{"id":57111,"date":"2024-05-28T21:49:37","date_gmt":"2024-05-28T17:49:37","guid":{"rendered":"https:\/\/onhexgroup.ir\/?p=6538"},"modified":"2024-07-06T08:36:37","modified_gmt":"2024-07-06T05:06:37","slug":"%d8%ae%d8%af%d8%a7%d8%ad%d8%a7%d9%81%d8%b8-yara%d8%8c-%d8%b3%d9%84%d8%a7%d9%85-yara-x","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/%d8%ae%d8%af%d8%a7%d8%ad%d8%a7%d9%81%d8%b8-yara%d8%8c-%d8%b3%d9%84%d8%a7%d9%85-yara-x\/","title":{"rendered":"\u062e\u062f\u0627\u062d\u0627\u0641\u0638 YARA\u060c \u0633\u0644\u0627\u0645 YARA-X"},"content":{"rendered":"<p>YARA \u0628\u0647 \u0645\u062f\u062a \u0628\u06cc\u0634 \u0627\u0632 15 \u0633\u0627\u0644 \u062f\u0631 \u062d\u0627\u0644 \u062a\u0648\u0633\u0639\u0647 \u0648 \u067e\u06cc\u0634\u0631\u0641\u062a \u0628\u0648\u062f\u0647 \u062a\u0627 \u0627\u06cc\u0646\u06a9\u0647 \u0628\u0647 \u06cc\u06a9 \u0627\u0628\u0632\u0627\u0631 \u0636\u0631\u0648\u0631\u06cc \u0628\u0631\u0627\u06cc \u0645\u062d\u0642\u0642\u06cc\u0646 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0628\u062e\u0635\u0648\u0635 \u0645\u062d\u0642\u0642\u06cc\u0646 \u0628\u062f\u0627\u0641\u0632\u0627\u0631 \u062a\u0628\u062f\u06cc\u0644 \u0628\u0634\u0647. \u062f\u0631 \u0637\u0648\u0644 \u0627\u06cc\u0646 \u0645\u062f\u062a \u0634\u0627\u0647\u062f \u0628\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u0647\u0627\u06cc \u0645\u062a\u0639\u062f\u062f\u06cc \u0628\u0648\u062f\u0647\u060c \u0648\u06cc\u0698\u06af\u06cc \u0647\u0627\u06cc \u062c\u062f\u06cc\u062f\u06cc \u0628\u0647\u0634 \u0627\u0636\u0627\u0641\u0647 \u0634\u062f\u0647 \u0648 \u0628\u0627\u06af \u0647\u0627\u06cc \u0628\u06cc\u0634\u0645\u0627\u0631\u06cc \u062f\u0631 \u0627\u0648\u0646 \u0631\u0641\u0639 \u0634\u062f\u0647. \u0628\u0627 \u0627\u06cc\u0646 \u062d\u0627\u0644 VirusTotal \u0627\u0639\u0644\u0627\u0645 \u06a9\u0631\u062f\u0647 \u06a9\u0647 \u06cc\u06a9 \u0628\u0627\u0632\u0646\u0648\u06cc\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0627\u0632 \u0627\u0648\u0646 \u0631\u0648 \u062a\u0648\u0633\u0639\u0647 \u062f\u0627\u062f\u0647.<\/p>\n<p>\u067e\u06cc\u0627\u062f\u0647 \u0633\u0627\u0632\u06cc \u062c\u062f\u06cc\u062f \u06a9\u0647 YARA-X \u0646\u0627\u0645 \u062f\u0627\u0631\u0647\u060c \u0628\u0635\u0648\u0631\u062a \u06a9\u0627\u0645\u0644 \u062f\u0631 Rust \u062a\u0648\u0633\u0639\u0647 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647. VT \u0647\u062f\u0641 \u0627\u0632 \u0627\u06cc\u0646 \u067e\u06cc\u0627\u062f\u0647 \u0633\u0627\u0632\u06cc \u062c\u062f\u06cc\u062f \u0631\u0648 \u0645\u0648\u0627\u0631\u062f \u0632\u06cc\u0631 \u0627\u0639\u0644\u0627\u0645 \u06a9\u0631\u062f\u0647:<\/p>\n<ul>\n<li><strong>\u062a\u062c\u0631\u0628\u0647 \u06a9\u0627\u0631\u0628\u0631\u06cc \u0628\u0647\u062a\u0631:<\/strong> <span class=\"HwtZe\" lang=\"fa\"><span class=\"jCAhz ChMk0b\"><span class=\"ryNqvb\"> \u0631\u0627\u0628\u0637 \u062e\u0637 \u0641\u0631\u0645\u0627\u0646 \u062c\u062f\u06cc\u062f \u0645\u062f\u0631\u0646\u062a\u0631\u0647 \u0648 \u0628\u0631\u0627\u06cc \u0646\u0645\u0627\u06cc\u0634 \u0628\u0647\u062a\u0631\u060c \u0627\u0632 \u0631\u0646\u06af \u0647\u0627\u06cc \u0645\u062e\u062a\u0644\u0641\u06cc \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc\u06a9\u0646\u0647 \u0648 \u06af\u0632\u0627\u0631\u0634\u0647\u0627\u06cc \u062e\u0637\u0627 \u062f\u0631 \u0627\u06cc\u0646 \u0646\u0633\u062e\u0647 \u0648\u0627\u0636\u062d\u062a\u0631 \u0647\u0633\u062a\u0646.