pymisp 2.5.7__py3-none-any.whl → 2.5.7.1__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of pymisp might be problematic. Click here for more details.

Files changed (72) hide show
  1. CHANGELOG.txt +13 -0
  2. pymisp/data/misp-objects/objects/rmm/definition.json +1 -1
  3. {pymisp-2.5.7.dist-info → pymisp-2.5.7.1.dist-info}/METADATA +2 -2
  4. {pymisp-2.5.7.dist-info → pymisp-2.5.7.1.dist-info}/RECORD +6 -72
  5. tests/57c4445b-c548-4654-af0b-4be3950d210f.json +0 -1
  6. tests/__init__.py +0 -0
  7. tests/csv_testfiles/invalid_fieldnames.csv +0 -11
  8. tests/csv_testfiles/valid_fieldnames.csv +0 -4
  9. tests/email_testfiles/mail_1.eml.zip +0 -0
  10. tests/email_testfiles/mail_1.msg +0 -0
  11. tests/email_testfiles/mail_1_bom.eml +0 -858
  12. tests/email_testfiles/mail_1_headers_only.eml +0 -28
  13. tests/email_testfiles/mail_2.eml +0 -32
  14. tests/email_testfiles/mail_3.eml +0 -170
  15. tests/email_testfiles/mail_3.msg +0 -0
  16. tests/email_testfiles/mail_4.msg +0 -0
  17. tests/email_testfiles/mail_5.msg +0 -0
  18. tests/email_testfiles/mail_multiple_to.eml +0 -15
  19. tests/email_testfiles/source +0 -1
  20. tests/git-vuln-finder-quagga.json +0 -1493
  21. tests/misp_event.json +0 -76
  22. tests/mispevent_testfiles/attribute.json +0 -21
  23. tests/mispevent_testfiles/attribute_del.json +0 -23
  24. tests/mispevent_testfiles/def_param.json +0 -53
  25. tests/mispevent_testfiles/event.json +0 -8
  26. tests/mispevent_testfiles/event_obj_attr_tag.json +0 -57
  27. tests/mispevent_testfiles/event_obj_def_param.json +0 -62
  28. tests/mispevent_testfiles/event_obj_tag.json +0 -29
  29. tests/mispevent_testfiles/event_tags.json +0 -18
  30. tests/mispevent_testfiles/existing_event.json +0 -4599
  31. tests/mispevent_testfiles/existing_event_edited.json +0 -4601
  32. tests/mispevent_testfiles/galaxy.json +0 -25
  33. tests/mispevent_testfiles/malware.json +0 -19
  34. tests/mispevent_testfiles/malware_exist.json +0 -163
  35. tests/mispevent_testfiles/misp_custom_obj.json +0 -38
  36. tests/mispevent_testfiles/overwrite_file/definition.json +0 -457
  37. tests/mispevent_testfiles/proposals.json +0 -35
  38. tests/mispevent_testfiles/shadow.json +0 -148
  39. tests/mispevent_testfiles/sighting.json +0 -5
  40. tests/mispevent_testfiles/simple.json +0 -2
  41. tests/mispevent_testfiles/test_object_template/definition.json +0 -29
  42. tests/new_misp_event.json +0 -34
  43. tests/reportlab_testfiles/HTML_event.json +0 -1
  44. tests/reportlab_testfiles/galaxy_1.json +0 -1250
  45. tests/reportlab_testfiles/image_event.json +0 -2490
  46. tests/reportlab_testfiles/japanese_test.json +0 -156
  47. tests/reportlab_testfiles/japanese_test_heavy.json +0 -318
  48. tests/reportlab_testfiles/long_event.json +0 -3730
