Nwinternights
Nwinternights
I hope it too. but, as @doomedraven said we should wait @spender-sandbox to know what he wants to do with this awesome project. Trashing it it's a really a pity...
@mallorybobalice @doomedraven any news?
great @doomedraven !!!
@garanews take a look at here https://github.com/ctxis/CAPE
I Just posted the last spender cuckoo that has been mantained but, yes cuckoo 2 does an awesome job in term of detection and stability.
same here....! the odd thing is that I've submitted the sample 10 times and only once i get network traffic results. regards
when the analysis goes ok a process subtree is created: services.exe 488 C:\Windows\system32\services.exe svchost.exe 864 C:\Windows\system32\svchost.exe -k netsvcs taskeng.exe 2264 taskeng.exe {3B343AAC-4815-46B8-93D1-76BBFADB99C4} S-1-5-18:NT AUTHORITY\System:Service: ......when it fails seems that the...
Just for testing, I've set up an XP VM(I've been using 7 64bit) and I always get network infos ( host name and partial dns only myexternalip.com ).
take a look here https://github.com/spender-sandbox/cuckoo-modified/issues/74 i dunno if it helps. regards
@mallorybobalice Cuckoo uses Oletools to extract olefiles within documents, and, maybe I'm wrong,but probably we should look at here (https://github.com/decalage2/oletools) to see if anyone else got the same issues. https://github.com/decalage2/olefile/issues/10