| Key | Value |
|---|---|
| MD5 | DAB83602966FF26ACFD11216B658B512 |
| PackageArch | noarch |
| PackageDescription | Python tools to analyze security characteristics of MS Office and OLE files (also called Structured Storage, Compound File Binary Format or Compound Document File Format), for Malware Analysis and Incident Response (DFIR) |
| PackageName | python3-oletools |
| PackageRelease | 4.1 |
| PackageVersion | 0.60 |
| SHA-1 | FAEA926BCAC72C0A2C7D72909685A091903FB556 |
| SHA-256 | 3BB33225E4C9427BEBC9056169CC3F9B3075BFFD92A3E9C9F44744C576A4E622 |
| hashlookup:children-total | 208 |
| hashlookup:trust | 50 |
The searched file hash includes 208 children files known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileName | ./usr/lib/python3.6/site-packages/oletools/msodde.py |
| FileSize | 45421 |
| MD5 | B7ADBEC61823ECDB1BF566ECEB5F566A |
| SHA-1 | 0346E791606981401051E87BA28B08FEE31EADA6 |
| SHA-256 | 9D46BDE57EC6647989D1399DD48B7237E8BD262F80E237A0AA30729D2F48ED1A |
| SSDEEP | 768:wNqT8cAR/R+AieLyQEbYSA1HFtRRywwPjXFMopxjecBZM5a40EBRCjVdVFJRj2jN:w6/ARlqgtRRywwPjXhBZM5ajkCZTRj4N |
| TLSH | T1BC131B229DE620190A71C249AD17EB52F708C12BCE554613FB6CA35C3F7971492FEE2A |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python3.6/site-packages/oletools/oleid.py |
| FileSize | 23657 |
| MD5 | 086A1DDA963B2F528BC15949929FE716 |
| SHA-1 | 0461804BD4D902E8C4D13473B02F739E48B71BC0 |
| SHA-256 | F6F0A5634188308787CA6C668257134FF52FEFE0F180511D47B6D78C55272EB3 |
| SSDEEP | 384:SWzrMNtNqjFW/FkVXB1hdHhwW5vANl0LZaK54owDgAXFeXxHmbmALMWdMrmHIMQR:SWzUq5W/Fkb1hxhwW5I4EoHAXXmAL9vE |
| TLSH | T155B2C6628D84160B0772E86A0966E585F719831B571624523EBCC2543F30BA6C7FFFAD |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python3.6/site-packages/oletools/doc/Install.html |
| FileSize | 6346 |
| MD5 | 34242FD9BA3EE4A621E48D0F59C32532 |
| SHA-1 | 05D6AED54E40237E421E7D55A1D21F40B88748AA |
| SHA-256 | 974CC0FA6F08BA51C70908958F3F9BE3DA80DADAF5D711865A9D8D5BC94B8B12 |
| SSDEEP | 96:YbPBjBgxAZZ741CfmZ9eMVV9exzE/iRL9o9exzE9cCNGJ+7uCTc9l+7IaQqdU5:oPxL7qBZgMVVgAiLagxCwM97DQqd2 |
| TLSH | T1A0D1A61BE2E45A762BD043BCD88B3279775F409E762318D434AF9707A701E27492A3D7 |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python3.6/site-packages/oletools/common/log_helper/__init__.py |
| FileSize | 109 |
| MD5 | 19DD3C521288E578D3DBFC75FC07E593 |
| RDS:package_id | 294806 |
| SHA-1 | 0841C82B95C6F71E6E088CF5CF03065045B2DCAF |
| SHA-256 | 36165E37ED5137EC561D815BFA27E15001C20FA1AEBC34B8310156E6D226AC3D |
| SSDEEP | 3:1LYBmTAa/FEMy7tormAy4voi6gDFo+CrN1:1L6g47to+WDyj |
| TLSH | T150B0113CCE8F208008C08083028CB00FC288C82CFBB8C0232B0E838B20B080A2330C08 |
| insert-timestamp | 1696437345.3382552 |
| source | db.sqlite |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python3.6/site-packages/oletools-0.56-py3.6.egg-info/top_level.txt |
