Query result

Key	Value
CRC32	699AAB34
FileName	tcpdump
FileSize	760184
MD5	115155B380F35F0BB6BDE5B6F32EC301
OpSystemCode	{'MfgCode': '1006', 'OpSystemCode': '362', 'OpSystemName': 'TBD', 'OpSystemVersion': 'none'}
ProductCode	{'ApplicationType': 'Forensic Toolkit', 'Language': 'Multilanguage', 'MfgCode': '1722', 'OpSystemCode': '928', 'ProductCode': '187171', 'ProductName': 'Caine Linux 32-bit', 'ProductVersion': '2.5'}
SHA-1	B74B4C015B8DA559BA06FC822E63183C270B3D39
SHA-256	CC9BF66468FA5BA8A2F9CFDD1FF86621BDABCB920383704B8EE505A9394CB1AD
SSDEEP	12288:YZoOEF0hPgXf0ewbXlO8snHU43SkalbRcU2VBgGhArmp3+OY:Y4F0uvxw8P0WSkaVu3gGhArmp
SpecialCode
TLSH	T17CF4F5C1E90B00F1E57701F140A3A76F27F6AF02D228894EFA986D155FA79CA5B353D2
db	nsrl_modern_rds
insert-timestamp	1647044320.4948905
nsrl-sha256	rds241-sha256.zip
source	NSRL
hashlookup:parent-total	1
hashlookup:trust	55

Network graph view

The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:

Key	Value
FileName	tcpdump_4.0.0-6ubuntu3_i386.deb
FileSize	373128
MD5	3E9351F87902D57B6F4A1C790C256FEA
PackageDescription	A powerful tool for network monitoring and data acquisition This program allows you to dump the traffic on a network. tcpdump is able to examine IPv4, ICMPv4, IPv6, ICMPv6, UDP, TCP, SNMP, AFS BGP, RIP, PIM, DVMRP, IGMP, SMB, OSPF, NFS and many other packet types. . It can be used to print out the headers of packets on a network interface, filter packets that match a certain expression. You can use this tool to track down network problems, to detect "ping attacks" or to monitor network activities.
PackageMaintainer	Ubuntu Core Developers <ubuntu-devel-discuss@lists.ubuntu.com>
PackageName	tcpdump
PackageSection	net
PackageVersion	4.0.0-6ubuntu3
SHA-1	F0FA5672DDCAD2EC76C883D49C325069CAD5F7E7
SHA-256	16C8F805C57B9AC00443B62B6F430A543DEE87D4F9F1672857E4A4F51AA0CC81
nsrl-sha256	rds241-sha256.zip