| Key | Value |
|---|---|
| FileName | http://dl-cdn.alpinelinux.org/alpine/latest-stable//main//x86_64//audit-4.0.3-r0.apk |
| MD5 | 1056F6EFF20B7BDF6110809C6D1C70D5 |
| SHA-1 | 55E142A9FCE122C6FC0A35C784279FF000CF37B6 |
| SHA-256 | 4734B2F6435E69CE016703625982FC816B2D417BA2A4A3D530FD1293EE341D3B |
| SSDEEP | 3072:YVNt9LiCQFJyQRA6nkVfSyWRbTs1Eca1NXkRcwafWmwJEMn/S7P/RQDXmSmUb6:e7yYjS/p2iNURPe9+EfPJQDW+e |
| TLSH | T136142352E0DC8C22855E485F48CC952C1F53C2D1C271AAAEB5FD7BE5F56BB0FA024B62 |
| hashlookup:children-total | 60 |
| hashlookup:trust | 50 |
The searched file hash includes 60 children files known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileName | usr/share/audit-rules/30-ospp-v42-2-modify-success.rules |
| FileSize | 826 |
| MD5 | F583259AD73E913DB48A76E8A0C24863 |
| RDS:package_id | 294718 |
| SHA-1 | 0035557B33B9BBB564FB1DE550BA031D49C37F30 |
| SHA-256 | CAEB9A7F4BB77AB89027F11789E02EB6E9B4F2FC4346EEAEA25EFE1730D83FE6 |
| SSDEEP | 12:j3toeuFecEIWyb0FeVEIWyb0FecwIwWyb0FeVwIwWyb0FeHAWyb0Fe3MAWybE:j2gczWKVzWKcwLWKVwLWKgWK3rWT |
| TLSH | T15001D29342B430F05F6B43A3C864DEB83405471E93635DC5D186E9D9DD1943ABEC390E |
| insert-timestamp | 1696439445.0774827 |
| source | db.sqlite |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | etc/audit/audisp-remote.conf |
| FileSize | 751 |
| MD5 | 6B9A1CDD94C4BBD6412277D53D88B219 |
| RDS:package_id | 288579 |
| SHA-1 | 00D79C5DD2DB86433D421826135FEF137DC5A0E4 |
| SHA-256 | C4DD732801EA45BCDC85CB8BCB1171E82DAF1FB100CFDED9521D8F6CF685FFF4 |
| SSDEEP | 12:LzAKRDoWZ3wPHt073ebjM5KhdlFRRZxd9YqXEfv+BkwBZHmdEmMDADAkw42dKZri:1onP+DebLht/103+mwb+6b+Zr+ppHptz |
| TLSH | T1DD01B87820FA3C331CB76989F1A2FA8703B9701434CC10047367D1A41DAD6F8DB175A2 |
| insert-timestamp | 1670547901.3677263 |
| source | modern.db |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | usr/share/audit-rules/README-rules |
| FileSize | 1421 |
| MD5 | 6405EBAE48BB89AF7FF7DF3385F1448E |
| RDS:package_id | 294718 |
| SHA-1 | 148ACBDD22A8BF666CA5A3E284E4AC9EBF910926 |
| SHA-256 | 00E0926039F166A9F8D5B0B825E33358C7F2C1CCC6F86067BA2F684C26D13F95 |
| SSDEEP | 24:zPopzNwKFwInXYhOOayvCEAqH/JuNLcoY1awOdzXxLmEZ:UxFJXYhfLAC7ONXxLZ |
| TLSH | T125210F1B67899B2A408333DAFECE12D9AF1581BD5368A530549F001EBE5177915F39D0 |
| insert-timestamp | 1696439444.1184876 |
| source | db.sqlite |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | usr/share/audit-rules/30-ospp-v42-3-access-failed.rules |
| FileSize | 625 |
| MD5 | 852D1A243E59DD5961F3D9F5C5592BAC |
| RDS:package_id | 294718 |
| SHA-1 | 149781B05552A0CDA6C6159984F21EE76540A154 |
| SHA-256 | 74AA84E36882DD5F1BC4F1953B938FC6425A00D28D0C36232B16A5AEADC7B413 |
| SSDEEP | 12:jEttqOQYENLFecOr9DeFeVOr9DeFecOm9DeFeVOm9D+:jkqO3JcOr9nVOr9ncOm9nVOm9K |
| TLSH | T1BEF096DFC33434744A0A179789B54FBDF808511D533359CAC68416C1FE514B52AC2EAD |
| insert-timestamp | 1696439445.0373838 |
| source | db.sqlite |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| CRC32 | 1770520E |
| FileName | usr/share/audit-rules/10-base-config.rules |
| FileSize | 244 |