| FileSize | 9 |
| MD5 | E1328C49604367F16736F85DCD058326 |
| RDS:package_id | 294806 |
| SHA-1 | 084414AC8CDF7742AF82A7E2E3348A7C2503B7C8 |
| SHA-256 | 6D2A30D7D019799DFFA4F33BFA78CD492E6D07D2E961D7E1325CCB7BCB83A2B4 |
| SSDEEP | 3:9A:y |
| TLSH | |
| insert-timestamp | 1696437815.8937707 |
| source | db.sqlite |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python3.6/site-packages/oletools/rtfobj.py |
| FileSize | 51181 |
| MD5 | A44B77C436BFA23B96776AC5132BC0FD |
| SHA-1 | 0A953F0BC6F4AA3B0D75656BFB5BC623227BD6E4 |
| SHA-256 | 70357A00A64352D82E0C2BD494F5FB335674DE6E6B1F8B67E4A9722A5B9C8659 |
| SSDEEP | 768:PK+lqhj7yV10hGldj9TtbBPJUE+G6JK+u1XskkhfXYbs:PfqhXyV1gG3ZtbBPEKFskkFXYo |
| TLSH | T1B933D8219D4E561602B385DD58A99A46E31DD30B215670137ABCEE402F3CB30A6FADFF |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python3.6/site-packages/oletools/ooxml.py |
| FileSize | 28819 |
| MD5 | A8F9EB89BFBBA757FEEC87A66022D453 |
| SHA-1 | 0ABF43B19CBF33626ACD76EC290C5E3728F1C15E |
| SHA-256 | FA803913F78FEA2B972FC01E03E58827B9A4DCED581B7AEA1E8E05EE31312175 |
| SSDEEP | 384:RNtNqFNJzO+ieKhxGxFRAc+Wl400Mgk8e/SJGANjEUmouTDzl:PqFNJzO/eKhxQRABWl5We/SYMyRTDZ |
| TLSH | T1D9D2A5679D5A61610772C46DAE83F012F30942676D5B6223B8ECE2183FB161181FEFEC |
| Key | Value |
|---|---|
| CRC32 | 7039A23D |
| FileName | ./usr/lib/python3.6/site-packages/oletools/doc/olemap2.png |
| FileSize | 67563 |
| MD5 | AA5DEA1E23FBF5ED354C5FD4A47D5D9D |
| OpSystemCode | 362 |
| ProductCode | 163709 |
| RDS:package_id | 294806 |
| SHA-1 | 0C2ACF97CD6E74B5BB210D366B3BD3864D8A890B |
| SHA-256 | 820690E6CCE5EC65D3638F3F942AF27D9841BD37FE10A31C48505C055B94B5E4 |
| SSDEEP | 1536:9jlWM0XDD0/lhdfg/jgLT10UNLctyz56CP6/HWIHrmmhcH0Y:9jlWMmvolhwjOT1GcR6FLuUY |
| SpecialCode | |
| TLSH | T17063E0FADD8CEE505BE178E1D81C7BE79D2A1A75F39F226A1962C0BD09D1C082349F14 |
| db | nsrl_modern_rds |
| insert-timestamp | 1696437344.7439036 |
| source | db.sqlite |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | ./usr/lib/python3.6/site-packages/oletools-0.60-py3.6.egg-info/requires.txt |
| FileSize | 252 |
| MD5 | 3C228E14BEAFE8741AA26DEDC7E47377 |
| SHA-1 | 0D260AF36BCC9938A575C169DE71C5C0F528901E |
| SHA-256 | 137CF651DB658347A05C5F84A082D0B2FB1132E531214DA6C66FECC5D939259E |
| SSDEEP | 6:twkKsMJnVIGfmv0d/Eha2mNX86jERbB1JgqERbRgc2pqfXGf:twNIGw0dCa2mNv4b1gq4bCUGf |
| TLSH | T18BD02BDB7FF389E30777808680D2931D4A6690C0BC1299CD2430214C86252C44360731 |
| Key | Value |
|---|---|
| FileName | ./usr/bin/ftguess-3.6 |
| FileSize | 958 |
| MD5 | 62AABD7C39B6BBE485B150B410720941 |
| SHA-1 | 0E08F5AA89E418D88BCDA472AEB2E496537E9602 |
| SHA-256 | 623201EEA8AA8EEB20FA213FFFDC06F3FD9C22BE2D1D6781557D0003C7C6AC51 |
| SSDEEP | 24:PuLv2lFt9GviLwKLPLwoZZT0EeC0RDaqvSt:GLvopGvismsoZZTIaqvg |
| TLSH | T10211C492D860B62295D1CBCD3C74A1BA11175D9776826025F1CC8BF56FC93204C35F65 |