Describe the bug
hash.md5 doesn't seem to be working, attempting to compile a rule (yara-python) throws 'yara.SyntaxError: ~/analyzeFile/yaraRules/sourceRules/./malware/RAT_CrossRAT.yar(19): invalid field name "md5"'
To Reproduce
Steps to reproduce the behavior:
New Ubuntu 22.04 server,
YARA built from source.
yara-python module installed.
Attempt to compile rule containing hash.md5(0, filesize) == "some_hash" condition.
Expected behavior
Would expect the rule to compile.
Please complete the following information:
OS: Ubuntu 22.04.3 LTS
YARA version: 4.4
Additional context
This also happens for sha1 and sha256 - I'm aware that OpenSSL has recently deprecated these, but I assume there is/will be some workaround so that hash-based rules continue to work?
Describe the bug hash.md5 doesn't seem to be working, attempting to compile a rule (yara-python) throws 'yara.SyntaxError: ~/analyzeFile/yaraRules/sourceRules/./malware/RAT_CrossRAT.yar(19): invalid field name "md5"' To Reproduce Steps to reproduce the behavior:
Expected behavior Would expect the rule to compile.
Please complete the following information:
Additional context This also happens for sha1 and sha256 - I'm aware that OpenSSL has recently deprecated these, but I assume there is/will be some workaround so that hash-based rules continue to work?