| Key | Value |
|---|---|
| MD5 | 6E7E6B4530A62A9DAC817A953EB8EDDF |
| PackageArch | x86_64 |
| PackageDescription | Ruby library for running commands via WinRM as elevated through a scheduled task. |
| PackageName | ruby3.1-rubygem-winrm-elevated |
| PackageRelease | 13.21 |
| PackageVersion | 1.2.3 |
| SHA-1 | 3485AC353A321C3B3BFCFD39E5D22F3AB9F3C39A |
| SHA-256 | 6E389E3C1D56F3C2D01D554F86721DAD30B37BC650EECCA294AC767B88CD4B09 |
| hashlookup:children-total | 9 |
| hashlookup:trust | 50 |
The searched file hash includes 9 children files known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileName | ./usr/lib64/ruby/gems/2.5.0/gems/winrm-elevated-1.2.3/lib/winrm-elevated.rb |
| FileSize | 687 |
| MD5 | CB5AD1765DC3F73AC982FC9985DB2CCA |
| RDS:package_id | 293686 |
| SHA-1 | 614FEEFEB3E1DFEE7DCC54E2C11B7498FCE9D5E9 |
| SHA-256 | B00E896160248BFF787C78C5F950716AF10F4B7B9C1C1E640806F2F6F78A746E |
| SSDEEP | 12:LcO5qJmevI4I2MFj27kIYYCQ5bU0E+hao2rHQknd7vps+y44s3WxK4iATs:2JU4I2QtOU0E+MHQk1vpslcJAA |
| TLSH | T179014E7C3A8626732BC084CB3E0FD2CF920BE119124E438428A981C8233C5AB05F80F2 |
| insert-timestamp | 1678950915.297702 |
| source | RDS.db |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | ./usr/lib64/ruby/gems/2.5.0/gems/winrm-elevated-1.2.3/lib/winrm-elevated/scripts/elevated_shell.ps1 |
| FileSize | 5040 |
| MD5 | 7E3B222897E0DCA7FBE8B39E6AF31FB5 |
| RDS:package_id | 293686 |
| SHA-1 | 078297747345F54C351792362E6198D2998579AF |
| SHA-256 | 04FBED0F88E2E4AEA610C3DE716E1C2E456A8E2EBD0557A5469EF21AD4A37FDA |
| SSDEEP | 96:x6uPM9dwQuFdOFQO1dKrF1YGHKIJeY+J1Dbo3/Nb0yaioi6ASpzbyL1BLI:x6u8yQuu9SF1YGHxJX+nDbob0yaiCASF |
| TLSH | T127A1E818F0FED05BA5C2B026AEC1A5852DB9C127414C0494F8DCCAFC5F47A56C1E72EB |
| insert-timestamp | 1678950915.3549674 |
| source | RDS.db |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | ./usr/lib64/ruby/gems/2.5.0/cache/winrm-elevated-1.2.3.gem |
| FileSize | 12800 |
| MD5 | 05CA35B480ECB6A89F141C4A27512040 |
| RDS:package_id | 293686 |
| SHA-1 | C29DC19FD0337F223CFA552C7F9C1C58B5CED0BE |
| SHA-256 | ED733DD163CED9B6ACC6A01D331F539946B59E40ADBCD63941F62A8C6254B4D2 |
| SSDEEP | 192:UCjItnvPaIEy1VsicWOiUclm/tJuQsuDOhgjq9bvZ2Hs:UC6vyIJVUl9cItJuMSzbvZ2Hs |
| TLSH | T120428EC9BAD3ADC6FCCA20F1D7C4799F4C9F3FC182F0A9452A965217BE044C1A4DA065 |
| insert-timestamp | 1678950886.3431063 |
| source | RDS.db |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | ./usr/share/doc/packages/ruby3.1-rubygem-winrm-elevated/README.md |
| FileSize | 69 |
| MD5 | 598BBA6B792F110EBFB3A13E54BEEE53 |
| SHA-1 | C11CD14F7ADD9320A128E876924D33F4E7AA58E4 |
| SHA-256 | E41A67405FCCE1D6D068540473E9D78ADDA9895B88B1303571990BB1D22587AA |
| SSDEEP | 3:gC63cZA4WK+OskISuo2n:dJWJ7kISs |
| TLSH | T16EA0027413F66AA8A90044D57CD9AE0F17922C0A7E89BF5630AE1969140E1053ACD865 |
| Key | Value |
|---|---|
| FileName | ./usr/lib64/ruby/gems/2.5.0/gems/winrm-elevated-1.2.3/README.md |
| FileSize | 3609 |
