Version: 2.1.0.17
cybox.objects.win_executable_file_object
module¶
-
class
cybox.objects.win_executable_file_object.
DOSHeader
[source]¶ Bases:
mixbox.entities.Entity
XML binding class:cybox.bindings.win_executable_file_object.DOSHeaderType
-
e_cblp
¶
-
e_cp
¶
-
e_cparhdr
¶ - XML Binding class name:
e_cparhdr
Dictionary key name:e_cparhdr
-
e_crlc
¶
-
e_cs
¶
-
e_csum
¶
-
e_ip
¶
-
e_lfanew
¶ - XML Binding class name:
e_lfanew
Dictionary key name:e_lfanew
-
e_lfarlc
¶ - XML Binding class name:
e_lfarlc
Dictionary key name:e_lfarlc
-
e_magic
¶ - XML Binding class name:
e_magic
Dictionary key name:e_magic
-
e_maxalloc
¶ - XML Binding class name:
e_maxalloc
Dictionary key name:e_maxalloc
-
e_minalloc
¶ - XML Binding class name:
e_minalloc
Dictionary key name:e_minalloc
-
e_oemid
¶ - XML Binding class name:
e_oemid
Dictionary key name:e_oemid
-
e_oeminfo
¶ - XML Binding class name:
e_oeminfo
Dictionary key name:e_oeminfo
-
e_ovro
¶
-
e_sp
¶
-
e_ss
¶
-
hashes
¶
-
reserved2
¶ - XML Binding class name:
reserved2
Dictionary key name:reserved2
-
-
class
cybox.objects.win_executable_file_object.
DataDirectory
[source]¶ Bases:
mixbox.entities.Entity
XML binding class:cybox.bindings.win_executable_file_object.DataDirectoryType
-
architecture
¶ - XML Binding class name:
Architecture
Dictionary key name:architecture
-
base_relocation_table
¶ - XML Binding class name:
Base_Relocation_Table
Dictionary key name:base_relocation_table
-
bound_import
¶ - XML Binding class name:
Bound_Import
Dictionary key name:bound_import
-
certificate_table
¶ - XML Binding class name:
Certificate_Table
Dictionary key name:certificate_table
-
clr_runtime_header
¶ - XML Binding class name:
CLR_Runtime_Header
Dictionary key name:clr_runtime_header
-
debug
¶ - XML Binding class name:
Debug
Dictionary key name:debug
-
delay_import_descriptor
¶ - XML Binding class name:
Delay_Import_Descriptor
Dictionary key name:delay_import_descriptor
-
exception_table
¶ - XML Binding class name:
Exception_Table
Dictionary key name:exception_table
-
export_table
¶ - XML Binding class name:
Export_Table
Dictionary key name:export_table
-
global_ptr
¶ - XML Binding class name:
Global_Ptr
Dictionary key name:global_ptr
-
import_address_table
¶ - XML Binding class name:
Import_Address_Table
Dictionary key name:import_address_table
-
import_table
¶ - XML Binding class name:
Import_Table
Dictionary key name:import_table
-
load_config_table
¶ - XML Binding class name:
Load_Config_Table
Dictionary key name:load_config_table
-
reserved
¶ - XML Binding class name:
Reserved
Dictionary key name:reserved
-
resource_table
¶ - XML Binding class name:
Resource_Table
Dictionary key name:resource_table
-
tls_table
¶ - XML Binding class name:
Tls_Table
Dictionary key name:tls_table
-
-
class
cybox.objects.win_executable_file_object.
Entropy
[source]¶ Bases:
mixbox.entities.Entity
XML binding class:cybox.bindings.win_executable_file_object.EntropyType
-
max
¶
-
min
¶
-
value
¶
-
-
class
cybox.objects.win_executable_file_object.
PEBuildInformation
[source]¶ Bases:
mixbox.entities.Entity
XML binding class:cybox.bindings.win_executable_file_object.PEBuildInformationType
-
compiler_name
¶ - XML Binding class name:
Compiler_Name
Dictionary key name:compiler_name
-
compiler_version
¶ - XML Binding class name:
Compiler_Version
Dictionary key name:compiler_version
-
linker_name
¶ - XML Binding class name:
Linker_Name
Dictionary key name:linker_name
-
linker_version
¶ - XML Binding class name:
Linker_Version
Dictionary key name:linker_version
-
-
class
cybox.objects.win_executable_file_object.
