Edit tour
Linux
Analysis Report
SecuriteInfo.com.Linux.Siggen.9999.9486.16606.elf
Overview
General Information
| Sample name: | SecuriteInfo.com.Linux.Siggen.9999.9486.16606.elf |
| Analysis ID: | 1431618 |
| MD5: | 4db7683981c68458797406a57473edc2 |
| SHA1: | 5dccc73091c7dc31e6d48b1a05e409d329bc56a1 |
| SHA256: | cfb725265679f3f74f05d45cb53baf1b685ed3eab92a61be23eadfd14aea3245 |
| Tags: | elf |
| Infos: |  |
Detection
Mirai
| Score: | 84 |
| Range: | 0 - 100 |
| Whitelisted: | false |
Signatures
Antivirus / Scanner detection for submitted sample
Malicious sample detected (through community Yara rule)
Multi AV Scanner detection for submitted file
Yara detected Mirai
Sample is packed with UPX
ELF contains segments with high entropy indicating compressed/encrypted content
Enumerates processes within the "proc" file system
Executes the "rm" command used to delete files or directories
Sample contains only a LOAD segment without any section mappings
Sample listens on a socket
Sample tries to kill a process (SIGKILL)
Uses the "uname" system call to query kernel version information (possible evasion)
Yara signature match
Classification
Analysis Advice
| Static ELF header machine description suggests that the sample might not execute correctly on this machine. |
| Static ELF header machine description suggests that the sample might only run correctly on MIPS or ARM architectures. |
| Joe Sandbox version: | 40.0.0 Tourmaline |
| Analysis ID: | 1431618 |
| Start date and time: | 2024-04-25 14:39:11 +02:00 |
| Joe Sandbox product: | CloudBasic |
| Overall analysis duration: | 0h 5m 34s |
| Hypervisor based Inspection enabled: | false |
| Report type: | full |
| Cookbook file name: | defaultlinuxfilecookbook.jbs |
| Analysis system description: | Ubuntu Linux 20.04 x64 (Kernel 5.4.0-72, Firefox 91.0, Evince Document Viewer 3.36.10, LibreOffice 6.4.7.2, OpenJDK 11.0.11) |
| Analysis Mode: | default |
| Sample name: | SecuriteInfo.com.Linux.Siggen.9999.9486.16606.elf |
| Detection: | MAL |
| Classification: | mal84.troj.evad.linELF@0/0@125/0 |
| Command: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.9486.16606.elf |
| PID: | 6251 |
| Exit Code: | 0 |
| Exit Code Info: | |
| Killed: | False |
| Standard Output: | lzrd cock fest"/proc/"/exe |
| Standard Error: |
- system is lnxubuntu20
- SecuriteInfo.com.Linux.Siggen.9999.9486.16606.elf New Fork (PID: 6253, Parent: 6251)
- SecuriteInfo.com.Linux.Siggen.9999.9486.16606.elf New Fork (PID: 6255, Parent: 6251)
- SecuriteInfo.com.Linux.Siggen.9999.9486.16606.elf New Fork (PID: 6257, Parent: 6251)
- SecuriteInfo.com.Linux.Siggen.9999.9486.16606.elf New Fork (PID: 6259, Parent: 6257)
- SecuriteInfo.com.Linux.Siggen.9999.9486.16606.elf New Fork (PID: 6260, Parent: 6257)
- dash New Fork (PID: 6310, Parent: 4331)
- dash New Fork (PID: 6311, Parent: 4331)
- cleanup
| Name | Description | Attribution | Blogpost URLs | Link |
|---|---|---|---|---|
| Mirai | Mirai is one of the first significant botnets targeting exposed networking devices running Linux. Found in August 2016 by MalwareMustDie, its name means "future" in Japanese. Nowadays it targets a wide range of networked embedded devices such as IP cameras, home routers (many vendors involved), and other IoT devices. Since the source code was published on "Hack Forums" many variants of the Mirai family appeared, infecting mostly home networks all around the world. | No Attribution |
| Source | Rule | Description | Author | Strings |
|---|---|---|---|---|
| JoeSecurity_Mirai_9 | Yara detected Mirai | Joe Security | ||
| JoeSecurity_Mirai_5 | Yara detected Mirai | Joe Security | ||
| Mirai_Botnet_Malware | Detects Mirai Botnet Malware | Florian Roth |
| |
| MAL_ELF_LNX_Mirai_Oct10_2 | Detects ELF malware Mirai related | Florian Roth |
| |
| JoeSecurity_Mirai_9 | Yara detected Mirai | Joe Security | ||
| Click to see the 15 entries | ||||
⊘No Snort rule has matched
Click to jump to signature section
Show All Signature Results
AV Detection |   |
|---|
| Source: | Avira: | ||
| Source: | ReversingLabs: | |||
| Source: | Virustotal: | Perma Link | ||
| Source: | Socket: | Jump to behavior | ||
| Source: | Socket: | Jump to behavior | ||
| Source: | Socket: | Jump to behavior | ||
| Source: | Socket: | Jump to behavior | ||
| Source: | Socket: | Jump to behavior | ||
| Source: | Socket: | Jump to behavior | ||
| Source: | Socket: | Jump to behavior | ||
| Source: | Socket: | Jump to behavior | ||
