The APICallType provides a method for the characterization of API calls, including functions and their parameters.
| Field Name | Type | Description |
|---|---|---|
| @function_nameoptional | string |
The function_name field contains the exact name of the API function called, e.g. CreateFileEx. |
| @normalized_function_nameoptional | string |
The normalized_function_name field contains the normalized name of the API function called, e.g. CreateFile. |
| Address0..1 | hexBinary |
The Address field contains the address of the API call in the binary. |
| Return_Value0..1 | string |
The Return_Value field contains the return value of the API call. |
| Parameters0..1 | ParameterListType |
The Parameter field captures any name/value pairs of the parameters passed into the API call. |
