Detonate File - ThreatGrid Deprecated
Deprecated. Use Detonate File - ThreatGrid v2 instead.
Cisco Secure Malware Analytics · 10 tasks · 9 inputs · 16 outputs
Inputs
File— File object of the file to detonate.FileName— Name of the file to detonate.VM— The VM to use (string)playbook— Name of the Threat Grid playbook to apply to this sample runPrivate— If the value is set to 'False', the sample will not be private. Any value other than 'False' will set the sample to private.Source— a string used for identifying the source of the detonation (user defined)Tags— A comma-separated list of tags applied to this sample.Interval— Polling frequency - how often the polling command should run (minutes)Timeout— How much time to wait before a timeout occurs (minutes)
Outputs
File.Malicious— The File malicious descriptionFile.Malicious.Vendor— For malicious files, the vendor that made the decisionFile.Type— File type e.g. "PE"File.Size— File sizeFile.MD5— MD5 hash of the fileFile.Name— FilenameFile.SHA1— SHA1 hash of the fileFile— The File objectFile.SHA256— SHA256 hash of the fileDBotScore— The DBotScore objectDBotScore.Indicator— The indicator we testedDBotScore.Type— The type of the indicatorDBotScore.Vendor— Vendor used to calculate the scoreDBotScore.Score— The actual scoreThreatGrid.Sample.State— The sample state.ThreatGrid.Sample.ID— The sample ID.
Commands used
threat-grid-get-samples-state
threat-grid-upload-sample