| MD5 | DEF45A38095C1C16EA919317B8020A83 |
| OpSystemCode | 362 |
| ProductCode | 214118 |
| RDS:package_id | 294718 |
| SHA-1 | 17C157514A3D87C906A6C830DF30C7FF3966C798 |
| SHA-256 | 54C2CEBDAADFB928F7327CC066218E38743F0FF94D02FE162A7A415E148D23A8 |
| SSDEEP | 6:jO2/q9RjRiNChQYF9FxNVYKAtOFPQYmFnNGd:jOuqHIQGYF9Lx+OQBgd |
| SpecialCode | |
| TLSH | T117D0A72D87B4B571095E03DF6A4673F39E6D214DA5603019208F683B458739FC53BA92 |
| db | nsrl_modern_rds |
| insert-timestamp | 1696439445.5309117 |
| source | db.sqlite |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | usr/sbin/auditd |
| FileSize | 112584 |
| MD5 | 9366B3B25A614CA25C29E2EEA89BDDD4 |
| SHA-1 | 1874D62B54F61BE7F0308D25C633AFFEB268E4E4 |
| SHA-256 | 211E72743C850793D3B1CB4C3AB3D0FC1F1E14CA17FE152BE85E786BA80D2D3E |
| SSDEEP | 1536:cXU3JdNi+t83BbF9Buad1kR2amEQfLqbTF8kiAXk47jDRVI0vVwe:cMPNRt+Bn1amEQDqC9Ax7jDUY |
| TLSH | T10DB3080276F488BEC4C5C471833AD6578F37B4885212A32F7B197B2C3E59A357E6E921 |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | etc/audit/plugins.d/syslog.conf |
| FileSize | 525 |
| MD5 | 64AFBBCB5ED0C15AEC305CA4A45E28E9 |
| SHA-1 | 19DDE704F3D23358F36E4D5D8B59BA79E00DC3D5 |
| SHA-256 | 23FB7F923EE15BA3185872C9E74B566C978A7BBCC18FB61B0FF5D4EB628FE355 |
| SSDEEP | 12:q1AKRNcA5yxfAun+jxqupDoBuM33nLS+eyeRABYm/1Dfwv:qb5yxfAmK/U3LS+/fBYE1Ev |
| TLSH | T136F08B77A268767509485B859A8BD2A2056A2BEA3138306260DE08AC1224EE592B7EC5 |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | usr/sbin/ausearch |
| FileSize | 104424 |
| MD5 | 922EAFE7BFB818AEC90000B689908412 |
| SHA-1 | 1B55947202CB14B91B386C4AEC988321F30DB601 |
| SHA-256 | 6536BD7E983BA431FFC6A2707B5C2B1A836C36C00C406A3C80F2567FD02A880C |
| SSDEEP | 1536:7IzjKany3NjBX2S2GBibR28eD1l2Py5/NhYt7kwSO5OWsdToj9kHkBGbzlr:U92801oyjYt4wR5OLToj925 |
| TLSH | T197A3181335F088BAD0858135573F96439B73F819A610736F6A586A383F82E763E6F394 |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| FileName | etc/audit/plugins.d/filter.conf |
| FileSize | 623 |
| MD5 | 0B51A1EB31645D2D4ACEB430E48A76B0 |
| SHA-1 | 23A133C75DC2A5C72BA4AC67E30A2838F2F71E9A |
| SHA-256 | 653557ED83B35136025C1617DDE873D26DBADC817F25C10F4B79E88CAE5218B7 |
| SSDEEP | 12:LV6X7gPWSl80xCc5ySXzR9oigrp5RTh37xinNRWai1rJOmdy5Wtj5:pCmNC0ySXzRWlp/hLcmai1MLo |
| TLSH | T1CDF00C71F48F632000A71223FA1181A34B8C10CB52AC686071EEC81E871FCB0C737A59 |
| tar:gname | root |
| tar:uname | root |
| Key | Value |
|---|---|
| CRC32 | 3A7C8B00 |
| FileName | usr/share/audit-rules/20-dont-audit.rules |
| FileSize | 516 |
| MD5 | D934C2422C817C2B77642AD46BB84235 |
| OpSystemCode | 362 |
| ProductCode | 214118 |
| RDS:package_id | 298595 |
| SHA-1 | 25A33F84D427058145AB35E26BA4BEEA6678743E |
| SHA-256 | DA083A4565D649A86F0FA56D1ED0B686BA78DA80A24B290924B9DA9FF30743D4 |
| SSDEEP | 12:jLuJLLgf2WycHLrq5Az3RmNTF71KXdKlhkqw/Cpr:jLmLLgb7Lrq5AUYIUqqCl |
| SpecialCode | |
| TLSH | T162F00E216264F1314AAF23842F0D4DC90B2885A17B1136CC70A98E2AB533179F6C4EFD |
| db | nsrl_modern_rds |
| insert-timestamp | 1696458478.5309615 |
| source | db.sqlite |
| tar:gname | root |
| tar:uname | root |