/ 
STIX-1.01
/ STIX::MalwareAnalysis

NAME

STIX::MalwareAnalysis - STIX Domain Object (SDO) - Malware Analysis

SYNOPSIS

use STIX::MalwareAnalysis;

my $malware_analysis = STIX::MalwareAnalysis->new();

DESCRIPTION

Malware Analysis captures the metadata and results of a particular analysis performed (static or dynamic) on the malware instance or family.

METHODS

STIX::MalwareAnalysis inherits all methods from STIX::Common::Properties and implements the following new ones.

STIX::MalwareAnalysis->new(%properties)

Create a new instance of STIX::MalwareAnalysis.

$malware_analysis->analysis_definition_version

The version of the analysis definitions used by the analysis tool.

$malware_analysis->analysis_ended

The date and time that the malware analysis ended.

$malware_analysis->analysis_engine_version

The version of the analysis engine or product that was used to perform this analysis.

$malware_analysis->analysis_sco_refs

The list of STIX objects that were captured during the analysis process.

$malware_analysis->analysis_started

The date and time that the malware analysis was initiated.

$malware_analysis->configuration_version

The version of the analysis product configuration that was used to perform this analysis.

$malware_analysis->host_vm_ref

A description of the virtual machine environment used to host the guest operating system (if applicable) that was used for the dynamic analysis of the malware instance or family.

$malware_analysis->id
$malware_analysis->installed_software_refs

Any non-standard software installed on the operating system used for the dynamic analysis of the malware instance or family.

$malware_analysis->modules

The particular analysis product modules that were used to perform the analysis.

$malware_analysis->operating_system_ref

The operating system that was used to perform the dynamic analysis.

$malware_analysis->product

The name of the analysis engine or product that was used for this analysis.

$malware_analysis->result

The classification result as determined by the scanner or tool analysis process.

$malware_analysis->result_name

The classification result or name assigned to the malware instance by the scanner tool.

$malware_analysis->sample_ref

Refers to the object this analysis was performed against.

$malware_analysis->submitted

The date and time that this malware was first submitted for scanning or analysis.

$malware_analysis->type

The type of this object, which MUST be the literal malware-analysis.

$malware_analysis->version

The version of the analysis product that was used to perform this analysis.

HELPERS

$malware_analysis->TO_JSON

Encode the object in JSON.

$malware_analysis->to_hash

Return the object HASH.

$malware_analysis->to_string

Encode the object in JSON.

$malware_analysis->validate

Validate the object using JSON Schema (see STIX::Schema).

SUPPORT

Bugs / Feature Requests

Please report any bugs or feature requests through the issue tracker at https://github.com/giterlizzi/perl-STIX/issues. You will be notified automatically of any progress on your issue.

Source Code

This is open source software. The code repository is available for public review and contribution under the terms of the license.

https://github.com/giterlizzi/perl-STIX

git clone https://github.com/giterlizzi/perl-STIX.git

AUTHOR

  • Giuseppe Di Terlizzi <gdt@cpan.org>

LICENSE AND COPYRIGHT

This software is copyright (c) 2024 by Giuseppe Di Terlizzi.

This is free software; you can redistribute it and/or modify it under the same terms as the Perl 5 programming language system itself.