  49. tests/reportlab_testfiles/mainly_objects_1.json +0 -1092
  50. tests/reportlab_testfiles/mainly_objects_2.json +0 -977
  51. tests/reportlab_testfiles/sighting_1.json +0 -305
  52. tests/reportlab_testfiles/sighting_2.json +0 -221
  53. tests/reportlab_testfiles/to_delete1.json +0 -804
  54. tests/reportlab_testfiles/to_delete2.json +0 -1
  55. tests/reportlab_testfiles/to_delete3.json +0 -1
  56. tests/reportlab_testfiles/very_long_event.json +0 -1006
  57. tests/reportlab_testoutputs/to_delete1.json.pdf +0 -391
  58. tests/reportlab_testoutputs/to_delete2.json.pdf +0 -506
  59. tests/reportlab_testoutputs/to_delete3.json.pdf +0 -277
  60. tests/search_index_result.json +0 -69
  61. tests/sharing_groups.json +0 -98
  62. tests/stix1.xml-utf8 +0 -110
  63. tests/stix2.json +0 -1
  64. tests/test_analyst_data.py +0 -123
  65. tests/test_emailobject.py +0 -157
  66. tests/test_fileobject.py +0 -20
  67. tests/test_mispevent.py +0 -473
  68. tests/test_reportlab.py +0 -431
  69. tests/testlive_comprehensive.py +0 -3734
  70. tests/testlive_sync.py +0 -474
  71. {pymisp-2.5.7.dist-info → pymisp-2.5.7.1.dist-info}/LICENSE +0 -0
  72. {pymisp-2.5.7.dist-info → pymisp-2.5.7.1.dist-info}/WHEEL +0 -0
CHANGELOG.txt CHANGED
@@ -2,6 +2,18 @@ Changelog
2
2
  =========
3
3
 
4
4
 
5
+ v2.5.7.1 (2025-02-22)
6
+ ---------------------
7
+
8
+ Changes
9
+ ~~~~~~~
10
+ - Remove tests from wheel. [Raphaël Vinot]
11
+ - Make mypy happy. [Raphaël Vinot]
12
+ - Bump objects. [Raphaël Vinot]
13
+ - Move email MSG to PW protected archive to fool bumb AVs. [Raphaël
14
+ Vinot]
15
+
16
+
5
17
  v2.5.7 (2025-02-20)
6
18
  -------------------
7
19
 
@@ -13,6 +25,7 @@ New
13
25
 
14
26
  Changes
15
27
  ~~~~~~~
28
+ - Bump changelog. [Raphaël Vinot]
16
29
  - Bump objects. [Raphaël Vinot]
17
30
  - Bump changelog. [Raphaël Vinot]
18
31
  - Bump deps, version. [Raphaël Vinot]
pymisp/data/misp-objects/objects/rmm/definition.json CHANGED
@@ -85,4 +85,4 @@
85
85
  ],
86
86
  "uuid": "2cdcfb2a-dd74-4d88-ae02-6f381b312666",
87
87
  "version": 4
88
- }
88
+ }
{pymisp-2.5.7.dist-info → pymisp-2.5.7.1.dist-info}/METADATA RENAMED
@@ -1,6 +1,6 @@
1
1
  Metadata-Version: 2.3
2
2
  Name: pymisp
3
- Version: 2.5.7
3
+ Version: 2.5.7.1
4
4
  Summary: Python API for MISP.
5
5
  License: BSD-2-Clause
6
6
  Author: Raphaël Vinot
@@ -42,7 +42,7 @@ Requires-Dist: python-dateutil (>=2.9.0.post0)
42
42
  Requires-Dist: python-magic (>=0.4.27) ; extra == "fileobjects"
43
43
  Requires-Dist: reportlab (>=4.3.1) ; extra == "pdfexport"
44
44
  Requires-Dist: requests (>=2.32.3)
45
- Requires-Dist: sphinx (>=8.2.0) ; (python_version >= "3.11") and (extra == "docs")
45
+ Requires-Dist: sphinx (>=8.2.1) ; (python_version >= "3.11") and (extra == "docs")
46
46
  Requires-Dist: sphinx-autodoc-typehints (>=3.1.0) ; (python_version >= "3.11") and (extra == "docs")
47
47
  Requires-Dist: urllib3 (>=2.3.0) ; extra == "brotli"
48
48
  Requires-Dist: validators (>=0.34.0) ; extra == "virustotal"
{pymisp-2.5.7.dist-info → pymisp-2.5.7.1.dist-info}/RECORD RENAMED
@@ -1,4 +1,4 @@
1
- CHANGELOG.txt,sha256=1DzEwNZ8ekVXS8BIY1Cdq5ryQoDbHF4QMqVLGXxT01E,180787
1
+ CHANGELOG.txt,sha256=2pi0zreoqfIInNCyU_XcDvaizt1G3VSLH9COAQ37PYY,181076
2
2
  examples/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
3
3
  examples/add_attributes_from_csv.py,sha256=k-9AAips6PqBZ70hRD2422wn6rRWHqNDkhpm6yIv7vw,2479
4
4
  examples/add_email_object.py,sha256=y-HfUMsl-lETBISfAA0d8U6aVlwtpitRXEIPY-nKPQU,992
@@ -333,7 +333,7 @@ pymisp/data/misp-objects/objects/regripper-system-hive-services-drivers/definiti
333
333
  pymisp/data/misp-objects/objects/report/definition.json,sha256=VGwiq38JeXS3-aZ1qhc8LolunR2TKZ8Fa9r5VUcWK68,2130
334
334
  pymisp/data/misp-objects/objects/research-scanner/definition.json,sha256=QNnj_Z4M91pobemf3D54NcPDEnBOnt2aMQAQBRdz0MM,2409
335
335
  pymisp/data/misp-objects/objects/risk-assessment-report/definition.json,sha256=a618CJQDAarQWtSh2DN9ddL4cvbjGvXp82Gpwt_cCcw,1418
336
- pymisp/data/misp-objects/objects/rmm/definition.json,sha256=CLcUVVPl0i3BBlt8anGIuxTuj4IMdW4cqkSrqziFYxs,2030
336
+ pymisp/data/misp-objects/objects/rmm/definition.json,sha256=ekdWhfz1-pk7ZUgbHOebbzKnQEKhlxM2S8HhAoykAeA,2029
337
337
  pymisp/data/misp-objects/objects/rogue-dns/definition.json,sha256=AVtTRNUGfXMVsMytl8VV44RfwrZgSLV1Zy1ubJjL46k,1272
338
338
  pymisp/data/misp-objects/objects/rtir/definition.json,sha256=_kETOirHNgTr_ONJjBOl5Lic5WjQKwX3sAuBNDXNS3A,1553
339
339
  pymisp/data/misp-objects/objects/sandbox-report/definition.json,sha256=gVIr3TJYvP2du-tGRcCz7FlonqlNNUtbrFnH2JYh66s,2691
@@ -460,73 +460,7 @@ pymisp/tools/update_objects.py,sha256=sp_XshzgtRjAU0Mqg8FgRTaokjVKLImyQ02xIcPSrH
460
460
  pymisp/tools/urlobject.py,sha256=PIucy1356zaljUm1NbeKmEpHpAUK9yiK2lAugcMp2t8,2489
461
461
  pymisp/tools/vehicleobject.py,sha256=bs7f4d47IBi2-VumssSM3HlqkH0viyHTLmIHQxe8Iz8,3687
462
462
  pymisp/tools/vtreportobject.py,sha256=NsdYzgqm47dywYeW8UnWmEDeIsf07xZreD2iJzFm2wg,3217
463
- tests/57c4445b-c548-4654-af0b-4be3950d210f.json,sha256=9vOptAJ8svZcWSGHG_lvvEKmDMWpdf0gftQAzCu0nRk,3038
464
- tests/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
465
- tests/csv_testfiles/invalid_fieldnames.csv,sha256=aZ_B2fxaHXJTp8_N0M5YPdNgTr37Tbl12K_RGP53xbQ,607
466
- tests/csv_testfiles/valid_fieldnames.csv,sha256=4U77EexlKtoSEzDve9Hm9WwQzx8g9I-Fv_iMw6pCVY0,441
467
- tests/email_testfiles/mail_1.eml.zip,sha256=XuE4ct-_3GcTrrOumKHf4U78bYlP9DzQAFO_9JEVgIw,27186
468
- tests/email_testfiles/mail_1.msg,sha256=XWNU1Ajspvsm6jlbzFdCG2IqR43IKcgbwvtjlrVRjOQ,276480
469
- tests/email_testfiles/mail_1_bom.eml,sha256=1wnXbA6yhyFQHJpZLVUIxqS1CpyLABVZ4cfxva_uY30,65789
