| Key | Value |
|---|---|
| CRC32 | 64AB6DDA |
| FileName | ./usr/share/doc/wireshark-common/README.Debian |
| FileSize | 3574 |
| MD5 | 530C328DF98A4718E2F0E077380AB294 |
| OpSystemCode | {'MfgCode': '1006', 'OpSystemCode': '362', 'OpSystemName': 'TBD', 'OpSystemVersion': 'none'} |
| ProductCode | {'ApplicationType': 'Forensic Toolkit', 'Language': 'Multilanguage', 'MfgCode': '1722', 'OpSystemCode': '928', 'ProductCode': '187169', 'ProductName': 'Caine Linux 64-bit', 'ProductVersion': '3.0'} |
| SHA-1 | AEAD973894C57A579FFC198CA81B3882D17695D5 |
| SHA-256 | 2A414A916E1B876803F3ACCE304C7C1AE830243ACAC74B789D75DFD456219247 |
| SSDEEP | 48:8XoFIGkV5YF/Ou0lQMBHi/vQtQfWiFYUv1L6x5yxHgC/BIJVN/7:84AV6t90RH6Iqf39L6k3JIJVN/7 |
| SpecialCode | |
| TLSH | T12471324FF78A33B18A508FA327BF09A1EB1E20A712F1819434AD036D6F01566D277DB5 |
| db | nsrl_modern_rds |
| insert-timestamp | 1647040855.6484742 |
| source | NSRL |
| hashlookup:parent-total | 2 |
| hashlookup:trust | 60 |
The searched file hash is included in 2 parent files which include package known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileSize | 157946 |
| MD5 | 1A7F86C392CF338545A4736DE0D2ACA8 |
| PackageDescription | network traffic analyzer - common files Wireshark is a network "sniffer" - a tool that captures and analyzes packets off the wire. Wireshark can decode too many protocols to list here. . This package provides files common to both wireshark (the GTK+ version) and tshark (the console version). |
| PackageMaintainer | Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com> |
| PackageName | wireshark-common |
| PackageSection | net |
| PackageVersion | 1.10.6-1 |
| SHA-1 | 4E3418B7FDA53802EB95BC57243CE7AE3036C3FC |
| SHA-256 | 5AE0EBA4627CE66DC4F516805A6C1C58C24C8FDDC701F185F030E39857DF444D |
| Key | Value |
|---|---|
| FileSize | 155162 |
| MD5 | B93A3A656065C330DF2CBE0CE66EC305 |
| PackageDescription | network traffic analyzer - common files Wireshark is a network "sniffer" - a tool that captures and analyzes packets off the wire. Wireshark can decode too many protocols to list here. . This package provides files common to both wireshark (the GTK+ version) and tshark (the console version). |
| PackageMaintainer | Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com> |
| PackageName | wireshark-common |
| PackageSection | net |
| PackageVersion | 1.10.6-1 |
| SHA-1 | 1A30A3C668A125813ABBF5774E0472893C0DC2B7 |
| SHA-256 | FF9870F99B850AE04AF203984163064A4000D6ACE84D64F4067CDA06ACDD64E9 |