Skip to content

Commit

Permalink
Update cryptopools.py
Browse files Browse the repository at this point in the history
  • Loading branch information
@doomedraven
doomedraven authored Jun 3, 2024
1 parent 2906408 commit e13edd2
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion modules/signatures/windows/cryptopools.py
View file
Original file line number Diff line number Diff line change
@@ -1,3 +1,4 @@
import re
from lib.cuckoo.common.abstracts import Signature

from data.cryptopools import pool_domains
Expand Down Expand Up @@ -33,7 +34,7 @@ def on_complete(self):
self.extra_domains += domains

for domain in self.extra_domains:
if domain in pool_domains or self.check_executed_command(pattern=domain, regex=True):
if domain in pool_domains or any([re.match(pool_domain, domain) for pool_domain in pool_domains]) or self.check_executed_command(pattern=domain, regex=True):
self.malfamily = "crypto miner"
self.results["malfamily"] = "crypto miner"
self.results["malfamily_tag"] = "Behavior"
Expand Down

0 comments on commit e13edd2

Please sign in to comment.