get_file_behaviour_summary
Retrieve a consolidated sandbox behavior summary for a file by hash, merging processes, files, registry, network, MITRE ATT&CK techniques, IDS alerts, and signatures across all sandbox analyses.
Instructions
Get a consolidated sandbox behaviour summary for a file (MD5/SHA-1/SHA-256), merged across every sandbox that analyzed it. Returns processes, files, registry, network activity, MITRE ATT&CK techniques, IDS alerts, and signature matches in a single view — far more useful than iterating individual behaviour reports.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| hash | Yes | MD5, SHA-1 or SHA-256 hash of the file |