<\/span><\/span> <span class=\"jCAhz ChMk0b\"><span class=\"ryNqvb\">\u062f\u0631 \u0622\u06cc\u0646\u062f\u0647 \u0647\u0645 \u06cc\u0633\u0631\u06cc \u0648\u06cc\u0698\u06af\u06cc \u062c\u062f\u06cc\u062f \u0628\u0631\u0627\u06cc \u062a\u062c\u0631\u0628\u0647 \u06a9\u0627\u0631\u0628\u0631\u06cc \u0628\u0647\u062a\u0631\u060c \u0642\u0631\u0627\u0631\u0647 \u0628\u0647\u0634 \u0627\u0636\u0627\u0641\u0647 \u0628\u0634\u0647.<\/span><\/span><\/span><\/li>\n<\/ul>\n<div id=\"gallery-1\" class=\"gallery galleryid-6538 gallery-columns-2 gallery-size-thumbnail\">\n<figure class=\"gallery-item\">\n<div class=\"gallery-icon landscape\"><img loading=\"lazy\" decoding=\"async\" class=\"attachment-thumbnail size-thumbnail\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2024\/05\/d8aed8afd8a7d8add8a7d981d8b8-yarad88c-d8b3d984d8a7d985-yara-x.jpg\" alt=\"\" width=\"150\" height=\"150\" aria-describedby=\"gallery-1-6542\" title=\"\"><\/div><figcaption id=\"gallery-1-6542\" class=\"wp-caption-text gallery-caption\">\u062e\u0631\u0648\u062c\u06cc yara-x \u062f\u0631 cmd<\/figcaption><\/figure>\n<figure class=\"gallery-item\">\n<div class=\"gallery-icon landscape\"><img loading=\"lazy\" decoding=\"async\" class=\"attachment-thumbnail size-thumbnail\" src=\"https:\/\/afaghhosting.net\/blog\/wp-content\/uploads\/2024\/05\/d8aed8afd8a7d8add8a7d981d8b8-yarad88c-d8b3d984d8a7d985-yara-x-1.jpg\" alt=\"\" width=\"150\" height=\"150\" aria-describedby=\"gallery-1-6543\" title=\"\"><\/div><figcaption id=\"gallery-1-6543\" class=\"wp-caption-text gallery-caption\">\u062e\u0631\u0648\u062c\u06cc yara-x \u062f\u0631 \u067e\u0627\u0648\u0631\u0634\u0644<\/figcaption><\/figure>\n<\/div>\n<ul>\n<li><strong>\u0633\u0627\u0632\u06af\u0627\u0631\u06cc \u062f\u0631 \u0633\u0637\u062d \u0631\u0648\u0644\u0647\u0627<\/strong>: \u062f\u0631 \u062d\u0627\u0644\u06cc\u06a9\u0647 \u062f\u0633\u062a\u06cc\u0627\u0628\u06cc \u0628\u0647 \u0633\u0627\u0632\u06af\u0627\u0631\u06cc 100 \u062f\u0631\u0635\u062f \u062f\u0634\u0648\u0627\u0631\u0647\u060c \u0627\u0645\u0627 \u0633\u0639\u06cc \u06a9\u0631\u062f\u0646 \u062a\u0627 99 \u062f\u0631\u0635\u062f \u0627\u06cc\u0646 \u0646\u0633\u062e\u0647 \u0631\u0648 \u0628\u0627 YARA \u062f\u0631 \u0633\u0637\u062d \u0631\u0648\u0644\u0647\u0627 \u0633\u0627\u0632\u06af\u0627\u0631 \u0646\u06af\u0647 \u062f\u0627\u0631\u0646. \u0639\u062f\u0645 \u0633\u0627\u0632\u06af\u0627\u0631\u06cc\u0647\u0627 \u0628\u0627\u06cc\u062f \u062d\u062f\u0627\u0642\u0644 \u0628\u0627\u0634\u0647 \u0648 \u0628\u0637\u0648\u0631 \u06a9\u0627\u0645\u0644 \u0645\u0633\u062a\u0646\u062f \u0645\u06cc\u0634\u0646. \u0646\u0645\u0648\u0646\u0647 \u0627\u0632 \u0631\u0648\u0644\u0647\u0627\u06cc YARA-X:<\/li>\n<\/ul>\n<p><!-- Urvanov Syntax Highlighter v2.8.36 --><\/p>\n<div id=\"urvanov-syntax-highlighter-665650afc345e522925301\" class=\"urvanov-syntax-highlighter-syntax crayon-theme-bncplusplus urvanov-syntax-highlighter-font-tahoma urvanov-syntax-highlighter-os-pc print-yes notranslate\" data-settings=\" minimize scroll-mouseover\">\n<div class=\"urvanov-syntax-highlighter-plain-wrap\"><textarea class=\"urvanov-syntax-highlighter-plain print-no\" readonly=\"readonly\" wrap=\"soft\" data-settings=\"dblclick\">&lt;br \/&gt;<br \/>\nrule silent_banker : banker { meta: description = &#8220;This is just an example&#8221; threat_level = 3 in_the_wild = true strings: $a = {6A 40 68 00 30 00 00 6A 14 8D 91} $b = {8D 4D B0 2B C1 83 C0 27 99 6A 4E 59 F7 F9} $c = &#8220;UVODFRYSIHLNWPEJXQZAKCBGMT&#8221; condition: $a or $b or $c&lt;br \/&gt;<br \/>\n}<\/textarea><\/div>\n<div class=\"urvanov-syntax-highlighter-main\">\n<table class=\"crayon-table\">\n<tbody>\n<tr class=\"urvanov-syntax-highlighter-row\">\n<td class=\"crayon-nums \" data-settings=\"show\"><\/td>\n<td