| Key | Value |
|---|---|
| MD5 | 91F29E68CF35BEDC9A67819AF45E2BC2 |
| PackageArch | noarch |
| PackageDescription | The python-oletools is a package of python tools from Philippe Lagadec to analyze Microsoft OLE2 files (also called Structured Storage, Compound File Binary Format or Compound Document File Format), such as Microsoft Office documents or Outlook messages, mainly for malware analysis, forensics and debugging. It is based on the olefile parser. See http://www.decalage.info/python/oletools for more info. Python2 version. |
| PackageMaintainer | Fedora Project |
| PackageName | python2-oletools |
| PackageRelease | 1.el7 |
| PackageVersion | 0.56.2 |
| SHA-1 | 642CB4E9902398C2C81AD1A31ACDC7C647EA9B2C |
| SHA-256 | 18F5ECCE65ECACF79273F02346F73F5461B345CABB1E2DC43811ADBC1B100800 |
| hashlookup:children-total | 159 |
| hashlookup:trust | 50 |
The searched file hash includes 159 children files known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileName | ./usr/lib/python3/dist-packages/msoffcrypto/method/ecma376_standard.py |
| FileSize | 3921 |
| MD5 | 5C1704D2DA722EC37AEF61D0F29C4FE1 |
| SHA-1 | 012EC11A6EB00755E19B2FB0E63620CF2BCFEE0F |
| SHA-256 | 5BA5160B3847A40FC1F608FE3082BD53220635FE0CCC2BCB00424D03725D3EB7 |
| SSDEEP | 48:WUzjGRDjjU/SdOYKlSyDC457CUlwgkHMXZX6xw1PrlWm:JjGRDWjYKlSyrB7qapXCw1PD |
| TLSH | T1E08186B5EC5BACB8075BC1E68835E216FB15A50F0101112CB3ED4B241F376B8835496F |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python3.9/site-packages/oletools/ooxml.py |
| FileSize | 28094 |
| MD5 | D63A012ABD16F488176D6994E01AA5B1 |
| SHA-1 | 01A1656B35771FBEAECB2DA2C0EE2A0B467B21D6 |
| SHA-256 | 9F296FFF938BAF7402CDDF5B83A3A30BEB3C7FB41BF6530368E58E663887B421 |
| SSDEEP | 384:TVGag2/hnDnLJHDKqb/WiUNVwfZuivdglM5ShF7CNLZ18YuHjtdM:Jg2/hnDnlHDKaoNVuZuiv2M5SfWGDtdM |
| TLSH | T15AC2B567ED9565618743C4A859C3F003F319687B6D4B6634B8ECA2283FD162580FEFE8 |
| Key | Value |
|---|---|
| FileName | ./usr/bin/pyxswf-2.7 |
| FileSize | 306 |
| MD5 | B4ADAC624818910A4C59A223DCC88BE8 |
| SHA-1 | 01BC64B3E31ED33CC3420D39238F0F0B7A9D8484 |
| SHA-256 | B91B0E90982FA74C6CAC2566962AED978CFB9EDE801A77618C29919D75C8BAEB |
| SSDEEP | 6:HWaHweTVtKX+L/h1MoEgXFH/h1UX3oLGtrVV1CFAjaj+kSbrVVpFh1cW29m:HHKuL/heoEAhWX3oi9VrCF2aLSfVBhaW |
| TLSH | T1EEE07D56C8A0CD710AB0428B2434606030034F4716517308F3CC42FA7BD03E44C34826 |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python3.6/site-packages/oletools/oleid.py |
| FileSize | 17589 |
| MD5 | EFEFAC2475DAF98BBDBEC28D525E0510 |
| SHA-1 | 025B759C11F974C75F8E1F3608D6A606F2A28073 |
| SHA-256 | 241ADBFAAC539C6A08FA4EC1D9B6F50CF6628C26AF9E8252F673922C6D739876 |
| SSDEEP | 384:XpdrFVGagFu/txP9hoYy1R1Tz5myxymS+crc2/X:XpdfgFu/txP9hvy1RRUm/KX |
| TLSH | T10282B567DD802A178383D8B60993E982E729A227174831647DEC81542F09B75C3FFFAD |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python2.7/site-packages/oletools/olevba3.pyo |
