| Key | Value |
|---|---|
| FileName | usr/share/man/man1/yarac.1.gz |
| FileSize | 905 |
| MD5 | 286A30436C238DBC7ED85C027F64E00E |
| SHA-1 | F1148F4A1703E858678E1F8C8CD68F50CF9A615C |
| SHA-256 | 55C0002F06508E4762441FB092F03391C64F7CCE576739795620273F557BA29A |
| SSDEEP | 24:X7R3ffh0oiMUOERlkxda7WUA/adtddWhYADJ8TsfaiB5KwiIO:X7R3fJ0o1ilkxdGRVyDDJjxB5iZ |
| TLSH | T14711B7F67C157C99FD75B8378965B16D5101C4412BB6DA80EE0A4C9CDCAA814AC8C22A |
| tar:gname | root |
| tar:uname | root |
| hashlookup:parent-total | 113 |
| hashlookup:trust | 100 |
The searched file hash is included in 113 parent files which include package known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileSize | 158604 |
| KnownMalicious | malshare.com |
| MD5 | 4C81A36952BC89F730D889D0A26F377B |
| PackageDescription | Pattern matching swiss knife for malware researchers YARA is a tool aimed at helping malware researchers to identify and classify malware samples. With YARA, it is possible to create descriptions of malware families based on textual or binary patterns contained in samples of those families. Each description consists of a set of strings and a Boolean expression which determines its logic. . Complex and powerful rules can be created by using binary strings with wild-cards, case-insensitive text strings, special operators, regular expressions and many other features. |
| PackageMaintainer | Debian Security Tools <team+pkg-security@tracker.debian.org> |
| PackageName | yara |
| PackageSection | utils |
| PackageVersion | 4.0.5-1 |
| SHA-1 | 0441918C1DB6F26A12A90BD47A3B3BA594BA7BB4 |
| SHA-256 | DB7BD895CFC2B7DD7D459FFADE5FA6807A43F639B2E834670CED35CE08A07DA6 |
| SSDEEP | 3072:1F+/P1P1MBKSLTMSL+WKQQHOACPBQRU8LPPIQ8AUVTUIXELBBL5A2VK:1FSP1P1ONMSL1XSOAC4RUMETAUVTBOBQ |
| Key | Value |
|---|---|
| MD5 | 974CD0E2676D8511D632E7F6720277FB |
| PackageArch | x86_64 |
| PackageDescription | YARA is a tool aimed at (but not limited to) helping malware researchers to identify and classify malware samples. With YARA you can create descriptions of malware families (or whatever you want to describe) based on textual or binary patterns. Each description, a.k.a rule, consists of a set of strings and a Boolean expression which determine its logic. |
| PackageMaintainer | Fedora Project |
| PackageName | yara |
| PackageRelease | 1.el7 |
| PackageVersion | 4.1.0 |
| SHA-1 | 061C124480C3664C1ED3E8F0A8B6EEA6EB5DD5BB |
| SHA-256 | 58A716390B44B7AED8E0558B1B176E0D686261F541886B409A263237465D6335 |
| Key | Value |
|---|---|
| FileSize | 144172 |
| MD5 | C04662BED3A0E92B7DE3443FCE4953A8 |
| PackageDescription | Pattern matching swiss knife for malware researchers YARA is a tool aimed at helping malware researchers to identify and classify malware samples. With YARA, it is possible to create descriptions of malware families based on textual or binary patterns contained in samples of those families. Each description consists of a set of strings and a Boolean expression which determines its logic. . Complex and powerful rules can be created by using binary strings with wild-cards, case-insensitive text strings, special operators, regular expressions and many other features. |
| PackageMaintainer | Debian Security Tools <team+pkg-security@tracker.debian.org> |
| PackageName | yara |
| PackageSection | utils |
| PackageVersion | 4.0.5-1 |
| SHA-1 | 0749B2E5269733EFF154E6469B9376FE03EEBA5B |
| SHA-256 | 065EF60F5905545CB00D01862E55EF63567945AB98710C30D1E7486E12D03CDB |
| Key | Value |
|---|---|
| FileSize | 22892 |
| MD5 | 97FA6EF135D2B0D72C620A10A8DC65D2 |
| PackageDescription | Pattern matching swiss knife for malware researchers YARA is a tool aimed at helping malware researchers to identify and classify malware samples. With YARA, it is possible to create descriptions of malware families based on textual or binary patterns contained in samples of those families. Each description consists of a set of strings and a Boolean expression which determines its logic. . Complex and powerful rules can be created by using binary strings with wild-cards, case-insensitive text strings, special operators, regular expressions and many other features. |
| PackageMaintainer | Debian Security Tools <team+pkg-security@tracker.debian.org> |
| PackageName | yara |
| PackageSection | utils |
| PackageVersion | 3.8.1-2~bpo9+1 |
| SHA-1 | 07A3C218D8077DB856BDB37D44FEFEA2062CB9B7 |
| SHA-256 | D3EB3B524769E28CBC4991C1B10760586088F36C2AF6FADFF9CE9A89475333A4 |
| Key | Value |
|---|---|
| FileName | http://dl-cdn.alpinelinux.org/alpine/latest-stable//community//x86//yara-doc-4.4.0-r1.apk |
| MD5 | 61F546876A3CAE177278AD37F3A16792 |
| SHA-1 | 0B38BE975A9EC8566503EEB474CFD9E66AAD58A8 |
