Bug fixes during ingest

2025-07-06 21:00:22 +00:00 · 2023-08-17 16:52:05 -04:00 · 2023-08-17 16:52:05 -04:00 · 8ba3f2740b
commit 8ba3f2740b
parent 47ce334b4c
3 changed files with 9 additions and 4 deletions
--- a/Core/src/com/basistech/df/cybertriage/autopsy/malwarescan/MalwareScanIngestModule.java
+++ b/Core/src/com/basistech/df/cybertriage/autopsy/malwarescan/MalwareScanIngestModule.java
@ -775,7 +775,11 @@ class MalwareScanIngestModule implements FileIngestModule {
                    for (Long objId : objIds) {
                        AnalysisResult res = createAnalysisResult(ingestJobState, trans, result, objId);
                        if (res != null) {
-                            createdArtifacts.add(res);
+                            // only post results that have score NOTABLE or LIKELY_NOTABLE
+                            Score score = res.getScore();
+                            if (score.getSignificance() == Score.Significance.NOTABLE || score.getSignificance() == Score.Significance.LIKELY_NOTABLE) {
+                                createdArtifacts.add(res);
+                            }
                        }
                    }
                }
@ -837,7 +841,7 @@ class MalwareScanIngestModule implements FileIngestModule {
                    : Bundle.MalwareScanIngestModule_SharedProcessing_createAnalysisResult_No();

            String justification = cloudBean.getMalwareResult().getStatusDescription();
-
+            
            return ingestJobState.getTskCase().getBlackboard().newAnalysisResult(
                    ingestJobState.getMalwareType(),
                    objId,
--- a/Core/src/org/sleuthkit/autopsy/datamodel/Artifacts.java
+++ b/Core/src/org/sleuthkit/autopsy/datamodel/Artifacts.java
@ -1,7 +1,7 @@
 /*
 * Autopsy Forensic Browser
 *
- * Copyright 2011-2021 Basis Technology Corp.
+ * Copyright 2011-2023 Basis Technology Corp.
 * Contact: carrier <at> sleuthkit <dot> org
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
--- a/Core/src/org/sleuthkit/autopsy/datamodel/MalwareHits.java
+++ b/Core/src/org/sleuthkit/autopsy/datamodel/MalwareHits.java
@ -255,7 +255,8 @@ public class MalwareHits implements AutopsyVisitableItem {
                    MALWARE_ARTIFACT_TYPE);

            super.setName(MALWARE_HITS);
-            //this.setIconBaseWithExtension("org/sleuthkit/autopsy/images/hashset_hits.png"); // ELTODO
+            // TODO make an icon
+            this.setIconBaseWithExtension("org/sleuthkit/autopsy/images/artifact-icon.png");
        }

        @Override