470
- tests/email_testfiles/mail_1_headers_only.eml,sha256=n-AOw4wQ9V38nqkQ8TUzM76zBm5bouK8cga8LiYvCIg,2415
471
- tests/email_testfiles/mail_2.eml,sha256=DIuBSpNigiEoVxYdc8ugj6gZY0ujjIDBdGmgx8pgC4I,1477
472
- tests/email_testfiles/mail_3.eml,sha256=e_6-cNCILvTrqGUWgXaXD8iWSBXNe3lP3wF2mImf0S8,8878
473
- tests/email_testfiles/mail_3.msg,sha256=vdBjsz-bnY6Ka-lcB-8YIXINl8HG_HF_F1KEbLzcD4Y,26624
474
- tests/email_testfiles/mail_4.msg,sha256=1XXwxnRSDuRqOg_ctZD74ls1uH_uMTft-2cxOmualGA,57344
475
- tests/email_testfiles/mail_5.msg,sha256=NzzvgFln7wntf-G2q-HUKBWvcAfSHLVTKh1S7hrDSRM,65536
476
- tests/email_testfiles/mail_multiple_to.eml,sha256=I05fUHirW4vzQPHB13y3f-5kCB8rvkCk-ffmw_4STdM,1568
477
- tests/email_testfiles/source,sha256=JNNZ6fO8OFC__qXXT6Ob0ITRa-z7K1vvfz2x7Gi1QwE,66
478
- tests/git-vuln-finder-quagga.json,sha256=72kvJPrY54A0cFyorNqnEidPNn0kRTtkiO434bcXGYQ,98813
479
- tests/misp_event.json,sha256=V_W1lsV-p5SmIHMieJhqIDxeF7XBmI329s3hGAZNxGA,2053
480
- tests/mispevent_testfiles/attribute.json,sha256=b8gVCVa5-N88g3OoKzwGzaMnyArc0iigaareQSgCs30,374
481
- tests/mispevent_testfiles/attribute_del.json,sha256=DUys_24edRUOl5Bfign1Urb_0Ve2DWzLCiN8sk4oDl4,415
482
- tests/mispevent_testfiles/def_param.json,sha256=zCQsm9U7XT4HJDi3tA57fhweqM2moO6oCqsiSph76Sw,1458
483
- tests/mispevent_testfiles/event.json,sha256=Z1VlOz9slPWLNsbUDK7ipIzdn1NrCn9frQcguTETZ8E,144
484
- tests/mispevent_testfiles/event_obj_attr_tag.json,sha256=CZhiklh4RUhGFdDIl-IOEk0rXFfIutcEJYlNrZScogk,1507
485
- tests/mispevent_testfiles/event_obj_def_param.json,sha256=YKIhEibDkF7C1eSOdx_XFOXFPd0bUDG16nieHoB-w1g,1571
486
- tests/mispevent_testfiles/event_obj_tag.json,sha256=hD358Y41xiA3GsWc2gAzpP5Le1OL3uqKB8VOrcSlTOY,651
487
- tests/mispevent_testfiles/event_tags.json,sha256=CKkbWlTky64PG_bBM9U3uQ7C080A8GsJQ8VLNNkshKg,237
488
- tests/mispevent_testfiles/existing_event.json,sha256=W4X9ldzv2mXWpmlpsuKfQt-nhNCSR9tc4SB1kfBQEpI,146400
489
- tests/mispevent_testfiles/existing_event_edited.json,sha256=v4V711qaSfDEsJScbPr1vT-n33RaGyJUQh8B7nUHPIg,146390
490
- tests/mispevent_testfiles/galaxy.json,sha256=Wd1FkJYKtqTufAQXTcOAjv5bxmvU5OioNRKFOAOe2b0,756
491
- tests/mispevent_testfiles/malware.json,sha256=YoksvEuBCvbTHVY1VVJvlh4l7EHzAROlCNTWwcIHSEc,396
492
- tests/mispevent_testfiles/malware_exist.json,sha256=kmtQ0vW9MI-E5p4-3ZtQf0dk9CuyX_ARD_MpCQsTNjM,7140
493
- tests/mispevent_testfiles/misp_custom_obj.json,sha256=uSIEHEHO63g12smDvXEs8aZLvb5OALjDpgN-qyraIfI,881
494
- tests/mispevent_testfiles/overwrite_file/definition.json,sha256=2fMeAlgedrSPllkzj0D3hSUxfy5BXhS0L2vl2npVV5k,11122
495
- tests/mispevent_testfiles/proposals.json,sha256=qj5PvWOVcjDzbTkFCJbwcKBwQuMEhqpqWIiVdtgzAys,715
496
- tests/mispevent_testfiles/shadow.json,sha256=SRchQwDqpnb-Fnuii4UkEI84QwaY2lIIDtjh6StKDqA,4222
