2018-01-03 14:36:10 +01:00
|
|
|
{
|
2019-08-02 18:01:08 +02:00
|
|
|
"Object": [
|
|
|
|
{
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"Tag": [
|
|
|
|
{
|
|
|
|
"name": "blah"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "filename",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "filename",
|
|
|
|
"value": "bar"
|
2019-10-18 14:44:54 +02:00
|
|
|
},
|
|
|
|
{
|
|
|
|
"category": "Artifacts dropped",
|
|
|
|
"disable_correlation": false,
|
|
|
|
"object_relation": "pattern-in-file",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "pattern-in-file",
|
|
|
|
"value": "baz"
|
2019-08-02 18:01:08 +02:00
|
|
|
}
|
|
|
|
],
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"distribution": "5",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"sharing_group_id": "0",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
2019-12-16 15:30:44 +01:00
|
|
|
"template_version": "18",
|
2019-08-02 18:01:08 +02:00
|
|
|
"uuid": "a"
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"Attribute": [
|
|
|
|
{
|
|
|
|
"Tag": [
|
|
|
|
{
|
|
|
|
"name": "blah"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"category": "Payload delivery",
|
|
|
|
"disable_correlation": true,
|
|
|
|
"object_relation": "filename",
|
|
|
|
"to_ids": true,
|
|
|
|
"type": "filename",
|
|
|
|
"value": "baz"
|
|
|
|
}
|
|
|
|
],
|
|
|
|
"description": "File object describing a file with meta-information",
|
|
|
|
"distribution": "5",
|
|
|
|
"meta-category": "file",
|
|
|
|
"name": "file",
|
|
|
|
"sharing_group_id": "0",
|
|
|
|
"template_uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",
|
2019-12-16 15:30:44 +01:00
|
|
|
"template_version": "18",
|
2019-08-02 18:01:08 +02:00
|
|
|
"uuid": "b"
|
|
|
|
}
|
|
|
|
]
|
2018-01-03 14:36:10 +01:00
|
|
|
}
|