Sneed-Reactivity/yara-mikesxrs/codewatchorg/cve_2013_0074.yar

rule cve_2013_0074
{
meta:
	author = "Kaspersky Lab"
	filetype = "Win32 EXE"
	date = "2015-07-23"
	version = "1.0"

strings:
	$b2="Can't find Payload() address" ascii wide
	$b3="/SilverApp1;component/App.xaml" ascii wide
	$b4="Can't allocate ums after buf[]" ascii wide
	$b5="------------ START ------------"

condition:
	( (2 of ($b*)) )
}
OMG ISTG PLS WORK RED PILL :red_circle: :pill: 2024-07-25 17:43:35 +00:00			`rule cve_2013_0074`
			`{`
			`meta:`
			`author = "Kaspersky Lab"`
			`filetype = "Win32 EXE"`
			`date = "2015-07-23"`
			`version = "1.0"`

			`strings:`
			`$b2="Can't find Payload() address" ascii wide`
			`$b3="/SilverApp1;component/App.xaml" ascii wide`
			`$b4="Can't allocate ums after buf[]" ascii wide`
			`$b5="------------ START ------------"`

			`condition:`
			`( (2 of ($b*)) )`
			`}`