malwares.com

Download 0
Last updated Sep 8, 2022

mws-file-static-report

Get static analysis result of the analyzed file from malwares.com

mws-file-static-report hash=HASH [profile=PROFILE] [raw=t]
profile=PROFILE
Profile name of malwares.com
hash=HASH
MD5, SHA1, or SHA256 hex string
raw=BOOL
Specify 't' for raw response

Output Fields

FieldTypeNameDescription
profileStringConnect profileProfile name of malwares.com
hashStringHash valueMD5, SHA1, or SHA256 value
result_codeIntegerResult codee.g. 1, 0
result_msgStringResult messagee.g. Data exists
api_versionStringAPI versione.g. 2015072100
file_nameStringFile namee.g. EXPLORER.EXE
file_versionStringFile versione.g. 10.0.19041.1889 (WinBuild.160101.0800)
file_descriptionStringFile descriptione.g. Windows Explorer
company_nameStringCompany namee.g. Microsoft Corporation
internal_nameStringInternal namee.g. explorer
product_nameStringProduct namee.g. Microsoft Windows Operating System
product_versionStringProduct versione.g. 10.0.19041.1889
md5StringMD5e.g. 7A413DDD10E81ADB6BB5D5E38F399D08
sha1StringSHA1
sha256StringSHA256
format_typeStringFormat typee.g. pe
subsystemStringSubsysteme.g. 0x2(WINDOWS)
image_baseStringImage basee.g. 0x140000000
characteristicsStringCharacteristicse.g. 0x22(LARGE_ADDRESS_AWARE, EXECUTABLE_IMAGE)
pe_file_typeStringPE file typee.g. PE64
stored_checksumStringStored checksume.g. 0x4EB54A
file_alignmentStringFile alignmente.g. 0x200
entrypointStringEntrypointe.g. 0xA1DC0
section_alignmentStringSection alignmente.g. 0x1000
sectionsListSectionsElements with section_name, raw_data_offset, raw_data_hash properties.
importsListImportsElements with dll_name and functions properties.
stringsListStringsElements with offset, charset, pattern, string properties.
rawStringRaw dataOriginal HTTP response