Query result

Key	Value
FileName	./usr/bin/etterfilter
FileSize	55144
MD5	016E7C5618F1F65C59BB858B9C2E2BBD
RDS:package_id	294713
SHA-1	1FF52FD611D294654C039E8F9F8036D6428E52C0
SHA-256	00BB26EEA4716EB154250EC498DC168E77EFA45CA8F628A132035B87C7321A0E
SSDEEP	768:9RoEAfTRlHCNB5tTWOXbYa9fju0B1KSoOSO8EOuiL6goQMbusgYgYgd95U+oo:4tcAIYW8FOSdLRoQCo
TLSH	T1FA431A4AB647C8B0F56245F616D773639138D4085023F2F7FA0BB789A9B239B7D192B0
insert-timestamp	1696432677.489182
source	db.sqlite
hashlookup:parent-total	1
hashlookup:trust	55

Network graph view

The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:

Key	Value
FileName	ettercap-graphical_0.8.3.1-11_i386.deb
FileSize	239588
MD5	4842A7E5CFD518E813EB8B0B5187DF07
PackageDescription	Ettercap GUI-enabled executable Ettercap supports active and passive dissection of many protocols (even encrypted ones) and includes many feature for network and host analysis. . Data injection in an established connection and filtering (substitute or drop a packet) on the fly is also possible, keeping the connection synchronized. . Many sniffing modes are implemented, for a powerful and complete sniffing suite. It is possible to sniff in four modes: IP Based, MAC Based, ARP Based (full-duplex) and PublicARP Based (half-duplex). . Ettercap also has the ability to detect a switched LAN, and to use OS fingerprints (active or passive) to find the geometry of the LAN. . This package contains the ettercap GUI-enabled executable.
PackageMaintainer	Debian Security Tools <team+pkg-security@tracker.debian.org>
PackageName	ettercap-graphical
PackageSection	net
PackageVersion	1:0.8.3.1-11
RDS:package_id	294707
SHA-1	B1CA276E79E2D209767CEE387A18D93EA1AA2494
SHA-256	E93430A34C9E6F3FC70A32C0622ED277B3D45E6CCA98D1A0ED3AB08E82CBFE8B
insert-timestamp	1687506086.614916
source	db.sqlite