| Key | Value |
|---|---|
| FileName | https://ftp.lysator.liu.se/pub/OpenBSD/6.5/packages//powerpc//plaso-20180818.tgz |
| MD5 | 5D760445A14BD5908A8FA052092E4312 |
| SHA-1 | 518A633647D56A49AEE649C418C9CFD7908CF05F |
| SHA-256 | FD30D591F72CC98F4B1D970E899714B5F6DEBF96B870A4D47BC605DC65CBEA16 |
| SSDEEP | 49152:7rRhzcGoJZK/rKJCpFP2Q5tjpi7sN8qFVjIZWjNE0mRE8IbyH45usIaAiCjp2YFq:7rwG8KjKJCpF2OFqwFjIs5MEg2V14p2X |
| TLSH | T107E53307EF1469F39C38A3B5D5421B046F58E438A4BBD8808F50BF285C97CE6159FB9A |
| hashlookup:children-total | 981 |
| hashlookup:trust | 50 |
The searched file hash includes 981 children files known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileName | lib/python2.7/site-packages/plaso/analyzers/hashers/sha1.pyc |
| FileSize | 2521 |
| MD5 | 1D1C3673371201F8F5B8D0F7CDB72D49 |
| SHA-1 | 003E6F89BD3EC11477F25501AE1450EAB6FB68B1 |
| SHA-256 | 0D0E96262062AF1697F025C637C62642A9CE063E55AECBEEFF5BE92FFF409B00 |
| SSDEEP | 48:IBxj6vJ8U9AS3vdfay1Fj2RpfhPsIQWjJPPmdvMagJ9KmRRoW8/:IU1vxV1FEJsIQWtedZgSYoT/ |
| TLSH | T124516580E2741BB3D3A527B4C1D542A2967EB177E316B382B66C90381FDDA3D40772E8 |
| tar:gname | bin |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | lib/python2.7/site-packages/plaso/parsers/mac_keychain.py |
| FileSize | 19850 |
| MD5 | EE0E10977B65DCCC8CDF4C4A9DE67F7F |
| SHA-1 | 008CB7E1BEB7A26E59294818A5B37654CD980D1D |
| SHA-256 | C8682C2A7FA4237A70A51A5C86C87202631D438008B8F6CA21311BF03F441F28 |
| SSDEEP | 384:dVyEY5em0SGA1TjMW5Mh5w2MfW3a62MFWQsuAsP8kea:dVypem0SGoTA3nwjfW3a6jFWQsuL8kea |
| TLSH | T18A927586AD32D2A38AC3D64E498B70819330314F940DD5687DCDD6783F85BA5DAB3DD8 |
| tar:gname | bin |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | lib/python2.7/site-packages/plaso/formatters/utmpx.pyc |
| FileSize | 2651 |
| MD5 | 41546D417C73CC2023D9385FBCCF06E6 |
| SHA-1 | 00915F136C0C2ED3CFE307DB9191ED2308EC19CD |
| SHA-256 | 623AC384B0B1B6289E9D6264E3A2233C775C9FE87017F40D13116D69E1A57D5E |
| SSDEEP | 48:Ad/fSmNpcDNZOA7dugiFAvG+IuzWbGjuUeu7h8iLKC5v+y0cT3ZqJGQ3t:ARvLc5Z9ZiAJKG2u7hjN06Q3t |
| TLSH | T1865152C1C66D57F2C4920ABDE1F06152DFAA76B3A9023303B5EC58702BD7B4DC21A386 |
| tar:gname | bin |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | lib/python2.7/site-packages/plaso/multi_processing/worker_process.pyc |
| FileSize | 9464 |
| MD5 | 30A103BB6F13ECCD5A8F6F8E080661D1 |
| SHA-1 | 00BCF7A92B9035F91E2B4305DAD3ABC25C1D52B9 |
| SHA-256 | BA667B3A86BD412E9117785BC5DD19C37C39FCF081C6CE4058A2989B2A0507E4 |
| SSDEEP | 192:dAasGv2zvYQy+hXmHirxEsYjjPRJTWIJ9MuwQHT5Obv888m:dHsJzYQy+fYjdBWIJ9MuHzYbv888m |
| TLSH | T121128581E5EEA5D7D2C04634A0F423438EB37877A7411B213AFCE4782FC626AD1666C7 |
| tar:gname | bin |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python2.7/dist-packages/plaso/formatters/pe.py |
| FileSize | 1976 |
| MD5 | CF1835943299F6D70656C62E3083668C |
| SHA-1 | 00E4D266CAEE9887DFC91C6C9B22C73592012D35 |
