| Key | Value |
|---|---|
| MD5 | 832CA3C2923DFBE8FA7526172730273A |
| PackageArch | x86_64 |
| PackageDescription | Prelude-Correlator allows conducting multi-stream correlations thanks to a powerful programming language for writing correlation rules. With any type of alert able to be correlated, event analysis becomes simpler, quicker and more incisive. This correlation alert then appears within the Prewikka interface and indicates the potential target information via the set of correlation rules. |
| PackageMaintainer | Fedora Project |
| PackageName | python2-prelude-correlator |
| PackageRelease | 1.el7 |
| PackageVersion | 5.2.0 |
| SHA-1 | 006640FA6081675E4ABCBCC83ECFABD9302B1D99 |
| SHA-256 | 79BC1B0D9A8A51350B3398AB030B4258A8A357B359E73BC453944D8D3E0AB363 |
| hashlookup:children-total | 37 |
| hashlookup:trust | 50 |
The searched file hash includes 37 children files known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileName | ./usr/lib/python3.6/site-packages/preludecorrelator/config.py |
| FileSize | 2767 |
| MD5 | B541BAD9DCDE0EA08C09EC4322638366 |
| SHA-1 | 013AE0F08BA1B1D933DFF9B3BC1527945741B4F6 |
| SHA-256 | B7CA730FF3BDA84FEB5E3827731D5B8554ADD8DCCCBE94FB6A09CA0CCDA8B0B7 |
| SSDEEP | 48:VxDg4yUjHTYFuu7Gq+dGSsh3hgKv2cUHhdozaCju:bEwTmuu7GqeGSs/ASS |
| TLSH | T104515545242DA4AB82139658D84BC19EEB297B87355E403039FCF3987F0C460D1E398D |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python3.6/site-packages/preludecorrelator/require.py |
| FileSize | 1773 |
| MD5 | 6B74FB4E6B902BA1F8EFD8DB6D2B5DF3 |
| SHA-1 | 242636E006DD15C44B4A754161EABE026242EF0C |
| SHA-256 | 1C0ADC834F78DF28E4C8859F8F7A82F083CA499EA5E8F0F97F73DE7ADA0FF9F9 |
| SSDEEP | 24:QibkgK2ahJiyUVOkHxHqTbVloY5E8kL1oYGGYyeTt5fYGGS559b:VxDg4yUjHTY28kLm0Ynt5f0S5P |
| TLSH | T1A73174C72575BABBE902BD9071C261CDB69C2ED3B5285071B58C11C87F43970D2E25EA |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python2.7/site-packages/preludecorrelator/plugins/__init__.pyo |
| FileSize | 244 |
| MD5 | 923D8EA6339272AAB3AABF132D73D50F |
| SHA-1 | 248BCE06560E5024A12214538D39C4FC7225289B |
| SHA-256 | 9DE3C2D5B617F0DBBC93A2F5823D1082CEF05C4A50CBF94F669301C67331C2CA |
| SSDEEP | 6:it+5/hIq/hH0TcknIaUgh+Xe29Y3xmDrnQMVZncRaF:3hhIq2TDIax+Xe2fdZncgF |
| TLSH | T1EBD0A7A3B67CC9E7E53E9630B10011974A98A47762126281B6A071791BD9590023994E |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python2.7/site-packages/preludecorrelator/rule.pyo |
| FileSize | 849 |
| MD5 | A3CE8065A176A6F63861AB020E5393F7 |
| SHA-1 | 28DF4DB0B8F66A88A3187883E79C4E8940B715BB |
| SHA-256 | 3A2BDD43F2A553061EB0919654EEA2489913AD996A22ACC4A79F7CD3187EB868 |
| SSDEEP | 12:W/8Sc59ff8n4qHhZ8FKpGVueckUGmQl8A6VKfqV++swlLKfACKf4x:45qN8vCRuevUGmQl8UyhTluIfgx |
