Merge pull request #1817 from CybercentreCanada/au3_fix

Prevent binary files from being identified as au3

Author: cccs-jh

assemblyline/common/custom.yara

@@ -1333,6 +1333,7 @@ rule code_au3 {
     condition:
         // First off, we want at least one strong keyword
         #strong_keywords >= 1
+        and mime startswith "text"
         and (
             // Next we are looking for a high-confidence amount of functions
             // If we have 5 or more strong functions, great