3 |
5 | {% if results.screenshots %}
6 | {% for shot in results.screenshots %}
7 | Screenshots
4 |
8 | {% endfor %}
9 | {% else %}
10 | No screenshots available.
11 | {% endif %}
12 |
8 | {% endfor %}
9 | {% else %}
10 | No screenshots available.
11 | {% endif %}
12 | | Task ID | 6 |{{analysis.info.id}} | 7 |
|---|---|
| Mongo ID | 10 |{{analysis|mongo_id}} | 11 |
| Cuckoo release | 14 |{{analysis.info.version}} | 15 |
| 19 | | Delete | 20 |
| Time & API | 6 |Arguments | 7 |Status | 8 |Return | 9 |Repeated | 10 |
|---|---|---|---|---|
| PID | 5 |Process Name | 6 |Victim Function | 7 |Hook Type | 8 |Hooking Module | 9 |
|---|---|---|---|---|
| {{row.process_id}} | 15 |{{row.process_name}} | 16 |{{row.victim_function}} | 17 |{{row.hook_type}} | 18 |{{row.hooking_module}} | 19 |
| Type | 5 |Callback | 6 |Module | 7 |Details | 8 |
|---|---|---|---|
| {{row.type}} | 14 |{{row.callback}} | 15 |{{row.module}} | 16 |{{row.details}} | 17 |
| Driver Name | 5 |Driver Offset | 6 |Devices | 7 |
|---|---|---|
| {{row.driver_name}} | 13 |{{row.driver_offset}} | 14 |15 | {% for device in row.devices %} 16 | {% if device.device_name %} 17 | {{device.device_name}}, 18 | {% endif %} 19 | {% endfor %} 20 | | 21 |
| CPU | 5 |Index | 6 |Selector | 7 |Address | 8 |Module | 9 |Section | 10 |
|---|---|---|---|---|---|
| {{row.cpu_number}} | 16 |{{row.index}} | 17 |{{row.selector}} | 18 |{{row.address}} | 19 |{{row.module}} | 20 |{{row.section}} | 21 |
| PID | 5 |Process Name | 6 |Start | 7 |Tag | 8 |
|---|---|---|---|
| {{row.process_id}} | 14 |{{row.process_name}} | 15 |{{row.vad_start}} | 16 |{{row.vad_tag}} | 17 |
| Base Address | 5 |Offset | 6 |Name | 7 |File | 8 |Size | 9 |
|---|---|---|---|---|
| {{row.kernel_module_base}} | 15 |{{row.kernel_module_offset}} | 16 |{{row.kernel_module_name}} | 17 |{{row.kernel_module_file}} | 18 |{{row.kernel_module_size}} | 19 |
| Offset | 5 |PID | 6 |Local Address | 7 |Local Port | 8 |Remote Address | 9 |Remote Port | 10 |Protocol | 11 |
|---|---|---|---|---|---|---|
| {{row.offset}} | 17 |{{row.process_id}} | 18 |{{row.local_address}} | 19 |{{row.local_port}} | 20 |{{row.remote_address}} | 21 |{{row.remote_port}} | 22 |{{row.protocol}} | 23 |
| Offset | 5 |PID | 6 |Local Address | 7 |Local Port | 8 |Protocol | 9 |Creation Time | 10 |
|---|---|---|---|---|---|
| {{row.offset}} | 16 |{{row.process_id}} | 17 |{{row.address}} | 18 |{{row.port}} | 19 |{{row.protocol}} | 20 |{{row.create_time}} | 21 |
| Index | 5 |Table | 6 |Entry | 7 |Syscall Name | 8 |Syscall Addr | 9 |Syscall Modname | 10 |Hook? | 11 |
|---|---|---|---|---|---|---|
| {{row.index}} | 17 |{{row.table}} | 18 |{{row.entry}} | 19 |{{row.syscall_name}} | 20 |{{row.syscall_addr}} | 21 |{{row.syscall_modname}} | 22 |{{row.hook_dest_addr}}: {{row.hook_name}} | 23 |
| Offset | 5 |Due Time | 6 |Period | 7 |Signaled | 8 |Routine | 9 |Module | 10 |
|---|---|---|---|---|---|
| {{row.offset}} | 16 |{{row.due_time}} | 17 |{{row.period}} | 18 |{{row.signaled}} | 19 |{{row.routine}} | 20 |{{row.module}} | 21 |
| Owner | 5 |Rule | 6 |Hexdump | 7 |
|---|---|---|
| {{row.owner}} | 13 |{{row.rule}} | 14 |{{row.hexdump}} |
15 |
| IP | 7 |
|---|
| 12 | 13 | {{ host }} 14 | {% if host|isdeadip:analysis %} 15 | (dead IP/port - was unable to connect during analysis) 16 | {% endif %} 17 | {% rl_link "ipv4" host%}{% vt_link "ip-address" host%} 18 | | 19 | {% endif %} 20 |
No hosts contacted.
