Skip to main content

Detonate URL - ThreatGrid v2

This Playbook is part of the Cisco Secure Malware Analytics Pack.#

Detonate one or more URLs using the ThreatGrid integration.

Dependencies#

This playbook uses the following sub-playbooks, integrations, and scripts.

Sub-playbooks#

This playbook does not use any sub-playbooks.

Integrations#

  • ThreatGridv2

Scripts#

This playbook does not use any scripts.

Commands#

  • threat-grid-sample-upload

Playbook Inputs#


NameDescriptionDefault ValueRequired
URLURL of the sites to detonate.URL.DataOptional
timeoutIndicates the time in seconds until the polling sequence times out. Default is 60.60Optional
intervalIndicates the time in seconds to wait between command execution when 'polling' argument is true. Minimum value is 10 seconds. Default is 10.10Optional

Playbook Outputs#


PathDescriptionType
ThreatGrid.Sample.idThe sample idstring
ThreatGrid.Sample.filenameThe sample filenamestring
ThreatGrid.Sample.stateThe state of the sample, one of a stable set of strings "wait, prep, run, proc, succ, fail"string
ThreatGrid.Sample.statusThe sample statusstring
ThreatGrid.Sample.md5The sample md5string
ThreatGrid.Sample.sha1The sample sha1string
ThreatGrid.Sample.sha256The sample sha256string
ThreatGrid.Sample.osThe sample osstring
ThreatGrid.Sample.submitted_atThe sample submission timestring

Playbook Image#


Detonate URL - ThreatGrid v2