Heads up! These docs are for STIX 1.1.1, which is not the latest version (1.2). View the latest!

PackerTypeFile Object Schema

The PackerType specifies the fields that characterize a particular file packer, such as name and version.


Fields

Field Name Type Description
Name0..1 StringObjectPropertyType

The Name field specifies the name of the packer.

Version0..1 StringObjectPropertyType

The Version field specifies the version of the packer.

Entry_Point0..1 HexBinaryObjectPropertyType

The Entry_Point field specifies the entry point address of the packer, if applicable.

Signature0..1 StringObjectPropertyType

The Signature field specifies the matching signature detected for the packer, if applicable.

Type0..1 PackerClassType

The Type field specifies the type of packer being characterized.

Detected_Entrypoint_Signatures0..1 EntryPointSignatureListType

The Detected_Entrypoint_Signatures field specifies the entrypoint signatures that were detected for the packer.

EP_Jump_Codes0..1 EPJumpCodeType

The EP_Jump_Codes field characterizes the entry point jump codes of the packer.