Query result

Key	Value
FileName	./usr/lib/python3/dist-packages/yara.cpython-35m-i386-linux-gnu.so
FileSize	27520
MD5	D4CFD1A72599C2ACB9E2BB8F75112941
SHA-1	1987C76650B06197B2F6FFF64BE30C6D66AD9BD8
SHA-256	4AE88F79A3FE7EFDB33BA34BE57B412C6C92C2A3FCC878757A19B018EBCB1E34
SSDEEP	768:i8yRlz7CfTRlHCclTlW+LDTLLNTSEe0EeWIh:i8yRNGtXllF0EtE
TLSH	T149C249067786E9F1F2F180B44787A63A6C248904E3EBE9D1F90C7F9578352516E231BD
hashlookup:parent-total	1
hashlookup:trust	55

Network graph view

The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:

Key	Value
FileSize	13242
MD5	21DE54B84D10C34A9C64ECC04F185E0C
PackageDescription	Python3 bindings for YARA YARA is a tool aimed at helping malware researchers to identify and classify malware samples. With YARA, it is possible to create descriptions of malware families based on textual or binary patterns contained in samples of those families. Each description consists of a set of strings and a Boolean expression which determines its logic. . Complex and powerful rules can be created by using binary strings with wild-cards, case-insensitive text strings, special operators, regular expressions and many other features. . This package provides Python 3 bindings.
PackageMaintainer	Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
PackageName	python3-yara
PackageSection	python
PackageVersion	3.4.0+dfsg-2build1
SHA-1	2045B7AC6C60359B61AFCE7585B38B1CA090F001
SHA-256	461BAF520EB9CE6A0BEAB7E137D4F92596C7A555D5810993F3FFD3AE91F5C89E