def dotransform(request, response):
if request.fields['behavioral']!= "false":
behavior=ast.literal_eval(request.fields['behavior_data'])
if behavior.has_key("mutex"):
if behavior['mutex'].has_key('opened'):
for mutex in behavior['mutex']['opened']:
r=Phrase(mutex['mutex'])
r.linklabel="behav->mutex_opened"
response+=r
else:
debug("ripVT: No behavioral for %s" % request.value)
return response
def dotransform(request, response):
params = dict()
params['hash'] = str(request.value)
if request.fields.has_key("as_filename"):
params['file_name'] = str(request.fields['as_filename'])
else:
params['file_name'] = params['hash']
if request.fields.has_key("package"):
params['package'] = str(request.fields['package'])
if request.fields.has_key("timeout"):
params['timeout'] = int(request.fields['timeout'])
if request.fields.has_key("priority"):
params['priority'] = int(request.fields['priority'])
if request.fields.has_key("options"):
params['options'] = str(request.fields['options'])
if request.fields.has_key("machine"):
params['machine'] = str(request.fields['machine'])
if request.fields.has_key("platform"):
params['platform'] = str(request.fields['platform'])
if request.fields.has_key("tags"):
params['tags'] = str(request.fields['tags'])
if request.fields.has_key("custom"):
params['custom'] = str(request.fields['custom'])
if request.fields.has_key("memory"):
params['memory'] = str(request.fields['memory'])
if params['timeout']:
params['enforce_timeout'] = True
if request.fields.has_key("clock"):
params['clock'] = str(request.fields['clock'])
task_id = send_to_cuckoo(params['hash'], params)
r = Phrase(task_id)
r.linklabel = "cuckoo_analysis_id"
response += r
return response