25 | {% endif %} 26 || Source | 6 |Destination | 7 |ICMP Type | 8 |Data | 9 |
|---|---|---|---|
| {{packet.src}} | 13 |{{packet.dst}} | 14 |{{packet.type}} | 15 |{{packet.data}} | 16 |
No ICMP traffic performed.
21 | {% endif %} -------------------------------------------------------------------------------- /web/templates/analysis/network/_irc.html: -------------------------------------------------------------------------------- 1 || Command | 6 |Params | 7 |Type | 8 |
|---|---|---|
| {{irc.command}} | 12 |{{irc.params}} | 13 |{{irc.type}} | 14 |
No IRC requests performed.
19 | {% endif %} -------------------------------------------------------------------------------- /web/templates/analysis/network/_snort.html: -------------------------------------------------------------------------------- 1 || Flow | 6 |SID | 7 |Message | 8 |
|---|---|---|
| 12 | {{alert.protocol}} 13 | {{alert.src_ip}}{% if alert.src_port %}:{{alert.src_port}}{% endif %} -> 14 | {{alert.dst_ip}}{% if alert.dst_port %}:{{alert.dst_port}}{% endif %} 15 | | 16 |{{alert.sid}} | 17 |{{alert.message}} | 18 |
No Snort Alerts
23 | {% endif %} 24 | -------------------------------------------------------------------------------- /web/templates/analysis/overview/_screenshots.html: -------------------------------------------------------------------------------- 1 || URL | 8 |
|---|
| {{analysis.target.url}} 13 | 14 | 15 | 16 | Resubmit sample 17 | 18 | 19 | 20 | Moloch 21 | 22 | 23 | | 24 |
| Antivirus | 6 | {% if analysis.info.category == "file" %} 7 |Signature | 8 | {% else %} 9 |Result | 10 | {% endif %} 11 |
|---|---|---|
| {{probe.name}} | 15 |16 | {% if analysis.info.category == "file" %} 17 | {% if not probe.results %} 18 | Clean 19 | {% else %} 20 | {{probe.results}} 21 | {% endif %} 22 | {% endif %} 23 | | 24 |
| ID | 5 |Target | 6 |Machine | 7 |Completed On | 8 |Duration | 9 |Select | 10 ||
|---|---|---|---|---|---|---|
| {{record.info.id}} | 16 | {% if record.target.category == "url" %} 17 |{{record.target.url}} | 18 | {% else %} 19 |{{record.target.file.name}} | 20 | {% endif %} 21 |{{record.info.machine.name}} | 22 |{{record.info.ended}} | 23 |{{record.info.duration}} seconds | 24 |Select | 25 |
You need to select the second analysis.
16 | {% if records.count > 0 %} 17 |Following are all the analyses of the file with provided MD5 or pattern {{hash}}:
18 | {% include "compare/_summary_table.html" %} 19 | {% else %} 20 |There is no analysis for the specified file or you selected the same selected analysis.
21 | {% endif %} 22 |