PEChecksum
[source]¶ Bases:
mixbox.entities.Entity
XML binding class:cybox.bindings.win_executable_file_object.PEChecksumType
-
pe_computed_api
¶ - XML Binding class name:
PE_Computed_API
Dictionary key name:pe_computed_api
-
pe_file_api
¶ - XML Binding class name:
PE_File_API
Dictionary key name:pe_file_api
-
pe_file_raw
¶ - XML Binding class name:
PE_File_Raw
Dictionary key name:pe_file_raw
-
-
class
cybox.objects.win_executable_file_object.
PEDataDirectoryStruct
[source]¶ Bases:
mixbox.entities.Entity
XML binding class:cybox.bindings.win_executable_file_object.PEDataDirectoryStructType
-
size
¶ - XML Binding class name:
Size
Dictionary key name:size
-
virtual_address
¶ - XML Binding class name:
Virtual_Address
Dictionary key name:virtual_address
-
-
class
cybox.objects.win_executable_file_object.
PEExportedFunction
[source]¶ Bases:
mixbox.entities.Entity
XML binding class:cybox.bindings.win_executable_file_object.PEExportedFunctionType
-
entry_point
¶ - XML Binding class name:
Entry_Point
Dictionary key name:entry_point
-
function_name
¶ - XML Binding class name:
Function_Name
Dictionary key name:function_name
-
ordinal
¶ - XML Binding class name:
Ordinal
Dictionary key name:ordinal
-
-
class
cybox.objects.win_executable_file_object.
PEExportedFunctions
(*args)[source]¶ Bases:
mixbox.entities.EntityList
XML binding class:cybox.bindings.win_executable_file_object.PEExportedFunctionsType
-
exported_function
¶ - (List of values permitted)XML Binding class name:
Exported_Function
Dictionary key name:exported_function
-
-
class
cybox.objects.win_executable_file_object.
PEExports
[source]¶ Bases:
mixbox.entities.Entity
XML binding class:cybox.bindings.win_executable_file_object.PEExportsType
-
exported_functions
¶ - XML Binding class name:
Exported_Functions
Dictionary key name:exported_functions
-
exports_time_stamp
¶ - XML Binding class name:
Exports_Time_Stamp
Dictionary key name:exports_time_stamp
-
name
¶
-
number_of_addresses
¶ - XML Binding class name:
Number_Of_Addresses
Dictionary key name:number_of_addresses
-
number_of_functions
¶ - XML Binding class name:
Number_Of_Functions
Dictionary key name:number_of_functions
-
number_of_names
¶ - XML Binding class name:
Number_Of_Names
Dictionary key name:number_of_names
-
-
class
cybox.objects.win_executable_file_object.
PEFileHeader
[source]¶ Bases:
mixbox.entities.Entity
XML binding class:cybox.bindings.win_executable_file_object.PEFileHeaderType
-
characteristics
¶ - XML Binding class name:
Characteristics
Dictionary key name:characteristics
-
hashes
¶
-
machine
¶ - XML Binding class name:
Machine
Dictionary key name:machine
-
number_of_sections
¶ - XML Binding class name:
Number_Of_Sections
Dictionary key name:number_of_sections
-
number_of_symbols
¶ - XML Binding class name:
Number_Of_Symbols
Dictionary key name:number_of_symbols
-
pointer_to_symbol_table
¶ - XML Binding class name:
Pointer_To_Symbol_Table
Dictionary key name:pointer_to_symbol_table
-
size_of_optional_header
¶ - XML Binding class name:
Size_Of_Optional_Header
Dictionary key name:size_of_optional_header
-
time_date_stamp
¶ - XML Binding class name:
Time_Date_Stamp
Dictionary key name:time_date_stamp
-
-
class
cybox.objects.win_executable_file_object.
