search

Penetrum-Security / Maltree-Issue-Repo

Issues that are presented to Malcore and Malnet
https://penetrum.com/upload
3 stars 2 forks source link

Maltree Dev Issue (4cc6b149fb0ceb5) #3251

Closed Penetrum-Security closed 3 years ago

Penetrum-Security commented 3 years ago

Python version 2.718 Traceback: 

Traceback (most recent call):
  File "/home/malcore/bin/maltree/api/malbox_api.py", line 136, in get_pcap_file
    with requests.get(req_url, headers=self.headers, stream=True) as req:
__exit__

Running platform: Linux-5.8.0-55-generic-x86_64-with-debian-bullseye-sid Last 30 lines of log file:

[DEBUG][MALCORE][Sun Jun  6 02:31:51 2021] waiting for analysis of task #1 to finish (status: running), currently 30 second(s) passed
[DEBUG][MALCORE][Sun Jun  6 02:32:01 2021] status is reported, we're gonna continue
[INFO][MALCORE][Sun Jun  6 02:32:01 2021] [REDACTED] results from analysis task#1 on malware: /home/malcore/bin/maltree/temp_files/_MALWARE__[REDACTED].tmp
[DEBUG][MALCORE][Sun Jun  6 02:32:01 2021] [REDACTED] network data from dynamic analysis
[DEBUG][MALCORE][Sun Jun  6 02:32:01 2021] currently [REDACTED] key: tls value type: <type 'list'>
[DEBUG][MALCORE][Sun Jun  6 02:32:01 2021] currently [REDACTED] key: udp value type: <type 'list'>
[DEBUG][MALCORE][Sun Jun  6 02:32:01 2021] currently [REDACTED] key: dns_servers value type: <type 'list'>
[DEBUG][MALCORE][Sun Jun  6 02:32:01 2021] currently [REDACTED] key: http value type: <type 'list'>
[DEBUG][MALCORE][Sun Jun  6 02:32:01 2021] currently [REDACTED] key: irc value type: <type 'list'>
[DEBUG][MALCORE][Sun Jun  6 02:32:01 2021] currently [REDACTED] key: smtp value type: <type 'list'>
[DEBUG][MALCORE][Sun Jun  6 02:32:01 2021] currently [REDACTED] key: tcp value type: <type 'list'>
[DEBUG][MALCORE][Sun Jun  6 02:32:01 2021] currently [REDACTED] key: smtp_ex value type: <type 'list'>
[DEBUG][MALCORE][Sun Jun  6 02:32:01 2021] currently [REDACTED] key: mitm value type: <type 'list'>
[DEBUG][MALCORE][Sun Jun  6 02:32:01 2021] currently [REDACTED] key: hosts value type: <type 'list'>
[DEBUG][MALCORE][Sun Jun  6 02:32:01 2021] currently [REDACTED] key: pcap_sha256 value type: <type 'unicode'>
[DEBUG][MALCORE][Sun Jun  6 02:32:01 2021] currently [REDACTED] key: dns value type: <type 'list'>
[DEBUG][MALCORE][Sun Jun  6 02:32:01 2021] currently [REDACTED] key: http_ex value type: <type 'list'>
[DEBUG][MALCORE][Sun Jun  6 02:32:01 2021] currently [REDACTED] key: domains value type: <type 'list'>
[DEBUG][MALCORE][Sun Jun  6 02:32:01 2021] currently [REDACTED] key: dead_hosts value type: <type 'list'>
[DEBUG][MALCORE][Sun Jun  6 02:32:01 2021] currently [REDACTED] key: sorted_pcap_sha256 value type: <type 'unicode'>
[DEBUG][MALCORE][Sun Jun  6 02:32:01 2021] currently [REDACTED] key: icmp value type: <type 'list'>
[DEBUG][MALCORE][Sun Jun  6 02:32:01 2021] currently [REDACTED] key: https_ex value type: <type 'list'>
[DEBUG][MALCORE][Sun Jun  6 02:32:01 2021] [REDACTED] PCAP [REDACTED] on malware /home/malcore/bin/maltree/temp_files/_MALWARE__[REDACTED].tmp
[DEBUG][MALCORE][Sun Jun  6 02:32:01 2021] creating a random filename (is PCAP == False)
[ERROR][MALCORE][Sun Jun  6 02:32:01 2021] creating issue with the title: Maltree Dev Issue ([REDACTED]) and the body
Traceback (most recent call):
  File "/home/malcore/bin/maltree/api/malbox_api.py", line 136, in get_pcap_file
    with requests.get(req_url, headers=self.headers, stream=True) as req:
__exit__
github-actions[bot] commented 3 years ago

Issue has not been investigated and will be closed in 10 days.