class MAEngine:
digest = "" # digest of the sample, used to lookup the db entry
aw = "" # Place holder for the Androguard wrapper class
vt = "" # Place holder for the VirusTotal wrapper class
rep = {} # Place holder for the report generated.
db_path = "" # Place holder for the sqlite3 database.
""" Init digest and APK variable """
def __init__(self, app_name, s, db):
self.digest = s
self.aw = AndroguardW(app_name)
self.vt = VTWrapper(app_name, False)
self.db_path = db
"""
This is the meat of the stew. All malware tests are launched here,
and subsequently all report data should be fed back here. This function
finishes executiong by calling the 'report' function, which simply updates
the DB record with the 'report' which is really just a JSON blob
"""
def run_tests(self):
self.rep["virustotal"] = self.vt.submit()
self.rep["androguard_perms"] = self.aw.check_permissions()
self.rep["androguard_activities"] = self.aw.check_activities()
self.rep["androguard_services"] = self.aw.check_services()
self.rep["androguard_risk"] = self.aw.check_risk()
# Begin processing report once finished with analyses
self.report()
""" This function simply updates the DB entry with the JSON report """
def report(self):
conn = sqlite3.connect(self.db_path)
cur = conn.cursor()
cur.execute("UPDATE reports SET report=? WHERE digest=?", (json.dumps(self.rep), self.digest))
conn.commit()
conn.close()
class MAEngine():
digest = '' # digest of the sample, used to lookup the db entry
aw = '' # Place holder for the Androguard wrapper class
vt = '' # Place holder for the VirusTotal wrapper class
rep = {} # Place holder for the report generated.
db_path = '' # Place holder for the sqlite3 database.
""" Init digest and APK variable """
def __init__(self, app_name, s, db):
self.digest = s
self.aw = AndroguardW(app_name)
self.vt = VTWrapper(app_name, False)
self.db_path = db
"""
This is the meat of the stew. All malware tests are launched here,
and subsequently all report data should be fed back here. This function
finishes executiong by calling the 'report' function, which simply updates
the DB record with the 'report' which is really just a JSON blob
"""
def run_tests(self):
self.rep["virustotal"] = self.vt.submit()
self.rep["androguard_perms"] = self.aw.check_permissions()
self.rep["androguard_activities"] = self.aw.check_activities()
self.rep["androguard_services"] = self.aw.check_services()
self.rep["androguard_risk"] = self.aw.check_risk()
# Begin processing report once finished with analyses
self.report()
""" This function simply updates the DB entry with the JSON report """
def report(self):
conn = sqlite3.connect(self.db_path)
cur = conn.cursor()
cur.execute('UPDATE reports SET report=? WHERE digest=?',
(json.dumps(self.rep), self.digest))
conn.commit()
conn.close()
def __init__(self, app_name, s, db):
self.digest = s
self.aw = AndroguardW(app_name)
self.vt = VTWrapper(app_name, False)
self.db_path = db
def __init__(self, app_name, s, db):
self.digest = s
self.aw = AndroguardW(app_name)
self.vt = VTWrapper(app_name, False)
self.db_path = db
