Wenlyduo
commented
3 years ago Solved by changing agent.py to agent.pyw.
Closed Wenlyduo closed 3 years ago
Wenlyduo
commented
3 years ago Solved by changing agent.py to agent.pyw.
My issue is: when I analyze maleware on Cuckoo, the sandbox runs successfully. However, it doesn't generate any analysis report. The reports folder is empty. The analysis log and reporting.conf are showing below. How could I solve this problem?
My Cuckoo version and operating system are: Cuckoo 2.0.7 Host: Ubuntu 20.04 Guest: Windows 7
Analysis log: 2021-09-06 15:50:58,015 [analyzer] DEBUG: Starting analyzer from: C:\tmpf_kszy 2021-09-06 15:50:58,015 [analyzer] DEBUG: Pipe server name: \??\PIPE\cMDaWcQzWPmzLQqdzgaIvtfatx 2021-09-06 15:50:58,030 [analyzer] DEBUG: Log pipe server name: \??\PIPE\IPNgtDeJSeGxYaQsxeN 2021-09-06 15:50:59,812 [analyzer] DEBUG: Started auxiliary module DbgView 2021-09-06 00:51:19,487 [analyzer] DEBUG: Started auxiliary module Disguise 2021-09-06 00:51:19,973 [analyzer] DEBUG: Loaded monitor into process with pid 516 2021-09-06 00:51:19,973 [analyzer] DEBUG: Started auxiliary module DumpTLSMasterSecrets 2021-09-06 00:51:19,973 [analyzer] DEBUG: Started auxiliary module Human 2021-09-06 00:51:19,987 [analyzer] DEBUG: Started auxiliary module InstallCertificate 2021-09-06 00:51:19,987 [analyzer] DEBUG: Started auxiliary module Reboot 2021-09-06 00:51:20,160 [analyzer] DEBUG: Started auxiliary module RecentFiles 2021-09-06 00:51:20,176 [analyzer] DEBUG: Started auxiliary module Screenshots 2021-09-06 00:51:20,176 [analyzer] DEBUG: Started auxiliary module LoadZer0m0n 2021-09-06 00:51:20,566 [lib.api.process] INFO: Successfully executed process from path 'C:\Users\cuckoo\AppData\Local\Temp\5c0e7e0eaf646ac019130e4faf545ddf528008afc55917e5f34587ba4d0934aa.exe' with arguments '' and pid 2336 2021-09-06 00:51:20,973 [analyzer] DEBUG: Loaded monitor into process with pid 2336 2021-09-06 00:51:22,223 [analyzer] INFO: Injected into process with pid 2452 and name '' 2021-09-06 00:51:22,862 [lib.api.process] INFO: Memory dump of process with pid 2452 completed 2021-09-06 00:51:23,598 [analyzer] DEBUG: Loaded monitor into process with pid 2452 2021-09-06 00:51:26,769 [lib.api.process] INFO: Memory dump of process with pid 2336 completed 2021-09-06 00:51:27,769 [analyzer] INFO: Process with pid 2336 has terminated 2021-09-06 00:51:30,441 [lib.api.process] INFO: Memory dump of process with pid 2452 completed 2021-09-06 00:51:30,801 [analyzer] INFO: Process with pid 2452 has terminated 2021-09-06 00:51:30,801 [analyzer] INFO: Process list is empty, terminating analysis. 2021-09-06 00:51:31,816 [analyzer] INFO: Analysis completed.
Reporting.conf: