Result for C2AB948BAEF606F6E3A83E9718D6ACEFDF12AA72

Query result

Key Value
FileName./usr/share/doc/python3-pefile/README.gz
FileSize2605
MD57A31D9FC524B537F66C8C64FA706B268
SHA-1C2AB948BAEF606F6E3A83E9718D6ACEFDF12AA72
SHA-25677BE1CE84ED668997FF45EB124DF15599FB4E67A7917518F76C79D6B1B3B435A
SSDEEP48:XZhZ8oU+2J1/mzs/dHBDxb4CC3eO/I7bDGjRa83e9CVhEGYKSiUduDCzDSqdPsl:pAK2JysFhDOCG/k6aQe9viUduDHsPE
TLSHT1BB513C0AA451DDED5FBCAF909C8B15BCB303083E8316A9C858E0DEC8F3951D822E478D
hashlookup:parent-total2
hashlookup:trust60

Network graph view

Parents (Total: 2)

The searched file hash is included in 2 parent files which include package known and seen by metalookup. A sample is included below:

Key Value
FileSize56388
MD55322B93AF8902F94A9BFCF50BEEE3E5D
PackageDescriptionPortable Executable (PE) parsing module for Python pefile is a Python module to read and work with Portable Executable (PE) files. Most of the information in the PE header is accessible, as well as all the sections, section information and data. . All the basic PE file structures are available with their default names as attributes of the returned instance. . Processed elements such as the import table are made available with lowercase names, to differentiate them from the upper case basic structure names. . pefile has been tested against the limits of valid PE headers; that is, Windows malware. Lots of packed malware attempt to abuse the format beyond its standard use. . Some of the tasks that pefile makes possible are: * Modifying and writing back to the PE image * Header inspection * Section analysis * Retrieving data * Warnings for suspicious and malformed values * Packer detection with PEiD signatures * PEiD signature generation
PackageMaintainerHilko Bengen <bengen@debian.org>
PackageNamepython3-pefile
PackageSectionpython
PackageVersion2019.4.18-1.1
SHA-1083D134A746DDF47A2C37E5DC288DBF0A192BAA2
SHA-256D8FB32BE8275F88EBBC54BEE310E4719D4AED9615B68050C1C0B5CCD41BD8135
Key Value
FileSize55936
MD568E13894212A483DE0BC7E2A112D3F1A
PackageDescriptionPortable Executable (PE) parsing module for Python pefile is a Python module to read and work with Portable Executable (PE) files. Most of the information in the PE header is accessible, as well as all the sections, section information and data. . All the basic PE file structures are available with their default names as attributes of the returned instance. . Processed elements such as the import table are made available with lowercase names, to differentiate them from the upper case basic structure names. . pefile has been tested against the limits of valid PE headers; that is, Windows malware. Lots of packed malware attempt to abuse the format beyond its standard use. . Some of the tasks that pefile makes possible are: * Modifying and writing back to the PE image * Header inspection * Section analysis * Retrieving data * Warnings for suspicious and malformed values * Packer detection with PEiD signatures * PEiD signature generation
PackageMaintainerUbuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
PackageNamepython3-pefile
PackageSectionpython
PackageVersion2019.4.18-1.1
SHA-138C855927B24C7BA33895BC6B8973E101B08A048
SHA-256524541253D4DFCD62059E9C02D4CCD7DD781ACD96573D7CF43473CAEE94ED078