| Key | Value |
|---|---|
| FileSize | 13156 |
| MD5 | 49BD2E8E922DFFD3A9D00AF1B12FE753 |
| PackageDescription | Python2 bindings for YARA YARA is a tool aimed at helping malware researchers to identify and classify malware samples. With YARA, it is possible to create descriptions of malware families based on textual or binary patterns contained in samples of those families. Each description consists of a set of strings and a Boolean expression which determines its logic. . Complex and powerful rules can be created by using binary strings with wild-cards, case-insensitive text strings, special operators, regular expressions and many other features. . This package provides Python 2 bindings. |
| PackageMaintainer | Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com> |
| PackageName | python-yara |
| PackageSection | python |
| PackageVersion | 3.4.0+dfsg-2build1 |
| SHA-1 | B07CDFB8D400300B64F6D8E75B84BBEE06416B05 |
| SHA-256 | 79E04A8BAC1B02102A9004288972AF3CA0D5614BA0A4E1E2342CA55028EB161A |
| hashlookup:children-total | 5 |
| hashlookup:trust | 50 |
The searched file hash includes 5 children files known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileName | ./usr/share/doc/yara/copyright |
| FileSize | 2642 |
| MD5 | CC7F2E94429ADD1EA231D612F81DC20E |
| SHA-1 | 082E07AA1B081374C811A8C1D1EF57850DE31B91 |
| SHA-256 | 6EBDB3ADC05A0D80FA028DE7D2AA85F8DFFCE7702DC0A0717C03F87C8942CD73 |
| SSDEEP | 48:iDaR24OX0ehzH31cSnxU4NOYrYJ0rYJ1DP4a2r437W32scMEtu33tYTHv:+ag4gPzHFcSm4gYrYJ0rYJ1T53y3jp2P |
| TLSH | T1D351D95F25404BB36BD056813E3BE4CAB30A902D3A3BA749385CD2805B7B22F95F9090 |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python2.7/dist-packages/yara.i386-linux-gnu.so |
| FileSize | 27452 |
| MD5 | 0180356344506745023037579A56D0C9 |
| SHA-1 | 873163DDFE5166C7A6CC4A13EFC68D0D47C6A3D2 |
| SHA-256 | 4AD36FDC6FB7C1879B6251098C67F70C507F4103D8253DB9C3049C4644E6CD39 |
| SSDEEP | 768:j3k7Rl8j9fTRlHCc0LZefGhlsH7WKeYTTLLSo8mjUmjwI:j3eRu5tXYlsxcB |
| TLSH | T10CC24B46B382E9B0F2F181B44387A63668304904E39BD9D1F90C7F9678353656E379BD |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python3/dist-packages/yara_python-3.4.0.egg-info |
| FileSize | 230 |
| MD5 | FEA9849FF489ACB1219E3AD1DA2D2276 |
| SHA-1 | 7DC3C58AF1149A0D56BA184A70BE9BEB13A352DF |
| SHA-256 | FD6EB6B6DF3B659B2592367047BBC6A2D3CE9592BA043212926D87FC2AD39003 |
| SSDEEP | 6:Ty2YUU2Awrj4CDtY4BreRU/FE5epWRug+4J84Bv4v:DdAwrEmBreaYkWRtJXBQv |
| TLSH | T15DD0A7487C33B477E297060A24DDC7E25DF71141D86DBCF8454035680BD255C6F941B3 |
| tar:gname | bin |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | ./usr/share/lintian/overrides/python-yara |
| FileSize | 116 |
| MD5 | F0DA0EDEEE8C7E3976BDFC2566C930D7 |
| SHA-1 | F8D90F9862098CC3834540A27468D364E3998D59 |
| SHA-256 | 00876F58C2BEFAD29EAA169D0EB4869FE6773AE5E0A04E122DFDE95AF1DA704D |
| SSDEEP | 3:Sqi8vl8/BGCFvms3QEivddLIK8qcVNWC:Sqi89ivmsAzvdJIRkC |
| TLSH | T1E1B0228B0C00B2A2202A083C2B282000B302C2EB8322C00C88EE220008CC0A80B2BA02 |
| Key | Value |
|---|---|
| FileName | ./usr/share/doc/python3-yara/README |
| FileSize | 239 |
| MD5 | 3B9E86FEB49583397416A49B2D0C88B2 |
| SHA-1 | 8E13A03A843B2974416789811F0DB8FA926BDE59 |
| SHA-256 | 42539CB2755B42B51F3D5AE10CAB0379487FD819D6AF4BAACC3FA73150897FF4 |
| SSDEEP | 6:3XFd2Ip4x4dmKnC3SUDGTjCx3OPNhzk8CMTXbGMKWEzWi2UL:3XaIpG4dE3HGTO3ATI5MbaDZ |
| TLSH | T17FD0A7AE6400852255098ACA926992DD8A16217C70F6961D9878C4404358F1B2D3B514 |