| Key |
Description |
Example |
|---|---|---|
| md5 |
MD5 hash value of the observed binary module. |
44C0CBADFF00F3930B6A0 1EEAA405C6F |
| sha256 |
SHA-256 hash value of the observed binary module. |
1123A659BC80DEF22859F36719ED30618589C4B50ABC17DEF38EE7DDB913721 |
| scores |
List of threat intelligence feed scores with which the binary is tagged. |
[50, 100, 75] |
| watchlists |
List of strings, each one identifying a watchlist that was matched with a binary. |
[“x”, “a”] |
| event_timestamp |
Event timestamp. |
1400695113.17 |
| hostname |
Name of the host endpoint on which a binary was observed. |
PANTHER |
| sensor_id |
Sensor identifier of the endpoint on which a binary was observed. |
1 |