| Source: | Socket: | Jump to behavior | ||
| Source: | Socket: | Jump to behavior | ||
| Source: | Socket: | Jump to behavior | ||
| Source: | Socket: | Jump to behavior | ||
| Source: | Socket: | Jump to behavior | ||
| Source: | Socket: | Jump to behavior | ||
| Source: | Socket: | Jump to behavior | ||
| Source: | Socket: | Jump to behavior | ||
| Source: | Socket: | Jump to behavior | ||
| Source: | Socket: | Jump to behavior | ||
| Source: | Socket: | Jump to behavior | ||
| Source: | Socket: | Jump to behavior | ||
| Source: | Socket: | Jump to behavior | ||
| Source: | Socket: | Jump to behavior | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | DNS traffic detected: | ||
| Source: | String found in binary or memory: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
System Summary | |
|---|
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Program segment: | ||
| Source: | SIGKILL sent: | Jump to behavior | ||
| Source: | SIGKILL sent: | Jump to behavior | ||
| Source: | SIGKILL sent: | Jump to behavior | ||
| Source: | SIGKILL sent: | Jump to behavior | ||
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Matched rule: | ||
| Source: | Classification label: | ||
Data Obfuscation | |
|---|
| Source: | String containing UPX found: | ||
| Source: | String containing UPX found: | ||
| Source: | String containing UPX found: | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | File opened: | Jump to behavior | ||
| Source: | Rm executable: | Jump to behavior | ||
| Source: | Rm executable: | Jump to behavior | ||
| Source: | Submission file: | ||
| Source: | Queries kernel information via 'uname': | Jump to behavior | ||
| Source: | Binary or memory string: | ||
| Source: | Binary or memory string: | ||
| Source: | Binary or memory string: | ||
| Source: | Binary or memory string: | ||
Stealing of Sensitive Information | |
|---|
| Source: | File source: | ||
| Source: | File source: | ||
| Source: | File source: | ||
| Source: | File source: | ||
| Source: | File source: | ||
| Source: | File source: | ||
| Source: | File source: | ||
| Source: | File source: | ||
Remote Access Functionality | |
|---|
| Source: | File source: | ||
| Source: | File source: | ||
| Source: | File source: | ||
| Source: | File source: | ||
| Source: | File source: | ||
| Source: | File source: | ||
| Source: | File source: | ||
| Source: | File source: | ||
| Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | Path Interception | 11 Obfuscated Files or Information | 1 OS Credential Dumping | 11 Security Software Discovery | Remote Services | Data from Local System | 1 Encrypted Channel | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
| Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | 1 File Deletion | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 1 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
| Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 2 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
⊘No configs have been found
Is Dropped
Number of created Files
Is malicious
Internet| Source | Detection | Scanner | Label | Link |
|---|---|---|---|---|
| 68% | ReversingLabs | Linux.Trojan.Mirai | ||
| 59% | Virustotal | Browse | ||
| 100% | Avira | ANDROID/Mirai.ojlez |
⊘No Antivirus matches
| Source | Detection | Scanner | Label | Link |
|---|---|---|---|---|
| 8% | Virustotal | Browse |
⊘No Antivirus matches
| Name | IP | Active | Malicious | Antivirus Detection | Reputation |
|---|---|---|---|---|---|
| www.sushiking.world | unknown | unknown | false |
| unknown |
| Name | Source | Malicious | Antivirus Detection | Reputation |
|---|---|---|---|---|
| false | high |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
| IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
|---|---|---|---|---|---|---|
| 79.110.48.149 | unknown | Germany | 57287 | OTAVANET-ASCZ | false | |
| 34.249.145.219 | unknown | United States | 16509 | AMAZON-02US | false | |
| 109.202.202.202 | unknown | Switzerland | 13030 | INIT7CH | false | |
| 91.189.91.43 | unknown | United Kingdom | 41231 | CANONICAL-ASGB | false | |
| 91.189.91.42 | unknown | United Kingdom | 41231 | CANONICAL-ASGB | false |
| Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
|---|---|---|---|---|---|---|
| 79.110.48.149 | Get hash | malicious | Mirai | Browse | ||
| Get hash | malicious | Mirai | Browse | |||
| Get hash | malicious | Mirai | Browse | |||
