Skip to content
/ mfanalyzer Public

A tool for quick and dirty analysis of suspicious files. Designed to run inside Remnux!

License

GPL-3.0 license
6 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

d4rksystem/mfanalyzer

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
auxiliary.py
auxiliary.py
 
 
config.py
config.py
 
 
mfanalyzer.py
mfanalyzer.py
 
 
rules.yara
rules.yara
 
 
stringslist.txt
stringslist.txt
 
 
tools.py
tools.py
 
 

Repository files navigation

mfanalyzer

A tool for quick and dirty analysis of suspicious files. Designed to run inside Remnux!

Special thanks to all the authors of the tools I invoke with this script!

A few important points:

  • This script should be run in a safe sandbox envronment! Remnux is preferrable (https://remnux.org/.)
  • Written in Python 2.7. I know, its old and outdated, but it still works ;)
  • This script has some bugs and has no error handling. As mentioned, it is "quick and dirty".

Example usage and output:

Get a list of all parameters:

python2.7 mfanalyzer.py --help

Execute the script on an Office Document file:

python2.7 mfanalyzer.py --doc -s -y -x -o malware.doc

image

Execute the script on a PE Executable file:

python2.7 mfanalyzer.py --bin -s -y -x -o malware.exe

image

About

A tool for quick and dirty analysis of suspicious files. Designed to run inside Remnux!

Resources

Readme

License

GPL-3.0 license
Activity

Stars

6 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages