Query result

Key	Value
FileName	./usr/lib/libettercap-ui.so.0.8.3.1
FileSize	374108
MD5	5526C2584DEF6A9E8FB96E5CA0B46C54
RDS:package_id	294714
SHA-1	F480C82E7CBB176E27FC88A2EE6A0FE95773C54A
SHA-256	2516D4757560A709A15221CCCA7B0F4E3FE7208C435036A8DABD3A49178498F3
SSDEEP	6144:fQ3lx815pXQR67ujZ2HV8rIzq9I2Mk7ruu:fMLR418r0gI2/
TLSH	T112843A2CF7978A73F59309B5032362216930444DF1B7B262FACE6B16773B24ABE1E151
insert-timestamp	1696444416.8605704
source	db.sqlite
hashlookup:parent-total	1
hashlookup:trust	55

Network graph view

The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:

Key	Value
FileName	ettercap-graphical_0.8.3.1-11_i386.deb
FileSize	239588
MD5	4842A7E5CFD518E813EB8B0B5187DF07
PackageDescription	Ettercap GUI-enabled executable Ettercap supports active and passive dissection of many protocols (even encrypted ones) and includes many feature for network and host analysis. . Data injection in an established connection and filtering (substitute or drop a packet) on the fly is also possible, keeping the connection synchronized. . Many sniffing modes are implemented, for a powerful and complete sniffing suite. It is possible to sniff in four modes: IP Based, MAC Based, ARP Based (full-duplex) and PublicARP Based (half-duplex). . Ettercap also has the ability to detect a switched LAN, and to use OS fingerprints (active or passive) to find the geometry of the LAN. . This package contains the ettercap GUI-enabled executable.
PackageMaintainer	Debian Security Tools <team+pkg-security@tracker.debian.org>
PackageName	ettercap-graphical
PackageSection	net
PackageVersion	1:0.8.3.1-11
RDS:package_id	294707
SHA-1	B1CA276E79E2D209767CEE387A18D93EA1AA2494
SHA-256	E93430A34C9E6F3FC70A32C0622ED277B3D45E6CCA98D1A0ED3AB08E82CBFE8B
insert-timestamp	1687506086.614916
source	db.sqlite