PEHeaders
[source]¶ Bases:
mixbox.entities.Entity
XML binding class:cybox.bindings.win_executable_file_object.PEHeadersType
-
dos_header
¶ - XML Binding class name:
DOS_Header
Dictionary key name:dos_header
-
entropy
¶ - XML Binding class name:
Entropy
Dictionary key name:entropy
-
file_header
¶ - XML Binding class name:
File_Header
Dictionary key name:file_header
-
hashes
¶
-
optional_header
¶ - XML Binding class name:
Optional_Header
Dictionary key name:optional_header
-
signature
¶ - XML Binding class name:
Signature
Dictionary key name:signature
-
-
class
cybox.objects.win_executable_file_object.
PEImport
[source]¶ Bases:
mixbox.entities.Entity
XML binding class:cybox.bindings.win_executable_file_object.PEImportType
-
delay_load
¶ - XML Binding class name:
delay_load
Dictionary key name:delay_load
-
file_name
¶ - XML Binding class name:
File_Name
Dictionary key name:file_name
-
imported_functions
¶ - XML Binding class name:
Imported_Functions
Dictionary key name:imported_functions
-
initially_visible
¶ - XML Binding class name:
initially_visible
Dictionary key name:initially_visible
-
virtual_address
¶ - XML Binding class name:
Virtual_Address
Dictionary key name:virtual_address
-
-
class
cybox.objects.win_executable_file_object.
PEImportList
(*args)[source]¶ Bases:
mixbox.entities.EntityList
XML binding class:cybox.bindings.win_executable_file_object.PEImportListType
-
import_
¶ - (List of values permitted)XML Binding class name:
Import
Dictionary key name:import
-
-
class
cybox.objects.win_executable_file_object.
PEImportedFunction
[source]¶ Bases:
mixbox.entities.Entity
XML binding class:cybox.bindings.win_executable_file_object.PEImportedFunctionType
-
bound
¶
-
function_name
¶ - XML Binding class name:
Function_Name
Dictionary key name:function_name
-
hint
¶
-
ordinal
¶ - XML Binding class name:
Ordinal
Dictionary key name:ordinal
-
virtual_address
¶ - XML Binding class name:
Virtual_Address
Dictionary key name:virtual_address
-
-
class
cybox.objects.win_executable_file_object.
PEImportedFunctions
(*args)[source]¶ Bases:
mixbox.entities.EntityList
XML binding class:cybox.bindings.win_executable_file_object.PEImportedFunctionsType
-
imported_function
¶ - (List of values permitted)XML Binding class name:
Imported_Function
Dictionary key name:imported_function
-
-
class
cybox.objects.win_executable_file_object.
PEOptionalHeader
[source]¶ Bases:
mixbox.entities.Entity
XML binding class:cybox.bindings.win_executable_file_object.PEOptionalHeaderType
-
address_of_entry_point
¶ - XML Binding class name:
Address_Of_Entry_Point
Dictionary key name:address_of_entry_point
-
base_of_code
¶ - XML Binding class name:
Base_Of_Code
Dictionary key name:base_of_code
-
base_of_data
¶ - XML Binding class name:
Base_Of_Data
Dictionary key name:base_of_data
-
checksum
¶ - XML Binding class name:
Checksum
Dictionary key name:checksum
-
data_directory
¶ - XML Binding class name:
Data_Directory
Dictionary key name:data_directory
-
dll_characteristics
¶ - XML Binding class name:
DLL_Characteristics
Dictionary key name:dll_characteristics
-
file_alignment
¶ - XML Binding class name:
File_Alignment
Dictionary key name:file_alignment
-
hashes
¶
-
image_base
¶ - XML Binding class name:
Image_Base
Dictionary key name:image_base
-
loader_flags
¶ - XML Binding class name:
Loader_Flags
Dictionary key name:loader_flags
-
magic
¶
-
major_image_version
¶ - XML Binding class name:
Major_Image_Version
Dictionary key name:major_image_version
-
major_linker_version