| FileSize | 734 |
| MD5 | 2945F89A93DABF34FB0581CFB14D155D |
| SHA-1 | 02EF13879062F052AF0C3D29B688ADE5A7243F0A |
| SHA-256 | E02B7FFA2A8D5F8B95DB538058CEF16A0805198A7E49FA562BB17BFC7E346B0B |
| SSDEEP | 12:JSzYsvkOkl2Thlpp6G2rSX/ZO82GHMczcCy4f9xxnACjQZvRmmYBV23c+Sh0fTBm:DEknSzH6JQZO82Gsczc6xxAZvRoBs3J6 |
| TLSH | T1A401C0A1A2F85407CD5D63B8B090530399A0E9FB518423E013FCB1A52FED1A5465ABAB |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python2.7/site-packages/oletools/thirdparty/tablestream/__init__.pyo |
| FileSize | 163 |
| MD5 | 4E7DE68E463A5891A909BFEE717405A0 |
| SHA-1 | 0337744AAFA695C17E70DAC787B00A7B8A4C48F1 |
| SHA-256 | 533F4046653E57937965A9975E858A4CB5D541C69A63B78308C7098BF91524B3 |
| SSDEEP | 3:Qrc8leh/Tj3tNltNltWDKT9Y3IMmoWrzoW4UHJ9XAEacRzaiitn:Qrc0eh/T489Y3xmDrKW1h/RaF |
| TLSH | T158C08C90E3320282DA3858346100520D81C85473416338A5B52802AA184D07D083EAC4 |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python3.6/site-packages/oletools-0.56-py3.6.egg-info/top_level.txt |
| FileSize | 9 |
| MD5 | E1328C49604367F16736F85DCD058326 |
| RDS:package_id | 294806 |
| SHA-1 | 084414AC8CDF7742AF82A7E2E3348A7C2503B7C8 |
| SHA-256 | 6D2A30D7D019799DFFA4F33BFA78CD492E6D07D2E961D7E1325CCB7BCB83A2B4 |
| SSDEEP | 3:9A:y |
| TLSH | |
| insert-timestamp | 1696437815.8937707 |
| source | db.sqlite |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | ./usr/bin/mraptor-2.7 |
| FileSize | 308 |
| MD5 | 31DE5F2CEA98AC8EC4D04B82B517D0B5 |
| SHA-1 | 086905BC0E5D0EE621B48CDC0C8DAD5BF2CCD5D3 |
| SHA-256 | 25DE8B788A9EE97DFEB0927EE551FCB88A90F64D73D0478FA026EE9EBD941204 |
| SSDEEP | 6:HWaHweTVtKX+L/h1MoftXFH/h1UX3oLGtrVV1CFAjaj+kSbrVVpFh1cWNZ:HHKuL/heofnhWX3oi9VrCF2aLSfVBhaQ |
| TLSH | T107E07D56C9A1DD6109F0028B2430A06030035F471641B30CF6C882EEBBC13E04D74826 |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python2.7/site-packages/oletools/thirdparty/msoffcrypto/format/xls97.pyc |
| FileSize | 17898 |
| MD5 | 16A9047BA83DB0728F8008BD86762EEB |
| SHA-1 | 0A9CECA17817F0C1264EA45A652931AB2D5F01AE |
| SHA-256 | 04BDF11D6A03DD9971067510E36D1570A67063E0CC3CD896BDFEF2BD6C8F8F91 |
| SSDEEP | 384:ZD37qnNtrI5wVTicZKSZCXDGeXx17DAWFkAMvMJBDEfwo:tWv5ic0pv7DAWyAMvMJREt |
| TLSH | T1A0822B48D6E14BC7DCC60134A0F4F217AE69FDFB6100774133A8A9B46AD927ECA1A349 |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python3.6/site-packages/oletools/thirdparty/tablestream/tablestream.py |
| FileSize | 13754 |
| MD5 | 23AAC80DD3C58E276FF29417BB775364 |
| SHA-1 | 0D4E010DEEDF313091E5631866D1B33092AE5330 |
| SHA-256 | E84BDC608050A92EFB366B2F9650CB216D5EF00455973E7C930A48A8B0B132A5 |
| SSDEEP | 384:mvCrFVGyirSLI7rTNOjhvrwEVBTGbsLdf2:mK/irSLIHTNOjhjLVtGbsLdf2 |
| TLSH | T17C526121DD427BA64287DA26D29BE452D30FA45B835A25793E7DC10A2FC0735C4FEDA0 |