Skip to main content
All CollectionsTemplatesIntermediate
Analyze URLs and Files in Triage Sandbox - Workflow Template
Analyze URLs and Files in Triage Sandbox - Workflow Template

This workflow submit URLs to Hatching Triage Sandbox for analysis.

Updated over 6 months ago

This workflow template, "Analyze URLs and Files in Triage Sandbox," is designed to enhance threat intelligence by submitting and analyzing URLs in two distinct lists to Hatching Triage Sandbox. The 'urls_list' is analyzed as websites, while 'files_urls_list' undergoes analysis after the files are downloaded from the URLs. It ensures that both lists contain valid URLs by purging invalid entries. The output provides detailed analysis information for each sample, supporting businesses in proactive cyber threat mitigation.

Take Me to the Template

Optional Triggers

"This workflow can be used as a nested function."

Use Cases

Function, Threat Intelligence Enrichment

Workflow Breakdown

  1. URLs in the urls_list are submitted as URLs and are analyzed as a website.

  2. URLs in the files_url_list are downloaded and are analyzed as a file in the sandbox.

  3. Both lists are verified to have valid URLs, other values are removed.

Vendors

Utils, Hatching Triage

Workflow Output

Output contains all analysis related information for each sample.

Related Articles
Recorded Future Sandbox -Analyze Files and URLs - Workflow Template
Analyze Files in Netskope Sandbox with Cache - Workflow Template
Recorded Future Sandbox - File Analysis with Cache - Workflow Template
Analyze URLs and Files in Recorded Future Sandbox - Workflow Template
Recorded Future Sandbox - URL Analysis with Cache - Workflow Template
Did this answer your question?