| 34.249.145.219 | Get hash | malicious | Unknown | Browse | ||
| Get hash | malicious | Xmrig | Browse | |||
| Get hash | malicious | Mirai | Browse | |||
| Get hash | malicious | Mirai | Browse | |||
| Get hash | malicious | Gafgyt, Mirai | Browse | |||
| Get hash | malicious | Gafgyt, Mirai | Browse | |||
| Get hash | malicious | Unknown | Browse | |||
| Get hash | malicious | Mirai, Okiru | Browse | |||
| Get hash | malicious | Unknown | Browse | |||
| Get hash | malicious | Unknown | Browse | |||
| 109.202.202.202 | Get hash | malicious | Mirai | Browse | ||
| Get hash | malicious | Mirai, Okiru | Browse | |||
| Get hash | malicious | Mirai, Okiru | Browse | |||
| Get hash | malicious | Mirai, Okiru | Browse | |||
| Get hash | malicious | Unknown | Browse | |||
| Get hash | malicious | Unknown | Browse | |||
| Get hash | malicious | Unknown | Browse | |||
| Get hash | malicious | Mirai | Browse | |||
| Get hash | malicious | Xmrig | Browse | |||
| Get hash | malicious | Mirai | Browse | |||
| 91.189.91.43 | Get hash | malicious | Mirai | Browse | ||
| Get hash | malicious | Mirai, Okiru | Browse | |||
| Get hash | malicious | Mirai, Okiru | Browse | |||
| Get hash | malicious | Mirai, Okiru | Browse | |||
| Get hash | malicious | Unknown | Browse | |||
| Get hash | malicious | Unknown | Browse | |||
| Get hash | malicious | Mirai | Browse | |||
| Get hash | malicious | Xmrig | Browse | |||
| Get hash | malicious | Mirai | Browse | |||
| Get hash | malicious | Mirai | Browse | |||
| 91.189.91.42 | Get hash | malicious | Mirai | Browse | ||
| Get hash | malicious | Mirai, Okiru | Browse | |||
| Get hash | malicious | Mirai, Okiru | Browse | |||
| Get hash | malicious | Mirai, Okiru | Browse | |||
| Get hash | malicious | Unknown | Browse | |||
| Get hash | malicious | Unknown | Browse | |||
| Get hash | malicious | Unknown | Browse | |||
| Get hash | malicious | Mirai | Browse | |||
| Get hash | malicious | Xmrig | Browse | |||
| Get hash | malicious | Mirai | Browse |
⊘No context
| Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
|---|---|---|---|---|---|---|
| OTAVANET-ASCZ | Get hash | malicious | Mirai | Browse |
| |
| Get hash | malicious | Mirai | Browse |
| ||
| Get hash | malicious | Mirai | Browse |
| ||
| Get hash | malicious | Mirai | Browse |
| ||
| Get hash | malicious | Mirai | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Remcos, RedLine, XpertRAT | Browse |
| ||
| Get hash | malicious | HTMLPhisher | Browse |
| ||
| Get hash | malicious | HTMLPhisher | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| CANONICAL-ASGB | Get hash | malicious | Mirai | Browse |
| |
| Get hash | malicious | Mirai, Okiru | Browse |
| ||
| Get hash | malicious | Mirai, Okiru | Browse |
| ||
| Get hash | malicious | Mirai, Okiru | Browse |
| ||
| Get hash | malicious | Mirai, Okiru | Browse |
| ||
| Get hash | malicious | Mirai, Okiru | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| CANONICAL-ASGB | Get hash | malicious | Mirai | Browse |
| |
| Get hash | malicious | Mirai, Okiru | Browse |
| ||
| Get hash | malicious | Mirai, Okiru | Browse |
| ||
| Get hash | malicious | Mirai, Okiru | Browse |
| ||
| Get hash | malicious | Mirai, Okiru | Browse |
| ||
| Get hash | malicious | Mirai, Okiru | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| INIT7CH | Get hash | malicious | Mirai | Browse |
| |
| Get hash | malicious | Mirai, Okiru | Browse |
| ||
| Get hash | malicious | Mirai, Okiru | Browse |
| ||
| Get hash | malicious | Mirai, Okiru | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Mirai | Browse |
| ||
| Get hash | malicious | Xmrig | Browse |
| ||
| Get hash | malicious | Mirai | Browse |
| ||
| AMAZON-02US | Get hash | malicious | HTMLPhisher | Browse |
| |
| Get hash | malicious | Mirai, Okiru | Browse |
| ||
| Get hash | malicious | Mirai, Okiru | Browse |
| ||
| Get hash | malicious | HtmlDropper, HTMLPhisher | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | HTMLPhisher | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | HTMLPhisher | Browse |
|
⊘No context
⊘No context
⊘No created / dropped files found
| File type: | |
| Entropy (8bit): | 7.9389079282914405 |
| TrID: |
|
| File name: | SecuriteInfo.com.Linux.Siggen.9999.9486.16606.elf |
| File size: | 26'652 bytes |
| MD5: | 4db7683981c68458797406a57473edc2 |
| SHA1: | 5dccc73091c7dc31e6d48b1a05e409d329bc56a1 |
| SHA256: | cfb725265679f3f74f05d45cb53baf1b685ed3eab92a61be23eadfd14aea3245 |
