Create windowsMalwareInformation

Article
07/27/2023

Namespace: microsoft.graph

Note: The Microsoft Graph API for Intune requires an active Intune license for the tenant.

Create a new windowsMalwareInformation object.

This API is available in the following national cloud deployments.

Global service	US Government L4	US Government L5 (DOD)	China operated by 21Vianet
✅	✅	✅	✅

Permissions

One of the following permissions is required to call this API. To learn more, including how to choose permissions, see Permissions.

Permission type	Permissions (from least to most privileged)
Delegated (work or school account)	DeviceManagementManagedDevices.ReadWrite.All
Delegated (personal Microsoft account)	Not supported.
Application	DeviceManagementManagedDevices.ReadWrite.All

HTTP Request

POST /deviceManagement/windowsMalwareInformation

Request headers

Header	Value
Authorization	Bearer {token}. Required. Learn more about authentication and authorization.
Accept	application/json

Request body

In the request body, supply a JSON representation for the windowsMalwareInformation object.

The following table shows the properties that are required when you create the windowsMalwareInformation.

Property	Type	Description
id	String	The unique Identifier. This is malware id.
displayName	String	Indicates the name of the malware
additionalInformationUrl	String	Indicates an informational URL to learn more about the malware
severity	windowsMalwareSeverity	Severity of the malware. Possible values are: unknown, low, moderate, high, severe. default is unknown. Possible values are: `unknown`, `low`, `moderate`, `high`, `severe`.
category	windowsMalwareCategory	Category of the malware. Possible values are: invalid, adware, spyware, passwordStealer, trojanDownloader, worm, backdoor, remoteAccessTrojan, trojan, emailFlooder, keylogger, dialer, monitoringSoftware, browserModifier, cookie, browserPlugin, aolExploit, nuker, securityDisabler, jokeProgram, hostileActiveXControl, softwareBundler, stealthNotifier, settingsModifier, toolBar, remoteControlSoftware, trojanFtp, potentialUnwantedSoftware, icqExploit, trojanTelnet, exploit, filesharingProgram, malwareCreationTool, remote_Control_Software, tool, trojanDenialOfService, trojanDropper, trojanMassMailer, trojanMonitoringSoftware, trojanProxyServer, virus, known, unknown, spp, behavior, vulnerability, policy, enterpriseUnwantedSoftware, ransom, hipsRule. default value is invalid. Possible values are: `invalid`, `adware`, `spyware`, `passwordStealer`, `trojanDownloader`, `worm`, `backdoor`, `remoteAccessTrojan`, `trojan`, `emailFlooder`, `keylogger`, `dialer`, `monitoringSoftware`, `browserModifier`, `cookie`, `browserPlugin`, `aolExploit`, `nuker`, `securityDisabler`, `jokeProgram`, `hostileActiveXControl`, `softwareBundler`, `stealthNotifier`, `settingsModifier`, `toolBar`, `remoteControlSoftware`, `trojanFtp`, `potentialUnwantedSoftware`, `icqExploit`, `trojanTelnet`, `exploit`, `filesharingProgram`, `malwareCreationTool`, `remote_Control_Software`, `tool`, `trojanDenialOfService`, `trojanDropper`, `trojanMassMailer`, `trojanMonitoringSoftware`, `trojanProxyServer`, `virus`, `known`, `unknown`, `spp`, `behavior`, `vulnerability`, `policy`, `enterpriseUnwantedSoftware`, `ransom`, `hipsRule`.
lastDetectionDateTime	DateTimeOffset	Indicates the last time the malware was detected in UTC

Response

If successful, this method returns a 201 Created response code and a windowsMalwareInformation object in the response body.

Example

Request

Here is an example of the request.

