search

mandiant / VM-Packages

Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.
Apache License 2.0
140 stars 62 forks source link

Installation Error for event-log-explorer.vm, fiddleclassic.vm, ida.plugin.diaphora.vm, and minidump.vm #1103

Closed cdlinh closed 2 months ago

cdlinh commented 3 months ago

What's the problem?

I encountered issues while attempting to install multiple packages using Flare VM. The installation processes failed for the packages event-log-explorer.vm, fiddleclassic.vm, ida.plugin.diaphora.vm, and minidump.vm.

Error Details:

event-log-explorer.vm:

Error: Hashes do not match. Actual value was 8DC29D4A6208F4214DAC9C9BCE2A6B6979805EBFD57DCCB202717A14F8CC894. Expected checksum: 843b4a2d639a87f2d301b151fbf07f70282c8b4e07a5642a206d6d6ab63dc3 for checksum type sha256. Install was NOT successful. fiddleclassic.vm:

Error: Unable to resolve dependencies. Installation was NOT successful. ida.plugin.diaphora.vm:

Error: Cannot bind argument to parameter 'Path' because it is an empty string. Install was NOT successful. minidump.vm:

Error: The term 'VN-Install-Raw-GitHub-Repo' is not recognized as the name of a cmdlet, function, script file, or operable program. Install was NOT successful. Please find the attached log files for further investigation: C:\ProgramData\chocolatey\logs\chocolatey.log. 1

Steps to Reproduce

Run choco install event-log-explorer.vm in PowerShell. Observe the checksum mismatch error. Run choco install fiddleclassic.vm in PowerShell. Observe the dependency resolution error. Run choco install ida.plugin.diaphora.vm in PowerShell. Observe the path binding error. Run choco install minidump.vm in PowerShell. Observe the unrecognized term error.

Environment

Virtualization software: Virtual Box

Additional Information

C:\ProgramData_VM\log.txt log.txt

C:\ProgramData\chocolatey\logs\chocolatey.log choco.summary.log chocolatey.1.log chocolatey.2.log chocolatey.3.log chocolatey.4.log chocolatey.log

Detected by test suite

No

Ana06 commented 3 months ago

event-log-explorer.vm uses a URL without the version which breaks with updates. It is detected by our test suite: https://github.com/mandiant/VM-Packages/wiki/Daily-Failures. I have open a separate issue to track it: https://github.com/mandiant/VM-Packages/issues/1104

You are also welcome to send a PR to fix the hash. :wink:

Ana06 commented 3 months ago

minidump.vm is broken and we are planing to remove it: https://github.com/mandiant/VM-Packages/issues/830#issuecomment-2051984201

Ana06 commented 3 months ago

fiddleclassic.vm was renamed to fiddle.vm in https://github.com/mandiant/VM-Packages/commit/d199386a4a1b9c19433f96b6ae4684cca6c7d7c5. Please install the new package.

Ana06 commented 3 months ago

I see in some on your logs that ida.plugin.diaphora.vm has been installed have been installed sucessfully and it work in our test suite. Please try installing FLARE-VM from scratch using the default configuration (which includes ida.plugin.diaphora.vm) and provide that log if ida.plugin.diaphora.vm fails to install so that we can help you.

Ana06 commented 2 months ago

Sorry, I meant to close https://github.com/mandiant/VM-Packages/issues/830 in #1105

Ana06 commented 2 months ago

Closing due to inactivity, @cdlinh please open a new issue if ida.plugin.diaphora.vm fails to install in a fresh FLARE-VM installation with the default configuration providing the full installation log.