class=\"urvanov-syntax-highlighter-code\">\n<div class=\"crayon-pre\">\n<div id=\"urvanov-syntax-highlighter-665650afc345e522925301-1\" class=\"crayon-line\"><span class=\"crayon-e\">rule <\/span><span class=\"crayon-v\">silent_banker<\/span> <span class=\"crayon-o\">:<\/span> <span class=\"crayon-e\">banker<\/span> <span class=\"crayon-sy\">{<\/span><\/div>\n<div id=\"urvanov-syntax-highlighter-665650afc345e522925301-2\" class=\"crayon-line crayon-striped-line\"><span class=\"crayon-h\">\u00a0\u00a0\u00a0\u00a0<\/span><span class=\"crayon-v\">meta<\/span><span class=\"crayon-o\">:<\/span><\/div>\n<div id=\"urvanov-syntax-highlighter-665650afc345e522925301-3\" class=\"crayon-line\"><span class=\"crayon-h\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0<\/span><span class=\"crayon-v\">description<\/span> <span class=\"crayon-o\">=<\/span> <span class=\"crayon-s\">&#8220;This is just an example&#8221;<\/span><\/div>\n<div id=\"urvanov-syntax-highlighter-665650afc345e522925301-4\" class=\"crayon-line crayon-striped-line\"><span class=\"crayon-h\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0<\/span><span class=\"crayon-v\">threat_level<\/span> <span class=\"crayon-o\">=<\/span> <span class=\"crayon-cn\">3<\/span><\/div>\n<div id=\"urvanov-syntax-highlighter-665650afc345e522925301-5\" class=\"crayon-line\"><span class=\"crayon-h\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0<\/span><span class=\"crayon-v\">in_the_wild<\/span> <span class=\"crayon-o\">=<\/span> <span class=\"crayon-t\">true<\/span><\/div>\n<div id=\"urvanov-syntax-highlighter-665650afc345e522925301-7\" class=\"crayon-line\"><span class=\"crayon-h\">\u00a0\u00a0\u00a0\u00a0<\/span><span class=\"crayon-v\">strings<\/span><span class=\"crayon-o\">:<\/span><\/div>\n<div id=\"urvanov-syntax-highlighter-665650afc345e522925301-8\" class=\"crayon-line crayon-striped-line\"><span class=\"crayon-h\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0<\/span><span class=\"crayon-sy\">$<\/span><span class=\"crayon-v\">a<\/span> <span class=\"crayon-o\">=<\/span> <span class=\"crayon-sy\">{<\/span><span class=\"crayon-cn\">6A<\/span> <span class=\"crayon-cn\">40<\/span> <span class=\"crayon-cn\">68<\/span> <span class=\"crayon-cn\">00<\/span> <span class=\"crayon-cn\">30<\/span> <span class=\"crayon-cn\">00<\/span> <span class=\"crayon-cn\">00<\/span> <span class=\"crayon-cn\">6A<\/span> <span class=\"crayon-cn\">14<\/span> <span class=\"crayon-cn\">8D<\/span> <span class=\"crayon-cn\">91<\/span><span class=\"crayon-sy\">}<\/span><\/div>\n<div id=\"urvanov-syntax-highlighter-665650afc345e522925301-9\" class=\"crayon-line\"><span class=\"crayon-h\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0<\/span><span class=\"crayon-sy\">$<\/span><span class=\"crayon-v\">b<\/span> <span class=\"crayon-o\">=<\/span> <span class=\"crayon-sy\">{<\/span><span class=\"crayon-cn\">8D<\/span> <span class=\"crayon-cn\">4D<\/span> <span class=\"crayon-i\">B0<\/span> <span class=\"crayon-cn\">2B<\/span> <span class=\"crayon-i\">C1<\/span> <span class=\"crayon-cn\">83<\/span> <span class=\"crayon-i\">C0<\/span> <span class=\"crayon-cn\">27<\/span> <span class=\"crayon-cn\">99<\/span> <span class=\"crayon-cn\">6A<\/span> <span class=\"crayon-cn\">4E<\/span> <span class=\"crayon-cn\">59<\/span> <span class=\"crayon-e\">F7 <\/span><span class=\"crayon-v\">F9<\/span><span class=\"crayon-sy\">}<\/span><\/div>\n<div id=\"urvanov-syntax-highlighter-665650afc345e522925301-10\" class=\"crayon-line crayon-striped-line\"><span class=\"crayon-h\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0<\/span><span class=\"crayon-sy\">$<\/span><span class=\"crayon-v\">c<\/span> <span class=\"crayon-o\">=<\/span> <span class=\"crayon-s\">&#8220;UVODFRYSIHLNWPEJXQZAKCBGMT&#8221;<\/span><\/div>\n<div id=\"urvanov-syntax-highlighter-665650afc345e522925301-12\" class=\"crayon-line crayon-striped-line\"><span class=\"crayon-h\">\u00a0\u00a0\u00a0\u00a0<\/span><span class=\"crayon-v\">condition<\/span><span class=\"crayon-o\">:<\/span><\/div>\n<div id=\"urvanov-syntax-highlighter-665650afc345e522925301-13\" class=\"crayon-line\"><span class=\"crayon-h\">\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0<\/span><span class=\"crayon-sy\">$<\/span><span class=\"crayon-i\">a<\/span> <span class=\"crayon-st\">or<\/span> <span class=\"crayon-sy\">$<\/span><span class=\"crayon-i\">b<\/span> <span class=\"crayon-st\">or<\/span> <span class=\"crayon-sy\">$<\/span><span class=\"crayon-i\">c<\/span><\/div>\n<\/div>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/div>\n<\/div>\n<p><!-- [Format Time: 0.0017 seconds] --><\/p>\n<ul>\n<li><strong>\u0628\u0647\u0628\u0648\u062f \u0639\u0645\u0644\u06a9\u0631\u062f<\/strong>: YARA \u0628\u062f\u0644\u06cc\u0644 \u0633\u0631\u0639\u062a\u06cc \u06a9\u0647 \u062f\u0631 \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u062f\u0627\u0631\u0647 \u0645\u0639\u0631\u0648\u0641\u0647\u060c \u0627\u0645\u0627 \u0628\u0631\u0627\u06cc \u0631\u0648\u0644\u0647\u0627\u06cc \u062e\u0627\u0635\u06cc\u060c \u0628\u062e\u0635\u0648\u0635 \u0631\u0648\u0644\u0647\u0627\u06cc\u06cc \u06a9\u0647 \u062f\u0627\u062e\u0644\u0634\u0648\u0646 \u0627\u0632 \u062d\u0644\u0642\u0647 \u0647\u0627\u06cc \u067e\u06cc\u0686\u06cc\u062f\u0647 \u06cc\u0627 \u0639\u0628\u0627\u0631\u0627\u062a \u0645\u0646\u0638\u0645 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc\u0634\u0647\u060c \u06a9\u0627\u0647\u0634 \u0633\u0631\u0639\u062a \u0686\u0634\u0645\u06af\u06cc\u0631 \u0645\u06cc\u0634\u0647. YARA-X \u0627\u06cc\u0646 \u06a9\u0627\u0647\u0634 \u0633\u0631\u0639\u062a \u0631\u0648 \u062f\u0631 \u0645\u0648\u0627\u062c\u0647 \u0628\u0627 \u0686\u0646\u06cc\u0646 \u0631\u0648\u0644\u0647\u0627\u06cc\u06cc \u0646\u062f\u0627\u0631\u0647. \u0628\u0635\u0648\u0631\u062a \u06a9\u0644\u06cc VT \u0627\u0639\u0644\u0627\u0645 \u06a9\u0631\u062f\u0647 \u06a9\u0647 \u0647\u062f\u0641\u0634\u0648\u0646 \u0627\u06cc\u0646\u0647 \u06a9\u0647 YARA-X \u0627\u0632 \u0646\u0638\u0631 \u0639\u0645\u0644\u06a9\u0631\u062f \u062e\u06cc\u0644\u06cc \u0628\u0647\u062a\u0631 \u0627\u0632 YARA \u0628\u0627\u0634\u0647.<\/li>\n<li><strong>\u0627\u0641\u0632\u0627\u06cc\u0634 \u0642\u0627\u0628\u0644\u06cc\u062a \u0627\u0637\u0645\u06cc\u0646\u0627\u0646 \u0648 \u0627\u0645\u0646\u06cc\u062a<\/strong>: \u0628\u0627 \u062a\u0648\u062c\u0647 \u0628\u0647 \u0627\u06cc\u0646\u06a9\u0647 YARA \u062f\u0631 C \u062a\u0648\u0633\u0639\u0647 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647\u060c \u0645\u0645\u06a9\u0646\u0647 \u062f\u0627\u0631\u0627\u06cc \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0628\u0627\u0634\u0647. YARA-X \u062f\u0631 Rust \u062a\u0648\u0633\u0639\u0647 \u062f\u0627\u062f\u0647 \u0634\u062f\u0647 \u06a9\u0647 \u0642\u0627\u0628\u0644\u06cc\u062a \u0627\u0637\u0645\u06cc\u0646\u0627\u0646 \u0648 \u0627\u0645\u0646\u06cc\u062a \u0628\u0627\u0644\u0627\u06cc\u06cc \u0631\u0648 \u0627\u0631\u0627\u0626\u0647 \u0645\u06cc\u062f\u0647.