Intezer Analyze 1.0.0
App Vendor: Intezer Analyze
App Category: Forensics & Malware Analysis
Connector version: 1.0.0
API Version: 2.0.0
About App
The Intezer Analyze app allows security teams to integrate with the Intezer Analyze enterprise application. It provides an extensive understanding of any executable file by comparing code on a massive scale to a comprehensive database of malware and trusted software.
The Intezer Analyze app is configured with the Orchestrate application to perform the following actions:
Action Name | Description |
|---|---|
Submit Hash for Analysis | This action submits hash for analysis. |
Submit a File for Analysis | This action submits a file for analysis. |
Search an Analysis | This action performs an analysis search using the hash value from the Intezer Analyze application. |
Get Details of an Analysis | This action retrieves the details of a specific analysis using ID of the analysis from the Intezer Analyze application. |
Get a List of Sub-Analysis | This action retrieves a list of sub-analysis using ID of analysis from the Intezer Analyze application. |
Get Details of Sub-Analysis Reuse Code | This action retrieves the details of sub-analysis reuse code using ID of analysis and sub-analysis from the Intezer Analyze application. |
Get Details of Sub-Analysis Metadata | This action retrieves details of sub-analysis metadata using ID of analysis and sub-analysis from the Intezer Analyze application. |
Get Details of Sub-Analysis Family Relations | This action retrieves details of sub-analysis metadata using ID of analysis, sub-analysis and family from the Intezer Analyze application. |
Get a List of Sub-Analysis Related Sample | This action retrieves a list of sub-analysis related account sample using ID of analysis and sub-analysis from the Intezer Analyze application. |
Configuration Parameters
The following configuration parameters are required for the Intezer Analyze app to communicate with the Intezer Analyze enterprise application. The parameters can be configured by creating instances in the app.
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
API Key | Enter the Intezer Analyze API key. | Text | Required |
Action: Submit Hash for Analysis
This action submits hash for analysis.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Hash Value | Enter the hash value. | Text | Required |
Action: Submit a File for Analysis
This action submits a file for analysis.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
File path | Enter the file path. | Text | Required | |
File name | Enter the file name. | Text | Required | |
File type | Enter the type of binary file uploaded. | Text | Optional | Allowed values:
Default value: file |
Dynamic execution process | Optional preference to either automatically perform or skip the dynamic execution process. | Boolean | Optional | Allowed values:
Default value: False |
Static extraction process | Optional preference to either automatically perform or skip the static execution process. | Boolean | Optional | Allowed values:
Default value: False |
Action: Search an Analysis
This action performs a search in the analysis using the hash value from the Intezer Analyze application.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Hash Value | Enter the hash value. | Text | Required |
Action: Get Details of an Analysis
This action retrieves the details of a specific analysis using ID of the analysis from the Intezer Analyze application.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Analysis ID | Enter the analysis ID. | Text | Required |
Action: Get a List of Sub-Analysis
This action retrieves a list of sub-analysis using ID of the analysis from the Intezer Analyze application.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Analysis ID | Enter the analysis ID. | Text | Required |
Action: Get details of sub-analysis reuse code
This action retrieves the details of sub-analysis reuse code using ID of the analysis and sub-analysis from the Intezer Analyze application.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Analysis ID | Enter the analysis ID. | Text | Required | |
Sub analysis ID | Enter the sub-analysis ID. | Text | Required |
Action: Get details of sub-analysis metadata
This action retrieves the details of sub-analysis metadata using ID of the analysis and sub-analysis from the Intezer Analyze application.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Analysis ID | Enter the analysis ID. | Text | Required | |
Sub-analysis ID | Enter the sub-analysis ID. | Text | Required |
Action: Get Details of Sub-Analysis Family Relations
This action retrieves details of the sub-analysis metadata using ID of analysis, sub-analysis and family from the Intezer Analyze application.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Analysis ID | Enter the analysis ID. | Text | Required | |
Sub-analysis ID | Enter the sub-analysis ID. | Text | Required | |
Family ID | Enter the family ID. | Text | Required |