| Key | Value |
|---|---|
| FileName | http://mirror.math.princeton.edu/pub/blackarch/blackarch/os//x86_64//peframe-135.70683b6-1-any.pkg.tar.zst |
| MD5 | 0DB77CB00E95201F2C5E87158927C0F6 |
| SHA-1 | 83E497B35755C6583254B266E053E735B65F5972 |
| SHA-256 | DC03D4B030DEBED32E6200B688845EB140446ACBA552902411F7B087E6A6A333 |
| SSDEEP | 6144:JaSR4MauI2pGWNMK+YN7elqy/C7eFHP9LC3DD7aQNiT/jqFNNogqb1+:oSRrrpPNj+m7e0y0r3H7UzjGNNo51+ |
| TLSH | T1F164237327C515B94E9C4A2C178351769248D3F012BFEF14B296D83B33B6DF5A2261B2 |
| hashlookup:children-total | 70 |
| hashlookup:trust | 50 |
The searched file hash includes 70 children files known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileName | Javascript_exploit_and_obfuscation.yar |
| FileSize | 3617 |
| KnownMalicious | malshare.com |
| MD5 | 24D988925EA9840BA1487861A6219BAD |
| RDS:package_id | 294806 |
| SHA-1 | 00A0375496EC40AC4C97013AFD60C1D515D8A6B3 |
| SHA-256 | 7F95375550048B9EA308A5CCC1AFC70ECCCDF79F8F6F362382F0EB2F88FDADEE |
| SSDEEP | 48:x1u6dhIVXQupucacfB/m9kSogq5e5PIu3b0wAMWZ8FdkT7NbaW18O:x1kaegEjQIur0NMWZ8FiTpp |
| TLSH | T1B37165BA6CB830104BCB14D9BDD66DF73331625E93930C68FA6AE55C72109C3A2E55C7 |
| insert-timestamp | 1696437814.2934282 |
| source | db.sqlite |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | usr/lib/python3.9/site-packages/peframe/modules/stringstat.py |
| FileSize | 628 |
| MD5 | 59156BF01B9DE6E31D39847ECFB92670 |
| SHA-1 | 015D8F0E916CE20E60559D40F6BDA6BE96A4E927 |
| SHA-256 | F5462F20F8CED58BF8CF2676B401545BD1F43EA6E422175379A7E16F9748506D |
| SSDEEP | 12:HtcKy9DyAqORSTtY9JVhYKCvmORSTtY9JVhYKC76X72NREiMLQQIHVRNnX0pv:mBzqO0pCJVhYbvmO0pCJVhYb7w7nkQoC |
| TLSH | T1A0F02B8EC87E9801D323E2E69883835170E4A9949B3D4C0C15D0461D32F361A33FAD3E |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| CRC32 | 7689CCBA |
| FileName | ./usr/lib/python2.7/dist-packages/peframe-5.0.1.egg-info/top_level.txt |
| FileSize | 8 |
| MD5 | 1B61C7688A5A736661D1E55BF7AAADDD |
| OpSystemCode | 362 |
| ProductCode | 163709 |
| RDS:package_id | 294806 |
| SHA-1 | 091D7B1D5DE2735E8E56FF2BEF915F8261B0B396 |
| SHA-256 | BF6A379FBA1F51EAD6604F27E88E5F733CA1522DC86F8202E0CBBB98C5B423DF |
| SSDEEP | 3:aon:l |
| SpecialCode | |
| TLSH | |
| db | nsrl_modern_rds |
| insert-timestamp | 1696437670.156451 |
| source | db.sqlite |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | Maldoc_DDE.yar |
| FileSize | 684 |
| KnownMalicious | malshare.com |
| MD5 | 4263E34BD7FF26AA5FAED2E8B629BA33 |
| RDS:package_id | 294806 |
| SHA-1 | 0C843029B98B24B183F4A80AF61A6B040B6434F9 |
| SHA-256 | 44FF058C9D3DDB4BFC16EF81461B84B94705C77B6FF88B55AADE1141B8E34AC9 |
| SSDEEP | 12:qm68K2xI5c6PUi8XbdoFFCp7hjaSei9TydOCTt0X+n:qSGC68JSFS7hjOi9TyoCTt0On |
| TLSH | T11B01C9526A80266C4A1BF68D88A39087363D510B83984A7331CFB2D80F42D30E2E72F6 |
| insert-timestamp | 1696437814.1900024 |
| source | db.sqlite |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | config-peframe.json |
