mirror of
https://github.com/horsicq/Detect-It-Easy.git
synced 2026-06-24 01:54:08 +00:00
9e621e1954
Renamed and moved numerous .sg files in the db directory to follow a more consistent naming convention and directory structure, grouping by type (e.g., compiler, cruncher, packer, protector, etc.). This improves maintainability and clarity of the signature database organization.
14 lines
No EOL
402 B
JavaScript
14 lines
No EOL
402 B
JavaScript
// Detect It Easy: detection rule file
|
|
|
|
// https://www.mend.io/blog/theres-a-new-stealer-variant-in-town-and-its-using-electron-to-stay-fully-undetected/
|
|
meta("archive", "Asar Archive (Electron)");
|
|
|
|
function detect() {
|
|
if (Binary.getSize() >= 28) {
|
|
if (Binary.compare("04..............................'{\"files\":{'")) {
|
|
bDetected = true;
|
|
}
|
|
}
|
|
|
|
return result();
|
|
} |