Key | Value |
---|---|
MD5 | A2D83AC804FD5907C5B76544A1232F17 |
PackageArch | x86_64 |
PackageDescription | Prelude-LML is a log analyser that allows Prelude to collect and analyze information from all kind of applications emitting logs or syslog messages in order to detect suspicious activities and transform them into Prelude-IDMEF alerts. Prelude-LML handles events generated by a large set of applications |
PackageMaintainer | https://bugs.opensuse.org |
PackageName | prelude-lml |
PackageRelease | bp155.1.6 |
PackageVersion | 5.2.0 |
SHA-1 | 77EEFA2DD8ED0CA00CB00E1456B20926C4FC9F67 |
SHA-256 | 91E0E98E2EE68DEE09C6994B9AA2A8FCCB1BC40C44E4D2D6BD6A4F8642900976 |
hashlookup:children-total | 12 |
hashlookup:trust | 50 |
The searched file hash includes 12 children files known and seen by metalookup. A sample is included below:
Key | Value |
---|---|
FileName | ./usr/lib64/prelude-lml/debug.so |
FileSize | 10136 |
MD5 | 56C608191AE9BF72C46558DC27EC7677 |
SHA-1 | 4B9B180B2A541276CC5E6D4A6AECC682B22BD396 |
SHA-256 | 9CCCC8D7369DE31F48E5187B742C732B6F9492C4952ACAB8C9350053A488409B |
SSDEEP | 96:RfrmOBWBc+97tHsCn7UYmBE8fgDm3P4nMFl/4nHej+iV5wNRi:Rb8Ns8UYmBpCm3Anmlgn+qiA |
TLSH | T18022A60BB124867FCA9C0238C4A702B13270B499D79347577638A3783D52398DF62EED |
Key | Value |
---|---|
FileName | ./usr/lib64/prelude-lml/pcre.so |
FileSize | 39152 |
MD5 | D89FF24916A757FA793CFB224442214D |
SHA-1 | 4AD3EE293DB96B3C2815941E1154C2BC88A667F2 |
SHA-256 | 1E04A00688E2E46BD18EEDAD48116D2B05F2726C9562240C4D9932EDD4A304FD |
SSDEEP | 768:45cE/GiHXoo2GCphfUkV/KF3U5RBaNiKhjgxPS1+Q8rT4:OcE/GiHXo46/ck5iLhjWPSg4 |
TLSH | T181035B5F729148FDC5A4867889B38331AA703044A381673F7584E7782E52B74DB2FE7A |
Key | Value |
---|---|
FileName | ./usr/share/doc/packages/prelude-lml/NEWS |
FileSize | 31061 |
MD5 | 85B8445552C67AD410134D4E0C752101 |
SHA-1 | E4B5A542C525561450711F7278BC05699264D725 |
SHA-256 | 0B8685A1B42DCC25D7D295A8EE7A6300520E43BA74BB44096D72C52707042D43 |
SSDEEP | 384:xrPK/o951i9ipVVMebv4r9zOXIgMRbEmY/ZzzA+g6ha5FTjTzl+xcJYUDD7a4EW:ZS/e6ipVBy9CXI5FEmazzA+gMg9Kqau |
TLSH | T1A5D2E8A2B66833261A521DBAD1CA81D3EF7C786FD353B5A039CD45C83F01471D2F6A98 |
Key | Value |
---|---|
FileName | ./etc/prelude-lml/plugins.rules |
FileSize | 836 |
MD5 | 446480A94DE7E09917ACD9C48361234B |
SHA-1 | CCC52AC2BE9F8DCFFA54115CD8F46FC7995DC8D5 |
SHA-256 | 6E009A53AD344BD1563EA2A2B79A8D3F53886948567979355EA3FCCD2C3F6BF9 |
SSDEEP | 24:SslZ+0CJBxd1ayS3EPSR0LSjTWdEkoF7lS5EPgLRSaAgm:S++0CJBX1ayS3yS+LSncEnS5ygLqgm |
TLSH | T172014C1F878D253101E584E23099E1D9462AD2D9ABF0E091F7DE855C6B3497E51A9D40 |
tar:gname | bin |
tar:uname | root |
Key | Value |
---|---|
FileName | ./usr/bin/prelude-lml |
FileSize | 133480 |
MD5 | 1B1DF697AF72C4A11E76E39DA1E8A257 |
SHA-1 | DF59AF4010C75AD5B3F56A15FA6C6CAD694FF7DC |
SHA-256 | F1A460346DA019113DA2A423BDBD4080964E02AD47711B894F17A87FA20D6AD8 |
SSDEEP | 3072:lSrd6uJtpWBWFR4dsDAyfisUO5FEIH1JZ:lMJ2GeyNdUO5FzH |
TLSH | T1C4D32A0B729195BDC1C4CA70C5A793516BB0B448E3226B7F3945A7782E12B6C5F2FB32 |
Key | Value |
---|---|
FileName | ./usr/share/doc/packages/prelude-lml/HACKING.README |
FileSize | 780 |
MD5 | CE979EC4C4C9FD55949BA6867F0EB356 |
SHA-1 | 2D6ACFF0197B79132F46DBE5FAFAC14975C0E1F0 |
