Blog | ReversingLabs

Yara Rules

December 20, 2023

From the Labs: YARA Rule for Detecting BiBi Wiper

In this edition of From the Labs, a series explaining the threats behind ReversingLabs' YARA rules, we break down BiBi Wiper, a wiper malware.

July 21, 2023

From the Labs: YARA Rule for Detecting Minodo

In this edition, we take a look at what Minodo is, where it came from, and how cybercriminals are using it to deliver other malware families.

July 7, 2023

From the Labs: YARA Rule for Detecting StealC

In this edition of From the Labs, we contextualize StealC, a popular malware infostealer that has become a favored tool for cybercriminals.

June 16, 2023

From the Labs: YARA Rule for Detecting HermeticRansom

The ReversingLabs YARA detection rule for HermeticRansom can help you find this ransomware in your environment.

May 12, 2023

Detecting Debugger Evasion: Exception Flooding

ReversingLabs researchers created detection YARA rules for a debugger evasion recently added to the Malware Behavior Catalog as Exception Flooding.

March 24, 2023

From the Labs: YARA Rule for Detecting NB65

ReversingLabs YARA detection rule for NB65 can help you find this ransomware in your environment.

February 17, 2023

From the Labs: YARA Rule for Detecting Lorenz

ReversingLabs YARA detection rule for Lorenz can help you find this ransomware in your environment. Learn more about the Lorenz ransomware gang now.

January 20, 2023

From the Labs: YARA Rule for Detecting Black Basta

ReversingLabs’ YARA detection rule for Black Basta can help you find this ransomware in your environment.

November 14, 2022

How to write detailed YARA rules for malware detection

This blog post describes the process of how we write our high-quality YARA rules. Here's an example of writing detailed YARA rules.

November 14, 2022

From the Labs: YARA Rule for Detecting GwisinLocker

ReversingLabs’ YARA detection rule for GwisinLocker can help you find this ransomware in your environment.

November 3, 2022

From the Labs: YARA Rule for Detecting LockBit

ReversingLabs’ YARA detection rule for LockBit can help you detect this malicious ransomware in your environment. We break it down for you here.

September 26, 2022

From the Labs: YARA Rule for Detecting Nokoyawa

ReversingLabs’ YARA detection rule for Nokoyawa can help you find this ransomware in your environment.

Software Supply Chain Security

File Security

Security Operations

Products

Technology

Partners

Alliances

Resources

Company

Events

Press

Yara Rules

From the Labs: YARA Rule for Detecting BiBi Wiper

From the Labs: YARA Rule for Detecting Minodo

From the Labs: YARA Rule for Detecting StealC

From the Labs: YARA Rule for Detecting HermeticRansom

Detecting Debugger Evasion: Exception Flooding

From the Labs: YARA Rule for Detecting NB65

From the Labs: YARA Rule for Detecting Lorenz

From the Labs: YARA Rule for Detecting Black Basta

How to write detailed YARA rules for malware detection

From the Labs: YARA Rule for Detecting GwisinLocker

From the Labs: YARA Rule for Detecting LockBit

From the Labs: YARA Rule for Detecting Nokoyawa

Topics

Special Reports

The 2025 Software Supply Chain Security Report

Upcoming Webinars

ConversingLabs

Yara Rules

Topics

Follow us

Subscribe

Special Reports