| Key |
Description |
Example |
|---|---|---|
| md5 |
MD5 hash value of a binary module that triggered a feed hit. |
44C0CBADFF00F3930B6A01EEAA405C6F |
| sha256 |
SHA-256 hash value of a binary module that triggered a feed hit. |
1123A659BC80DEF22859F36719ED30618589C4B50ABC17DEF38EE7DDB913721 |
| report_id |
ID of the report that was matched. |
report_01 |
| ioc_type |
Type of the IOC that was matched. |
dns |
| ioc_value |
IOC value that was matched. |
www.google.com |
| ioc_attr |
Additional attributes on the IOC value that were matched. |
{port:80, protocol:tcp} |
| hostname |
Hostname of the computer on which the feed hit was detected. |
PANTHER |
| sensor_id |
Sensor ID of the endpoint. |
1 |
| cb_version |
Carbon Black EDR server version. |
5.0.0.140204.501 |
| server_name |
Name of the Carbon Black EDR server |
edrserver |
| feed_id |
ID of the feed that was matched. |
15 |
| feed_name |
Name of the feed that was matched. |
mdl |
| event_timestamp |
Time of the event. |
1400695113.17 |
