Result for 37882CDCE3CE6EC462C2D8AACBB58E55FBC6392C

Query result

Key Value
FileName./usr/share/doc/python3-pefile/changelog.Debian.gz
FileSize1264
MD5A381BEC83B44FD1CCC995AD78CF90102
SHA-137882CDCE3CE6EC462C2D8AACBB58E55FBC6392C
SHA-25617C0DE7012E79D15C86A46C432EF02B5D5B9C0C549884D2D05595DABB4DB1947
SSDEEP24:XcSG1BGJcQM08AvqU6wT+UWeOYJWRbZeuYpbYFd2+F+QMXuCqn:Xc71QJcQM6vqZwT+UEY22Kz2+ieCqn
TLSHT19621E7875F280017DFC15192E2E2609FCB280EA7A6AB4D383F4D0327A89207A55A1775
hashlookup:parent-total1
hashlookup:trust55

Network graph view

Parents (Total: 1)

The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:

Key Value
FileSize56388
MD55322B93AF8902F94A9BFCF50BEEE3E5D
PackageDescriptionPortable Executable (PE) parsing module for Python pefile is a Python module to read and work with Portable Executable (PE) files. Most of the information in the PE header is accessible, as well as all the sections, section information and data. . All the basic PE file structures are available with their default names as attributes of the returned instance. . Processed elements such as the import table are made available with lowercase names, to differentiate them from the upper case basic structure names. . pefile has been tested against the limits of valid PE headers; that is, Windows malware. Lots of packed malware attempt to abuse the format beyond its standard use. . Some of the tasks that pefile makes possible are: * Modifying and writing back to the PE image * Header inspection * Section analysis * Retrieving data * Warnings for suspicious and malformed values * Packer detection with PEiD signatures * PEiD signature generation
PackageMaintainerHilko Bengen <bengen@debian.org>
PackageNamepython3-pefile
PackageSectionpython
PackageVersion2019.4.18-1.1
SHA-1083D134A746DDF47A2C37E5DC288DBF0A192BAA2
SHA-256D8FB32BE8275F88EBBC54BEE310E4719D4AED9615B68050C1C0B5CCD41BD8135