assemblyline-models 0.8.1

Data models for the Assemblyline malware analysis platform.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60

Application,Library,Device,OS,ja4,ja4s,ja4h,ja4x,ja4t,ja4tscan,Notes
,Python,,,t13i181000_85036bcba153_d41ae481755e,,,,,,
,Python,,,t13d181000_85036bcba153_d41ae481755e,,,,,,
Chromium Browser,,,,t13d1516h2_8daaf6152771_02713d6af862,,,,,,
Chromium Browser,,,,q13d0312h3_55b375c5d22e_06cda9e17597,,,,,,
Chromium Browser,,,,t13d1517h2_8daaf6152771_b0da82dd1658,,,,,,
Chromium Browser,,,,t13d1517h2_8daaf6152771_b1ff8ab2d16f,,,,,,
Chromium Browser,,,,t13i1515h2_8daaf6152771_02713d6af862,,,,,,
Chromium Browser,,,,q13i0311h3_55b375c5d22e_06cda9e17597,,,,,,
Chromium Browser,,,,t13i1516h2_8daaf6152771_b0da82dd1658,,,,,,
Chromium Browser,,,,t13i1516h2_8daaf6152771_b1ff8ab2d16f,,,,,,
Mozilla Firefox,,,,t13d1715h2_5b57614c22b0_7121afd63204,,,,,,
Mozilla Firefox,,,,t13i1714h2_5b57614c22b0_7121afd63204,,,,,,
Safari,,,,t13d2014h2_a09f3c656075_14788d8d241b,,,,,,
Safari,,,,t13i2013h2_a09f3c656075_14788d8d241b,,,,,,
,,,Windows 10,,,,,64240_2-1-3-1-1-4_1460_8,,
,,,WSL Ubuntu 22.04,,,,,64240_2-4-8-1-3_1460_7,,
,,,AWS Linux 2,,,,,62727_2-4-8-1-3_8961_7,,
,,,Ubuntu 22.04,,,,,65535_2-4-8-1-3_1460_8,,
,,,Mac OSX/iPhone,,,,,65535_2-1-3-1-1-8-4-0-0_1460_6,,
,GoLang,,,t13d190900_9dc949149365_97f8aa674fd9,,,,,,
,GoLang,,,t13i190800_9dc949149365_97f8aa674fd9,,,,,,
Sliver Agent,,,,t13d190900_9dc949149365_97f8aa674fd9,t130200_1301_a56c5b993250,,,,,
Sliver Agent,,,,t13i190800_9dc949149365_97f8aa674fd9,t130200_1301_a56c5b993250,,,,,
Sliver/Havoc C2 Server,,,,,,,000000000000_4f24da86fad6_bf0f0589fc03,,,
Sliver/Havoc C2 Server,,,,,,,000000000000_7c32fa18c13e_bf0f0589fc03,,,
IcedID Dropper,,,,,,ge11cn020000_9ed1ff1f7b03_cd8dafe26982,,,,
IcedID ,,,,t13d201100_2b729b4bf6f3_9e7b989ebec8,t120300_c030_5e2616a54c73,,,,,
Cobalt Strike Cat C2,,,,,,,2166164053c1_2166164053c1_30d204a01551,,,
Cobalt Strike beacon,,,,,,ge11cn060000_4e59edc1297a_4da5efaf0cb,,,,
SoftEther VPN Client,,,,t13d880900_fcb5b95cb75a_b0d3b4ac2a14,,,,,,
SoftEther VPN Client,,,,t13i880900_fcb5b95cb75a_b0d3b4ac2a14,,,,,,
SoftEther VPN Server,,,,,,,d55f458d5a6c_d55f458d5a6c_0fc8c171b6ae,,,
Qakbot C2,,,,,,,2bab15409345_af684594efb4_000000000000,,,
Pikabot C2,,,,,,,1a59268f55e5_1a59268f55e5_795797892f9c,,,NOT Aegir
Darkgate Client,,,,,,po10nn060000_cdb958d032b0,,,,
Lumma Client,,,,,,po11nn050000_d253db9d024b,,,,
,,Epson Printer,,,,,,,28960_2-4-8-1-3_1460_3_1-4-8-16,
Cobalt Strike v4.9.1 beacon,,,Windows 10,t12i190700_d83cc789557e_16bbda4055b2,t120300_c030_52d195ce1d92,,,,,Cobalt Strike v4.9.1 over wininet
Cobalt Strike v4.9.1 beacon,,,Windows 10,t12i210700_76e208dd3e22_16bbda4055b2,t120300_c030_52d195ce1d92,,,,,Cobalt Strike v4.9.1 over winhttp
Cobalt Strike v4.9.1 beacon,,,Windows 10,t12d190800_d83cc789557e_16bbda4055b2,t120300_c030_52d195ce1d92,,,,,Cobalt Strike v4.9.1 over wininet
Cobalt Strike v4.9.1 beacon,,,Windows 10,t12d210800_76e208dd3e22_16bbda4055b2,t120300_c030_52d195ce1d92,,,,,Cobalt Strike v4.9.1 over winhttp
,,Ubiquiti Router,UniFi OS 3.2.12,,,,,,43440_2-4-8-1-3_1460_12_1-2-4-8-17,
,,Ubiquiti Camera,,,,,,,28960_2-4-8-1-3_1460_6_1-2-4-8-16,
,,Rachio IoT,,,,,,,7168_2-3-0_1460_0_0-0-0-0-0-0-0-0-0-0,
,,Phillips Hue Bridge,,,,,,,29200_2-1-1-4-1-3_1460_3_1-2-4-8-17,
ngrok 3.8.0,,,Windows 10,t13i190900_9dc949149365_e7c285222651,,,,,,
ngrok 3.8.0,,,Windows 10,t13d191000_9dc949149365_e7c285222651,,,,,,
Chromium Browser,,,,,,ge11nn08enus_050dd5cfb971_000000000000_000000000000,,,,Connection to new site over http 1.1
Chromium Browser,,,,,,ge11nr07enus_a3e0c85f2f9f_000000000000_000000000000,,,,http 1.1
Chromium Browser,,,,,,ge11nr08enus_307986a18ea3_000000000000_000000000000,,,,http 1.1
ngrok 3.8.0,,,,,,ge11nn17enus_d488a5d46f42_000000000000_000000000000,,,,Chrome through ngrok
ngrok 3.8.0,,,,,,ge11nr15enus_a978addab902_000000000000_000000000000,,,,Chrome through ngrok
,,Cisco RV32x,,,,,fba10053814e_fba10053814e_795797892f9c,,5792_2-4-8-1-3_1460_4_3-6-12-24,
Curl,,,,,,ge11nn030000_fe444ad14866_000000000000_000000000000,,,,
Telegram,,,,,,po11nn07enus_b9cd978c9817_000000000000_000000000000,,,,
,,LIFX Smart Bulbs,,t12d520600_b380db6257eb_0a9c83bf8b96,,,,5744_2_1436_00,,
,,Nest,,t12d8008h1_9cedc1f1428b_046e095b7c4a,,,,29200_2-4-8-1-3_1460_6,,
,,Phillips Hue Bridge,,t12d350600_9d4c96c0953b_0a9c83bf8b96,,,,29200_2-1-1-4-1-3_1460_3,,