{% extends "base.html" %}
{% from 'partials/_macros.html' import scanner_table_header, scanner_yara_row, scanner_status_cell, scanner_count_cell, status_grid_3 %}

{% block breadcrumb %}
    Files
    <span class="lb-tb-sep">›</span> {% if file_info %}<span class="lb-mono">{{ file_info.original_name }}</span>{% else %}Process{% endif %}
    <span class="lb-tb-sep">›</span> Dynamic Summary
{% endblock %}

{% block content %}

<!-- Header -->
<div class="lb-panel">
    <div class="lb-panel-hdr">
        <span class="lb-glyph">▸</span>Dynamic Analysis Summary
        {% if file_info %}
            <button onclick="window.location.href='/results/info/{{ file_info.md5 }}'" class="lb-btn lb-btn-ghost" style="margin-left: auto; padding: 2px 10px; font-size: 12px;" aria-label="Navigate back to file information">
                <svg fill="none" stroke="currentColor" viewBox="0 0 24 24"><path stroke-linecap="round" stroke-linejoin="round" stroke-width="1.5" d="M15 19l-7-7 7-7"/></svg>
                Back to File Info
            </button>
        {% else %}
            <button onclick="window.location.href='/summary'" class="lb-btn lb-btn-ghost" style="margin-left: auto; padding: 2px 10px; font-size: 12px;" aria-label="Navigate back to summary">
                <svg fill="none" stroke="currentColor" viewBox="0 0 24 24"><path stroke-linecap="round" stroke-linejoin="round" stroke-width="1.5" d="M15 19l-7-7 7-7"/></svg>
                Back to Summary
            </button>
        {% endif %}
    </div>
    <div class="lb-panel-body">
        <p class="lb-muted" style="font-size: 12px; margin-bottom: 8px;">Comprehensive overview of all scan results.</p>
        {% if analysis_results.moneta and analysis_results.moneta.findings.process_info %}
            {% set info = analysis_results.moneta.findings.process_info %}
            <div class="lb-hash-row">
                <div class="lb-hash-label">Process</div>
                <div class="lb-hash-value lb-mono">{{ info.name }}</div>
            </div>
            <div class="lb-hash-row">
                <div class="lb-hash-label">PID</div>
                <div class="lb-hash-value lb-mono">{{ info.pid }}</div>
            </div>
            <div class="lb-hash-row">
                <div class="lb-hash-label">Path</div>
                <div class="lb-hash-value lb-mono lb-dim">{{ info.path }}</div>
            </div>
        {% endif %}
    </div>
</div>

<!-- Status grid -->
{% set total_detections = yara_detections + pesieve_detections + moneta_detections + patriot_detections + hsb_detections %}
{% set duration_value = "%.2f"|format(analysis_results.analysis_metadata.total_duration if analysis_results.analysis_metadata else 0) ~ "s" %}
{{ status_grid_3(total_detections, 'Total Duration', duration_value) }}

<!-- Scanner Results -->
<div class="lb-panel">
    <div class="lb-panel-hdr"><span class="lb-glyph">▸</span>Scanner Results</div>
    <table class="lb-table">
        {{ scanner_table_header() }}
        <tbody id="scannerResultsBody">
            {{ scanner_yara_row(yara_detections, analysis_results.yara.matches) }}

            <!-- PE-sieve -->
            <tr>
                <td>PE-sieve</td>
                {{ scanner_status_cell(pesieve_detections) }}
                {{ scanner_count_cell(pesieve_detections) }}
                <td style="font-size: 12px; color: var(--lb-text-dim);">
                    {% if pesieve_detections %}
                        {% set findings = analysis_results.pe_sieve.findings %}
                        {% if findings.total_scanned > 0 %}<div>Total Scanned: {{ findings.total_scanned }}</div>{% endif %}
                        {% if findings.skipped > 0 %}<div>Skipped: {{ findings.skipped }}</div>{% endif %}
                        {% if findings.hooked > 0 %}<div>Hooked: {{ findings.hooked }}</div>{% endif %}
                        {% if findings.replaced > 0 %}<div>Replaced: {{ findings.replaced }}</div>{% endif %}
                        {% if findings.hdrs_modified > 0 %}<div>Headers Modified: {{ findings.hdrs_modified }}</div>{% endif %}
                        {% if findings.iat_hooks > 0 %}<div>IAT Hooks: {{ findings.iat_hooks }}</div>{% endif %}
                        {% if findings.implanted > 0 %}<div>Implanted: {{ findings.implanted }}</div>{% endif %}
                        {% if findings.implanted_pe > 0 %}<div>Implanted PE: {{ findings.implanted_pe }}</div>{% endif %}
                        {% if findings.implanted_shc > 0 %}<div>Implanted Shellcode: {{ findings.implanted_shc }}</div>{% endif %}
                        {% if findings.unreachable > 0 %}<div>Unreachable: {{ findings.unreachable }}</div>{% endif %}
                        {% if findings.other > 0 %}<div>Other: {{ findings.other }}</div>{% endif %}
                        {% if findings.total_suspicious > 0 %}<div>Total Modifications: {{ findings.total_suspicious }}</div>{% endif %}
                    {% else %}
                        <span class="lb-muted">No memory modifications observed</span>
                    {% endif %}
                </td>
            </tr>