497
- tests/mispevent_testfiles/sighting.json,sha256=1bV0Clz3JL0I6KLLFpPjmCYhMz3a5BOYItYRfk1113E,63
498
- tests/mispevent_testfiles/simple.json,sha256=2RQXb9UL1_VlcAAGoxqpe3nTrRfO4gyOX_IGHVy3SBc,4
499
- tests/mispevent_testfiles/test_object_template/definition.json,sha256=DjM88pcSxnA-orIGuSddriBVbzzxP26kgbiez6jOedc,578
500
- tests/new_misp_event.json,sha256=tAvZzx4oSnHHi6cptmyR_7FFR3wkpD3TRUfc7m9cLKs,888
501
- tests/reportlab_testfiles/HTML_event.json,sha256=icL96e7np3KbyqlumqyBuavQ8rBRYigsYTrhsiwuQCE,171424
502
- tests/reportlab_testfiles/galaxy_1.json,sha256=OHlUJEItkeo0azui3P-Z9fM20va7ZoKVWwx99Wl07kY,225290
503
- tests/reportlab_testfiles/image_event.json,sha256=goMdDrmqZYz1uGNjWQ1PNP-TBE9ZGYxiurBedaUfPLM,303937
504
- tests/reportlab_testfiles/japanese_test.json,sha256=EjDxuz-zzFyiBz_V9tk9N56jeKbDKtzVGAENLKAwWk0,17556
505
- tests/reportlab_testfiles/japanese_test_heavy.json,sha256=_enFM3O9p-nQGQr2hrBncnex6fScoJMs0LOqOD_Eik4,117363
506
- tests/reportlab_testfiles/long_event.json,sha256=jYkzFllzIt51Ac4Du68QFtqQCn69gstiMMKmHRHpLpY,149693
507
- tests/reportlab_testfiles/mainly_objects_1.json,sha256=JI_uXChihmRhP22hlmqgtKdpZZqUjQNBJ5kTryTvXpM,123173
508
- tests/reportlab_testfiles/mainly_objects_2.json,sha256=1Pzo76wCqqY56d6Y3DmqBal4zBliK8X-bQY-3xJH6cs,102032
509
- tests/reportlab_testfiles/sighting_1.json,sha256=HdAcmA8lJ2ThwNi8Ryx_GF8JNyVdJaEeh_oPMd9piLs,11787
510
- tests/reportlab_testfiles/sighting_2.json,sha256=9nn4uL6tNpVc1SpoZzJroLdevvMU9ppzeDb6EzipuCY,8790
511
- tests/reportlab_testfiles/to_delete1.json,sha256=Z71YUMPLG2nlI_at79wrt48y5x3zvOzJG4p_PtFIyzQ,30745
512
- tests/reportlab_testfiles/to_delete2.json,sha256=OWWI4y9TrvH-RW-p-Um1F1ejVLAdoKMLWQ0PHxrxRTo,157437
513
- tests/reportlab_testfiles/to_delete3.json,sha256=Ids-85h99TAIspIhoYfTRRXTqD1lT7abLxvF0IE4pVA,33776
514
- tests/reportlab_testfiles/very_long_event.json,sha256=6BbYF3BvQykBoiwnl1dR1iramC9gDHpXFu-tzqB6MPM,384749
515
- tests/reportlab_testoutputs/to_delete1.json.pdf,sha256=3xoKxWMJBhiTZo6AKvegJZLGGillA23MGgoaZ5ypvAs,30883
516
- tests/reportlab_testoutputs/to_delete2.json.pdf,sha256=cvTnDX8Cw6qwzGYgqaknpL2s1Kby316eIQ6swzCpLCY,35123
517
- tests/reportlab_testoutputs/to_delete3.json.pdf,sha256=R4q9tv1UIBMeNLULhSEJrz-imGupdb5vrFgkyZa0A5k,19673
518
- tests/search_index_result.json,sha256=ndtjirO1fJA5QUdbKz_P0K9q9YMAMHIqSobcqyZFOAA,1415
519
- tests/sharing_groups.json,sha256=GsLwfsAkEf_GG_Qe45UFl0IE7W9XQQC9aMolmcnw3C8,2256
520
- tests/stix1.xml-utf8,sha256=NbBNpDBtw6eGIAhhS25b5_ZJfRmoonlAvYT0OsPCXcg,7214
521
- tests/stix2.json,sha256=hQgTs7CSad4QI3iL4VYbvxOcfFqInNQkJhU4avIX5GA,1300
522
- tests/test_analyst_data.py,sha256=ViJjgST_qPUJTaO1-pCxpsoo5C-HUuki7mPsHLeFRTo,4891
523
- tests/test_emailobject.py,sha256=7eclz2-ahosdSBqzr3xbAnboaWa57tffzzmChJk--mU,7810
524