¶ - XML Binding class name:
Major_Linker_Version
Dictionary key name:major_linker_version
-
major_os_version
¶ - XML Binding class name:
Major_OS_Version
Dictionary key name:major_os_version
-
major_subsystem_version
¶ - XML Binding class name:
Major_Subsystem_Version
Dictionary key name:major_subsystem_version
-
minor_image_version
¶ - XML Binding class name:
Minor_Image_Version
Dictionary key name:minor_image_version
-
minor_linker_version
¶ - XML Binding class name:
Minor_Linker_Version
Dictionary key name:minor_linker_version
-
minor_os_version
¶ - XML Binding class name:
Minor_OS_Version
Dictionary key name:minor_os_version
-
minor_subsystem_version
¶ - XML Binding class name:
Minor_Subsystem_Version
Dictionary key name:minor_subsystem_version
-
number_of_rva_and_sizes
¶ - XML Binding class name:
Number_Of_Rva_And_Sizes
Dictionary key name:number_of_rva_and_sizes
-
section_alignment
¶ - XML Binding class name:
Section_Alignment
Dictionary key name:section_alignment
-
size_of_code
¶ - XML Binding class name:
Size_Of_Code
Dictionary key name:size_of_code
-
size_of_headers
¶ - XML Binding class name:
Size_Of_Headers
Dictionary key name:size_of_headers
-
size_of_heap_commit
¶ - XML Binding class name:
Size_Of_Heap_Commit
Dictionary key name:size_of_heap_commit
-
size_of_heap_reserve
¶ - XML Binding class name:
Size_Of_Heap_Reserve
Dictionary key name:size_of_heap_reserve
-
size_of_image
¶ - XML Binding class name:
Size_Of_Image
Dictionary key name:size_of_image
-
size_of_initialized_data
¶ - XML Binding class name:
Size_Of_Initialized_Data
Dictionary key name:size_of_initialized_data
-
size_of_stack_commit
¶ - XML Binding class name:
Size_Of_Stack_Commit
Dictionary key name:size_of_stack_commit
-
size_of_stack_reserve
¶ - XML Binding class name:
Size_Of_Stack_Reserve
Dictionary key name:size_of_stack_reserve
-
size_of_uninitialized_data
¶ - XML Binding class name:
Size_Of_Uninitialized_Data
Dictionary key name:size_of_uninitialized_data
-
subsystem
¶ - XML Binding class name:
Subsystem
Dictionary key name:subsystem
-
win32_version_value
¶ - XML Binding class name:
Win32_Version_Value
Dictionary key name:win32_version_value
-
-
class
cybox.objects.win_executable_file_object.
PEResource
[source]¶ Bases:
mixbox.entities.Entity
XML binding class:cybox.bindings.win_executable_file_object.PEResourceType
-
data
¶
-
hashes
¶
-
language
¶
-
name
¶
-
size
¶ - XML Binding class name:
Size
Dictionary key name:size
-
sub_language
¶ - XML Binding class name:
Sub_Language
Dictionary key name:sub_language
-
type_
¶
-
virtual_address
¶ - XML Binding class name:
Virtual_Address
Dictionary key name:virtual_address
-
-
class
cybox.objects.win_executable_file_object.
PEResourceList
(*args)[source]¶ Bases:
mixbox.entities.EntityList
XML binding class:cybox.bindings.win_executable_file_object.PEResourceListType
-
resource
¶ - (List of values permitted)XML Binding class name:
Resource
Dictionary key name:resource
-
-
class
cybox.objects.win_executable_file_object.
PESection
[source]¶ Bases:
mixbox.entities.Entity
XML binding class:cybox.bindings.win_executable_file_object.PESectionType
-
data_hashes
¶ - XML Binding class name:
Data_Hashes
Dictionary key name:data_hashes
-
entropy
¶ - XML Binding class name:
Entropy
Dictionary key name:entropy
-
header_hashes
¶ - XML Binding class name:
Header_Hashes
Dictionary key name:header_hashes
-
section_header
¶ - XML Binding class name:
Section_Header
Dictionary key name:section_header
-
-
class
cybox.objects.win_executable_file_object.
PESectionHeaderStruct
[source]¶ Bases:
mixbox.entities.Entity
XML binding class:cybox.bindings.win_executable_file_object.PESectionHeaderStructType
-
characteristics
¶ - XML Binding class name:
Characteristics
Dictionary key name:characteristics
-
name
¶
-
number_of_linenumbers
¶ - XML Binding class name:
Number_Of_Linenumbers
Dictionary key name:number_of_linenumbers
-
number_of_relocations
¶ - XML Binding class name:
Number_Of_Relocations
Dictionary key name:number_of_relocations
-
pointer_to_linenumbers
¶ - XML Binding class name:
Pointer_To_Linenumbers
Dictionary key name:pointer_to_linenumbers
-
pointer_to_raw_data
¶ - XML Binding class name:
Pointer_To_Raw_Data
Dictionary key name:pointer_to_raw_data
-
pointer_to_relocations
¶ - XML Binding class name:
Pointer_To_Relocations
Dictionary key name:pointer_to_relocations
-
size_of_raw_data
¶ - XML Binding class name:
Size_Of_Raw_Data
Dictionary key name:size_of_raw_data
-
virtual_address
¶ - XML Binding class name:
Virtual_Address
Dictionary key name:virtual_address
-
virtual_size
¶ - XML Binding class name:
Virtual_Size
Dictionary key name:virtual_size
-
-
class
cybox.objects.win_executable_file_object.
PESectionList
(*args)[source]¶ Bases:
mixbox.entities.EntityList
XML binding class:cybox.bindings.win_executable_file_object.PESectionListType
-
section
¶ - (List of values permitted)XML Binding class name:
Section
Dictionary key name:section
-
-
class
cybox.objects.win_executable_file_object.
PEVersionInfoResource
[source]¶ Bases:
cybox.objects.win_executable_file_object.PEResource
XML binding class:cybox.bindings.win_executable_file_object.PEVersionInfoResourceType
-
comments
¶
-
companyname
¶ - XML Binding class name:
CompanyName
Dictionary key name:companyname
-
filedescription
¶ - XML Binding class name:
FileDescription
Dictionary key name:filedescription
-
fileversion
¶ - XML Binding class name:
FileVersion
Dictionary key name:fileversion
-
internalname
¶ - XML Binding class name:
InternalName
Dictionary key name:internalname
-
langid
¶
-
legalcopyright
¶ - XML Binding class name:
LegalCopyright
Dictionary key name:legalcopyright
-
legaltrademarks
¶ - XML Binding class name:
LegalTrademarks
Dictionary key name:legaltrademarks
-
originalfilename
¶ - XML Binding class name:
OriginalFilename
Dictionary key name:originalfilename
-
privatebuild
¶ - XML Binding class name:
PrivateBuild
Dictionary key name:privatebuild
-
productname
¶ - XML Binding class name:
ProductName
Dictionary key name:productname
-
productversion
¶ - XML Binding class name:
ProductVersion
Dictionary key name:productversion
-
specialbuild
¶ - XML Binding class name:
SpecialBuild
Dictionary key name:specialbuild
-
-
class
cybox.objects.win_executable_file_object.
WinExecutableFile
[source]¶ Bases:
cybox.objects.win_file_object.WinFile
XML binding class:cybox.bindings.win_executable_file_object.WindowsExecutableFileObjectType
-
build_information
¶ - XML Binding class name:
Build_Information
Dictionary key name:build_information
-
digital_signature
¶ - XML Binding class name:
Digital_Signature
Dictionary key name:digital_signature
-
exports
¶ - XML Binding class name:
Exports
Dictionary key name:exports
-
extraneous_bytes
¶ - XML Binding class name:
Extraneous_Bytes
Dictionary key name:extraneous_bytes
-
headers
¶ - XML Binding class name:
Headers
Dictionary key name:headers
-
imports
¶ - XML Binding class name:
Imports
Dictionary key name:imports
-
pe_checksum
¶ - XML Binding class name:
PE_Checksum
Dictionary key name:pe_checksum
-
resources
¶ - XML Binding class name:
Resources
Dictionary key name:resources
-
sections
¶ - XML Binding class name:
Sections
Dictionary key name:sections
-
type_
¶
-