| MD5 | A9FD70047EB7D8CA3D2F651BAAC51DE0 |
| RDS:package_id | 293686 |
| SHA-1 | 0DB097AC4E7D60D652EB0F5A01BE7762A2EDA0DC |
| SHA-256 | B9CE68AA5E6E299CB741C7163E7996EC8DED67C3DEABCF0F31B87D481F1EE9DF |
| SSDEEP | 96:7bPO4oO/Zx8OBz+gq+ZAXlt/OgjZv4RvVZ/T/:HmQ/v7LqbXf2gjZv8TD |
| TLSH | T1967187AB528573351F7518A2904BA3D38623E16C43A5767E7878802CB3D51A3C7FBED1 |
| insert-timestamp | 1678950915.2293072 |
| source | RDS.db |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| CRC32 | 86E2B4B4 |
| FileName | ./usr/share/kodi/addons/skin.estuary/fonts/roboto_license.txt |
| FileSize | 11358 |
| KnownMalicious | malshare.com |
| MD5 | 3B83EF96387F14655FC854DDC3C6BD57 |
| OpSystemCode | 362 |
| ProductCode | 11123 |
| RDS:package_id | 304063 |
| SHA-1 | 2B8B815229AA8A61E483FB4BA0588B8B6C491890 |
| SHA-256 | CFC7749B96F63BD31C3C42B5C471BF756814053E847C10F3EB003417BC523D30 |
| SHA-512 | 98F6B79B778F7B0A15415BD750C3A8A097D650511CB4EC8115188E115C47053FE700F578895C097051C9BC3DFB6197C2B13A15DE203273E1A3218884F86E90E8 |
| SSDEEP | 192:nU6G5KXSD9VYUKhu1JVF9hFGvV/QiGkS594drFjuHYx5dvTrLh3kTSEn7HbHR:U9vlKM1zJlFvmNz5VrlkTS07Ht |
| SpecialCode | |
| TLSH | T11632623FBA48037706C20162BB9764CBF21E903F3B552568354CC1681F6BA6543FB6EA |
| db | nsrl_legacy |
| insert-timestamp | 1763484245.4001477 |
| mimetype | text/plain |
| nsrl-sha256 | rds241-sha256.zip |
| source | snap:cGBBRFuSF9ePx2qx4dtKS7ecFNKv6k4p_22 |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | ./usr/lib64/ruby/gems/3.1.0/specifications/winrm-elevated-1.2.3.gemspec |
| FileSize | 1828 |
| MD5 | A7A036C2BE405D36B4F11964D8331CDC |
| SHA-1 | E6B2E5C99171D2614A2CABA92384F3AF636A1612 |
| SHA-256 | 25538ED0EA2DB749500F833E82CAC54E386F7C864C23FE3D6A2C7F68F9708BAD |
| SSDEEP | 24:Zkbl9ys1menNwVw8HpQ/HOBUE2jAUMpAeqmhb3r/wq/A:ul+enV8JNBUtd6Hhbb/wr |
| TLSH | T1EB31BB1DCDE2B4A27B722FC3C8E1005212A7F9251B8D8C04A75A5E3C0507F8B679A6B3 |
| Key | Value |
|---|---|
| FileName | ./usr/lib64/ruby/gems/2.5.0/gems/winrm-elevated-1.2.3/lib/winrm/shells/elevated.rb |
| FileSize | 3919 |
| MD5 | F30B1D8213DB89F8C8F3ACD76B5BA7DA |
| RDS:package_id | 293686 |
| SHA-1 | 6E31C181713FD598A54EC1F6BDC262918106DB33 |
| SHA-256 | DFA8D5840A2A10D734AFF02E33B34BEEBA2DAC9C2F4A038E04E78AEC4C86E78C |
| SSDEEP | 48:v4Ax0OH31hVKD8V9QpkxUdOVTJe2vOvQg5NtM1ngSRA9vtO3RPcg:v407HFhtV9QpOvdi9NtagSIvtOBcg |
| TLSH | T12781B678BDCA8B3817C7815241479AC76201F06712489AA871ECC14C3F79BB55EE2BE7 |
| insert-timestamp | 1678950915.2646782 |
| source | RDS.db |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | ./usr/share/doc/packages/ruby3.1-rubygem-winrm-elevated/LICENSE |
| FileSize | 67 |
| MD5 | DD76B688AFBF6BDFE9AA6A2AE779CFCF |
| SHA-1 | A9C6E1D1902B0E6D690DE22713031CFE348E6944 |
| SHA-256 | DA9E2468465890C3710975EAB7C97EBC88523DBB349E5A9CFA26EBA238739E98 |
| SSDEEP | 3:gC63cZA4WK+OskISun:dJWJ7kISu |
| TLSH | T1B5A0027402F666B9690044D57CD69E0F17412C0B3E8A7F9630AD066914071057ACD865 |