You can view information about all the matches of the particular YARA rule. To do this:
1.At the top of the Dr.Web vxCube main page, click YARA rules.
2.In the Matches column for the required rule, click the number.
The full list of matches for this rule opens. For each match, the following information is displayed:
•File name: The name of the file that the match occurred on.
•Format: The format of the file that the match occurred on.
•SHA1: The hash of the file.
•Date: The date when the match was occurred.
•OS: The list of operating systems that the analysis has been done for.
From the rule match report, you can go to the analysis report related to the particular match:
•To go to the report main page, click the file name in the corresponding row.
•To go to the report page for the specific platform, click the OS name in the corresponding row.
Figure 10. Report on YARA rule matches