Result for 81118A190DC70795E69BD9FD2DF08D6225A66C8F

Query result

Key Value
FileNamepefile-match
FileSize1195
MD58F2F1BDB1399E8C90C9BCD9523DBE515
RDS:package_id304063
SHA-181118A190DC70795E69BD9FD2DF08D6225A66C8F
SHA-256D57A634F512C64FAA82B97E6D2511436B7990995F32A9135BAB3E569B1DF5465
SSDEEP12:HuV2FyaAw5jcjbs1KXN4EkKIlK2D4lmKio6te04973VotodPzQGNtfIoAXHC2aQm:OqLlcUkXNIXsLihefZotUvf0aqzNyYij
TLSHT16F217BA78C093410CFC78B5DC986D8D2260ABCF749157038F8DC4555DF88D595BECEA8
insert-timestamp1712928816.8932106
sourcesqlite.db
hashlookup:parent-total13
hashlookup:trust100

Network graph view

Parents (Total: 13)

The searched file hash is included in 13 parent files which include package known and seen by metalookup. A sample is included below:

Key Value
FileSize53016
MD52D3AE0102B0B37C8B73195C5FA1F1595
PackageDescriptionPortable Executable (PE) parsing module for Python pefile is a Python module to read and work with Portable Executable (PE) files. Most of the information in the PE header is accessible, as well as all the sections, section information and data. . All the basic PE file structures are available with their default names as attributes of the returned instance. . Processed elements such as the import table are made available with lowercase names, to differentiate them from the upper case basic structure names. . pefile has been tested against the limits of valid PE headers; that is, Windows malware. Lots of packed malware attempt to abuse the format beyond its standard use. . Some of the tasks that pefile makes possible are: * Modifying and writing back to the PE image * Header inspection * Section analysis * Retrieving data * Warnings for suspicious and malformed values * Packer detection with PEiD signatures * PEiD signature generation
PackageMaintainerHilko Bengen <bengen@debian.org>
PackageNamepython3-pefile
PackageSectionpython
PackageVersion2018.8.8-1
SHA-1C4A2F9E23C67137879B10BD6BD3A305C872DF314
SHA-25673FF79051A7BF2516AD7A61BAB894641C3D5AAF9DE93683073573EC49D4A40E9
Key Value
FileSize57284
MD592786558E6023FEE7A94DF4A15726BDB
PackageDescriptionPortable Executable (PE) parsing module for Python pefile is a Python module to read and work with Portable Executable (PE) files. Most of the information in the PE header is accessible, as well as all the sections, section information and data. . All the basic PE file structures are available with their default names as attributes of the returned instance. . Processed elements such as the import table are made available with lowercase names, to differentiate them from the upper case basic structure names. . pefile has been tested against the limits of valid PE headers; that is, Windows malware. Lots of packed malware attempt to abuse the format beyond its standard use. . Some of the tasks that pefile makes possible are: * Modifying and writing back to the PE image * Header inspection * Section analysis * Retrieving data * Warnings for suspicious and malformed values * Packer detection with PEiD signatures * PEiD signature generation
PackageMaintainerUbuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
PackageNamepython3-pefile
PackageSectionpython
PackageVersion2021.5.24-1
SHA-1E5B70ACA4A2EDF29DD19468BBDCD4BCD482EF6A5
SHA-256748345115E2920B87A3ABF29BF2093E14E13305C7D01B8F6268856FC520D1749
Key Value
FileSize55652
MD5D7EB461DDF9B85C28526E9945648C194
PackageDescriptionPortable Executable (PE) parsing module for Python pefile is a Python module to read and work with Portable Executable (PE) files. Most of the information in the PE header is accessible, as well as all the sections, section information and data. . All the basic PE file structures are available with their default names as attributes of the returned instance. . Processed elements such as the import table are made available with lowercase names, to differentiate them from the upper case basic structure names. . pefile has been tested against the limits of valid PE headers; that is, Windows malware. Lots of packed malware attempt to abuse the format beyond its standard use. . Some of the tasks that pefile makes possible are: * Modifying and writing back to the PE image * Header inspection * Section analysis * Retrieving data * Warnings for suspicious and malformed values * Packer detection with PEiD signatures * PEiD signature generation
