Good news for Yara lovers! YARA version 1.5 has been released just a few hours ago! Our first post about YARA can be found here.
“YARA is a malware identification and classification tool. It is aimed at helping malware researchers to identify and classify malware samples. With YARA you can create descriptions of malware families based on textual or binary patterns contained on samples of those families. Each description consists of a set of strings and a Boolean expression which determines its logic.
YARA is multi-platform, running on Windows, Linux and Mac OS X, and can be used through its command-line interface or from your own Python scripts with the yara-python extension. “
This is the change log:
- Added -l parameter to abort scanning after a number of matches
- Added support for scanning processes memory
- Entrypoint now works with ELF as well as PE files
- Added support for linking with the faster RE2 library instead of PCRE
- Implemented index operator to access offsets where string was found (@string[i])
- Implemented new operator “for in :()“
- BUGFIX: Memory leaks in yara-python
- BUGFIX: yara.compile namespaces not working with filesources
Download YARA v1.5 (yara-1.5-win32.zip/yara-1.5.tar.gz) here.
If you enjoyed this article, you might also like:
- UPDATE: YARA v1.6!
Good news for Yara lovers as YARA version 1.6 has been released! Our first post about YARA can be fo... - UPDATE: YARA v1.4a!
Good news for Yara lovers! YARA version 1.4a has been released just a few hours ago! We mentioned ab... - UPDATE: YARA v1.4!
Good news for Yara lovers! YARA version 1.4 has been released just a few hours ago! We mentioned abo... - UPDATE: YARA v1.3!
Being humans, we just forgot to mention about an important YARA release - version 1.3. We mentioned ... - YARA – malware analyzer
Hi everyone! A nice Malware analyzer! Latest release YARA v1.2 YARA: A malware identification and cl... - UPDATE: Cuckoo Sandbox 0.3.2!
Our first post regarding the Cuckoo Sandbox can be found here. Recently, an update – Cuckoo Sandbox ... - UPDATE: Cuckoo Sandbox 0.3.1!
Our first post regarding the Cuckoo Sandbox can be found here. Recently, an update – Cuckoo Sandbox ... - UPDATE: Cuckoo Sandbox version 0.2!
Our first post regarding the Cuckoo Sandbox can be found here. A few hours ago, an update - Cuckoo S... - UPDATE: Malware Analyzer v3.3!
Our first write up regarding Malware Analyzer can be found here. A few hours ago, an updated version...
Tagged as:
analyze malware,
malware analyzer,
malware removal,
YARA,
YARA malware analyzer
Comments on this entry are closed.