Esempio n. 1
0
 def testName(self):
     pe = PE.get('chrome.exe')
     print "Compile Time ", fileinfo.getCompileTime(pe)
     print "Hashes MD5 ", fileinfo.get_hashes('chrome.exe')[0]
     print "Hashes SHA 1", fileinfo.get_hashes('chrome.exe')[1]
     print "Hashes SHA 256", fileinfo.get_hashes('chrome.exe')[2]
     print "DLL ", fileinfo.getDLL(pe)
     print "File Info name and size ", fileinfo.getFileInfo('chrome.exe')
     print "Number of Sections", fileinfo.getNumberofSections(pe)
Esempio n. 2
0
                print directory.get_tls(suspicious_file)

            elif sys.argv[1] == "--dump":

                print dump.get(suspicious_file)

            elif sys.argv[1] == "--export":

                print "EXPORTED FUNCTIONS AND ADRESSES"
                list = export_function.get(suspicious_file)
                for elem in list:
                    print elem

            elif sys.argv[1] == "--fileinfo":

                print "Compile Time ", fileinfo.getCompileTime(suspicious_file)
                md5 = fileinfo.get_hashes(sys.argv[2])[0]
                sha1 = fileinfo.get_hashes(sys.argv[2])[1]
                sha256 = fileinfo.get_hashes(sys.argv[2])[2]
                print "Hashes MD5 ", md5
                print "Hashes SHA 1", sha1
                print "Hashes SHA 256", sha256
                print "DLL ", fileinfo.getDLL(suspicious_file)
                print "File Info name and size ", fileinfo.getFileInfo(sys.argv[2])
                print "Number of Sections", fileinfo.getNumberofSections(suspicious_file)

            elif sys.argv[1] == "--fileurl":

                filelist, arrayUrl = fileurl.get(sys.argv[2])
                print " ========= FILE LIST =========="
                for elem in filelist: