From 42f73b48e8902cdc3e6228f074bce86b4f12ab9b Mon Sep 17 00:00:00 2001
From: MerX1030 <alccamba@gmail.com>
Date: Fri, 28 Oct 2016 12:30:23 +0800
Subject: [PATCH] process name checking should be case insensitive

---
 lib/cuckoo/core/plugins.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lib/cuckoo/core/plugins.py b/lib/cuckoo/core/plugins.py
index b6b42644e..b5dac5ea2 100644
--- a/lib/cuckoo/core/plugins.py
+++ b/lib/cuckoo/core/plugins.py
@@ -401,7 +401,7 @@ def run(self):
                     # Loop through active evented signatures.
                     for sig in evented_list:
                         # Skip current call if it doesn't match the filters (if any).
-                        if sig.filter_processnames and not proc["process_name"] in sig.filter_processnames:
+                        if sig.filter_processnames and not proc["process_name"].lower() in map(lamba x:x.lower(), sig.filter_processnames):
                             continue
                         if sig.filter_apinames and not call["api"] in sig.filter_apinames:
                             continue