README.MD

Version 1.2 This is for adding the awsome Yara pattern scanner to windows right click menus.

Changelog 1.2
Added Peid signatures made by Didier Stevens http://blog.didierstevens.com/
Added Malicious Documents scripts since there are multiple now
Change right name for anti VM
small fixes for win 7 and xp users.

What it Does

Right click a folder Scan folders and subfolder files recursive for

Crypto patterns
Hacking Team Mailware
Packers
Malicious documents / with more options
PEID signatures

Right Click a File

Scan files for

Crypto patterns
Hacking Team Mailware
Packers
Malicious documents / with more options
PEID signatures

Install

Since its really just alot of registry based commands, you have to have the files at,

C:\yara\yara32.exe
C:\yara\icons\
C:\yara\mailware\

I have added all rules to date, but if you wanna do it yourself, grap new yara rules from. https://github.com/Yara-Rules/rules

And if you want new binary prebuild(Use x86 one)I have 3.4.0 in this repo. https://github.com/plusvic/yara/releases/tag/v3.4.0

after you have extracted everything accoring to the folder i explained.

run

Add_Yara_Pattern_scanner_rmenu_To_right_click_file.reg

then

Add_Yara_Pattern_scanner_rmenu_To_right_click_folder.reg

Folder scan

File scan

Result

regards