Yara_Mailware_Quick_menu_scanner icon indicating copy to clipboard operation
Yara_Mailware_Quick_menu_scanner copied to clipboard

Published 20 hours ago verified publisher icon techbliss

Metadata

Work Fast With the pattern matching swiss knife for malware researchers.

Version 1.2 This is for adding the awsome Yara pattern scanner to windows right click menus.

Changelog 1.2
Added Peid signatures made by Didier Stevens http://blog.didierstevens.com/
Added Malicious Documents scripts since there are multiple now
Change right name for anti VM
small fixes for win 7 and xp users.

What it Does

Right click a folder Scan folders and subfolder files recursive for

Crypto patterns
Hacking Team Mailware
Packers
Malicious documents / with more options
PEID signatures

Right Click a File

Scan files for

Crypto patterns
Hacking Team Mailware
Packers
Malicious documents / with more options
PEID signatures

Install

Since its really just alot of registry based commands, you have to have the files at,

C:\yara\yara32.exe
C:\yara\icons\
C:\yara\mailware\

I have added all rules to date, but if you wanna do it yourself, grap new yara rules from. https://github.com/Yara-Rules/rules

And if you want new binary prebuild(Use x86 one)I have 3.4.0 in this repo. https://github.com/plusvic/yara/releases/tag/v3.4.0

after you have extracted everything accoring to the folder i explained.

run

Add_Yara_Pattern_scanner_rmenu_To_right_click_file.reg

then

Add_Yara_Pattern_scanner_rmenu_To_right_click_folder.reg

Folder scan v7ssh

File scan ouezs

Result allqk

regards

Metadata

31
Stars
10
Forks
Watchers

Owner

verified publisher icon techbliss

Metadata

Work Fast With the pattern matching swiss knife for malware researchers.

Back