mirror of https://github.com/MISP/misp-objects
Update attributes os r2graphity object
parent
2f74b709d4
commit
d7a1f85100
|
@ -77,23 +77,47 @@
|
||||||
"disable_correlation": true,
|
"disable_correlation": true,
|
||||||
"description": "Ratio: amount of referenced strings per kilobyte of code section"
|
"description": "Ratio: amount of referenced strings per kilobyte of code section"
|
||||||
},
|
},
|
||||||
"get-proc": {
|
"get-proc-address": {
|
||||||
"misp-attribute": "counter",
|
"misp-attribute": "counter",
|
||||||
"misp-usage-frequency": 0,
|
"misp-usage-frequency": 0,
|
||||||
"disable_correlation": true,
|
"disable_correlation": true,
|
||||||
"description": "Amount of calls to GetProcAddress"
|
"description": "Amount of calls to GetProcAddress"
|
||||||
},
|
},
|
||||||
|
"memory-allocations": {
|
||||||
|
"misp-attribute": "counter",
|
||||||
|
"misp-usage-frequency": 0,
|
||||||
|
"disable_correlation": true,
|
||||||
|
"description": "Amount of memory allocations"
|
||||||
|
},
|
||||||
"create-thread": {
|
"create-thread": {
|
||||||
"misp-attribute": "counter",
|
"misp-attribute": "counter",
|
||||||
"misp-usage-frequency": 0,
|
"misp-usage-frequency": 0,
|
||||||
"disable_correlation": true,
|
"disable_correlation": true,
|
||||||
"description": "Amount of calls to CreateThread"
|
"description": "Amount of calls to CreateThread"
|
||||||
},
|
},
|
||||||
"memory-allocations": {
|
"shortest-path-to-create-thread": {
|
||||||
"misp-attribute": "counter",
|
"misp-attribute": "counter",
|
||||||
"misp-usage-frequency": 0,
|
"misp-usage-frequency": 0,
|
||||||
"disable_correlation": true,
|
"disable_correlation": true,
|
||||||
"description": "Amount of memory allocations"
|
"description": "Shortest path to the first time the binary calls CreateThread"
|
||||||
|
},
|
||||||
|
"callbacks": {
|
||||||
|
"misp-attribute": "counter",
|
||||||
|
"misp-usage-frequency": 0,
|
||||||
|
"disable_correlation": true,
|
||||||
|
"description": "Amount of callbacks (functions started as thread)"
|
||||||
|
},
|
||||||
|
"callback-average": {
|
||||||
|
"misp-attribute": "counter",
|
||||||
|
"misp-usage-frequency": 0,
|
||||||
|
"disable_correlation": true,
|
||||||
|
"description": "Average size of a callback"
|
||||||
|
},
|
||||||
|
"callback-largest": {
|
||||||
|
"misp-attribute": "counter",
|
||||||
|
"misp-usage-frequency": 0,
|
||||||
|
"disable_correlation": true,
|
||||||
|
"description": "Largest callback"
|
||||||
},
|
},
|
||||||
"gml": {
|
"gml": {
|
||||||
"misp-attribute": "attachment",
|
"misp-attribute": "attachment",
|
||||||
|
|
Loading…
Reference in New Issue