Query result

Key	Value
FileName	./usr/lib/python2.7/dist-packages/yara.i386-linux-gnu.so
FileSize	27452
MD5	0180356344506745023037579A56D0C9
SHA-1	873163DDFE5166C7A6CC4A13EFC68D0D47C6A3D2
SHA-256	4AD36FDC6FB7C1879B6251098C67F70C507F4103D8253DB9C3049C4644E6CD39
SSDEEP	768:j3k7Rl8j9fTRlHCc0LZefGhlsH7WKeYTTLLSo8mjUmjwI:j3eRu5tXYlsxcB
TLSH	T10CC24B46B382E9B0F2F181B44387A63668304904E39BD9D1F90C7F9678353656E379BD
hashlookup:parent-total	1
hashlookup:trust	55

Network graph view

The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:

Key	Value
FileSize	13156
MD5	49BD2E8E922DFFD3A9D00AF1B12FE753
PackageDescription	Python2 bindings for YARA YARA is a tool aimed at helping malware researchers to identify and classify malware samples. With YARA, it is possible to create descriptions of malware families based on textual or binary patterns contained in samples of those families. Each description consists of a set of strings and a Boolean expression which determines its logic. . Complex and powerful rules can be created by using binary strings with wild-cards, case-insensitive text strings, special operators, regular expressions and many other features. . This package provides Python 2 bindings.
PackageMaintainer	Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
PackageName	python-yara
PackageSection	python
PackageVersion	3.4.0+dfsg-2build1
SHA-1	B07CDFB8D400300B64F6D8E75B84BBEE06416B05
SHA-256	79E04A8BAC1B02102A9004288972AF3CA0D5614BA0A4E1E2342CA55028EB161A