32678 file added

{
  "_index": "wazuh-archives-4.x-2022.11.02",
  "_type": "_doc",
  "_id": "tTGCN4QBwOwON5V3p8Hj",
  "_version": 1,
  "_score": null,
  "_source": {
    "syscheck": {
      "uname_after": "root",
      "mtime_after": "2022-11-02T09:09:00",
      "size_after": "61",
      "gid_after": "0",
      "mode": "scheduled",
      "path": "/etc/32678",
      "sha1_after": "6a1ce2ee5ccc86d1f33806feb14547b35290df2a",
      "gname_after": "root",
      "uid_after": "0",
      "perm_after": "rwxr-xr-x",
      "event": "added",
      "md5_after": "768eaf287796da19e1cf5e0b2fb1b161",
      "sha256_after": "1d22620dfb2a6715e5d745aed5cf841ede0e75e1747f12b9b925a2d346bc7ecb",
      "inode_after": 930016
    },
    "agent": {
      "ip": "192.168.94.131",
      "name": "UbuntuAgent",
      "id": "010"
    },
    "manager": {
      "name": "wazuh.manager"
    },
    "rule": {
      "firedtimes": 2,
      "mail": false,
      "level": 5,
      "pci_dss": [
        "11.5"
      ],
      "hipaa": [
        "164.312.c.1",
        "164.312.c.2"
      ],
      "tsc": [
        "PI1.4",
        "PI1.5",
        "CC6.1",
        "CC6.8",
        "CC7.2",
        "CC7.3"
      ],
      "description": "File added to the system.",
      "groups": [
        "ossec",
        "syscheck",
        "syscheck_entry_added",
        "syscheck_file"
      ],
      "id": "554",
      "nist_800_53": [
        "SI.7"
      ],
      "gpg13": [
        "4.11"
      ],
      "gdpr": [
        "II_5.1.f"
      ]
    },
    "decoder": {
      "name": "syscheck_new_entry"
    },
    "full_log": "File '/etc/32678' added\nMode: scheduled\n",
    "input": {
      "type": "log"
    },
    "@timestamp": "2022-11-02T08:43:38.366Z",
    "location": "syscheck",
    "id": "1667378618.5403082",
    "timestamp": "2022-11-02T09:43:38.366+0100"
  },
  "fields": {
    "syscheck.mtime_after": [
      "2022-11-02T09:09:00.000Z"
    ],
    "@timestamp": [
      "2022-11-02T08:43:38.366Z"
    ],
    "timestamp": [
      "2022-11-02T08:43:38.366Z"
    ]
  },
  "highlight": {
    "agent.name": [
      "@opensearch-dashboards-highlighted-field@UbuntuAgent@/opensearch-dashboards-highlighted-field@"
    ],
    "full_log": [
      "File '/etc/@opensearch-dashboards-highlighted-field@32678@/opensearch-dashboards-highlighted-field@' added\nMode: scheduled"
    ]
  },
  "sort": [
    1667378618366
  ]
}