add: Parsing communicating samples returned by domain reports

pull/322/head
chrisr3d 3 years ago
parent c9c2027a57
commit 675e0815ff
No known key found for this signature in database
GPG Key ID: 6BBED1B63A6D639F
  1. 2
      misp_modules/modules/expansion/virustotal_public.py

@ -76,7 +76,7 @@ class DomainQuery(VirusTotalParser):
def parse_report(self, query_result):
hash_type = 'sha256'
whois = 'whois'
for feature_type in ('referrer', 'downloaded'):
for feature_type in ('referrer', 'downloaded', 'communicating'):
for feature in ('undetected_{}_samples', 'detected_{}_samples'):
for sample in query_result[feature.format(feature_type)]:
self.misp_event.add_attribute(hash_type, sample[hash_type])

Loading…
Cancel
Save