MISP
/
misp-objects
mirror of https://github.com/MISP/misp-objects
2
0
Fork 0
Code Issues Releases Wiki Activity

add: x509-fingerprint-sha1 added to file object description (e.g signed APK but not PE)

pull/56/head
Alexandre Dulaunoy 2017-12-03 11:36:22 +01:00
parent 04d38118d1
commit e11e95415a
No known key found for this signature in database
GPG Key ID: 09E2CD4944E6CBCD
1 changed files with 10 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
objects/file/definition.json
View File

@ -15,7 +15,8 @@
"sha512/224", "sha512/224",
"sha512/256", "sha512/256",
"tlsh", "tlsh",
"pattern-in-file" "pattern-in-file",
"x509-fingerprint-sha1"
], ],
"attributes": { "attributes": {
"md5": { "md5": {
@ -126,6 +127,11 @@
"ui-priority": 0, "ui-priority": 0,
"misp-attribute": "tlsh" "misp-attribute": "tlsh"
}, },
"certificate": {
"description": "Certificate value if the binary is signed with another authentication scheme than authenticode",
"ui-prioriety": 0,
"misp-attribute": "x509-fingerprint-sha1"
},
"mimetype": { "mimetype": {
"description": "Mime type", "description": "Mime type",
"disable_correlation": true, "disable_correlation": true,
@ -142,11 +148,12 @@
"Signed", "Signed",
"Revoked", "Revoked",
"Expired", "Expired",
"Trusted" "Trusted",
"Malicious"
] ]
} }
}, },
"version": 5, "version": 6,
"description": "File object describing a file with meta-information", "description": "File object describing a file with meta-information",
"meta-category": "file", "meta-category": "file",
"uuid": "688c46fb-5edb-40a3-8273-1af7923e2215", "uuid": "688c46fb-5edb-40a3-8273-1af7923e2215",