POST https://graph.microsoft.com/v1.0/deviceManagement/windowsMalwareInformation
Content-type: application/json
Content-length: 299

{
  "@odata.type": "#microsoft.graph.windowsMalwareInformation",
  "displayName": "Display Name value",
  "additionalInformationUrl": "https://example.com/additionalInformationUrl/",
  "severity": "low",
  "category": "adware",
  "lastDetectionDateTime": "2016-12-31T23:59:27.3805104-08:00"
}


// Code snippets are only available for the latest version. Current version is 5.x

// Dependencies
using Microsoft.Graph.Models;

var requestBody = new WindowsMalwareInformation
{
	OdataType = "#microsoft.graph.windowsMalwareInformation",
	DisplayName = "Display Name value",
	AdditionalInformationUrl = "https://example.com/additionalInformationUrl/",
	Severity = WindowsMalwareSeverity.Low,
	Category = WindowsMalwareCategory.Adware,
	LastDetectionDateTime = DateTimeOffset.Parse("2016-12-31T23:59:27.3805104-08:00"),
};

// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=csharp
var result = await graphClient.DeviceManagement.WindowsMalwareInformation.PostAsync(requestBody);

For details about how to add the SDK to your project and create an authProvider instance, see the SDK documentation.



mgc device-management windows-malware-information create --body '{\
  "@odata.type": "#microsoft.graph.windowsMalwareInformation",\
  "displayName": "Display Name value",\
  "additionalInformationUrl": "https://example.com/additionalInformationUrl/",\
  "severity": "low",\
  "category": "adware",\
  "lastDetectionDateTime": "2016-12-31T23:59:27.3805104-08:00"\
}\
'

For details about how to add the SDK to your project and create an authProvider instance, see the SDK documentation.



// Code snippets are only available for the latest major version. Current major version is $v1.*

// Dependencies
import (
	  "context"
	  "time"
	  msgraphsdk "github.com/microsoftgraph/msgraph-sdk-go"
	  graphmodels "github.com/microsoftgraph/msgraph-sdk-go/models"
	  //other-imports
)

requestBody := graphmodels.NewWindowsMalwareInformation()
displayName := "Display Name value"
requestBody.SetDisplayName(&displayName) 
additionalInformationUrl := "https://example.com/additionalInformationUrl/"
requestBody.SetAdditionalInformationUrl(&additionalInformationUrl) 
severity := graphmodels.LOW_WINDOWSMALWARESEVERITY 
requestBody.SetSeverity(&severity) 
category := graphmodels.ADWARE_WINDOWSMALWARECATEGORY 
requestBody.SetCategory(&category) 
lastDetectionDateTime , err := time.Parse(time.RFC3339, "2016-12-31T23:59:27.3805104-08:00")
requestBody.SetLastDetectionDateTime(&lastDetectionDateTime) 

// To initialize your graphClient, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=go
windowsMalwareInformation, err := graphClient.DeviceManagement().WindowsMalwareInformation().Post(context.Background(), requestBody, nil)

For details about how to add the SDK to your project and create an authProvider instance, see the SDK documentation.


// Code snippets are only available for the latest version. Current version is 6.x

GraphServiceClient graphClient = new GraphServiceClient(requestAdapter);

WindowsMalwareInformation windowsMalwareInformation = new WindowsMalwareInformation();
windowsMalwareInformation.setOdataType("#microsoft.graph.windowsMalwareInformation");
windowsMalwareInformation.setDisplayName("Display Name value");
windowsMalwareInformation.setAdditionalInformationUrl("https://example.com/additionalInformationUrl/");
windowsMalwareInformation.setSeverity(WindowsMalwareSeverity.Low);
windowsMalwareInformation.setCategory(WindowsMalwareCategory.Adware);
OffsetDateTime lastDetectionDateTime = OffsetDateTime.parse("2016-12-31T23:59:27.3805104-08:00");
windowsMalwareInformation.setLastDetectionDateTime(lastDetectionDateTime);
WindowsMalwareInformation result = graphClient.deviceManagement().windowsMalwareInformation().post(windowsMalwareInformation);

For details about how to add the SDK to your project and create an authProvider instance, see the SDK documentation.


const options = {
	authProvider,
};

const client = Client.init(options);

const windowsMalwareInformation = {
  '@odata.type': '#microsoft.graph.windowsMalwareInformation',
  displayName: 'Display Name value',
  additionalInformationUrl: 'https://example.com/additionalInformationUrl/',
  severity: 'low',
  category: 'adware',
  lastDetectionDateTime: '2016-12-31T23:59:27.3805104-08:00'
};

await client.api('/deviceManagement/windowsMalwareInformation')
	.post(windowsMalwareInformation);

For details about how to add the SDK to your project and create an authProvider instance, see the SDK documentation.