| SHA-256 | 04BCC1863C5F5B9BB5D8EABEC95CC4E35E52D51BD01BF570FCBA45147C64DAA5 |
| SSDEEP | 24:l+8lUNxNw6FFOAcGKOFFedr2OeF6fG2OlFqf4+OrFL5fKcNVFVoXdrLmTfa:0uwHqdtr2f28+Exkdra7a |
| TLSH | T11B41DD23C01F56425AC366DF83843010FB3A26B3AE57281BFC7D4519A763F84439B716 |
| tar:gname | bin |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | lib/python2.7/site-packages/plaso/formatters/winrestore.pyc |
| FileSize | 2814 |
| MD5 | 5D4355E248985C612908526E85FED83E |
| SHA-1 | 00E69C1AA207042A881C117298787296F4E05F3D |
| SHA-256 | DF551B1E8015DEC31FF86AF2D71130A8291A195CB39B4AD3B0C5DA9E41A60088 |
| SSDEEP | 48:l/fS1whYW9zJGi4GmChBIuzWbGjuUeHZLKJ5vTDLDT3ZqJGrFq:5rh/hhBKG2HZGDLprFq |
| TLSH | T1C5511183D29D69E2D84706BCF1F45247CE6BF1F756812713B9EC5C785BC2B0A862A381 |
| tar:gname | bin |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | lib/python2.7/site-packages/plaso/parsers/winreg_plugins/userassist.pyc |
| FileSize | 7957 |
| MD5 | 93418383A9E7BBED8505D7341D3B8020 |
| SHA-1 | 0117D08C5B2363E3F0BC6D1A1A8DE875CB297C1C |
| SHA-256 | 2E51DD279D99CDBA9A9949684261894B2D6D8B8E968E9F8AB32C21CC274FC29F |
| SSDEEP | 192:Vxtbdq/2aNk8rJ4EK3rK9MgeFr5RV0tCS888888K:XtbdqT68Jfk5RV0MS888888K |
| TLSH | T12DF18381E5681697C1D0177854B806A74FB3F6F76941430236B8EAB87EC0A6EC56F3E4 |
| tar:gname | bin |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | lib/python2.7/site-packages/plaso/parsers/sqlite.py |
| FileSize | 14921 |
| MD5 | BB97F145B291CB19BF10E0BA72DFD004 |
| SHA-1 | 01535F068C41302E53966CE992D352FCC8AA1BD8 |
| SHA-256 | 0EC0468C559E14031F5DC0F7D37A5CB0818A4B6F233E1D6EA3C8F094C463267C |
| SSDEEP | 192:mYDk96vDiHG5OAFXjAKyAM2nGzUaX4S/nyO2NoI0uTIXGa4kAK7zcfWHrFLrQOK:mYDkKavPCaISfyxNouTIF4k5/cfmRY |
| TLSH | T1B762A5A7AF855E0247D3D6B588D9A081C606741B982982703EECE3482F54835FBF7DF9 |
| tar:gname | bin |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | lib/python2.7/site-packages/plaso/parsers/olecf.py |
| FileSize | 3146 |
| MD5 | DAB47AD35523B9CFB1CF9C81DBE12B98 |
| SHA-1 | 019B443F8F952BAA8755D337191217C238C7EEAC |
| SHA-256 | A8BC1F9DDA576AE85595EBB939A663FB8581A811E64A69DD1417D714E310333D |
| SSDEEP | 48:dAu3cYhehNFVWG4ajWV9TyG4pnvyNL3pRWr3hBOB9XRLTzKW/Zi8zyW/lQ7HL:dxYNFp4awTL7NLkQjZlkL |
| TLSH | T1FE514103AD8E7C0365E7A15E0DD864D0D66A1A1FD582EB247CEC82183F96811DBE3AD4 |
| tar:gname | bin |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python2.7/dist-packages/plaso/cli/helpers/status_view.py |
| FileSize | 2274 |
| MD5 | 2535E81234DD9A8E13694870AA7A1662 |
| SHA-1 | 01DE8DD197DEB28010395428B0AD9DE3F5DF806D |
| SHA-256 | 8B286D3969F011183C2B5F1C98578AD4384B98EA925D53982B537DAD0B5CEC41 |
| SSDEEP | 48:nQluxSn1qJJcR7NqYQftDu9Ah9NPrKZ00DhCO/XGrPqFREaB7Ne:Q84L7NqZftGSZrCNDhWPq/EQ7Ne |
| TLSH | T10341DD03B4627DD39DE7198543A6DE314F731A0BBF4A2514B8FD83496F2C883C897514 |
| tar:gname | bin |
| tar:uname | root |