SampleHashSamples - Cloud Security API

{"type":"model","meta":{"id":"/apps/pubhub/media/cloud-security-apis-in-eft/9d37d008417d562ab46d4b67547a68457ce288d2/0c55b142-e159-3ace-b5f9-be50ad69a5f1","info":{"title":"Cisco Umbrella Investigate API","description":"The Umbrella Investigate API provides a complete view of domains in relation to IP and autonomous system number (ASN) information.\nYou can get the following domain information:\n\n* Domain status, risk score, and geolocation\n* Number of domain searches\n* Co-occurring domains\n* Subdomains of a domain\n* Tagged timeline of a domain, IP, or URL\n* Security reputation of a domain\n* Top accessed domains\n* WHOIS information for the domain\n* Threat intelligence data for domains, IPs, and URLs\n* Threat intelligence samples by file hash","version":"2.0.0","contact":{"name":"Cloud Security Developer Community"}},"security":[{"oauthFlow":[]}],"tags":[{"name":"Domain Status and Categorization"},{"name":"Domain Volume"},{"name":"Co-occurrences for a Domain"},{"name":"Passive DNS"},{"name":"Tagging Timeline"},{"name":"Subdomains for a Domain"},{"name":"Related Domains for a Domain"},{"name":"Security Information for a Domain"},{"name":"AS Information for a Domain"},{"name":"WHOIS Information for a Domain"},{"name":"Popularity List-Top Million Domains"},{"name":"Search Domain"},{"name":"Cisco Secure Malware Analytics Integration"},{"name":"Umbrella"}],"x-parser-conf":{"overview":{"markdownPath":"reference/investigate/investigate-overview.md","uri":"umbrella-api-reference-investigate-api-overview"}},"openapi":"3.0.0","servers":[{"url":"https://api.umbrella.com/{basePath}","variables":{"basePath":{"default":"investigate/v2"}}}],"securitySchemes":{"oauthFlow":{"type":"oauth2","description":"The client credential flow.","flows":{"clientCredentials":{"scopes":{"investigate.investigate:read":"Investigate read access","investigate.bulk:read":"Investigate bulk read access"},"tokenUrl":"https://api.umbrella.com/auth/v2/token"}}}}},"spec":{"type":"object","description":"The hash sample information and list of hash samples.","properties":{"totalresults":{"type":"integer","description":"The total number of samples.","format":"int64","example":100000},"moreDataAvailable":{"type":"boolean","description":"Specifies whether more samples are available for the destination.","example":true,"$$ref":"#/components/schemas/moreDataAvailable"},"limit":{"type":"integer","description":"The maximum number of records to include in the response.","format":"int64","example":100,"$$ref":"#/components/schemas/limit"},"offset":{"type":"integer","description":"The place to start reading in the collection.","format":"int64","default":0,"example":5,"$$ref":"#/components/schemas/offset"},"artifacts":{"type":"array","description":"The list of samples.","items":{"type":"object","description":"The information about the hash sample.","properties":{"sha256":{"type":"string","description":"The sha256 hash string.","example":"e9d3470c37dada28d5a32fb53a243c5b20def35bb01abf8f5403182cc2b91fdd"},"sha1":{"type":"string","description":"The sha1 hash string.","example":"de182fdcc3c0d473b90a0df0ad14c2074d1e7c50"},"md5":{"type":"string","description":"The md5 hash string.","example":"282f80e8a2cf9e0e0dd72093787d99c6"},"magictype":{"type":"string"},"threatscore":{"type":"integer","format":"int64","description":"The threat score assigned to the sample.","example":100},"size":{"type":"integer","format":"int64","description":"The size of the sample.","example":19251},"firstSeen":{"type":"integer","format":"int64","description":"The first time Umbrella related the domain for the resource record, specified\nin Unix Epoch time.","example":1615427410,"$$ref":"#/components/schemas/firstSeen"},"lastSeen":{"type":"integer","format":"int64","description":"The last time Umbrella related the domain for the resource record, specified\nin Unix Epoch time.","example":1615427410,"$$ref":"#/components/schemas/lastSeen"},"visible":{"type":"boolean","description":"Specifies whether the threat is visible.","example":false},"avresults":{"type":"array","description":"The list of antivirus results.","items":{"type":"object","description":"The information about the antivirus result.","properties":{"signature":{"type":"string","description":"The signature of the antivirus."},"product":{"type":"string","description":"The name of the product associated with the antivirus."