<?php
use Microsoft\Graph\GraphServiceClient;
use Microsoft\Graph\Generated\Models\WindowsMalwareInformation;
use Microsoft\Graph\Generated\Models\WindowsMalwareSeverity;
use Microsoft\Graph\Generated\Models\WindowsMalwareCategory;


$graphServiceClient = new GraphServiceClient($tokenRequestContext, $scopes);

$requestBody = new WindowsMalwareInformation();
$requestBody->setOdataType('#microsoft.graph.windowsMalwareInformation');
$requestBody->setDisplayName('Display Name value');
$requestBody->setAdditionalInformationUrl('https://example.com/additionalInformationUrl/');
$requestBody->setSeverity(new WindowsMalwareSeverity('low'));
$requestBody->setCategory(new WindowsMalwareCategory('adware'));
$requestBody->setLastDetectionDateTime(new \DateTime('2016-12-31T23:59:27.3805104-08:00'));

$result = $graphServiceClient->deviceManagement()->windowsMalwareInformation()->post($requestBody)->wait();

For details about how to add the SDK to your project and create an authProvider instance, see the SDK documentation.


Import-Module Microsoft.Graph.DeviceManagement

$params = @{
	"@odata.type" = "#microsoft.graph.windowsMalwareInformation"
	displayName = "Display Name value"
	additionalInformationUrl = "https://example.com/additionalInformationUrl/"
	severity = "low"
	category = "adware"
	lastDetectionDateTime = [System.DateTime]::Parse("2016-12-31T23:59:27.3805104-08:00")
}

New-MgDeviceManagementWindowsMalwareInformation -BodyParameter $params

For details about how to add the SDK to your project and create an authProvider instance, see the SDK documentation.


# Code snippets are only available for the latest version. Current version is 1.x
from msgraph import GraphServiceClient
from msgraph.generated.models.windows_malware_information import WindowsMalwareInformation
from msgraph.generated.models.windows_malware_severity import WindowsMalwareSeverity
from msgraph.generated.models.windows_malware_category import WindowsMalwareCategory
# To initialize your graph_client, see https://learn.microsoft.com/en-us/graph/sdks/create-client?from=snippets&tabs=python
request_body = WindowsMalwareInformation(
	odata_type = "#microsoft.graph.windowsMalwareInformation",
	display_name = "Display Name value",
	additional_information_url = "https://example.com/additionalInformationUrl/",
	severity = WindowsMalwareSeverity.Low,
	category = WindowsMalwareCategory.Adware,
	last_detection_date_time = "2016-12-31T23:59:27.3805104-08:00",
)

result = await graph_client.device_management.windows_malware_information.post(request_body)

For details about how to add the SDK to your project and create an authProvider instance, see the SDK documentation.

Response

Here is an example of the response. Note: The response object shown here may be truncated for brevity. All of the properties will be returned from an actual call.

HTTP/1.1 201 Created
Content-Type: application/json
Content-Length: 348

{
  "@odata.type": "#microsoft.graph.windowsMalwareInformation",
  "id": "8ebd2b9b-2b9b-8ebd-9b2b-bd8e9b2bbd8e",
  "displayName": "Display Name value",
  "additionalInformationUrl": "https://example.com/additionalInformationUrl/",
  "severity": "low",
  "category": "adware",
  "lastDetectionDateTime": "2016-12-31T23:59:27.3805104-08:00"
}

Share via

Create windowsMalwareInformation

Permissions

HTTP Request

Request headers

Request body

Response

Example

Request

Response

Feedback

Additional resources