malice icon indicating copy to clipboard operation
malice copied to clipboard

Published 20 hours ago verified publisher icon maliceio

error: 409 in virustotal plugin

Open changemenemo opened this issue 5 years ago • 2 comments

Describe the bug

6G of RAM for a 30MB pdf. Don't know if the size of the file has anything to do with it but so you know. still a 409 error with virustotal time="2018-11-29T00:45:02Z" level=fatal msg="failed to index malice/virustotal results: failed to update sample with id: RYrtXGcBjIpm6xqHErD5: elastic: Error 409 (Conflict): [samples][RYrtXGcBjIpm6xqHErD5]: version conflict, current version [2] is different than the one provided [1] [type=version_conflict_engine_exception]" category=intel hash= plugin=virustotal

Environment (please complete the following information):

Output of docker version:

Client: Docker Engine - Community
 Version:           18.09.0
 API version:       1.39
 Go version:        go1.10.4
 Git commit:        4d60db4
 Built:             Wed Nov  7 00:47:43 2018
 OS/Arch:           darwin/amd64
 Experimental:      false

Server: Docker Engine - Community
 Engine:
  Version:          18.09.0
  API version:      1.39 (minimum version 1.12)
  Go version:       go1.10.4
  Git commit:       4d60db4
  Built:            Wed Nov  7 00:55:00 2018
  OS/Arch:          linux/amd64
  Experimental:     true

Output of docker info:


Containers: 4
 Running: 1
 Paused: 0
 Stopped: 3
Images: 49
Server Version: 18.09.0
Storage Driver: overlay2
 Backing Filesystem: extfs
 Supports d_type: true
 Native Overlay Diff: true
Logging Driver: json-file
Cgroup Driver: cgroupfs
Plugins:
 Volume: local
 Network: bridge host ipvlan macvlan null overlay
 Log: awslogs fluentd gcplogs gelf journald json-file local logentries splunk syslog
Swarm: inactive
Runtimes: runc
Default Runtime: runc
Init Binary: docker-init
containerd version: 468a545b9edcd5932818eb9de8e72413e616e86e
runc version: 69663f0bd4b60df09991c08812a60108003fa340
init version: fec3683
Security Options:
 seccomp
  Profile: default
Kernel Version: 4.9.125-linuxkit
Operating System: Docker for Mac
OSType: linux
Architecture: x86_64
CPUs: 4
Total Memory: 1.952GiB
Name: linuxkit-025000000001
ID: BWXS:IEZB:NXVZ:5B4F:UCQH:OF3Z:P2HU:QYQD:EH6Z:3WPG:SPTA:U74X
Docker Root Dir: /var/lib/docker
Debug Mode (client): false
Debug Mode (server): true
 File Descriptors: 39
 Goroutines: 64
 System Time: 2018-11-28T13:05:49.977260407Z
 EventsListeners: 2
HTTP Proxy: gateway.docker.internal:3128
HTTPS Proxy: gateway.docker.internal:3129
Registry: https://index.docker.io/v1/
Labels:
Experimental: true
Insecure Registries:
 127.0.0.0/8
Live Restore Enabled: false
Product License: Community Engine

changemenemo avatar Nov 29 '18 00:11 changemenemo

that elasticsearch error seems to mean that you are talking to conflicting version of the elasticsearch api? what version of elasticsearch are you running?

blacktop avatar Nov 30 '18 02:11 blacktop

you might need to update to the latest malice release and remove the ~/.malice directory

blacktop avatar Dec 02 '18 04:12 blacktop