}},"example":{"signature":"Win.Trojan.Ramnit","product":"ClamAV"},"$$ref":"#/components/schemas/Avresult"}}},"example":{"sha256":"e9d3470c37dada28d5a32fb53a243c5b20def35bb01abf8f5403182cc2b91fdd","sha1":"de182fdcc3c0d473b90a0df0ad14c2074d1e7c50","md5":"282f80e8a2cf9e0e0dd72093787d99c6","magicType":"PE32 executable (GUI) Intel 80386, for MS Windows","threatscore":100,"size":192512,"firstSeen":1460108539000,"lastSeen":1460108539000,"visible":true,"avresults":[{"signature":"Win.Trojan.Ramnit","product":"ClamAV"},{"signature":"Win.Trojan.Parit","product":"ClamAV"}]},"$$ref":"#/components/schemas/Sample"}},"samples":{"type":"array","description":"The list of all samples associated with the destination and related sample information.","items":{"type":"array","description":"The list of all samples associated with the destination.","items":{"type":"object","description":"The samples and information associated with the destination.","properties":{"query":{"type":"string","description":"The domain, IP, or URL.","example":"google.com"},"totalresults":{"type":"integer","description":"The number of total results.","format":"int64","example":10},"moreDataAvailable":{"type":"boolean","description":"Specifies whether more samples are available for the destination.","example":true,"$$ref":"#/components/schemas/moreDataAvailable"},"limit":{"type":"integer","description":"The maximum number of records to include in the response.","format":"int64","example":100,"$$ref":"#/components/schemas/limit"},"offset":{"type":"integer","description":"The place to start reading in the collection.","format":"int64","default":0,"example":5,"$$ref":"#/components/schemas/offset"},"samples":{"type":"array","description":"The list of hash samples and information for the destination.","items":{"type":"object","description":"The information about the hash sample.","properties":{"sha256":{"type":"string","description":"The sha256 hash string.","example":"e9d3470c37dada28d5a32fb53a243c5b20def35bb01abf8f5403182cc2b91fdd"},"sha1":{"type":"string","description":"The sha1 hash string.","example":"de182fdcc3c0d473b90a0df0ad14c2074d1e7c50"},"md5":{"type":"string","description":"The md5 hash string.","example":"282f80e8a2cf9e0e0dd72093787d99c6"},"magictype":{"type":"string"},"threatscore":{"type":"integer","format":"int64","description":"The threat score assigned to the sample.","example":100},"size":{"type":"integer","format":"int64","description":"The size of the sample.","example":19251},"firstSeen":{"type":"integer","format":"int64","description":"The first time Umbrella related the domain for the resource record, specified\nin Unix Epoch time.","example":1615427410,"$$ref":"#/components/schemas/firstSeen"},"lastSeen":{"type":"integer","format":"int64","description":"The last time Umbrella related the domain for the resource record, specified\nin Unix Epoch time.","example":1615427410,"$$ref":"#/components/schemas/lastSeen"},"visible":{"type":"boolean","description":"Specifies whether the threat is visible.","example":false},"avresults":{"type":"array","description":"The list of antivirus results.","items":{"type":"object","description":"The information about the antivirus result.","properties":{"signature":{"type":"string","description":"The signature of the antivirus."},"product":{"type":"string","description":"The name of the product associated with the antivirus."}},"example":{"signature":"Win.Trojan.Ramnit","product":"ClamAV"},"$$ref":"#/components/schemas/Avresult"}}},"example":{"sha256":"e9d3470c37dada28d5a32fb53a243c5b20def35bb01abf8f5403182cc2b91fdd","sha1":"de182fdcc3c0d473b90a0df0ad14c2074d1e7c50","md5":"282f80e8a2cf9e0e0dd72093787d99c6","magicType":"PE32 executable (GUI) Intel 80386, for MS Windows","threatscore":100,"size":192512,"firstSeen":1460108539000,"lastSeen":1460108539000,"visible":true,"avresults":[{"signature":"Win.Trojan.Ramnit","product":"ClamAV"},{"signature":"Win.Trojan.Parit","product":"ClamAV"}]},"$$ref":"#/components/schemas/Sample"},"example":[{"sha256":"e9d3470c37dada28d5a32fb53a243c5b20def35bb01abf8f5403182cc2b91fdd","sha1":"de182fdcc3c0d473b90a0df0ad14c2074d1e7c50","md5":"282f80e8a2cf9e0e0dd72093787d99c6","magicType":"PE32 executable (GUI) Intel 80386, for MS Windows","threatscore":100,"size":192512,"firstSeen":1460108539000,"lastSeen":1460108539000,"visible":true,"avresults":[{"signature":"Win.Trojan.Ramnit","product":"ClamAV"},{"signature":"Win.Trojan.Parit","product":"ClamAV"}]}]}},"example":{"query":"google.com","totalresults":10,"moreDataAvailable":true,"limit":10,"offset":0,"samples":[{"sha256":"e9d3470c37dada28d5a32fb53a243c5b20def35bb01abf8f5403182cc2b91fdd","sha1":"de182fdcc3c0d473b90a0df0ad14c2074d1e7c50","md5":"282f80e8a2cf9e0e0dd72093787d99c6","magicType":"PE32 executable (GUI) Intel 80386, for MS Windows","threatscore":100,"size":192512,"firstSeen":1460108539000,"lastSeen":1460108539000,"visible":true,"avresults":[{"signature":"Win.Trojan.Ramnit","product":"ClamAV"},{"signature":"Win.Trojan.Parit","product":"ClamAV"}]}]},"$$ref":"#/components/schemas/Grid"},"example":[{"query":"google.com","totalresults":10,"moreDataAvailable":true,"limit":10,"offset":0,"samples":[{"sha256":"e9d3470c37dada28d5a32fb53a243c5b20def35bb01abf8f5403182cc2b91fdd","sha1":"de182fdcc3c0d473b90a0df0ad14c2074d1e7c50","md5":"282f80e8a2cf9e0e0dd72093787d99c6","magicType":"PE32 executable (GUI) Intel 80386, for MS Windows","threatscore":100,"size":192512,"firstSeen":1460108539000,"lastSeen":1460108539000,"visible":true,"avresults":[{"signature":"Win.Trojan.Ramnit","product":"ClamAV"},{"signature":"Win.Trojan.Parite","product":"ClamAV"}]}]}],"$$ref":"#/components/schemas/Grids"}}},"$$ref":"#/components/schemas/SampleHashSamples","title":"SampleHashSamples"}}