PackageMaintainerHilko Bengen <bengen@debian.org>
PackageNamepython-pefile
PackageSectionpython
PackageVersion2018.8.8-1
SHA-1DA2E42185C94DFEFDFF9CCDF80D2A8CE6E28E5DA
SHA-25659D7E43C054BD9E247159112C6090C679ED3B2D25919EC97A5D140BD3B29C07A
Key Value
FileSize54712
MD5C05AA587AFDEB74111116113F030011C
PackageDescriptionPortable Executable (PE) parsing module for Python pefile is a Python module to read and work with Portable Executable (PE) files. Most of the information in the PE header is accessible, as well as all the sections, section information and data. . All the basic PE file structures are available with their default names as attributes of the returned instance. . Processed elements such as the import table are made available with lowercase names, to differentiate them from the upper case basic structure names. . pefile has been tested against the limits of valid PE headers; that is, Windows malware. Lots of packed malware attempt to abuse the format beyond its standard use. . Some of the tasks that pefile makes possible are: * Modifying and writing back to the PE image * Header inspection * Section analysis * Retrieving data * Warnings for suspicious and malformed values * Packer detection with PEiD signatures * PEiD signature generation
PackageMaintainerUbuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
PackageNamepython-pefile
PackageSectionpython
PackageVersion2017.11.5-2
SHA-1707A95225D749B8683FC0E881A84C5E811E1356C
SHA-2566D07D98B659B643E1BD413272DFC52032C5966E012F37C094A5BA0F11DF8108D
Key Value
FileSize55936
MD568E13894212A483DE0BC7E2A112D3F1A
PackageDescriptionPortable Executable (PE) parsing module for Python pefile is a Python module to read and work with Portable Executable (PE) files. Most of the information in the PE header is accessible, as well as all the sections, section information and data. . All the basic PE file structures are available with their default names as attributes of the returned instance. . Processed elements such as the import table are made available with lowercase names, to differentiate them from the upper case basic structure names. . pefile has been tested against the limits of valid PE headers; that is, Windows malware. Lots of packed malware attempt to abuse the format beyond its standard use. . Some of the tasks that pefile makes possible are: * Modifying and writing back to the PE image * Header inspection * Section analysis * Retrieving data * Warnings for suspicious and malformed values * Packer detection with PEiD signatures * PEiD signature generation
PackageMaintainerUbuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
PackageNamepython3-pefile
PackageSectionpython
PackageVersion2019.4.18-1.1
SHA-138C855927B24C7BA33895BC6B8973E101B08A048
SHA-256524541253D4DFCD62059E9C02D4CCD7DD781ACD96573D7CF43473CAEE94ED078
Key Value
FileSize50306
MD5BD67BAC7C2E4D0D4B26DC193BD1ED9F5
PackageDescriptionPortable Executable (PE) parsing module for Python pefile is a Python module to read and work with Portable Executable (PE) files. Most of the information in the PE header is accessible, as well as all the sections, section information and data. . All the basic PE file structures are available with their default names as attributes of the returned instance. . Processed elements such as the import table are made available with lowercase names, to differentiate them from the upper case basic structure names. . pefile has been tested against the limits of valid PE headers; that is, Windows malware. Lots of packed malware attempt to abuse the format beyond its standard use. . Some of the tasks that pefile makes possible are: * Modifying and writing back to the PE image * Header inspection * Section analysis * Retrieving data * Warnings for suspicious and malformed values * Packer detection with PEiD signatures * PEiD signature generation
PackageMaintainerHilko Bengen <bengen@debian.org>
PackageNamepython3-pefile
PackageSectionpython
PackageVersion2016.3.28-4
SHA-124A8BAF74F36E6950816B955FAE89698724A6697
SHA-256AFE30350802059FDD4A22BB7F8A51C6A7B1E8CF24FE9DB2C125C381FE8F3CDA0
Key Value
FileSize41134
MD5B433625B14C6BEB8F12AEC0E7482DE3E
