gdesmar
gdesmar
**Describe the bug** Analyzing sample 2a84e6d95753c01725ce5e472aaec03b3001d81760aa88f8f393047fc7e55958 gives us a single signature with a single signer. Looking at the details of the file in Windows gives us 3 signers (I believe...
Hi, I think it could be of interest to merge back the improvement that I've done on the project. As you will see, I modified quite a lot of things....
### Description Analyzing sample [7765e7d6c11b8db158f7ed70aa33a6c0935cd5c2c282304ed89a7695f7925abb](https://www.virustotal.com/gui/file/7765e7d6c11b8db158f7ed70aa33a6c0935cd5c2c282304ed89a7695f7925abb) raise an exception. ### Steps to Reproduce ```bash $ wget https://github.com/mandiant/capa/releases/download/v4.0.1/capa-v4.0.1-linux.zip $ unzip capa-v4.0.1-linux.zip $ ./capa 7765e7d6c11b8db158f7ed70aa33a6c0935cd5c2c282304ed89a7695f7925abb loading : 100%|█████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████████| 703/703 [00:00
As we discussed, that would be the modification to make the print more list agnostic and more yaml-like for Extra blocks. I would totally understand if you consider it to...
The BaseOfficeFile defines three functions that can be implemented. If we look at load_key(), doc97, ppt97 and xls97 take the same arguments and behave similarly. Looking at ooxml, it takes...
I was wondering if you'd be interested by this error, caused by [this file](https://www.virustotal.com/gui/file/e94f7c475e7db0691a2698b5dd349c2b412ffddafa7a3ff85785cbd5ac144fcb). I found it using CAPA, with dnfile 0.14.1, but it also triggers on 0.15.0. ```python >>>...
Fix for CybercentreCanada/assemblyline/issues/222.
**Describe the bug** Parsing the sample with LIEF, YARA-X and [pefile](https://github.com/erocarrera/pefile) gives a different result for LIEF. YARA-X and pefile agrees that those samples have exports, but LIEF says there...