ioc[.]one - OSINT Cyber Threat Intelligence Database

How To Install And Use The CAPA Plugin In IDA Pro

Tags

attack-pattern:

Malware - T1587.001 Malware - T1588.001 Python - T1059.006 Tool - T1588.002

Show in Graph

Common Information

Type	Value
UUID	e899fbb4-a318-4810-a252-b2460e48acf3
Fingerprint	98441e3dadaee4db
Analysis status	DONE
Considered CTI value	0
Text language
Published	Dec. 25, 2024, 1:20 a.m.
Added to db	Dec. 25, 2024, 2:33 a.m.
Last updated	Dec. 26, 2024, 12:14 a.m.
Headline	How To Install And Use The CAPA Plugin In IDA Pro
Title	How To Install And Use The CAPA Plugin In IDA Pro
Detected Hints/Tags/Attributes	16/1/14

Source URLs

	Redirection	Url
Details	Source	https://medium.com/@rynvasis/how-to-install-and-use-the-capa-plugin-in-ida-pro-f2785fea2e16?source=rss------reverse_engineering-5
Details	Source	https://medium.com/@rynvasis/how-to-install-and-use-the-capa-plugin-in-ida-pro-f2785fea2e16?source=rss------cybersecurity-5

URL Provider

Details	Provider	Source level domain
Details	medium.com	medium.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	167	✔	Cybersecurity on Medium	https://medium.com/feed/tag/cybersecurity	2024-08-30 22:08
Details	172	✔	Reverse Engineering on Medium	https://medium.com/feed/tag/reverse-engineering	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	4725		github.com
Details	Domain	1		form.py
Details	File	1		capa_explorer.py
Details	File	1		c:\capa\capa\ida\plugin\capa_explorer.py
Details	File	1		c:\users\rynvasis\appdata\local\programs\python\python311\lib\site-packages\capa\ida\plugin\__init__.py
Details	File	1		ida.pl
Details	File	1		c:\users\rynvasis\appdata\local\programs\python\python311\lib\site-packages\capa\ida\plugin\form.py
Details	File	1		c:\users\rynvasis\appdata\local\programs\python\python311\lib\site-packages\ida_settings\__init__.py
Details	File	1		c:\users\rynvasis\appdata\local\programs\python\python311\lib\site-packages\ida_settings\ida_settings.py
Details	File	2		idapyswitch.exe
Details	File	1		c:\program files\ida pro\idapyswitch.exe
Details	Github username	21		mandiant
Details	Url	1		https://github.com/mandiant/capa.git
Details	Url	1		https://github.com/mandiant/capa-rules/releases