mirror of https://github.com/MISP/misp-modules
threatanalyzer_import - order of category tuned
parent
70383447a0
commit
ff793bc221
|
@ -69,7 +69,7 @@ def handler(q=False):
|
||||||
results.append({
|
results.append({
|
||||||
'values': current_sample_filename,
|
'values': current_sample_filename,
|
||||||
'data': base64.b64encode(file_data).decode(),
|
'data': base64.b64encode(file_data).decode(),
|
||||||
'type': 'malware-sample', 'categories': ['Artifacts dropped', 'Payload delivery'], 'to_ids': True, 'comment': ''})
|
'type': 'malware-sample', 'categories': ['Payload delivery', 'Artifacts dropped'], 'to_ids': True, 'comment': ''})
|
||||||
|
|
||||||
if 'Analysis/analysis.json' in zip_file_name:
|
if 'Analysis/analysis.json' in zip_file_name:
|
||||||
with zf.open(zip_file_name, mode='r', pwd=None) as fp:
|
with zf.open(zip_file_name, mode='r', pwd=None) as fp:
|
||||||
|
|
Loading…
Reference in New Issue