AI-assisted infection-vector analysis for a stealer family

curl --request POST \
  --url https://api.vantaprism.me/v1/search/infection-analysis \
  --header 'Content-Type: application/json' \
  --header 'api-key: <api-key>' \
  --data '
{
  "stealer": "LummaC2"
}
'

{
  "data": {
    "likely_infection_url": "<string>",
    "infection_reasoning": "<string>",
    "infection_flow": [
      {}
    ],
    "analyst_summary": "<string>"
  },
  "meta": {
    "request_id": "req_01HZXK3Q7N8YV6F3M2P9JABCDE",
    "took_ms": 42.7,
    "tier": "pro",
    "masked_fields": [
      "password",
      "ip"
    ],
    "freshness_at": "2023-11-07T05:31:56Z"
  }
}

POST

infection-analysis

curl --request POST \
  --url https://api.vantaprism.me/v1/search/infection-analysis \
  --header 'Content-Type: application/json' \
  --header 'api-key: <api-key>' \
  --data '
{
  "stealer": "LummaC2"
}
'

{
  "data": {
    "likely_infection_url": "<string>",
    "infection_reasoning": "<string>",
    "infection_flow": [
      {}
    ],
    "analyst_summary": "<string>"
  },
  "meta": {
    "request_id": "req_01HZXK3Q7N8YV6F3M2P9JABCDE",
    "took_ms": 42.7,
    "tier": "pro",
    "masked_fields": [
      "password",
      "ip"
    ],
    "freshness_at": "2023-11-07T05:31:56Z"
  }
}

Authorizations

api-key

string

header

required

Static API key, format vp_<env>_<8-hex-prefix>.<40-hex-secret>. Preferred header for server-to-server integrations.

Body

application/json

stealer

string

required

Stealer family name, e.g. "RedLine", "Raccoon", "Vidar", "LummaC2".

Example:

"LummaC2"

Response

Infection analysis

data

object

required

Show child attributes