| TLSH | T16A01AFD1E3FC4D9ADE6426B1E6A5001AD54051771206EB52732860BA3FC42E5D53E3C1 |
| Key | Value |
|---|---|
| FileName | ./usr/sbin/prelude-correlator-2 |
| FileSize | 24 |
| MD5 | F97E9F7D58DF6E34310CCC62A8F28A54 |
| SHA-1 | 34708B6326AFEF8310104B19CB2B549AFCBC4208 |
| SHA-256 | AA0AD8D7C5130F096BD206E4F94C2E1408749AD84B3EEA868D53F19E8CEC18BC |
| SSDEEP | 3:fQB7QO2n:fFO2n |
| TLSH |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python3.6/site-packages/preludecorrelator/rule.py |
| FileSize | 1268 |
| MD5 | 7C88EB88A44B495351513C62AADA719A |
| SHA-1 | 3A51D44DCD0628BEDE3E014C0682A7F385F0D1E8 |
| SHA-256 | 04E5B634C55F34477D53B5B54A5B706588BE66100A869EEE05BC945C01C87B66 |
| SSDEEP | 24:Q+VHK2ahJiyUVOkHxHqTbVloY5OaXwzuevIcamy5Advvx:3VHDg4yUjHTYwHBw/mx |
| TLSH | T1BF21654E9662DAB4580012C160CFA4DFF3254E9BA36C5851B90D92EDFF06EB251B14DC |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python2.7/site-packages/preludecorrelator/idmef.pyo |
| FileSize | 8485 |
| MD5 | D51EAF05B3507A0056AE10F5271E3EE7 |
| SHA-1 | 3EB7056E941967ABD055309CAE4866E943BCE050 |
| SHA-256 | AA63D82514C59C931AD74DA2EA2F86E57BFCFFF4F22126237A1F2265D57D9635 |
| SSDEEP | 192:BYeSvUFIDmHG6s0UCD2jxX/vvT3PUqj54ljG5paA2RvBZ5:BlHFFrs072j+G4lapr2Rp/ |
| TLSH | T1820241D0A3F84A6FD6A55274E4F442179CA6F1B79201775123B8F4B63CD93AAC12F388 |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python3.6/site-packages/prelude_correlator-5.2.0-py3.6.egg-info/top_level.txt |
| FileSize | 18 |
| MD5 | 4C1B85996D2C81D75A00CC386398B8EE |
| SHA-1 | 3EFA2415EEFFD8DCBA452932496255FE9A3FC059 |
| SHA-256 | 4F208AF8428D6B4AEBF422E943DD796D09B5CFB8FBFA72B35CE1270419D1BD6F |
| SSDEEP | 3:iJHXQJfn:iJ3Qp |
| TLSH |
| Key | Value |
|---|---|
| FileName | ./usr/sbin/prelude-correlator-2.7 |
| FileSize | 357 |
| MD5 | FBD9B7ED60FA82B6CCF750D666A2E5D1 |
| SHA-1 | 4B6E956F5CB452D3D7BF73940E562439FF86863B |
| SHA-256 | A35D5A38AFAD33760C7D1978DC6557FC33DFA353638CC6DDB82B94F40BBB9EDC |
| SSDEEP | 6:HWaHweTVtKX+VepHocADEvYXFVDepbX3oLGtrVV1CFAjaj+kSbrVVDFepdWusEMT:HHKuVexo9re1X3oi9VrCF2aLSfVBFe7i |
| TLSH | T186E026F269B4E5A1ED6037C66821A0C8000269C61570E260B3E432C0FFA23C78D70BD7 |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python2.7/site-packages/preludecorrelator/siteconfig.pyo |
| FileSize | 252 |
| MD5 | 350EA9AE29722232E5EA94FB6DC8C775 |
| SHA-1 | 4DE5FFA4BCB95C3D55BB42A862E4FE9E241733AA |
| SHA-256 | 654E02252AE67AB9858DF77CA6B2EB397DAD1E31579C73E19D60CE942DE10469 |
| SSDEEP | 3:P7jle1/JlBXF/6tK1XhB7QMQI1E47QFRXOKKBltT8l1tNltWXKT9Y3IMmoWrz422:te1/RWUSRqxtT00Q9Y3xmDrnQMwag |
| TLSH | T15FD0A7E0537D1992FDA93B70F110618A55C171B7915051C1361430D53EDA1D687397C3 |