<\/li>\n<li><strong>\u0631\u0627\u062d\u062a \u0628\u0631\u0627\u06cc \u062a\u0648\u0633\u0639\u0647 \u062f\u0647\u0646\u062f\u0647<\/strong>: \u0627\u0648\u0644\u0648\u06cc\u062a VT \u0633\u0647\u0648\u0644\u062a \u0627\u062f\u063a\u0627\u0645 \u062f\u0631 \u067e\u0631\u0648\u0698\u0647\u200c \u0647\u0627\u06cc \u062f\u06cc\u06af\u0647 \u0648 \u0646\u06af\u0647\u062f\u0627\u0631\u06cc \u0633\u0627\u062f\u0647\u200c \u0647\u0633\u062a\u0634. \u0628\u0631\u0627\u06cc \u062a\u0633\u0647\u06cc\u0644 \u06cc\u06a9\u067e\u0627\u0631\u0686\u0647\u200c \u0633\u0627\u0632\u06cc \u0628\u062f\u0648\u0646 \u0645\u0634\u06a9\u0644\u060c API\u0647\u0627\u06cc \u0631\u0633\u0645\u06cc \u0628\u0631\u0627\u06cc \u067e\u0627\u06cc\u062a\u0648\u0646\u060c \u06af\u0648\u0644\u0646\u06af \u0648 \u0633\u06cc \u0627\u0631\u0627\u0626\u0647 \u0634\u062f\u0647\u200c. YARA-X \u0647\u0645\u0686\u0646\u06cc\u0646 \u0628\u0631\u062e\u06cc \u0627\u0632 \u0646\u0642\u0635\u0647\u0627\u06cc \u0637\u0631\u0627\u062d\u06cc \u0631\u0648 \u06a9\u0647 \u0628\u0627\u0639\u062b \u0645\u06cc\u0634\u0647 \u0646\u06af\u0647\u062f\u0627\u0631\u06cc \u0648 \u062a\u0648\u0633\u0639\u0647\u200c\u06cc YARA \u0686\u0627\u0644\u0634\u200c\u0628\u0631\u0627\u0646\u06af\u06cc\u0632 \u0628\u0627\u0634\u0647 \u0631\u0648 \u0647\u0645 \u0628\u0631\u0637\u0631\u0641 \u0645\u06cc\u06a9\u0646\u0647.<\/li>\n<\/ul>\n<h2>\u0622\u06cc\u0627 \u0628\u0627\u0632\u0646\u0648\u06cc\u0633\u06cc \u06a9\u0627\u0645\u0644 \u0628\u0631\u0627\u06cc \u0631\u0633\u06cc\u062f\u0646 \u0628\u0647 \u0627\u06cc\u0646 \u0627\u0647\u062f\u0627\u0641 \u0636\u0631\u0648\u0631\u06cc \u0628\u0648\u062f\u061f<\/h2>\n<p>\u0628\u0627\u0632\u0646\u0648\u06cc\u0633\u06cc \u067e\u0631\u062e\u0637\u0631\u0647\u060c \u0686\u0648\u0646 \u0628\u0627\u0639\u062b \u0627\u06cc\u062c\u0627\u062f \u0628\u0627\u06af\u0647\u0627\u06cc \u062c\u062f\u06cc\u062f\u060c \u0645\u0634\u06a9\u0644\u0627\u062a \u0633\u0627\u0632\u06af\u0627\u0631\u06cc \u0628\u0627 \u0646\u0633\u062e\u0647\u200c \u0647\u0627\u06cc \u0642\u062f\u06cc\u0645\u06cc \u0648 \u062f\u0648 \u0628\u0631\u0627\u0628\u0631 \u0634\u062f\u0646 \u062a\u0644\u0627\u0634 \u0628\u0631\u0627\u06cc \u062a\u0639\u0645\u06cc\u0631 \u0648 \u0646\u06af\u0647\u062f\u0627\u0631\u06cc \u0645\u06cc\u0634\u0647\u060c \u0686\u0648\u0646 \u06a9\u062f\u0647\u0627\u06cc \u0642\u062f\u06cc\u0645\u06cc \u0628\u0639\u062f \u0627\u0632 \u0631\u0627\u0647\u200c \u0627\u0646\u062f\u0627\u0632\u06cc \u0633\u06cc\u0633\u062a\u0645 \u062c\u062f\u06cc\u062f \u0647\u0645\u0686\u0646\u0627\u0646 \u0648\u062c\u0648\u062f \u062f\u0627\u0631\u0646. \u062f\u0631 \u0648\u0627\u0642\u0639\u060c \u0633\u06cc\u0633\u062a\u0645 \u0642\u062f\u06cc\u0645\u06cc \u0645\u0645\u06a9\u0646\u0647 \u0633\u0627\u0644\u0647\u0627\u060c \u062d\u062a\u06cc \u062f\u0647\u0647\u200c \u0647\u0627\u060c \u0647\u0645\u0686\u0646\u0627\u0646 \u0645\u0648\u0631\u062f \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0642\u0631\u0627\u0631 \u0628\u06af\u06cc\u0631\u0647.<\/p>\n<p>\u0628\u0627 \u0627\u06cc\u0646 \u062d\u0627\u0644\u060c VT \u0628\u0647 \u062f\u0644\u0627\u06cc\u0644 \u0632\u06cc\u0631 \u0627\u06cc\u0646 \u0628\u0627\u0632\u0646\u0648\u06cc\u0633\u06cc \u0631\u0648 \u062f\u0631\u0633\u062a \u062f\u0648\u0646\u0633\u062a\u0647:<\/p>\n<ul>\n<li class=\"first-token\" data-sourcepos=\"1:1-1:23\">YARA \u06cc\u06a9 \u067e\u0631\u0648\u0698\u0647 \u0628\u0632\u0631\u06af \u0646\u06cc\u0633\u062a\u060c \u0628\u0644\u06a9\u0647 \u067e\u0631\u0648\u0698\u0647\u200c\u0627\u06cc \u0628\u0627 \u0627\u0646\u062f\u0627\u0632\u0647 \u0645\u062a\u0648\u0633\u0637 \u0627\u0633\u062a \u06a9\u0647 \u0641\u0627\u0642\u062f \u0632\u06cc\u0631\u0633\u06cc\u0633\u062a\u0645\u200c \u06cc\u0627 \u0645\u0648\u0644\u0641\u0647 \u0647\u0627\u06cc \u062c\u062f\u0627\u0633\u062a \u06a9\u0647 \u0628\u062a\u0648\u0646\u0646 \u0628\u0635\u0648\u0631\u062a \u062c\u062f\u0627\u06af\u0627\u0646\u0647 \u0628\u0647 \u0632\u0628\u0627\u0646 \u062f\u06cc\u06af\u0647 \u0627\u06cc \u0645\u0646\u062a\u0642\u0644 \u0628\u0634\u0646. \u0627\u0646\u062a\u0642\u0627\u0644 \u062a\u062f\u0631\u06cc\u062c\u06cc \u0628\u0647 Rust \u063a\u06cc\u0631\u0639\u0645\u0644\u06cc \u0628\u0648\u062f\u060c \u0686\u0648\u0646 \u0628\u062e\u0634\u0647\u0627\u06cc \u0632\u06cc\u0627\u062f\u06cc \u0627\u0632 \u06a9\u062f \u0628\u0647 \u0647\u0645 \u0645\u0631\u062a\u0628\u0637 \u0647\u0633\u062a\u0646.<\/li>\n<li data-sourcepos=\"3:1-3:184\">VT \u0628\u0647\u0628\u0648\u062f\u0647\u0627\u06cc\u06cc \u0631\u0648 \u062f\u0631 \u0646\u0638\u0631 \u062f\u0627\u0634\u062a \u06a9\u0647 \u0646\u06cc\u0627\u0632 \u0628\u0647 \u062a\u063a\u06cc\u06cc\u0631\u0627\u062a \u0627\u0633\u0627\u0633\u06cc \u062f\u0631 \u0637\u0631\u0627\u062d\u06cc \u062f\u0627\u0634\u062a\u0646. \u067e\u06cc\u0627\u062f\u0647\u200c \u0633\u0627\u0632\u06cc \u0627\u06cc\u0646 \u0645\u0648\u0627\u0631\u062f \u062f\u0631 \u06a9\u062f C\u060c \u0634\u0627\u0645\u0644 \u0628\u0627\u0632\u0646\u0648\u06cc\u0633\u06cc \u0647\u0627\u06cc \u06af\u0633\u062a\u0631\u062f\u0647 \u0645\u06cc\u0634\u0647 \u06a9\u0647 \u0647\u0645\u0648\u0646 \u0631\u06cc\u0633\u06a9\u0647\u0627\u06cc \u0634\u0631\u0648\u0639 \u0645\u062c\u062f\u062f \u0628\u0627 Rust \u0631\u0648 \u0628\u0647 \u0647\u0645\u0631\u0627\u0647 \u062f\u0627\u0631\u0647.<\/li>\n<li data-sourcepos=\"5:1-5:35\">VT \u0628\u0639\u062f \u0627\u0632 \u06cc\u06a9 \u0633\u0627\u0644 \u06a9\u0627\u0631 \u0628\u0631 \u0631\u0648\u06cc \u0627\u06cc\u0646 \u067e\u0631\u0648\u0698\u0647\u060c \u0645\u062a\u0648\u062c\u0647 \u0634\u062f\u0647 \u06a9\u0647 \u0646\u06af\u0647\u062f\u0627\u0631\u06cc \u0627\u0632 Rust \u0646\u0633\u0628\u062a \u0628\u0647 C \u0622\u0633\u0648\u0646\u062a\u0631\u0647. Rust \u0636\u0645\u0627\u0646\u062a\u0647\u0627\u06cc \u0642\u0627\u0628\u0644 \u0627\u0639\u062a\u0645\u0627\u062f\u062a\u0631\u06cc \u0627\u0631\u0627\u0626\u0647 \u0645\u06cc\u062f\u0647 \u0648 \u0627\u062f\u063a\u0627\u0645 \u06a9\u062f\u0647\u0627\u06cc \u0634\u062e\u0635 \u062b\u0627\u0644\u062b\u060c \u0628\u0647 \u0648\u06cc\u0698\u0647 \u0628\u0631\u0627\u06cc \u067e\u0631\u0648\u0698\u0647\u200c\u0647\u0627\u06cc \u0686\u0646\u062f\u0633\u06a9\u0648\u06cc\u06cc \u0631\u0648 \u0633\u0627\u062f\u0647 \u0645\u06cc\u06a9\u0646\u0647.<\/li>\n<\/ul>\n<h2>\u0648\u0627\u0642\u0639\u0627 \u062e\u062f\u0627\u062d\u0627\u0641\u0638 YARA:<\/h2>\n<p>VT \u0627\u0639\u0644\u0627\u0645 \u06a9\u0631\u062f\u0647 \u06a9\u0647 \u0628\u0627 \u062a\u0648\u062c\u0647 \u0628\u0647 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06cc \u062e\u06cc\u0644\u06cc \u0627\u0632 \u0634\u0631\u06a9\u062a\u0647\u0627 \u0648 \u0633\u0627\u0632\u0645\u0627\u0646\u0647\u0627 \u0627\u0632 YARA\u060c \u0627\u06cc\u0646 \u067e\u0631\u0648\u0698\u0647 \u0647\u0645\u0686\u0646\u0627\u0646 \u062f\u0631 \u062d\u0627\u0644 \u0646\u06af\u0647\u062f\u0627\u0631\u06cc \u0647\u0633\u062a\u0634 \u0648 \u0646\u0633\u062e\u0647 \u0647\u0627\u06cc \u0628\u0639\u062f\u06cc \u0634\u0627\u0645\u0644 \u0631\u0641\u0639 \u0628\u0627\u06af\u0647\u0627 \u0648 \u0648\u06cc\u0698\u06af\u06cc \u0647\u0627\u06cc \u0645\u062d\u062f\u0648\u062f \u062e\u0648\u0627\u0647\u062f \u0628\u0648\u062f. \u0628\u0627 \u0627\u06cc\u0646 \u062d\u0627\u0644 \u0627\u0639\u0644\u0627\u0645 \u06a9\u0631\u062f\u0646 \u06a9\u0647 \u0627\u0646\u062a\u0638\u0627\u0631 \u0645\u0627\u0698\u0648\u0644 \u06cc\u0627 \u0648\u06cc\u0698\u06af\u06cc \u0628\u0632\u0631\u06af\u06cc \u0631\u0648 \u0646\u062f\u0627\u0634\u062a\u0647 \u0628\u0627\u0634\u06cc\u062f. \u0647\u0645\u0647 \u06cc \u0648\u06cc\u0698\u06af\u06cc \u062c\u062f\u06cc\u062f \u0648 \u0628\u0632\u0631\u06af \u0641\u0642\u0637 \u0628\u0631\u0627\u06cc YARA-X \u0627\u0631\u0627\u0626\u0647 \u0645\u06cc\u0634\u0647.