AttributeError: 'lief.PE.Binary' object has no attribute 'has_signature'

[vietvo89]

Hi Anderson

I am doing research on malware evasion and I want to verify pre-trained models provided in this github. However, it seems that there is something wrong with lightGBM but I don't know.

When I executed "python3 models.py some.exe" where "some.exe" is from my local machine, it caused an attribute error. I have verified various benign samples but it always results in the same error. Do you know why? Do my PE files have no "has_signature" attribute at all? If so, why does the code need to check it?

AttributeError: 'lief.PE.Binary' object has no attribute 'has_signature'

There was no problem with other models except lightGBM.

Thanks

[vietvo89]

Hi

Since this Github does not provide ember package (module), I imported it from EMBER dataset Github. Does this package work for real malware (raw binary format) classifier?
Does ember package can load and extract the right feature for "has_signature" attribute.

Thanks

[comath]

That sounds like a Lief error. Are you sure you have the right version?

[chinggg]

It seems has_signatures has replaced has_signature