- tests/test_fileobject.py,sha256=-Ns4YIZse_bymoOgyt4np9c1Rg8P5BVyklJz7j1FiHg,702
525
- tests/test_mispevent.py,sha256=dRYjR3ZRxSCh030JFwyuBajyZpHLdTDT3KRlrntDvZo,24287
526
- tests/test_reportlab.py,sha256=4zhH9UWkWotBj1f6e5YVYw4-D0ah02nQix6oxOZDkRU,17640
527
- tests/testlive_comprehensive.py,sha256=uzL6XS3t8RQDHa9SUYTti8K99GeSSz3RIe746VLamDY,195802
528
- tests/testlive_sync.py,sha256=V57x761Wwg5h1roiZY5c1Ddr63TpZGsyIDPE4tEj1Zc,22195
529
- pymisp-2.5.7.dist-info/LICENSE,sha256=1oPSVvs96qLjbJVi3mPn0yvWs-6aoIF6BNXi6pVlFmY,1615
530
- pymisp-2.5.7.dist-info/METADATA,sha256=uvU-sYqRDfPiJIW1brsiZ7UvhXT-T8w1dNrfgsGWDNE,8881
531
- pymisp-2.5.7.dist-info/WHEEL,sha256=XbeZDeTWKc1w7CSIyre5aMDU_-PohRwTQceYnisIYYY,88
532
- pymisp-2.5.7.dist-info/RECORD,,
463
+ pymisp-2.5.7.1.dist-info/LICENSE,sha256=1oPSVvs96qLjbJVi3mPn0yvWs-6aoIF6BNXi6pVlFmY,1615
464
+ pymisp-2.5.7.1.dist-info/METADATA,sha256=HDHYHKqHPkRKJVmA6fXwicqhcOCPCfTiMjZAVF0tDAI,8883
465
+ pymisp-2.5.7.1.dist-info/WHEEL,sha256=XbeZDeTWKc1w7CSIyre5aMDU_-PohRwTQceYnisIYYY,88
466
+ pymisp-2.5.7.1.dist-info/RECORD,,
tests/57c4445b-c548-4654-af0b-4be3950d210f.json DELETED
@@ -1 +0,0 @@
1
- {"Event": {"info": "Ransomware - Xorist", "publish_timestamp": "1472548231", "timestamp": "1472541011", "analysis": "2", "Attribute": [{"category": "External analysis", "comment": "Imported via the Freetext Import Tool - Xchecked via VT: b3c4ae251f8094fa15b510051835c657eaef2a6cea46075d3aec964b14a99f68", "uuid": "57c5300c-0560-4146-bfaa-40e802de0b81", "timestamp": "1472540684", "to_ids": false, "value": "https://www.virustotal.com/file/b3c4ae251f8094fa15b510051835c657eaef2a6cea46075d3aec964b14a99f68/analysis/1469554268/", "type": "link"}, {"category": "External analysis", "comment": "", "uuid": "57c5310b-dc34-43cb-8b8e-4846950d210f", "timestamp": "1472541011", "to_ids": false, "value": "http://www.xylibox.com/2011/06/have-fun-with-trojan-ransomwin32xorist.html", "type": "link"}, {"category": "Other", "comment": "", "uuid": "57c444c0-8004-48fa-9c33-8aca950d210f", "timestamp": "1472480448", "to_ids": false, "value": "UPX packed", "type": "comment"}, {"category": "Other", "comment": "", "uuid": "57c44648-96f4-45d4-a8eb-453e950d210f", "timestamp": "1472480840", "to_ids": false, "value": "Key: 85350044dF4AC3518D185678A9414A7F,\r\nEncryption rounds:8,\r\nStart offset: 64,\r\nAlgorithm: TEA", "type": "text"}, {"category": "Payload delivery", "comment": "Imported via the Freetext Import Tool", "uuid": "57c4448a-fb04-457d-87e7-4127950d210f", "timestamp": "1472480394", "to_ids": true, "value": "3Z4wnG9603it23y.exe", "type": "filename"}, {"category": "Payload delivery", "comment": "Imported via the Freetext Import Tool", "uuid": "57c4448b-454c-4d17-90d1-4d2f950d210f", "timestamp": "1472480395", "to_ids": true, "value": "0749bae92ca336a02c83d126e04ec628", "type": "md5"}, {"category": "Payload