Bugfix in filename parameter that is given to YARA matching

Neo23x0 · Jul 30, 2017 · 934979e · 934979e
1 parent ea3cd41
commit 934979e
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 2 deletions.
diff --git a/lib/lokilogger.py b/lib/lokilogger.py
@@ -13,7 +13,7 @@
 import socket
 from helpers import removeNonAsciiDrop
 
-__version__ = '0.23.1'
+__version__ = '0.23.2'
 
 # Logger Class -----------------------------------------------------------------
 class LokiLogger():

diff --git a/loki.py b/loki.py
@@ -385,7 +385,7 @@ def scan_path(self, path):
                         # Scan the read data
                         try:
                             for (score, rule, description, matched_strings) in \
-                                    self.scan_data(fileData, fileType, filePathCleaned,
+                                    self.scan_data(fileData, fileType, filename,
                                                    filePathCleaned, extension, md5):
                                 # Message
                                 message = "Yara Rule MATCH: %s SUBSCORE: %s DESCRIPTION: %s" % (rule, score, description)
@@ -428,6 +428,8 @@ def scan_path(self, path):
 
     def scan_data(self, fileData, fileType="-", fileName="-", filePath="-", extension="-", md5="-"):
 
+        # Scan parameters
+        #print fileType, fileName, filePath, extension, md5
         # Scan with yara
         try:
             for rules in self.yara_rules: