APIEvent

The APIEvent object contains data about an event that occurred while the sample was running.

Structure

Key

Type

Description

process

string

The full path to the process in the host operating system.

rules

object

List of triggered rules.

arguments

string

Arguments of the event. They indicate special conditions for executing events.

maliciousness

integer

Maliciousness, from 0 to 100.

event

string

An event which occurs while the file is running. It corresponds to the commonly used API functions.

timestamp

integer

Event timestamp. Counted from the moment the file analysis started.

Example

{

 "process": "<CURRENT_DIR>\\example.exe:1432:2432",

 "rules": {

   "neutral": [

     "Connection attempt"

   ]

 },

 "arguments": "To '125.251.199.120':540",

 "maliciousness": 0,

 "event": "ConnectNet",

 "timestamp": 9

}