rules/anti-static/obfuscation/php.yara
virustotal-yara-ci / Rules Analysis
rules/anti-static/obfuscation/php.yara#L23
rule "gzinflate_str_replace": string "$b" may slow down scanning
Check warning on line 156 in rules/anti-static/obfuscation/php.yara
virustotal-yara-ci / Rules Analysis
rules/anti-static/obfuscation/php.yara#L156
rule "php_str_replace_obfuscation": string "$o_recursive_single" may slow down scanning
Check warning on line 215 in rules/anti-static/obfuscation/php.yara
virustotal-yara-ci / Rules Analysis
rules/anti-static/obfuscation/php.yara#L215
rule "php_short_concat": string "$concat" may slow down scanning
Check warning on line 227 in rules/anti-static/obfuscation/php.yara
virustotal-yara-ci / Rules Analysis
rules/anti-static/obfuscation/php.yara#L227
rule "php_short_concat_multiple": string "$concat" may slow down scanning
Check warning on line 236 in rules/anti-static/obfuscation/python.yara
virustotal-yara-ci / Rules Analysis
rules/anti-static/obfuscation/python.yara#L236
rule "python_long_hex": string "$assign" may slow down scanning
Check warning on line 248 in rules/anti-static/obfuscation/python.yara
virustotal-yara-ci / Rules Analysis
rules/anti-static/obfuscation/python.yara#L248
rule "python_long_hex_multiple": string "$assign" may slow down scanning
Check warning on line 265 in rules/anti-static/obfuscation/python.yara
virustotal-yara-ci / Rules Analysis
rules/anti-static/obfuscation/python.yara#L265
rule "python_hex_decimal": string "$trash" may slow down scanning
Check warning on line 10 in rules/c2/addr/ip.yara
virustotal-yara-ci / Rules Analysis
rules/c2/addr/ip.yara#L10
rule "hardcoded_ip": string "$sus_ipv4" may slow down scanning
Check warning on line 11 in rules/c2/addr/ip.yara
virustotal-yara-ci / Rules Analysis
rules/c2/addr/ip.yara#L11
rule "hardcoded_ip": string "$not_version" may slow down scanning
Check warning on line 33 in rules/c2/addr/ip.yara
virustotal-yara-ci / Rules Analysis
rules/c2/addr/ip.yara#L33
rule "elf_hardcoded_ip": string "$sus_ipv4" may slow down scanning
Check warning on line 34 in rules/c2/addr/ip.yara
virustotal-yara-ci / Rules Analysis
rules/c2/addr/ip.yara#L34
rule "elf_hardcoded_ip": string "$not_version" may slow down scanning
Check warning on line 77 in rules/c2/addr/ip.yara
virustotal-yara-ci / Rules Analysis
rules/c2/addr/ip.yara#L77
rule "hardcoded_ip_port": string "$ipv4" may slow down scanning
Check warning on line 12 in rules/exec/shell/background-sleep.yara
virustotal-yara-ci / Rules Analysis
rules/exec/shell/background-sleep.yara#L12
rule "sleep_and_background": string "$cmd_bg" may slow down scanning
Check warning on line 30 in rules/exfil/curl_elf.yara
virustotal-yara-ci / Rules Analysis
rules/exfil/curl_elf.yara#L30
rule "exfil_libcurl_elf": string "$word_with_spaces" may slow down scanning
Check warning on line 9 in rules/impact/degrade/app.yara
virustotal-yara-ci / Rules Analysis
rules/impact/degrade/app.yara#L9
rule "osascript_window_closer": string "$c_app_name" may slow down scanning
Check warning on line 26 in rules/impact/degrade/app.yara
virustotal-yara-ci / Rules Analysis
rules/impact/degrade/app.yara#L26
rule "osascript_quitter": string "$c_app_name" may slow down scanning
Check warning on line 349 in rules/impact/remote_access/php.yara
virustotal-yara-ci / Rules Analysis
rules/impact/remote_access/php.yara#L349
rule "php_str_replace_obfuscation": string "$o_recursive_single" may slow down scanning
Check warning on line 27 in rules/malware/family/amos.yara
virustotal-yara-ci / Rules Analysis
rules/malware/family/amos.yara#L27
rule "amos_magic_var": string "$word_with_spaces" may slow down scanning
Check warning on line 8 in rules/persist/systemd/no_docs_or_comments.yara
virustotal-yara-ci / Rules Analysis
rules/persist/systemd/no_docs_or_comments.yara#L8
rule "systemd_no_comments_or_documentation": string "$ex_comment" may slow down scanning
Check warning on line 26 in rules/sus/ancient_gcc.yara
virustotal-yara-ci / Rules Analysis
rules/sus/ancient_gcc.yara#L26
rule "small_opaque_archaic_gcc": string "$word_with_spaces" may slow down scanning