Can u please send me the yara rule for zeus malware. I have attached the file I have. I'm not sure if it's the right one.
On Friday, May 6, 2016 at 10:14:19 PM UTC+8, Víctor Manuel Álvarez García wrote: > > Looks like you're passing the wrong rules file to yara or there's an > encoding problem. You should verify that Zeus.yar is actually a text file > and it's all ascii. > > On Fri, May 6, 2016 at 3:48 PM, Jehaan Naailah <[email protected] > <javascript:>> wrote: > >> Hi, I have been trying to scan .vmem file with volatility using the yara >> pluggin. I downloaded the rules-master file from >> https://github.com/Yara-Rules/rules. >> However, i keep getting this error message saying cannot compile rules. >> Please help. >> >> -- >> You received this message because you are subscribed to the Google Groups >> "YARA" group. >> To unsubscribe from this group and stop receiving emails from it, send an >> email to [email protected] <javascript:>. >> For more options, visit https://groups.google.com/d/optout. >> > > -- You received this message because you are subscribed to the Google Groups "YARA" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
Zeus.yar
Description: Binary data
