mirror of https://github.com/MISP/misp-modules
chg: [hashlookup] add new fields such as source, SSDEEP and TLSH
parent
9783113a1e
commit
b6e0c4ce53
|
@ -31,8 +31,14 @@ class HashlookupParser():
|
||||||
|
|
||||||
def parse_hashlookup_information(self):
|
def parse_hashlookup_information(self):
|
||||||
hashlookup_object = MISPObject('hashlookup')
|
hashlookup_object = MISPObject('hashlookup')
|
||||||
|
if 'source' in self.hashlookupresult:
|
||||||
|
hashlookup_object.add_attribute('source', **{'type': 'text', 'value': self.hashlookupresult['source']})
|
||||||
hashlookup_object.add_attribute('MD5', **{'type': 'md5', 'value': self.hashlookupresult['MD5']})
|
hashlookup_object.add_attribute('MD5', **{'type': 'md5', 'value': self.hashlookupresult['MD5']})
|
||||||
hashlookup_object.add_attribute('SHA-1', **{'type': 'sha1', 'value': self.hashlookupresult['SHA-1']})
|
hashlookup_object.add_attribute('SHA-1', **{'type': 'sha1', 'value': self.hashlookupresult['SHA-1']})
|
||||||
|
if 'SSDEEP' in self.hashlookupresult:
|
||||||
|
hashlookup_object.add_attribute('SSDEEP', **{'type': 'ssdeep', 'value': self.hashlookupresult['SSDEEP']})
|
||||||
|
if 'TLSH' in self.hashlookupresult:
|
||||||
|
hashlookup_object.add_attribute('TLSH', **{'type': 'tlsh', 'value': self.hashlookupresult['TLSH']})
|
||||||
if 'FileName' in self.hashlookupresult:
|
if 'FileName' in self.hashlookupresult:
|
||||||
hashlookup_object.add_attribute('FileName', **{'type': 'filename', 'value': self.hashlookupresult['FileName']})
|
hashlookup_object.add_attribute('FileName', **{'type': 'filename', 'value': self.hashlookupresult['FileName']})
|
||||||
if 'FileSize' in self.hashlookupresult:
|
if 'FileSize' in self.hashlookupresult:
|
||||||
|
|
Loading…
Reference in New Issue