            <!-- Moneta -->
            <tr>
                <td>Moneta</td>
                {{ scanner_status_cell(moneta_detections) }}
                {{ scanner_count_cell(moneta_detections) }}
                <td style="font-size: 12px; color: var(--lb-text-dim);">
                    {% if moneta_detections %}
                        {% for key, value in analysis_results.moneta.findings.items() %}
                            {% if value is number and value > 0 and key != 'scan_duration' %}
                                <div>
                                    {% if key == 'total_regions' %}Total Regions: {{ value }}
                                    {% elif key == 'total_private_rx' %}Private RX: {{ value }}
                                    {% elif key == 'total_private_rwx' %}Private RWX: {{ value }}
                                    {% elif key == 'total_abnormal_private_exec' %}Abnormal Private Executable: {{ value }}
                                    {% elif key == 'total_heap_executable' %}Heap Executable: {{ value }}
                                    {% elif key == 'total_modified_code' %}Modified Code: {{ value }}
                                    {% elif key == 'total_modified_pe_header' %}Modified PE Headers: {{ value }}
                                    {% elif key == 'total_inconsistent_x' %}Inconsistent Execute Flags: {{ value }}
                                    {% elif key == 'total_missing_peb' %}Missing PEB: {{ value }}
                                    {% elif key == 'total_mismatching_peb' %}Mismatching PEB: {{ value }}
                                    {% elif key == 'total_threads_non_image' %}Threads in Non-Image Memory: {{ value }}
                                    {% endif %}
                                </div>
                            {% endif %}
                        {% endfor %}
                    {% else %}
                        <span class="lb-muted">No anomalies observed</span>
                    {% endif %}
                </td>
            </tr>

            <!-- Patriot -->
            <tr>
                <td>Patriot</td>
                {{ scanner_status_cell(patriot_detections) }}
                {{ scanner_count_cell(patriot_detections) }}
                <td style="font-size: 12px; color: var(--lb-text-dim);">
                    {% if patriot_detections %}
                        {% for finding in analysis_results.patriot.findings.findings %}
                            <div>{{ finding.type }} <span class="lb-muted">({{ finding.level }})</span></div>
                        {% endfor %}
                    {% else %}
                        <span class="lb-muted">No indicators observed</span>
                    {% endif %}
                </td>
            </tr>

            <!-- HSB -->
            <tr>
                <td>Hunt-SB</td>
                {{ scanner_status_cell(hsb_detections) }}
                {{ scanner_count_cell(hsb_detections) }}
                <td style="font-size: 12px; color: var(--lb-text-dim);">
                    {% if hsb_detections %}
                        {% for detection in analysis_results.hsb.findings.detections %}
                            {% for finding in detection.findings %}
                                <div>{{ finding.type }} <span class="lb-muted">({{ finding.severity }})</span></div>
                            {% endfor %}
                        {% endfor %}
                    {% else %}
                        <span class="lb-muted">No sleep-pattern indicators</span>
                    {% endif %}
                </td>
            </tr>
        </tbody>
    </table>
</div>

<!-- RedEdr Telemetry -->
<div class="lb-panel">
    <div class="lb-panel-hdr"><span class="lb-glyph">▸</span>Process Telemetry Summary</div>

    {% if analysis_results.rededr and analysis_results.rededr.findings %}
        {% set findings = analysis_results.rededr.findings %}
        {% set summary = findings.summary %}
        {% set proc = findings.process_info or {} %}

        <!-- Activity counts strip -->
        <div class="lb-chip-row" style="border-bottom: 1px solid var(--lb-border);">
            <div class="lb-chip">
                <div class="lb-chip-name">Total Events</div>
                <div class="lb-chip-count">{{ summary.total_events }}</div>
            </div>
            <div class="lb-chip">
                <div class="lb-chip-name">DLLs Loaded</div>
                <div class="lb-chip-count">{{ summary.total_dlls }}</div>
            </div>
            <div class="lb-chip">
                <div class="lb-chip-name">Image Loads</div>
                <div class="lb-chip-count">{{ summary.total_image_loads }}</div>
            </div>
            <div class="lb-chip">
                <div class="lb-chip-name">Threads</div>
                <div class="lb-chip-count">{{ summary.total_threads }}</div>
            </div>
            <div class="lb-chip">
                <div class="lb-chip-name">Children</div>
                <div class="lb-chip-count">{{ summary.total_child_processes }}</div>
            </div>
        </div>