<\/p>\n<h2>YARA-X \u0627\u0644\u0627\u0646 \u062f\u0631 \u0686\u0647 \u0648\u0636\u0639\u06cc\u062a\u06cc \u0642\u0631\u0627\u0631 \u062f\u0627\u0631\u0647:<\/h2>\n<p class=\"first-token\" data-sourcepos=\"1:1-1:6\">YARA-X \u0647\u0646\u0648\u0632 \u062f\u0631 \u0645\u0631\u062d\u0644\u0647 \u0622\u0632\u0645\u0627\u06cc\u0634\u06cc (\u0628\u062a\u0627) \u0642\u0631\u0627\u0631 \u062f\u0627\u0631\u0647\u060c \u0627\u0645\u0627 \u0628\u0647 \u0627\u0646\u062f\u0627\u0632\u0647\u200c \u0627\u06cc \u0628\u0627\u0644\u063a \u0648 \u067e\u0627\u06cc\u062f\u0627\u0631\u0647\u060c \u0628\u062e\u0635\u0648\u0635 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u062e\u0637 \u0641\u0631\u0645\u0627\u0646 \u06cc\u0627 \u0627\u0633\u06a9\u0631\u06cc\u067e\u062a\u0647\u0627\u06cc \u067e\u0627\u06cc\u062a\u0648\u0646\u060c \u06a9\u0647 \u0628\u0634\u0647 \u0627\u0632\u0634 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0631\u062f. \u062f\u0631 \u062d\u0627\u0644\u06cc \u06a9\u0647 API \u0647\u0627 \u0645\u0645\u06a9\u0646\u0647 \u0647\u0645\u0686\u0646\u0627\u0646 \u062a\u063a\u06cc\u06cc\u0631\u0627\u062a \u062c\u0632\u0626\u06cc \u062f\u0627\u0634\u062a\u0647 \u0628\u0627\u0634\u0646\u060c \u062c\u0646\u0628\u0647\u200c \u0647\u0627\u06cc \u0627\u0633\u0627\u0633\u06cc \u0627\u0648\u0646 \u0627\u0632 \u0642\u0628\u0644 \u062a\u062b\u0628\u06cc\u062a \u0634\u062f\u0646.<\/p>\n<p data-sourcepos=\"3:1-3:158\">VT \u06af\u0641\u062a\u0647 \u06a9\u0647 \u0645\u062f\u062a\u06cc\u0647 \u06a9\u0647 YARA-X \u0631\u0648 \u062f\u0631 \u06a9\u0646\u0627\u0631 YARA \u0627\u062c\u0631\u0627 \u0645\u06cc\u06a9\u0646\u0647\u060c \u0645\u06cc\u0644\u06cc\u0648\u0646\u0647\u0627 \u0641\u0627\u06cc\u0644 \u0631\u0648 \u0628\u0627 \u062f\u0647\u200c \u0647\u0627 \u0647\u0632\u0627\u0631 \u0631\u0648\u0644 \u0627\u0633\u06a9\u0646 \u06a9\u0631\u062f\u0647 \u0648 \u0628\u0647 \u0646\u0627\u0633\u0627\u0632\u06af\u0627\u0631\u06cc\u0647\u0627\u06cc \u0628\u06cc\u0646 \u0627\u06cc\u0646 \u062f\u0648 \u067e\u0631\u062f\u0627\u062e\u062a\u0647. \u0627\u06cc\u0646 \u0628\u062f\u0627\u0646 \u0645\u0639\u0646\u0627\u0633\u062a \u06a9\u0647 YARA-X \u0627\u0632 \u0642\u0628\u0644 \u062f\u0631 \u0634\u0631\u0627\u06cc\u0637 \u0648\u0627\u0642\u0639\u06cc \u062a\u0633\u062a \u0634\u062f\u0647\u200c. \u0627\u06cc\u0646 \u062a\u0633\u062a\u0647\u0627 \u062d\u062a\u06cc \u0628\u0627\u06af\u0647\u0627\u06cc\u06cc \u0631\u0648 \u062f\u0631 YARA \u06a9\u0634\u0641 \u06a9\u0631\u062f\u0647.<\/p>\n<p data-sourcepos=\"5:1-5:118\">VT \u0627\u0632 \u0645\u062d\u0642\u0642\u06cc\u0646 \u0627\u0645\u0646\u06cc\u062a\u06cc \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u06a9\u0631\u062f\u0647 \u062a\u0627 YARA-X \u0631\u0648 \u062a\u0633\u062a \u06a9\u0646\u0646 \u0648 \u062f\u0631 \u0635\u0648\u0631\u062a \u06cc\u0627\u0641\u062a\u0646 \u0628\u0627\u06af \u06cc\u0627 \u0648\u06cc\u0698\u06af\u06cc\u200c \u06a9\u0647 \u0645\u06cc\u062e\u0648\u0627\u0646\u0634\u060c \u0628\u0647\u0634\u0648\u0646 \u06af\u0632\u0627\u0631\u0634 \u0628\u062f\u0646.