Version: 2.1.0.11
cybox.objects.win_executable_file_object module¶
- class cybox.objects.win_executable_file_object.DOSHeader[source]¶
Bases: cybox.Entity
XML binding class: cybox.bindings.win_executable_file_object.DOSHeaderType- e_cblp¶
- e_cp¶
- e_cparhdr¶
- XML Binding class name: e_cparhdrDictionary key name: e_cparhdr
- e_crlc¶
- e_cs¶
- e_csum¶
- e_ip¶
- e_lfanew¶
- XML Binding class name: e_lfanewDictionary key name: e_lfanew
- e_lfarlc¶
- XML Binding class name: e_lfarlcDictionary key name: e_lfarlc
- e_magic¶
- XML Binding class name: e_magicDictionary key name: e_magic
- e_maxalloc¶
- XML Binding class name: e_maxallocDictionary key name: e_maxalloc
- e_minalloc¶
- XML Binding class name: e_minallocDictionary key name: e_minalloc
- e_oemid¶
- XML Binding class name: e_oemidDictionary key name: e_oemid
- e_oeminfo¶
- XML Binding class name: e_oeminfoDictionary key name: e_oeminfo
- e_ovro¶
- e_sp¶
- e_ss¶
- hashes¶
- reserved2¶
- XML Binding class name: reserved2Dictionary key name: reserved2
- class cybox.objects.win_executable_file_object.DataDirectory[source]¶
Bases: cybox.Entity
XML binding class: cybox.bindings.win_executable_file_object.DataDirectoryType- architecture¶
- XML Binding class name: ArchitectureDictionary key name: architecture
- base_relocation_table¶
- XML Binding class name: Base_Relocation_TableDictionary key name: base_relocation_table
- bound_import¶
- XML Binding class name: Bound_ImportDictionary key name: bound_import
- certificate_table¶
- XML Binding class name: Certificate_TableDictionary key name: certificate_table
- clr_runtime_header¶
- XML Binding class name: CLR_Runtime_HeaderDictionary key name: clr_runtime_header
- debug¶
- XML Binding class name: DebugDictionary key name: debug
- delay_import_descriptor¶
- XML Binding class name: Delay_Import_DescriptorDictionary key name: delay_import_descriptor
- exception_table¶
- XML Binding class name: Exception_TableDictionary key name: exception_table
- export_table¶
- XML Binding class name: Export_TableDictionary key name: export_table
- global_ptr¶
- XML Binding class name: Global_PtrDictionary key name: global_ptr
- import_address_table¶
- XML Binding class name: Import_Address_TableDictionary key name: import_address_table
- import_table¶
- XML Binding class name: Import_TableDictionary key name: import_table
- load_config_table¶
- XML Binding class name: Load_Config_TableDictionary key name: load_config_table
- reserved¶
- XML Binding class name: ReservedDictionary key name: reserved
- resource_table¶
- XML Binding class name: Resource_TableDictionary key name: resource_table
- tls_table¶
- XML Binding class name: Tls_TableDictionary key name: tls_table
- class cybox.objects.win_executable_file_object.Entropy[source]¶
Bases: cybox.Entity
XML binding class: cybox.bindings.win_executable_file_object.EntropyType- max¶
- min¶
- value¶
- class cybox.objects.win_executable_file_object.PEBuildInformation[source]¶
Bases: cybox.Entity
XML binding class: cybox.bindings.win_executable_file_object.PEBuildInformationType- compiler_name¶
- XML Binding class name: Compiler_NameDictionary key name: compiler_name
- compiler_version¶
- XML Binding class name: Compiler_VersionDictionary key name: compiler_version
- linker_name¶
- XML Binding class name: Linker_NameDictionary key name: linker_name
- linker_version¶
- XML Binding class name: Linker_VersionDictionary key name: linker_version
- class cybox.objects.win_executable_file_object.PEChecksum[source]¶
Bases: cybox.Entity
XML binding class: cybox.bindings.win_executable_file_object.PEChecksumType- pe_computed_api¶
- XML Binding class name: PE_Computed_APIDictionary key name: pe_computed_api
- pe_file_api¶
- XML Binding class name: PE_File_APIDictionary key name: pe_file_api
- pe_file_raw¶
- XML Binding class name: PE_File_RawDictionary key name: pe_file_raw
- class cybox.objects.win_executable_file_object.PEDataDirectoryStruct[source]¶
Bases: cybox.Entity
XML binding class: cybox.bindings.win_executable_file_object.PEDataDirectoryStructType- size¶
- XML Binding class name: SizeDictionary key name: size
- virtual_address¶