SHA-256 | 5CE75927A9FE75588107C5E2A7BF5979807A22A5AA9F21DFB3EB7497F9FB6DDB |
SSDEEP | 12:hBe+oVOrqLRh15X2voInFi2yE0MevyCmFQMl9Kr1yAHkxbpfgtthcAkU5tDWg2:XywrqLvzHIE2M5yCmFjqNHkxNEeAvW |
TLSH | T13E01F11EF36C62A8254609917282E3F6A20F41DACB214431E116D4C533BAA7E853F5DD |
Key | Value |
---|---|
FileName | ./etc/prelude-lml/prelude-lml.conf |
FileSize | 7404 |
MD5 | 08DEA999A08DD2AA848E5AEB5B3DD0FA |
SHA-1 | 2F9CA41B32F334F5E7D4B1CD19A994E68379E484 |
SHA-256 | C478B85049357CB0B66783A0C3C4B591D12AC07B1FDB316E4CF863E3EC9637EF |
SSDEEP | 192:mKqkehijEnNmfiZiMyB0Xus6vzGogpcNadGSO25e:mkSmUUsW+OP |
TLSH | T156E16566C24D773A13CF13A150AEE1DD9B3D904D6F63202162DD98687201E7892FBBE5 |
Key | Value |
---|---|
FileName | ./usr/lib/tmpfiles.d/prelude-lml.conf |
FileSize | 34 |
MD5 | AF758F6271D4CBAC4C9842C3087E015F |
SHA-1 | 25D770E9CAC73A12FB213E5562AB4A3C3E3A7D01 |
SHA-256 | 9A6660A59E058E6A0C996D4773093F02C8905D7047440D685174C91E59F3B14B |
SSDEEP | 3:kQe4VjP3HJ:kQldP3HJ |
TLSH |
Key | Value |
---|---|
FileName | ./usr/share/doc/packages/prelude-lml/README |
FileSize | 1742 |
MD5 | A5924B09DE4B82B6F15A5BE943CA79F2 |
SHA-1 | CBF9D34C6A6077CE6250E1E681663EBFF1E19795 |
SHA-256 | E36B8D95200965696F8FB79B0338C070E7A370B6B52F1227F7187AC201B3B4E0 |
SSDEEP | 24:ykwdzTaLVNECo7w5QlXlunfy1XICIrYKZQgDnJkt8MswCHJfVKcDwaq+ygXA:SwECo7Hlua1XtKZQg1kt8DXJfVsP |
TLSH | T1AE3116FFA2687270734525C87216E0FBCBA375AEE2602571FC9C94D5632A39C4236B85 |
Key | Value |
---|---|
CRC32 | 4E46F4A1 |
FileName | ./usr/share/cmake/Templates/fedora/gpl-2.0.txt |
FileSize | 18092 |
KnownMalicious | malshare.com |
MD5 | B234EE4D69F5FCE4486A80FDAF4A4263 |
OpSystemCode | 362 |
ProductCode | 15109 |
RDS:package_id | 313212 |
SHA-1 | 4CC77B90AF91E615A64AE04893FDFFA7939DB84C |
SHA-256 | 8177F97513213526DF2CF6184D8FF986C675AFB514D4E68A404010521B880643 |
SHA-512 | AEE80B1F9F7F4A8A00DCF6E6CE6C41988DCAEDC4DE19D9D04460CBFB05D99829FFE8F9D038468EABBFBA4D65B38E8DBEF5ECF5EB8A1B891D9839CDA6C48EE957 |
SSDEEP | 384:ghUwi5rpL676yV12rPd34ZomzM2FR+dWF7jUI:gmFWixMFzMdm7jUI |
SpecialCode | |
TLSH | T13A82A42E770443F205C202A16A4F68DFA32AD5B9723E1155386DC15E236FE35C3BFA99 |
db | nsrl_legacy |
insert-timestamp | 1728991626.679368 |
mimetype | text/plain |
nsrl-sha256 | rds241-sha256.zip |
source | snap:MmD5jWldYNMNgb2rFFht3FNKGJx1FLLV_613 |
tar:gname | root |
tar:uname | root |
Key | Value |
---|---|
FileName | ./usr/lib/systemd/system/prelude-lml.service |
FileSize | 557 |
MD5 | 3D0B7C016EB378BFA0222D73E6A8F4A0 |
SHA-1 | 0ABF7E4DE3C1CB2ECE535C6C1DAF6304EE7C77C6 |
SHA-256 | 933930E7B3B9BBD32E08DC0629097728D9E1FFD233094FF419BA91D6940EC8FD |
SSDEEP | 12:zGUrlKCeXNwTTDUDaj8slGFIvwO/V4zd/8X+aGcLHWrv:KElKCe9wTUxsgI9/OzmXl2rv |
TLSH | T1D4F020D9601176BF14C36EE08D02DFA278340C8423F390320EC0269540C3808623D47A |
Key | Value |
---|---|
CRC32 | E19D9AD2 |
FileName | ./usr/sbin/rcznc |
FileSize | 7 |
MD5 | AAABF0D39951F3E6C3E8A7911DF524C2 |
OpSystemCode | 362 |
ProductCode | 183711 |
RDS:package_id | 263811 |
SHA-1 | 4CF5BC59BEE9E1C44C6254B5F84E7F066BD8E5FE |
SHA-256 | 9DF6B026A8C6C26E3C3ACD2370A16E93FFFDC0015FF5BD879218788025DB0280 |
SSDEEP | 3:jg:jg |
SpecialCode | |
TLSH | |
db | nsrl_modern_rds |
insert-timestamp | 1654961073.836576 |
source | modern.db |