PackageDescriptionPortable Executable (PE) parsing module for Python pefile is a Python module to read and work with Portable Executable (PE) files. Most of the information in the PE header is accessible, as well as all the sections, section information and data. . All the basic PE file structures are available with their default names as attributes of the returned instance. . Processed elements such as the import table are made available with lowercase names, to differentiate them from the upper case basic structure names. . pefile has been tested against the limits of valid PE headers; that is, Windows malware. Lots of packed malware attempt to abuse the format beyond its standard use. . Some of the tasks that pefile makes possible are: * Modifying and writing back to the PE image * Header inspection * Section analysis * Retrieving data * Warnings for suspicious and malformed values * Packer detection with PEiD signatures * PEiD signature generation
PackageMaintainerRobert S. Edmonds <edmonds@debian.org>
PackageNamepython-pefile
PackageSectionpython
PackageVersion1.2.9.1-1.1
SHA-1EC69A8A839ADCE99EE3DF2374C400BE50BA4277C
SHA-256A53604AA2F71F2867E59F747C5EC8DF6E07A826E127E06874FE38A6B4C230012
Key Value
FileSize52792
MD5B0268C147DE5BAA6B7F701AED5936784
PackageDescriptionPortable Executable (PE) parsing module for Python pefile is a Python module to read and work with Portable Executable (PE) files. Most of the information in the PE header is accessible, as well as all the sections, section information and data. . All the basic PE file structures are available with their default names as attributes of the returned instance. . Processed elements such as the import table are made available with lowercase names, to differentiate them from the upper case basic structure names. . pefile has been tested against the limits of valid PE headers; that is, Windows malware. Lots of packed malware attempt to abuse the format beyond its standard use. . Some of the tasks that pefile makes possible are: * Modifying and writing back to the PE image * Header inspection * Section analysis * Retrieving data * Warnings for suspicious and malformed values * Packer detection with PEiD signatures * PEiD signature generation
PackageMaintainerHilko Bengen <bengen@debian.org>
PackageNamepython-pefile
PackageSectionpython
PackageVersion2016.3.28-4
SHA-104057B14EE2E55772297D797ACC01D23260D83D6
SHA-256E4EF0530E8F958905E7D2C23B99FCD2554FF925A68E14831FB27B38DDAF826D3
Key Value
FileSize56388
MD55322B93AF8902F94A9BFCF50BEEE3E5D
PackageDescriptionPortable Executable (PE) parsing module for Python pefile is a Python module to read and work with Portable Executable (PE) files. Most of the information in the PE header is accessible, as well as all the sections, section information and data. . All the basic PE file structures are available with their default names as attributes of the returned instance. . Processed elements such as the import table are made available with lowercase names, to differentiate them from the upper case basic structure names. . pefile has been tested against the limits of valid PE headers; that is, Windows malware. Lots of packed malware attempt to abuse the format beyond its standard use. . Some of the tasks that pefile makes possible are: * Modifying and writing back to the PE image * Header inspection * Section analysis * Retrieving data * Warnings for suspicious and malformed values * Packer detection with PEiD signatures * PEiD signature generation
PackageMaintainerHilko Bengen <bengen@debian.org>
PackageNamepython3-pefile
PackageSectionpython
PackageVersion2019.4.18-1.1
SHA-1083D134A746DDF47A2C37E5DC288DBF0A192BAA2
SHA-256D8FB32BE8275F88EBBC54BEE310E4719D4AED9615B68050C1C0B5CCD41BD8135
Key Value
FileSize62908
MD5394AFF074C8A9A226B47255E6609D116
PackageDescriptionPortable Executable (PE) parsing module for Python pefile is a Python module to read and work with Portable Executable (PE) files. Most of the information in the PE header is accessible, as well as all the sections, section information and data. . All the basic PE file structures are available with their default names as attributes of the returned instance. . Processed elements such as the import table are made available with lowercase names, to differentiate them from the upper case basic structure names. . pefile has been tested against the limits of valid PE headers; that is, Windows malware. Lots of packed malware attempt to abuse the format beyond its standard use. . Some of the tasks that pefile makes possible are: * Modifying and writing back to the PE image * Header inspection * Section analysis * Retrieving data * Warnings for suspicious and malformed values * Packer detection with PEiD signatures * PEiD signature generation
