Query result

Key	Value
FileName	libettercap-ui.so.0.8.3.1
FileSize	328624
MD5	AFB36A820C661FD11FDBD78C7321FB6B
RDS:package_id	302124
SHA-1	B58D9BCBFB509CEEBD8AE4B45FDB6D254ED949C4
SHA-256	14C3224946B9A645E40D15231BB21AEE668BDA9390745718742CDEB6E94A9F97
SSDEEP	6144://LulQejxIjf9vF8gdqKcf2Zvvxgs9OfE://SeSIVFu9f2Z3Os9OfE
TLSH	T176641957F9900C79C5D1E03186ABA561AB30B4C59271BB2F35CCA2313F13B505F9BAAE
insert-timestamp	1712770855.1172345
source	db.sqlite
hashlookup:parent-total	1
hashlookup:trust	55

Network graph view

The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:

Key	Value
FileName	ettercap-graphical_0.8.3.1-11_amd64.deb
FileSize	228412
MD5	91D32EBA7BB4E3D48BECDEB5EE84DDF7
PackageDescription	Ettercap GUI-enabled executable Ettercap supports active and passive dissection of many protocols (even encrypted ones) and includes many feature for network and host analysis. . Data injection in an established connection and filtering (substitute or drop a packet) on the fly is also possible, keeping the connection synchronized. . Many sniffing modes are implemented, for a powerful and complete sniffing suite. It is possible to sniff in four modes: IP Based, MAC Based, ARP Based (full-duplex) and PublicARP Based (half-duplex). . Ettercap also has the ability to detect a switched LAN, and to use OS fingerprints (active or passive) to find the geometry of the LAN. . This package contains the ettercap GUI-enabled executable.
PackageMaintainer	Debian Security Tools <team+pkg-security@tracker.debian.org>
PackageName	ettercap-graphical
PackageSection	net
PackageVersion	1:0.8.3.1-11
RDS:package_id	302124
SHA-1	C1F6E72F295B200D1E753776AA8B7720F7AEE061
SHA-256	0886E180CC77DAC78EDDF99D8BEB85678D1B16FD42AF1BBAFB6FD1CE363AC23A
insert-timestamp	1712770758.5569983
source	db.sqlite