Merge pull request #76 from Delta-Sierra/master

update mapping
2017-10-25 16:49:49 +02:00 · 2017-10-25 16:49:49 +02:00 · c3dc495136
parent 1207b123f7 c4be2b5156
commit c3dc495136
1 changed files with 7 additions and 3 deletions
--- a/mapping/mapping.json
+++ b/mapping/mapping.json
@ -69,6 +69,7 @@
  "scan": {
    "values": [
      "circl:incident-classification=\"scan\"",
+      "ecsirt:information-gathering=\"scanner\""
      "europol-incident:information-gathering=\"scanning\""
    ]
  },
@ -148,20 +149,23 @@
  "Trojan": {
    "values": [
      "malware_classification:malware-category=\"Trojan\"",
-      "ms-caro-malware:malware-type=\"Trojan\""
+      "ms-caro-malware:malware-type=\"Trojan\"",
+      "ecsirt:malicious-code=\"trojan\""
    ]
  },
  "Virus": {
    "values": [
      "malware_classification:malware-category=\"Virus\"",
-      "ms-caro-malware:malware-type=\"Virus\""
+      "ms-caro-malware:malware-type=\"Virus\"",
+      "ecsirt:malicious-code=\"virus\""
    ]
  },
  "Worm": {
    "values": [
      "veris:action:malware:variety=\"Worm\"",
      "malware_classification:malware-category=\"Worm\"",
-      "ms-caro-malware:malware-type=\"Worm\""
+      "ms-caro-malware:malware-type=\"Worm\"",
+      "ecsirt:malicious-code=\"worm\""
    ]
  },
  "tlp-white": {