| SHA512: | 5f8bf56e74c46241edff3d13c7c9679b569f2b0d2d64268af5d900b66141bf7e7246a42288839ab1dfd475dc911a8408a03ded16239b43eb95ac908f5d70f7e6 |
| SSDEEP: | 768:Aaue2jtp+Fi2ZH+WwSyPaeYmZUOAVqTPs3UozW:ke2pp+FioHQZEqTCzW |
| TLSH: | 78C2E1242A51AB31C5755470DD2E8ECB37AC0FF8A0EF35B729B50B442ACA54E64F85CE |
| File Content Preview: | .ELF...a..........(.........4...........4. ...(...................../g../g..........................................Q.td............................s.y.UPX!....................S..........?.E.h;.}...^..........e.>Z.e..}~y...6..)R.M......[.8...Kx.%..}.I..B{ |
ELF header | |
|---|---|
| Class: | |
| Data: | |
| Version: | |
| Machine: | |
| Version Number: | |
| Type: | |
| OS/ABI: | |
| ABI Version: | 0 |
| Entry Point Address: | |
| Flags: | |
| ELF Header Size: | 52 |
| Program Header Offset: | 52 |
| Program Header Size: | 32 |
| Number of Program Headers: | 3 |
| Section Header Offset: | 0 |
| Section Header Size: | 40 |
| Number of Section Headers: | 0 |
| Header String Table Index: | 0 |
| Type | Offset | Virtual Address | Physical Address | File Size | Memory Size | Entropy | Flags | Flags Description | Align | Prog Interpreter | Section Mappings |
|---|---|---|---|---|---|---|---|---|---|---|---|
| LOAD | 0x0 | 0x8000 | 0x8000 | 0x672f | 0x672f | 7.9426 | 0x5 | R E | 0x8000 | ||
| LOAD | 0x1a9c | 0x21a9c | 0x21a9c | 0x0 | 0x0 | 0.0000 | 0x6 | RW | 0x8000 | ||
| GNU_STACK | 0x0 | 0x0 | 0x0 | 0x0 | 0x0 | 0.0000 | 0x7 | RWE | 0x4 |
| Timestamp | Source Port | Dest Port | Source IP | Dest IP |
|---|---|---|---|---|
| Apr 25, 2024 14:40:08.113743067 CEST | 48924 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:40:08.436516047 CEST | 80 | 48924 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:40:08.952729940 CEST | 43928 | 443 | 192.168.2.23 | 91.189.91.42 |
| Apr 25, 2024 14:40:13.560090065 CEST | 42516 | 80 | 192.168.2.23 | 109.202.202.202 |
| Apr 25, 2024 14:40:14.583937883 CEST | 42836 | 443 | 192.168.2.23 | 91.189.91.43 |
| Apr 25, 2024 14:40:16.989327908 CEST | 48926 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:40:17.280148029 CEST | 80 | 48926 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:40:18.248761892 CEST | 39294 | 443 | 192.168.2.23 | 34.249.145.219 |
| Apr 25, 2024 14:40:18.248815060 CEST | 443 | 39294 | 34.249.145.219 | 192.168.2.23 |
| Apr 25, 2024 14:40:18.248918056 CEST | 39294 | 443 | 192.168.2.23 | 34.249.145.219 |
| Apr 25, 2024 14:40:18.249176979 CEST | 39294 | 443 | 192.168.2.23 | 34.249.145.219 |
| Apr 25, 2024 14:40:18.249207973 CEST | 443 | 39294 | 34.249.145.219 | 192.168.2.23 |
| Apr 25, 2024 14:40:41.460489988 CEST | 42836 | 443 | 192.168.2.23 | 91.189.91.43 |
| Apr 25, 2024 14:40:43.507970095 CEST | 42516 | 80 | 192.168.2.23 | 109.202.202.202 |
| Apr 25, 2024 14:40:47.298655987 CEST | 48930 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:40:48.307307005 CEST | 48930 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:40:48.602952957 CEST | 80 | 48930 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:40:51.157326937 CEST | 48932 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:40:51.476488113 CEST | 80 | 48932 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:40:58.029484987 CEST | 48934 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:40:58.328188896 CEST | 80 | 48934 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:41:01.880964994 CEST | 48936 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:41:02.203814983 CEST | 80 | 48936 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:41:06.757700920 CEST | 48938 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:41:07.057032108 CEST | 80 | 48938 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:41:10.128307104 CEST | 43928 | 443 | 192.168.2.23 | 91.189.91.42 |
| Apr 25, 2024 14:41:13.608283043 CEST | 48940 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:41:13.927365065 CEST | 80 | 48940 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:41:18.240997076 CEST | 39294 | 443 | 192.168.2.23 | 34.249.145.219 |
| Apr 25, 2024 14:41:18.284123898 CEST | 443 | 39294 | 34.249.145.219 | 192.168.2.23 |
