digicatM to blueteamsecEnglish · 6 days ago100 Days of YARA 2026: Detects files using modern tool chains with older linkers which can indicate possible tampering. It is based on the mismatch in the PE RICH header and Optional header MSVC lnkergithub.comexternal-linkmessage-square0linkfedilinkarrow-up11arrow-down10
arrow-up11arrow-down1external-link100 Days of YARA 2026: Detects files using modern tool chains with older linkers which can indicate possible tampering. It is based on the mismatch in the PE RICH header and Optional header MSVC lnkergithub.comdigicatM to blueteamsecEnglish · 6 days agomessage-square0linkfedilink