delivery", "comment": "Imported via the Freetext Import Tool", "uuid": "57c4448a-bef0-4ba7-a071-444e950d210f", "timestamp": "1472480394", "to_ids": true, "value": "77b0c41b7d340b8a3d903f21347bbf06aa766b5b", "type": "sha1"}, {"category": "Payload delivery", "comment": "Imported via the Freetext Import Tool", "uuid": "57c4448b-3fa4-4d65-9ccc-4afa950d210f", "timestamp": "1472480395", "to_ids": true, "value": "b3c4ae251f8094fa15b510051835c657eaef2a6cea46075d3aec964b14a99f68", "type": "sha256"}, {"category": "Persistence mechanism", "comment": "", "uuid": "57c54b0f-27a4-458b-8e63-4455950d210f", "timestamp": "1472547599", "to_ids": true, "value": "Software\\Wow6432Node\\Microsoft\\Windows\\CurrentVersion\\Run|%TEMP%\\3Z4wnG9603it23y.exe", "type": "regkey|value"}], "Tag": [{"colour": "#ffffff", "exportable": true, "name": "tlp:white"}, {"colour": "#3d7a00", "exportable": true, "name": "circl:incident-classification=\"malware\""}, {"colour": "#420053", "exportable": true, "name": "ms-caro-malware:malware-type=\"Ransom\""}, {"colour": "#2c4f00", "exportable": true, "name": "malware_classification:malware-category=\"Ransomware\""}], "published": true, "date": "2016-08-29", "Orgc": {"name": "CIRCL", "uuid": "55f6ea5e-2c60-40e5-964f-47a8950d210f"}, "threat_level_id": "3", "uuid": "57c4445b-c548-4654-af0b-4be3950d210f"}}
tests/__init__.py DELETED
File without changes
tests/csv_testfiles/invalid_fieldnames.csv DELETED
@@ -1,11 +0,0 @@
1
- SHA1,fileName,size
2
- 2a030cc6d84d5785f5e84d0f5888a411d4b06d01,soft.exe,45568
3
- 2abae839362edfe52d9ebe282fb61113d22b331f,sttager.exe,20480
4
- 6995a32e0a4d4f6d0c9b2a00a96d69bff4b83ea7,test443.exe,373911
5
- 87b1f17fbb4a1e8eef4cb31c1c0194b1426c868c,veil.exe,345761
6
- afc36916a4df934446681ea28bef6add4decb98a,80_http.exe.exe,411850
7
- f832d94391a8d2d5cf92773e6c912905ec7c40c7,test1.exe,406636
8
- 056823c7891a04b2fec8903eb401ae3291743a54,beca.exe.exe,23808
9
- b7afa7acf1b7ded2c4e3d0884b5cdaa230d9f82e,shell1.exe,24576
10
- 4b50b6b9157026ab408d966ece02d1cef8045f82,starggge.exe,27136
11
- 6042dfd50d33da40e383baec4a7ef7c75bf17481,8_32.exe,24064
tests/csv_testfiles/valid_fieldnames.csv DELETED
@@ -1,4 +0,0 @@
1
- md5, sha1, sha256
2
- 644087ccca16d2a728ef7685a4106f09, eabd6974ac71efd72d9e0688d5a6131f336d169c, 385e31c97e3a07bbb81513f0cd0979e64e6b014943902efd002f57b21eadd41e
3
- 34187a34d0a3c5d63016c26346371b54, ce8209ff9828aa8cb095bd7d1589fc4d394c298c, 5f815b8a8e77731c9ca2b3a07a27f880ef24d54e458d77bdabbbaf2269fe96c3
4
- 871aa15f4d61c85e1284e1be3f99f705, 236eac0b19f91117b27f1b198a4d8490d99ec2e5, b434bccf0a5ff75b27184e661df751466aef69f35fbd7b8b8692302b8b886262
tests/email_testfiles/mail_1.eml.zip DELETED
Binary file
tests/email_testfiles/mail_1.msg DELETED
Binary file