- XML Binding class name: Virtual_AddressDictionary key name: virtual_address
- class cybox.objects.win_executable_file_object.PEExportedFunction[source]¶
Bases: cybox.Entity
XML binding class: cybox.bindings.win_executable_file_object.PEExportedFunctionType- entry_point¶
- XML Binding class name: Entry_PointDictionary key name: entry_point
- function_name¶
- XML Binding class name: Function_NameDictionary key name: function_name
- ordinal¶
- XML Binding class name: OrdinalDictionary key name: ordinal
- class cybox.objects.win_executable_file_object.PEExportedFunctions(*args)[source]¶
Bases: cybox.EntityList
XML binding class: cybox.bindings.win_executable_file_object.PEExportedFunctionsType
- class cybox.objects.win_executable_file_object.PEExports[source]¶
Bases: cybox.Entity
XML binding class: cybox.bindings.win_executable_file_object.PEExportsType- exported_functions¶
- XML Binding class name: Exported_FunctionsDictionary key name: exported_functions
- exports_time_stamp¶
- XML Binding class name: Exports_Time_StampDictionary key name: exports_time_stamp
- name¶
- number_of_addresses¶
- XML Binding class name: Number_Of_AddressesDictionary key name: number_of_addresses
- number_of_functions¶
- XML Binding class name: Number_Of_FunctionsDictionary key name: number_of_functions
- number_of_names¶
- XML Binding class name: Number_Of_NamesDictionary key name: number_of_names
- class cybox.objects.win_executable_file_object.PEFileHeader[source]¶
Bases: cybox.Entity
XML binding class: cybox.bindings.win_executable_file_object.PEFileHeaderType- characteristics¶
- XML Binding class name: CharacteristicsDictionary key name: characteristics
- hashes¶
- machine¶
- XML Binding class name: MachineDictionary key name: machine
- number_of_sections¶
- XML Binding class name: Number_Of_SectionsDictionary key name: number_of_sections
- number_of_symbols¶
- XML Binding class name: Number_Of_SymbolsDictionary key name: number_of_symbols
- pointer_to_symbol_table¶
- XML Binding class name: Pointer_To_Symbol_TableDictionary key name: pointer_to_symbol_table
- size_of_optional_header¶
- XML Binding class name: Size_Of_Optional_HeaderDictionary key name: size_of_optional_header
- time_date_stamp¶
- XML Binding class name: Time_Date_StampDictionary key name: time_date_stamp
- class cybox.objects.win_executable_file_object.PEHeaders[source]¶
Bases: cybox.Entity
XML binding class: cybox.bindings.win_executable_file_object.PEHeadersType- dos_header¶
- XML Binding class name: DOS_HeaderDictionary key name: dos_header
- entropy¶
- XML Binding class name: EntropyDictionary key name: entropy
- file_header¶
- XML Binding class name: File_HeaderDictionary key name: file_header
- hashes¶
- optional_header¶
- XML Binding class name: Optional_HeaderDictionary key name: optional_header
- signature¶
- XML Binding class name: SignatureDictionary key name: signature
- class cybox.objects.win_executable_file_object.PEImport[source]¶
Bases: cybox.Entity
XML binding class: cybox.bindings.win_executable_file_object.PEImportType- delay_load¶
- XML Binding class name: delay_loadDictionary key name: delay_load
- file_name¶
- XML Binding class name: File_NameDictionary key name: file_name
- imported_functions¶
- XML Binding class name: Imported_FunctionsDictionary key name: imported_functions
- initially_visible¶
- XML Binding class name: initially_visibleDictionary key name: initially_visible
- virtual_address¶
- XML Binding class name: Virtual_AddressDictionary key name: virtual_address
- class cybox.objects.win_executable_file_object.PEImportList(*args)[source]¶
Bases: cybox.EntityList
XML binding class: cybox.bindings.win_executable_file_object.PEImportListType
- class cybox.objects.win_executable_file_object.PEImportedFunction[source]¶
Bases: cybox.Entity
XML binding class: cybox.bindings.win_executable_file_object.PEImportedFunctionType- bound¶
- function_name¶
- XML Binding class name: Function_NameDictionary key name: function_name
- hint¶
- ordinal¶
- XML Binding class name: OrdinalDictionary key name: ordinal
- virtual_address¶
- XML Binding class name: Virtual_AddressDictionary key name: virtual_address
