Skip to main content
All CollectionsTemplatesIntermediate
Analyze URLs and Files in Triage Sandbox - Workflow Template
Analyze URLs and Files in Triage Sandbox - Workflow Template

This workflow submit URLs to Hatching Triage Sandbox for analysis.

Updated over a week ago

This workflow template, "Analyze URLs and Files in Triage Sandbox," is designed to enhance threat intelligence by submitting and analyzing URLs in two distinct lists to Hatching Triage Sandbox. The 'urls_list' is analyzed as websites, while 'files_urls_list' undergoes analysis after the files are downloaded from the URLs. It ensures that both lists contain valid URLs by purging invalid entries. The output provides detailed analysis information for each sample, supporting businesses in proactive cyber threat mitigation.

Optional Triggers

"This workflow can be used as a nested function."

Use Cases

Function, Threat Intelligence Enrichment

Workflow Breakdown

  1. URLs in the urls_list are submitted as URLs and are analyzed as a website.

  2. URLs in the files_url_list are downloaded and are analyzed as a file in the sandbox.

  3. Both lists are verified to have valid URLs, other values are removed.

Vendors

Utils, Hatching Triage

Workflow Output

Output contains all analysis related information for each sample.

Did this answer your question?