        <!-- Process metadata -->
        <div class="lb-panel-body">
            <div class="lb-hash-row">
                <div class="lb-hash-label">PID</div>
                <div class="lb-hash-value lb-mono">{{ proc.pid or 'N/A' }}</div>
            </div>
            <div class="lb-hash-row">
                <div class="lb-hash-label">Parent PID</div>
                <div class="lb-hash-value lb-mono">{{ proc.parent_pid or 'N/A' }}</div>
            </div>
            <div class="lb-hash-row">
                <div class="lb-hash-label">Status</div>
                <div class="lb-hash-value">
                    {% if proc.is_protected_process %}<span class="lb-tag clean">Protected</span>{% else %}<span class="lb-tag muted">Standard</span>{% endif %}
                    {% if proc.is_debugged %}<span class="lb-tag medium" style="margin-left: 6px;">Debugged</span>{% endif %}
                </div>
            </div>
            {% if proc.image_path %}
            <div class="lb-hash-row">
                <div class="lb-hash-label">Image</div>
                <div class="lb-hash-value lb-mono lb-dim">{{ proc.image_path }}</div>
            </div>
            {% endif %}
            {% if proc.commandline %}
            <div class="lb-hash-row">
                <div class="lb-hash-label">Command</div>
                <div class="lb-hash-value lb-mono lb-dim">{{ proc.commandline }}</div>
            </div>
            {% endif %}
        </div>
    {% else %}
        <div class="lb-panel-body">
            <div class="lb-empty">No RedEdr telemetry data available.</div>
        </div>
    {% endif %}
</div>

<!-- Process Output -->
<div class="lb-panel">
    <button id="togglePayloadOutput" style="width: 100%; background: var(--lb-bg-soft); color: var(--lb-text); border: 0; border-bottom: 1px solid var(--lb-border); padding: 8px 12px; display: flex; align-items: center; justify-content: space-between; font-family: inherit; font-size: 13px; cursor: pointer;">
        <span style="display: flex; align-items: center; gap: 8px;">
            <svg id="payloadChevron" width="12" height="12" fill="none" stroke="currentColor" viewBox="0 0 24 24" style="color: var(--lb-text-mute); transition: transform var(--lb-transition-fast);">
                <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M9 5l7 7-7 7"/>
            </svg>
            <span class="lb-glyph" style="color: var(--lb-accent);">▸</span>
            Process Output
        </span>
        <span class="lb-tag {{ 'clean' if analysis_results.get('process_output', {}).get('stdout') or analysis_results.get('process_output', {}).get('stderr') else 'muted' }}">
            {{ 'Available' if analysis_results.get('process_output', {}).get('stdout') or analysis_results.get('process_output', {}).get('stderr') else 'No Output' }}
        </span>
    </button>
    <div id="payloadOutputContent" class="hidden">
        <div class="lb-panel-body">
            {% if analysis_results.get('process_output', {}).get('stdout') %}
            <div style="margin-bottom: 12px;">
                <div class="lb-eyebrow" style="margin-bottom: 6px;">Standard Output</div>
                <pre class="lb-mono" style="background: var(--lb-bg); border: 1px solid var(--lb-border); padding: 10px; font-size: 12px; color: var(--lb-text-dim); white-space: pre-wrap; word-break: break-all; max-height: 400px; overflow: auto;">{{ analysis_results.get('process_output', {}).get('stdout') }}</pre>
            </div>
            {% endif %}
            {% if analysis_results.get('process_output', {}).get('stderr') %}
            <div style="margin-bottom: 12px;">
                <div class="lb-eyebrow" style="margin-bottom: 6px;">Standard Error</div>
                <pre class="lb-mono" style="background: var(--lb-bg); border: 1px solid var(--lb-accent); padding: 10px; font-size: 12px; color: var(--lb-accent-soft); white-space: pre-wrap; word-break: break-all; max-height: 400px; overflow: auto;">{{ analysis_results.get('process_output', {}).get('stderr') }}</pre>
            </div>
            {% endif %}
            {% if analysis_results.get('process_output', {}) %}
            <div class="lb-muted" style="font-size: 12px; font-style: italic;">
                {% if analysis_results.get('process_output', {}).get('output_truncated') %}
                    Output was truncated due to size limitations{% if analysis_results.get('process_output', {}).get('exit_code') is not none %} · {% endif %}
                {% endif %}
                {% if analysis_results.get('process_output', {}).get('exit_code') is not none %}
                    Process exit code: {{ analysis_results.get('process_output', {}).get('exit_code') }}
                {% endif %}
            </div>
            {% endif %}
        </div>
    </div>
</div>

<script>
document.addEventListener('DOMContentLoaded', function() {
    const toggleBtn = document.getElementById('togglePayloadOutput');
    const content = document.getElementById('payloadOutputContent');
    const chevron = document.getElementById('payloadChevron');
    if (toggleBtn && content && chevron) {
        toggleBtn.addEventListener('click', function() {
            content.classList.toggle('hidden');
            chevron.style.transform = content.classList.contains('hidden') ? '' : 'rotate(90deg)';
        });
    }
});
</script>

{% endblock %}