As the usage rate of computers has dramatically increased, and massive data is digitalized and stored in computers, it's more common to be attacked by malicious software. Among all the malware, cryptography algorithms are frequently abused to hide their activity and raise the difficulty of analysis. Especially for ransomware, which utilizes these cryptography algorithms to encrypt the victim's data and ask for ransom. Therefore, retrieving cryptography algorithms related information from binary executable files plays an important part in malware analysis. Due to the variety of programs, most situations still depend mainly on manual analysis by researchers and thus cost lots of human resources and time. To solve such an issue, we propose a novel system. It can automatically detect cryptography algorithms related functions in binary executable files through dynamic analysis and sort them, where the high-ranking functions are more likely to be the wanted goal. Moreover, it can also provide the possible addresses of cryptography parameters such as plaintext, ciphertext, key, and initialization vector. Last but not least, it can handle the packed programs. By utilizing this system, researchers can not only get cryptography algorithm related information faster but also figure out which functions require deeper analysis. On the testing samples, we select ten cryptography algorithms and the implementation method includes two common cryptography libraries and six proprietary cryptography algorithms. Our system can find out all the locations of cryptography algorithm related functions. Furthermore, it can at least provide one cryptographic parameter, and find all the cryptographic parameters in most cases.