-
I have had a hard time today analysing a malware sample that loads a byte-like Python code object (with `marshal.loads(obj_bytes)`) and executes it (with `exec()`). After testing several options, I fo…
-
### Details
Our bot is not updating `ida.plugin.capa.vm`. I think we should:
1 - Update `ida.plugin.capa.vm` to the latest version (even if this need to be done manually as the current version does …
Ana06 updated
19 hours ago
-
### Details
From https://github.com/mandiant/flare-vm/issues/627 by @WeWonderMax:
> Hello!
>
> The script installs almost flawlessly the tools on ARM64 windows 11, thanks for that.
>
> Altho…
Ana06 updated
3 weeks ago
-
"This program cannot be run in DOS mode"
"January February ..."
at the very least, we can colorize this entries differently.
```[tasklist]
### Tasks
- [ ] https://github.com/mandiant/flare-floss/is…
-
### Details
Since https://github.com/mandiant/flare-vm/pull/580 and https://github.com/mandiant/VM-Packages/pull/962, Windows Terminal is the default console in FLARE-VM, being adding to the right-cl…
Ana06 updated
5 months ago
-
Running an ARM Windows 10 virtual machine on UTM.
Installed Fakenet 1.4.11, crashes on execution every time.
Has anyone had this issue or can help me debug?
Thanks
-
### Details
Since https://github.com/mandiant/VM-Packages/commit/f55f6f51e3aea53d1ec82f42d76bc4cdee45b930 sysinternals is creating a shortcut for ADExplorer in Reconnaissance. Do we want this tool in…
Ana06 updated
9 months ago
-
want to be able to lookup from string to the number of times it's been seen in a representative dataset.
desirable fields:
- global count
- count among known malware
- count among known go…
-
Hi, I was suggested to post this issue here (see https://github.com/mandiant/flare-floss/issues/743, https://github.com/mandiant/flare-floss/issues/778). I am encountering very high ram usage and extr…
-
The current mute gray and regular white look very similar to on my screen, probably we should make colors changeable easily or provide different themes.