Merge branch 'main' into fix/vt

make virustotal check also work with androidqf extractions
2025-10-21 22:42:15 +02:00 · 2025-09-19 07:30:14 +02:00 · 2025-09-01 17:40:11 +02:00
1 changed files with 10 additions and 4 deletions
--- a/src/mvt/android/modules/adb/packages.py
+++ b/src/mvt/android/modules/adb/packages.py
@@ -107,8 +107,7 @@ class Packages(AndroidExtraction):
                    result["matched_indicator"] = ioc
                    self.detected.append(result)

-    @staticmethod
-    def check_virustotal(packages: list) -> None:
+    def check_virustotal(self, packages: list) -> None:
        hashes = []
        for package in packages:
            for file in package.get("files", []):
@@ -143,8 +142,15 @@ class Packages(AndroidExtraction):

        for package in packages:
            for file in package.get("files", []):
-                row = [package["package_name"], file["path"]]
-
+                if "package_name" in package:
+                    row = [package["package_name"], file["path"]]
+                elif "name" in package:
+                    row = [package["name"], file["path"]]
+                else:
+                    self.log.error(
+                        f"Package {package} has no name or package_name. packages.json or apks.json is malformed"
+                    )
+                    continue
                if file["sha256"] in detections:
                    detection = detections[file["sha256"]]
                    positives = detection.split("/")[0]
Author	SHA1	Message	Date
besendorf	e507c3ecbc	Merge branch 'main' into fix/vt	2025-09-19 07:30:14 +02:00
Janik Besendorf	197c89b08f	make virustotal check also work with androidqf extractions	2025-09-01 17:40:11 +02:00