- class cybox.objects.win_executable_file_object.PEImportedFunctions(*args)[source]¶
Bases: cybox.EntityList
XML binding class: cybox.bindings.win_executable_file_object.PEImportedFunctionsType
- class cybox.objects.win_executable_file_object.PEOptionalHeader[source]¶
Bases: cybox.Entity
XML binding class: cybox.bindings.win_executable_file_object.PEOptionalHeaderType- address_of_entry_point¶
- XML Binding class name: Address_Of_Entry_PointDictionary key name: address_of_entry_point
- base_of_code¶
- XML Binding class name: Base_Of_CodeDictionary key name: base_of_code
- base_of_data¶
- XML Binding class name: Base_Of_DataDictionary key name: base_of_data
- checksum¶
- XML Binding class name: ChecksumDictionary key name: checksum
- data_directory¶
- XML Binding class name: Data_DirectoryDictionary key name: data_directory
- dll_characteristics¶
- XML Binding class name: DLL_CharacteristicsDictionary key name: dll_characteristics
- file_alignment¶
- XML Binding class name: File_AlignmentDictionary key name: file_alignment
- hashes¶
- image_base¶
- XML Binding class name: Image_BaseDictionary key name: image_base
- loader_flags¶
- XML Binding class name: Loader_FlagsDictionary key name: loader_flags
- magic¶
- major_image_version¶
- XML Binding class name: Major_Image_VersionDictionary key name: major_image_version
- major_linker_version¶
- XML Binding class name: Major_Linker_VersionDictionary key name: major_linker_version
- major_os_version¶
- XML Binding class name: Major_OS_VersionDictionary key name: major_os_version
- major_subsystem_version¶
- XML Binding class name: Major_Subsystem_VersionDictionary key name: major_subsystem_version
- minor_image_version¶
- XML Binding class name: Minor_Image_VersionDictionary key name: minor_image_version
- minor_linker_version¶
- XML Binding class name: Minor_Linker_VersionDictionary key name: minor_linker_version
- minor_os_version¶
- XML Binding class name: Minor_OS_VersionDictionary key name: minor_os_version
- minor_subsystem_version¶
- XML Binding class name: Minor_Subsystem_VersionDictionary key name: minor_subsystem_version
- number_of_rva_and_sizes¶
- XML Binding class name: Number_Of_Rva_And_SizesDictionary key name: number_of_rva_and_sizes
- section_alignment¶
- XML Binding class name: Section_AlignmentDictionary key name: section_alignment
- size_of_code¶
- XML Binding class name: Size_Of_CodeDictionary key name: size_of_code
- size_of_headers¶
- XML Binding class name: Size_Of_HeadersDictionary key name: size_of_headers
- size_of_heap_commit¶
- XML Binding class name: Size_Of_Heap_CommitDictionary key name: size_of_heap_commit
- size_of_heap_reserve¶
- XML Binding class name: Size_Of_Heap_ReserveDictionary key name: size_of_heap_reserve
- size_of_image¶
- XML Binding class name: Size_Of_ImageDictionary key name: size_of_image
- size_of_initialized_data¶
- XML Binding class name: Size_Of_Initialized_DataDictionary key name: size_of_initialized_data
- size_of_stack_commit¶
- XML Binding class name: Size_Of_Stack_CommitDictionary key name: size_of_stack_commit
- size_of_stack_reserve¶
- XML Binding class name: Size_Of_Stack_ReserveDictionary key name: size_of_stack_reserve
- size_of_uninitialized_data¶
- XML Binding class name: Size_Of_Uninitialized_DataDictionary key name: size_of_uninitialized_data
- subsystem¶
- XML Binding class name: SubsystemDictionary key name: subsystem
- win32_version_value¶
- XML Binding class name: Win32_Version_ValueDictionary key name: win32_version_value
- class cybox.objects.win_executable_file_object.PEResource[source]¶
Bases: cybox.Entity
XML binding class: cybox.bindings.win_executable_file_object.PEResourceType- data¶
- hashes¶
- language¶
- name¶
- size¶
- XML Binding class name: SizeDictionary key name: size
- sub_language¶
- XML Binding class name: Sub_LanguageDictionary key name: sub_language
- type_¶
- virtual_address¶
- XML Binding class name: Virtual_AddressDictionary key name: virtual_address
- class cybox.objects.win_executable_file_object.PEResourceList(*args)[source]¶
Bases: cybox.EntityList
