-
Please implement the following new attribute types:
- Threat Actor
- Campaign name
- Campaign ID
- Malware Type
- URI (for network activity, to express that /bad/exploit.jar is malicious, without need…
-
Hi,
Here are some files that reproduce a few minor bugs, they are all clean Windows files.
I also have some malware files that have similar issues, but I think fixing these minor bugs will fix…
-
We need to come up with a new set of vocabulary for Object Types.
Currently they are based on CybOX vocabulary. They doesn't necessarily have to change if we all agree the current options are adequat…
-
From the stix-discussion-list:
> The Hash object should be enhanced to support crc32 checksum, the SSDEEP and IMPHASH types of hashes. Looking at the commented code, it seems it is already an ongoing…
-
I think the issue is at:
MD5_Update(&ctx, final_name, final_name_len);
Should be:
MD5_Update(&ctx, final_name, final_name_len -1 );
Otherwise you hash also \0
-
When installing from the utils/setup-ubuntu.sh, pip installs pefile==1.2.10-114
Line 58 of src/Logging/BaseLogging.py calls pefile.PE.get_imphash() which isn't available until pefile==1.2.10-139
Unin…
-
# in analysis table
URL: http://[ignore]/download/MITCalcSprTens01.exe
(Content-type: application/octet-stream, MD5: 067241026427c25cd4c6d854a55b8549)
# in location table
"mime-type" : "PE32 execut…
mien updated
10 years ago