Issue with Malheur

[lehuff]

Activating Malheur after installing and submitting a job gives the following error:

malheur: unrecognized option '--input.format' Usage: malheur [options]

Actions: distance Compute distance matrix for malware reports prototype Extract prototypes from malware reports protodist Compute distance matrix for prototypes cluster Cluster malware reports into similar groups classify Classify malware reports using labeled prototypes increment Incremental analysis of malware reports info Print information about internal state of Malheur

Options: -s, --state_dir

Set directory for internal state. -o, --output_file Set output file for analysis results. -c, --config_file Set configuration file. -n, --dry Dry run. Don't change internal state. --reset Reset internal state of Malheur. --fvec_dump Dump feature vectores in LibSVM format. -C, --print_config Print the current configuration. -D, --print_defaults Print the default configuration. -v, --verbose Increase verbosity. -V, --version Print version and copyright. -h, --help Print this help screen.

See manual page malheur(1) for more information. 2015-09-24 09:25:02,574 [lib.cuckoo.core.plugins] WARNING: The reporting module "Malheur" returned the following error: Failed to perform Malheur classification: [Errno 2] No such file or directory

[brad-sp]

Update to the latest version, your malheur.py is outdated.

[lehuff]

Updated, now I don't get any errors, but I don't see any malheur reports after running analysis. Verified enabled in confs.

[brad-sp]

Are you looking in storage/malheur/reports ?

[lehuff]

Please smack me and close this ;)

[brad-sp]

No worries.