XML binding class: cybox.bindings.win_executable_file_object.PEResourceListType
- class cybox.objects.win_executable_file_object.PESection[source]¶
Bases: cybox.Entity
XML binding class: cybox.bindings.win_executable_file_object.PESectionType- data_hashes¶
- XML Binding class name: Data_HashesDictionary key name: data_hashes
- entropy¶
- XML Binding class name: EntropyDictionary key name: entropy
- header_hashes¶
- XML Binding class name: Header_HashesDictionary key name: header_hashes
- section_header¶
- XML Binding class name: Section_HeaderDictionary key name: section_header
- class cybox.objects.win_executable_file_object.PESectionHeaderStruct[source]¶
Bases: cybox.Entity
XML binding class: cybox.bindings.win_executable_file_object.PESectionHeaderStructType- characteristics¶
- XML Binding class name: CharacteristicsDictionary key name: characteristics
- name¶
- number_of_linenumbers¶
- XML Binding class name: Number_Of_LinenumbersDictionary key name: number_of_linenumbers
- number_of_relocations¶
- XML Binding class name: Number_Of_RelocationsDictionary key name: number_of_relocations
- pointer_to_linenumbers¶
- XML Binding class name: Pointer_To_LinenumbersDictionary key name: pointer_to_linenumbers
- pointer_to_raw_data¶
- XML Binding class name: Pointer_To_Raw_DataDictionary key name: pointer_to_raw_data
- pointer_to_relocations¶
- XML Binding class name: Pointer_To_RelocationsDictionary key name: pointer_to_relocations
- size_of_raw_data¶
- XML Binding class name: Size_Of_Raw_DataDictionary key name: size_of_raw_data
- virtual_address¶
- XML Binding class name: Virtual_AddressDictionary key name: virtual_address
- virtual_size¶
- XML Binding class name: Virtual_SizeDictionary key name: virtual_size
- class cybox.objects.win_executable_file_object.PESectionList(*args)[source]¶
Bases: cybox.EntityList
XML binding class: cybox.bindings.win_executable_file_object.PESectionListType
- class cybox.objects.win_executable_file_object.PEVersionInfoResource[source]¶
Bases: cybox.objects.win_executable_file_object.PEResource
XML binding class: cybox.bindings.win_executable_file_object.PEVersionInfoResourceType- comments¶
- companyname¶
- XML Binding class name: CompanyNameDictionary key name: companyname
- filedescription¶
- XML Binding class name: FileDescriptionDictionary key name: filedescription
- fileversion¶
- XML Binding class name: FileVersionDictionary key name: fileversion
- internalname¶
- XML Binding class name: InternalNameDictionary key name: internalname
- langid¶
- legalcopyright¶
- XML Binding class name: LegalCopyrightDictionary key name: legalcopyright
- legaltrademarks¶
- XML Binding class name: LegalTrademarksDictionary key name: legaltrademarks
- originalfilename¶
- XML Binding class name: OriginalFilenameDictionary key name: originalfilename
- privatebuild¶
- XML Binding class name: PrivateBuildDictionary key name: privatebuild
- productname¶
- XML Binding class name: ProductNameDictionary key name: productname
- productversion¶
- XML Binding class name: ProductVersionDictionary key name: productversion
- specialbuild¶
- XML Binding class name: SpecialBuildDictionary key name: specialbuild
- class cybox.objects.win_executable_file_object.WinExecutableFile[source]¶
Bases: cybox.objects.win_file_object.WinFile
XML binding class: cybox.bindings.win_executable_file_object.WindowsExecutableFileObjectType- build_information¶
- XML Binding class name: Build_InformationDictionary key name: build_information
- digital_signature¶
- XML Binding class name: Digital_SignatureDictionary key name: digital_signature
- exports¶
- XML Binding class name: ExportsDictionary key name: exports
- extraneous_bytes¶
- XML Binding class name: Extraneous_BytesDictionary key name: extraneous_bytes
- headers¶
- XML Binding class name: HeadersDictionary key name: headers
- imports¶
- XML Binding class name: ImportsDictionary key name: imports
- pe_checksum¶
- XML Binding class name: PE_ChecksumDictionary key name: pe_checksum
- resources¶
- XML Binding class name: ResourcesDictionary key name: resources
- sections¶
- XML Binding class name: SectionsDictionary key name: sections
- type_¶