PackageMaintainerHilko Bengen <bengen@debian.org>
PackageNamepython3-pefile
PackageSectionpython
PackageVersion2021.9.3-1
SHA-1C9C89717A41CB560838F93E16ACA2CAA1A4E974A
SHA-256A424EBECDFBA09087002885041DF7AA6DE50CE64FD26CE93121242CF830C8B12
Key Value
FileSize37830
MD549487AC4DDE6337EF5807297528B9DEF
PackageDescriptionPortable Executable (PE) parsing module for Python pefile is a Python module to read and work with Portable Executable (PE) files. Most of the information in the PE header is accessible, as well as all the sections, section information and data. . All the basic PE file structures are available with their default names as attributes of the returned instance. . Processed elements such as the import table are made available with lowercase names, to differentiate them from the upper case basic structure names. . pefile has been tested against the limits of valid PE headers; that is, Windows malware. Lots of packed malware attempt to abuse the format beyond its standard use. . Some of the tasks that pefile makes possible are: * Modifying and writing back to the PE image * Header inspection * Section analysis * Retrieving data * Warnings for suspicious and malformed values * Packer detection with PEiD signatures * PEiD signature generation
PackageMaintainerUbuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
PackageNamepython-pefile
PackageSectionpython
PackageVersion1.2.9.1-1.1
SHA-152EDB52945D255D8EC388BB2591BF139128794DA
SHA-25668D9F6730C8722BD1038E73CB7CFF0302B7D7117C824BAB41F155069BEE0F1D7
Key Value
FileSize48678
MD552A5EDAF54790C63CBCE732F14BAA704
PackageDescriptionPortable Executable (PE) parsing module for Python pefile is a Python module to read and work with Portable Executable (PE) files. Most of the information in the PE header is accessible, as well as all the sections, section information and data. . All the basic PE file structures are available with their default names as attributes of the returned instance. . Processed elements such as the import table are made available with lowercase names, to differentiate them from the upper case basic structure names. . pefile has been tested against the limits of valid PE headers; that is, Windows malware. Lots of packed malware attempt to abuse the format beyond its standard use. . Some of the tasks that pefile makes possible are: * Modifying and writing back to the PE image * Header inspection * Section analysis * Retrieving data * Warnings for suspicious and malformed values * Packer detection with PEiD signatures * PEiD signature generation
PackageMaintainerUbuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
PackageNamepython-pefile
PackageSectionpython
PackageVersion1.2.10.139-2
SHA-13683D91321D1FF1404138AAF6DC6316E54DF7427
SHA-25620200CBA40017C15C97474207762A471B36ACE7CB56E2D97BD2F1C12185018FC
Key Value
FileSize52220
MD563FF9448EABA6820E60D675DD84904B0
PackageDescriptionPortable Executable (PE) parsing module for Python pefile is a Python module to read and work with Portable Executable (PE) files. Most of the information in the PE header is accessible, as well as all the sections, section information and data. . All the basic PE file structures are available with their default names as attributes of the returned instance. . Processed elements such as the import table are made available with lowercase names, to differentiate them from the upper case basic structure names. . pefile has been tested against the limits of valid PE headers; that is, Windows malware. Lots of packed malware attempt to abuse the format beyond its standard use. . Some of the tasks that pefile makes possible are: * Modifying and writing back to the PE image * Header inspection * Section analysis * Retrieving data * Warnings for suspicious and malformed values * Packer detection with PEiD signatures * PEiD signature generation
PackageMaintainerUbuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
PackageNamepython3-pefile
PackageSectionpython
PackageVersion2017.11.5-2
SHA-14D0C4027F1FA127F764AD95BD1A4B49EA60ABF23
SHA-25655A733206EE4FD96AEAF17C70B4555F0563F55E59A2419D6B004DEA8C6D3E4C1