| FileSize | 21 |
| MD5 | 69388807EEC3E89D52F1C97EB8E389A4 |
| RDS:package_id | 294806 |
| SHA-1 | 0E54181EA63C345EAF2CC5DA180A203B7DCA53D0 |
| SHA-256 | 5296E6D25C3E839C4A71289FA5E1650EC0A59B2F49CA87EB7367B388A72FF506 |
| SSDEEP | 3:eAwFA:e2 |
| TLSH | |
| insert-timestamp | 1696437815.7018394 |
| source | db.sqlite |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | usr/lib/python3.9/site-packages/peframe/__pycache__/__init__.cpython-39.pyc |
| FileSize | 143 |
| MD5 | 2E848E5E121DC36A0EB5AACF8969DF93 |
| SHA-1 | 143463550C13BDED62FE11739C5AE3AB49FA4E55 |
| SHA-256 | C05E11286BBECB9A5A99895488496F08DCFE0AD701C8CA8E79DA3F02103E4EFF |
| SSDEEP | 3:wWTavuleh/wZWexhG9YBe/VWrzrMLQRkcTit:LEqeh/wjG9YBbrCQD6 |
| TLSH | T1DCC01201C61EA2D3FA7EFE3A71205B2800D5DD71F2CF45873E046B682C0A3520C36904 |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | Maldoc_PowerPointMouse.yar |
| FileSize | 582 |
| KnownMalicious | malshare.com |
| MD5 | 7CBC2B2A27BE51743BE5C5AD23CACCC6 |
| RDS:package_id | 294806 |
| SHA-1 | 1DAA3D6A1844C0948282B324860994D3C297B8EF |
| SHA-256 | 31AD71415C762B652ABC3A16B12D56A6926F38CBC008411966900189AB464973 |
| SSDEEP | 12:UZwodgoGtyD+fEO7hFxBXvh5C4bgOXJl1WSnXFSPpU9uux:mf9O7jXa4nXr1PXFSpUks |
| TLSH | T1BBF0473A1301312B128F06DEACD3C09FB7A0510C32452B877FD284C03F11D716073565 |
| insert-timestamp | 1696437814.17907 |
| source | db.sqlite |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | usr/lib/python3.9/site-packages/peframe/modules/macro.py |
| FileSize | 905 |
| MD5 | 01F08BFE6132B597FF46110E06670881 |
| SHA-1 | 2182A290289F771024294CE7E23A74CCAED0F11A |
| SHA-256 | D9035F481DA9C2EA614472577DC102205DF27126F5A8BB97437DD6FE4E038C35 |
| SSDEEP | 24:mBn5FzmWZgwk8dtQOyiUCqdjs8BhDM+hsp138A7HI:yn5tZZg1uQ/iOs8bDMGsp1Zo |
| TLSH | T1FC11EF2466DD31EEFF41386E8A019562929C757BF06AC445A0ECD03D3868D237ABA71D |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | .PKGINFO |
| FileSize | 763 |
| MD5 | 5F249C9E3D83C9AC62765990DE23AE12 |
| SHA-1 | 2ABB3A1F2BDC8A283DD50BBF42FB5C6C337F2BBB |
| SHA-256 | C08F44CC305039A668ACC037170F5B8C041A0C11359FD84C596A45B5BE668E68 |
| SSDEEP | 12:8mj6zWVVkU/Q9EOW2kdwMPBpDLigiRvyciFtwhju/4cMsuP4AqMzGpKxuVMCK+dC:8meWy9uPbKvfmtwOny4hMzGpKxuKCK+o |
| TLSH | T1E80164E74C90E178D8EC59CDD00D943C4BCA6DD2FA31126840380A8C1C8EC2CA2C6E27 |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | usr/lib/python3.9/site-packages/peframe/modules/__pycache__/autocomplete.cpython-39.pyc |
| FileSize | 1265 |
| MD5 | AEF473ACFF97C5A27F000EF97E8017E9 |
| SHA-1 | 3B67BE111F16E7850CDA34AFB5CFE075CEF2389F |
| SHA-256 | D19F6E2C43B9467BC8F1150D1E4140C3931B5666038ACC80D1467F4506361D2C |
| SSDEEP | 24:n3+W3GXPbnTEZK86QlGQPKezeyEM59bDyGNtaUCzHXXEtLWk0N6Mhvur:n+LTMK8KOxedMjbEpHHcCks6MhvE |
| TLSH | T16121EBC48746C25BFEA8F37EEB2B0178F094C273734D511A1B09E5266D5A7800A6ACE8 |
| tar:gname | root |
| tar:uname | root |