| SHA-256 | 773E295783A63A3FB1864563D7BC52DA41CA8685FCEE584DC0C1F462CAEAF76D |
| SSDEEP | 1536:C73BL1fF/Fq/1slRdzEw0flVXeEZuF+l8+MRtBd7xIe82xRtNUtnFavgLPXh:C73BLnA/1GDERXXeEZNKBNd7Ot6K4SPx |
| TLSH | T10C83019ECF205DBCB316EC69EBE933C856A15B17435DE0F7224E20C21BE6201E54D9AD |
| Key | Value |
|---|---|
| FileSize | 28292 |
| MD5 | 8584BA1D34045575D495DCEC44CA2ED5 |
| PackageDescription | Pattern matching swiss knife for malware researchers YARA is a tool aimed at helping malware researchers to identify and classify malware samples. With YARA, it is possible to create descriptions of malware families based on textual or binary patterns contained in samples of those families. Each description consists of a set of strings and a Boolean expression which determines its logic. . Complex and powerful rules can be created by using binary strings with wild-cards, case-insensitive text strings, special operators, regular expressions and many other features. |
| PackageMaintainer | Debian Security Tools <team+pkg-security@tracker.debian.org> |
| PackageName | yara |
| PackageSection | utils |
| PackageVersion | 4.1.2-1 |
| SHA-1 | 0C26DB5291A709BF630368DB23A3F194AC52A947 |
| SHA-256 | 7ED5E5B3D7E9D19DBD049724B8442B98CA806D5CC66BEB5AF2E5534A39FC833A |
| Key | Value |
|---|---|
| FileSize | 151020 |
| MD5 | 72A50145F8C318950FE97777BC6A3CC2 |
| PackageDescription | Pattern matching swiss knife for malware researchers YARA is a tool aimed at helping malware researchers to identify and classify malware samples. With YARA, it is possible to create descriptions of malware families based on textual or binary patterns contained in samples of those families. Each description consists of a set of strings and a Boolean expression which determines its logic. . Complex and powerful rules can be created by using binary strings with wild-cards, case-insensitive text strings, special operators, regular expressions and many other features. |
| PackageMaintainer | Debian Security Tools <team+pkg-security@tracker.debian.org> |
| PackageName | yara |
| PackageSection | utils |
| PackageVersion | 4.0.2-1~bpo10+1 |
| SHA-1 | 0CC35839BE53E294329C2F76CD30301D31156FE5 |
| SHA-256 | 02347A87FD9D86AA177BC99661926E66826716ED8955D8575226A67981E0A791 |
| Key | Value |
|---|---|
| FileSize | 24376 |
| MD5 | F814E3302EDA189867D12DA9E4DE7EC7 |
| PackageDescription | Pattern matching swiss knife for malware researchers YARA is a tool aimed at helping malware researchers to identify and classify malware samples. With YARA, it is possible to create descriptions of malware families based on textual or binary patterns contained in samples of those families. Each description consists of a set of strings and a Boolean expression which determines its logic. . Complex and powerful rules can be created by using binary strings with wild-cards, case-insensitive text strings, special operators, regular expressions and many other features. |
| PackageMaintainer | Debian Security Tools <team+pkg-security@tracker.debian.org> |
| PackageName | yara |
| PackageSection | utils |
| PackageVersion | 3.9.0-1 |
| SHA-1 | 0E732CA4111599A058C3E8D3B1DBE9FB171669CF |
| SHA-256 | B541F98395234B15630A1BBE4B1AA587962FDE2BC76AED5103B7C0EAFF4AF963 |
| Key | Value |
|---|---|
| FileSize | 147660 |
| MD5 | D3B60F3325E238C91FC402ECA9E7ABA8 |
| PackageDescription | Pattern matching swiss knife for malware researchers YARA is a tool aimed at helping malware researchers to identify and classify malware samples. With YARA, it is possible to create descriptions of malware families based on textual or binary patterns contained in samples of those families. Each description consists of a set of strings and a Boolean expression which determines its logic. . Complex and powerful rules can be created by using binary strings with wild-cards, case-insensitive text strings, special operators, regular expressions and many other features. |
| PackageMaintainer | Debian Security Tools <team+pkg-security@tracker.debian.org> |
| PackageName | yara |
| PackageSection | utils |
| PackageVersion | 4.0.5-1 |
| SHA-1 | 17C25D7A890C0F6B6205AF399D9E2C23C7704D58 |
| SHA-256 | FA320634183902B6C13581A4CABEDB9E30BF137088A07E6A29401697BF70013E |
| Key | Value |
|---|---|
| FileName | http://dl-cdn.alpinelinux.org/alpine/latest-stable//community//x86_64//yara-doc-4.5.0-r0.apk |
| MD5 | 39C72D2373CFDF15B7D286F7D58843AF |
| SHA-1 | 1849BCC63E1CD7F1784DB38437D7FB4E01345192 |
| SHA-256 | E4D690FC2FA1DB8552CD30B2CB3D40FAC7D01E09849A8538E109A6016C02A291 |
| SSDEEP | 1536:QHubSjzyLhM4EH0ONShZp+HT8tqa3IqmCIEL0v2LlkHXvD2wgJy6J4X2:QHlXyLm4EHnNGn+HT85nIwi2LlkHXrnW |
| TLSH | T1CA73121E5E491B0F08F5AC22698D482479FD260379FA680FF5E749E6C397908279D0B9 |