Query result

Key	Value
CRC32	39F8A51E
FileName	./usr/lib/python2.7/dist-packages/plaso/engine/profiler.py
FileSize	4630
MD5	74A98CE8779E875F801638F862FFA387
OpSystemCode	{'MfgCode': '1006', 'OpSystemCode': '362', 'OpSystemName': 'TBD', 'OpSystemVersion': 'none'}
ProductCode	{'ApplicationType': 'Italian', 'Language': 'English', 'MfgCode': '2535', 'OpSystemCode': '598', 'ProductCode': '17409', 'ProductName': 'Computer Aided Investigative Environment (CAINE) Computer Forensics Live Linux Distro 7.0', 'ProductVersion': 'd. 2016-01-27'}
SHA-1	0614B9DAEE019BB698A7BC855DFB6BB4D67E71C0
SHA-256	285CDAAF39BA1D276FCFF8F18DBE9C4754CD78FC63025E85DE54F512CA5CCEA2
SSDEEP	96:0OX/blkTW6m5vmsFkkKTWtcP+cHTWCJFQFZ:P/GW6QaWto+eWCLQP
SpecialCode
TLSH	T1EDA1AD6BDDAE8D938257FD2930CBA887770E5C13514860703CFD1158AF52A1266E2AFF
db	nsrl_modern_rds
insert-timestamp	1646980040.1870887
source	NSRL
hashlookup:parent-total	1
hashlookup:trust	55

Network graph view

The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:

Key	Value
FileSize	1133048
MD5	8B1EF8100B2A967661C5808AB3011D8D
PackageDescription	super timeline all the things Plaso (plaso langar að safna öllu) is the Python based back-end engine used by tools such as log2timeline for automatic creation of a super timelines. The goal of log2timeline (and thus plaso) is to provide a single tool that can parse various log files and forensic artifacts from computers and related systems, such as network equipment to produce a single correlated timeline. This timeline can then be easily analysed by forensic investigators/analysts, speeding up investigations by correlating the vast amount of information found on an average computer system.
PackageMaintainer	Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
PackageName	plaso
PackageSection	admin
PackageVersion	1.4.0+dfsg-2
SHA-1	7E3FE51A7A96628C31490742D671A883B852CB64
SHA-256	9E12F110FF3D76B37AC55A0B99802FEC8A76B1D918F213AE76529A01CDC24008