From c9b7162a5fcd2388f365ca7cdbb90bdb31aea94f Mon Sep 17 00:00:00 2001 From: Michael Hunhoff Date: Tue, 27 Jul 2021 13:32:57 -0600 Subject: [PATCH] update IDA extractor to use non-canon mnemonics --- CHANGELOG.md | 1 + capa/features/extractors/ida/insn.py | 2 +- 2 files changed, 2 insertions(+), 1 deletion(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index eeb0f512..f67af347 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -20,6 +20,7 @@ - explorer: add additional filter logic when displaying matches by function #686 @mike-hunhoff - explorer: remove duplicate check when saving file #687 @mike-hunhoff +- explorer: update IDA extractor to use non-canon mnemonics #688 @mike-hunhoff ### Development diff --git a/capa/features/extractors/ida/insn.py b/capa/features/extractors/ida/insn.py index 8c469af7..82fb4715 100644 --- a/capa/features/extractors/ida/insn.py +++ b/capa/features/extractors/ida/insn.py @@ -337,7 +337,7 @@ def extract_insn_mnemonic_features(f, bb, insn): bb (IDA BasicBlock) insn (IDA insn_t) """ - yield Mnemonic(insn.get_canon_mnem()), insn.ea + yield Mnemonic(idc.print_insn_mnem(insn.ea)), insn.ea def extract_insn_peb_access_characteristic_features(f, bb, insn):