Query result

Key	Value
FileName	./usr/lib/python2.7/dist-packages/yara.x86_64-linux-gnu.so
FileSize	29416
MD5	8A8562F8D4789924F4C1C7DF2778947A
SHA-1	C4F4D52894E0BEF7D6C053E6539523ACD938D2BF
SHA-256	D121BA8410E4480CBEF8E8B7F59DEA16B8D7FAFFF0980BE4CBA865087A58C19F
SSDEEP	192:RqcTx8pzcGhdxY0RXmEcwsSUw+HIcTLfnBDeukobvIT79lPuoCzUvLdTRSwdtWbY:4cwRXZ3sS5cpfbvITT0UvxTRSGtbJ1a
TLSH	T134D21A1FE1A049BDC0A5D7744CC390722D307859E7725A9A7448F9367E01F704B3FAAA
hashlookup:parent-total	1
hashlookup:trust	55

Network graph view

The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:

Key	Value
CRC32	11094486
FileName	60974
FileSize	12402
MD5	D2C96DAD2903754F71711403D3381ABB
OpSystemCode	362
PackageDescription	Python2 bindings for YARA YARA is a tool aimed at helping malware researchers to identify and classify malware samples. With YARA, it is possible to create descriptions of malware families based on textual or binary patterns contained in samples of those families. Each description consists of a set of strings and a Boolean expression which determines its logic. . Complex and powerful rules can be created by using binary strings with wild-cards, case-insensitive text strings, special operators, regular expressions and many other features. . This package provides Python 2 bindings.
PackageMaintainer	Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
PackageName	python-yara
PackageSection	python
PackageVersion	3.4.0+dfsg-2build1
ProductCode	184821
RDS:package_id	184821
SHA-1	3C6F1F9AA9A91B4D13EC42397B92C38FF593BE60
SHA-256	90E24602FE47597D2CE7DF2AA9D84DD292BD55C0CFA130D401491D2FE4DB25FF
SpecialCode
db	nsrl_legacy
insert-timestamp	1648755897.9303825
source	RDS_2022.03.1_legacy.db