Skip to content

Enum: MalwareClassificationIdsEnum

The list of normalized identifiers of the malware classifications.

URI: ocsf:MalwareClassificationIdsEnum

Permissible Values

Value Meaning Description
ADWARE None Adware
BACKDOOR None Backdoor
BOT None Bot
BOOTKIT None Bootkit
DDOS None DDOS
DOWNLOADER None Downloader
DROPPER None Dropper
EXPLOIT_KIT None Exploit-Kit
KEYLOGGER None Keylogger
RANSOMWARE None Ransomware
REMOTE_ACCESS_TROJAN None Remote-Access-Trojan
RESOURCE_EXPLOITATION None Resource-Exploitation
ROGUE_SECURITY_SOFTWARE None Rogue-Security-Software
ROOTKIT None Rootkit
SCREEN_CAPTURE None Screen-Capture
SPYWARE None Spyware
TROJAN None Trojan
VIRUS None Virus
WEBSHELL None Webshell
WIPER None Wiper
WORM None Worm
UNKNOWN None The classification is unknown
OTHER None The classification is not mapped

Slots

Name Description
classification_ids The list of normalized identifiers of the malware classifications

Identifier and Mapping Information

Schema Source

LinkML Source

name: MalwareClassificationIdsEnum
description: The list of normalized identifiers of the malware classifications.
from_schema: https://w3id.org/lmodel/ocsf
rank: 1000
permissible_values:
  ADWARE:
    text: ADWARE
    description: Adware
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '1'
      caption:
        tag: caption
        value: Adware
  BACKDOOR:
    text: BACKDOOR
    description: Backdoor
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '2'
      caption:
        tag: caption
        value: Backdoor
  BOT:
    text: BOT
    description: Bot
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '3'
      caption:
        tag: caption
        value: Bot
  BOOTKIT:
    text: BOOTKIT
    description: Bootkit
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '4'
      caption:
        tag: caption
        value: Bootkit
  DDOS:
    text: DDOS
    description: DDOS
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '5'
      caption:
        tag: caption
        value: DDOS
  DOWNLOADER:
    text: DOWNLOADER
    description: Downloader
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '6'
      caption:
        tag: caption
        value: Downloader
  DROPPER:
    text: DROPPER
    description: Dropper
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '7'
      caption:
        tag: caption
        value: Dropper
  EXPLOIT_KIT:
    text: EXPLOIT_KIT
    description: Exploit-Kit
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '8'
      caption:
        tag: caption
        value: Exploit-Kit
  KEYLOGGER:
    text: KEYLOGGER
    description: Keylogger
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '9'
      caption:
        tag: caption
        value: Keylogger
  RANSOMWARE:
    text: RANSOMWARE
    description: Ransomware
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '10'
      caption:
        tag: caption
        value: Ransomware
  REMOTE_ACCESS_TROJAN:
    text: REMOTE_ACCESS_TROJAN
    description: Remote-Access-Trojan
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '11'
      caption:
        tag: caption
        value: Remote-Access-Trojan
  RESOURCE_EXPLOITATION:
    text: RESOURCE_EXPLOITATION
    description: Resource-Exploitation
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '13'
      caption:
        tag: caption
        value: Resource-Exploitation
  ROGUE_SECURITY_SOFTWARE:
    text: ROGUE_SECURITY_SOFTWARE
    description: Rogue-Security-Software
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '14'
      caption:
        tag: caption
        value: Rogue-Security-Software
  ROOTKIT:
    text: ROOTKIT
    description: Rootkit
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '15'
      caption:
        tag: caption
        value: Rootkit
  SCREEN_CAPTURE:
    text: SCREEN_CAPTURE
    description: Screen-Capture
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '16'
      caption:
        tag: caption
        value: Screen-Capture
  SPYWARE:
    text: SPYWARE
    description: Spyware
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '17'
      caption:
        tag: caption
        value: Spyware
  TROJAN:
    text: TROJAN
    description: Trojan
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '18'
      caption:
        tag: caption
        value: Trojan
  VIRUS:
    text: VIRUS
    description: Virus
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '19'
      caption:
        tag: caption
        value: Virus
  WEBSHELL:
    text: WEBSHELL
    description: Webshell
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '20'
      caption:
        tag: caption
        value: Webshell
  WIPER:
    text: WIPER
    description: Wiper
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '21'
      caption:
        tag: caption
        value: Wiper
  WORM:
    text: WORM
    description: Worm
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '22'
      caption:
        tag: caption
        value: Worm
  UNKNOWN:
    text: UNKNOWN
    description: The classification is unknown.
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '0'
      caption:
        tag: caption
        value: Unknown
  OTHER:
    text: OTHER
    description: 'The classification is not mapped. See the <code>classifications</code>

      attribute, which contains a data source specific value.'
    annotations:
      ocsf_uid:
        tag: ocsf_uid
        value: '99'
      caption:
        tag: caption
        value: Other