gitea-mirror/capa
1
0
Fork 0
mirror of https://github.com/mandiant/capa.git synced 2026-02-05 03:16:56 -08:00
Code Issues Packages Projects Releases Wiki Activity

vmray: remove call feature extraction for out parameters

Browse Source
This commit is contained in:
Mike Hunhoff
2024-07-12 18:42:42 -06:00
parent 4bbe9e1ce9
commit 06631fc39d
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
capa/features/extractors/vmray/call.py
View File

@@ -36,9 +36,12 @@ def extract_call_features(ph: ProcessHandle, th: ThreadHandle, ch: CallHandle) -
for param in call.params_in.params:
yield from get_call_param_features(param, ch)
"""
# TODO (meh): params_out stores return value, not sure where to emit this?? https://github.com/mandiant/capa/issues/2148
if call.params_out:
for param in call.params_out.params:
yield from get_call_param_features(param, ch)
"""
yield API(call.name), ch.address