<\/p>\n<h2 data-sourcepos=\"5:1-5:118\">\u0642\u062f\u0645\u06cc \u0628\u0639\u062f\u06cc:<\/h2>\n<p data-sourcepos=\"5:1-5:118\">VT \u0627\u0639\u0644\u0627\u0645 \u06a9\u0631\u062f\u0647 \u06a9\u0647 \u0645\u06cc\u062e\u0648\u0627\u062f YARA-X \u0631\u0648 \u0627\u0632 \u0647\u0631 \u0646\u0638\u0631 \u0628\u0647\u062a\u0631 \u0627\u0632 YARA \u06a9\u0646\u0647 \u0648 \u06a9\u0627\u0631\u06cc \u06a9\u0646\u0647 \u06a9\u0647 \u0647\u0645\u0647 \u06cc \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 YARA \u0628\u0627 \u06a9\u0645\u0627\u0644 \u0645\u06cc\u0644 \u0628\u062f\u0644\u06cc\u0644 \u0627\u0645\u06a9\u0627\u0646\u0627\u062a\u06cc \u06a9\u0647 \u062f\u0627\u0631\u0647 \u0628\u0647 YARA-X \u0645\u0647\u0627\u062c\u0631\u062a \u06a9\u0646\u0646.<\/p>\n<p>\u0628\u0631\u0627\u06cc \u0631\u0633\u06cc\u062f\u0646 \u0628\u0647 \u0627\u06cc\u0646 \u0647\u062f\u0641\u060c \u0627\u0646\u062a\u0634\u0627\u0631 \u0646\u0633\u062e\u0647 \u06cc \u0628\u062a\u0627 \u0631\u0648 \u0627\u0648\u0644\u06cc\u0646 \u0642\u062f\u0645 \u062f\u0648\u0646\u0633\u062a\u0646 \u0648 \u062f\u0631 \u0627\u062f\u0627\u0645\u0647 \u0642\u0631\u0627\u0631\u0647 \u0628\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u0647\u0627\u06cc \u062c\u062f\u06cc\u062f\u06cc \u0627\u0632 \u0627\u06cc\u0646 \u0646\u0633\u062e\u0647 \u0631\u0648 \u0645\u0646\u062a\u0634\u0631 \u06a9\u0646\u0646.<\/p>\n<p>\u0628\u0631\u0627\u06cc \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0648 \u0622\u0634\u0646\u0627\u06cc\u06cc \u0628\u06cc\u0634\u062a\u0631 \u0628\u0627 \u0627\u06cc\u0646 \u067e\u0631\u0648\u0698\u0647 \u0645\u06cc\u062a\u0648\u0646\u06cc\u062f \u0627\u0632 \u0627\u06cc\u0646 \u0644\u06cc\u0646\u06a9 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u06cc\u062f.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>YARA \u0628\u0647 \u0645\u062f\u062a \u0628\u06cc\u0634 \u0627\u0632 15 \u0633\u0627\u0644 \u062f\u0631 \u062d\u0627\u0644 \u062a\u0648\u0633\u0639\u0647 \u0648 \u067e\u06cc\u0634\u0631\u0641\u062a \u0628\u0648\u062f\u0647 \u062a\u0627 \u0627\u06cc\u0646\u06a9\u0647 \u0628\u0647 \u06cc\u06a9 \u0627\u0628\u0632\u0627\u0631 \u0636\u0631\u0648\u0631\u06cc \u0628\u0631\u0627\u06cc \u0645\u062d\u0642\u0642\u06cc\u0646 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0628\u062e\u0635\u0648\u0635 \u0645\u062d\u0642\u0642\u06cc\u0646 \u0628\u062f\u0627\u0641\u0632\u0627\u0631 \u062a\u0628\u062f\u06cc\u0644 \u0628\u0634\u0647. \u062f\u0631 \u0637\u0648\u0644 \u0627\u06cc\u0646 \u0645\u062f\u062a \u0634\u0627\u0647\u062f \u0628\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u0647\u0627\u06cc \u0645\u062a\u0639\u062f\u062f\u06cc \u0628\u0648\u062f\u0647\u060c \u0648\u06cc\u0698\u06af\u06cc \u0647\u0627\u06cc \u062c\u062f\u06cc\u062f\u06cc \u0628\u0647\u0634 \u0627\u0636\u0627\u0641\u0647 \u0634\u062f\u0647 \u0648 \u0628\u0627\u06af \u0647\u0627\u06cc \u0628\u06cc\u0634\u0645\u0627\u0631\u06cc \u062f\u0631 \u0627\u0648\u0646 \u0631\u0641\u0639 \u0634\u062f\u0647. \u0628\u0627 \u0627\u06cc\u0646 \u062d\u0627\u0644 VirusTotal \u0627\u0639\u0644\u0627\u0645 &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26,29,34],"tags":[],"class_list":["post-57111","post","type-post","status-publish","format-standard","hentry","category-vulnerability","category-29","category-server"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/57111","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=57111"}],"version-history":[{"count":2,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/57111\/revisions"}],"predecessor-version":[{"id":57955,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/57111\/revisions\/57955"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=57111"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=57111"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=57111"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}