| Apr 25, 2024 14:41:48.946667910 CEST | 48942 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:41:49.962692976 CEST | 48942 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:41:51.978420973 CEST | 48942 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:41:52.301143885 CEST | 80 | 48942 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:41:53.853307962 CEST | 48944 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:41:54.147933960 CEST | 80 | 48944 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:41:58.699629068 CEST | 48946 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:41:59.020251989 CEST | 80 | 48946 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:42:02.572540998 CEST | 48948 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:42:02.866879940 CEST | 80 | 48948 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:42:12.421847105 CEST | 48950 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:42:12.742017031 CEST | 80 | 48950 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:42:16.296785116 CEST | 48952 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:42:16.591804028 CEST | 80 | 48952 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:42:18.143589973 CEST | 48954 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:42:18.442775965 CEST | 80 | 48954 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:42:25.995372057 CEST | 48956 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:42:26.289896011 CEST | 80 | 48956 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:42:27.884440899 CEST | 30102 | 39294 | 192.168.2.1 | 192.168.2.23 |
| Apr 25, 2024 14:42:31.841689110 CEST | 48958 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:42:32.139674902 CEST | 80 | 48958 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:42:35.693563938 CEST | 48960 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:42:36.012768984 CEST | 80 | 48960 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:42:44.565414906 CEST | 48962 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:42:44.857743025 CEST | 80 | 48962 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:42:50.410398960 CEST | 48964 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:42:50.733186960 CEST | 80 | 48964 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:42:58.284360886 CEST | 48966 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:42:58.604281902 CEST | 80 | 48966 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:43:09.158176899 CEST | 48968 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:43:09.477463961 CEST | 80 | 48968 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:43:18.029758930 CEST | 48970 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:43:18.322124958 CEST | 80 | 48970 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:43:27.875205994 CEST | 48972 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:43:28.197961092 CEST | 80 | 48972 | 79.110.48.149 | 192.168.2.23 |
| Apr 25, 2024 14:43:35.752018929 CEST | 48974 | 80 | 192.168.2.23 | 79.110.48.149 |
| Apr 25, 2024 14:43:36.046453953 CEST | 80 | 48974 | 79.110.48.149 | 192.168.2.23 |
| Timestamp | Source Port | Dest Port | Source IP | Dest IP |
|---|---|---|---|---|
| Apr 25, 2024 14:40:07.561259031 CEST | 59382 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:07.671607971 CEST | 53 | 59382 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:40:07.671993971 CEST | 47248 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:07.782298088 CEST | 53 | 47248 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:40:07.782423019 CEST | 52172 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:07.892498970 CEST | 53 | 52172 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:40:07.892671108 CEST | 41296 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:08.002882004 CEST | 53 | 41296 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:40:08.003006935 CEST | 49373 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:08.113332033 CEST | 53 | 49373 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:40:16.436328888 CEST | 43823 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:16.546688080 CEST | 53 | 43823 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:40:16.546979904 CEST | 43205 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:16.657238007 CEST | 53 | 43205 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:40:16.657505989 CEST | 57931 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:16.768376112 CEST | 53 | 57931 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:40:16.768546104 CEST | 56326 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:16.878762960 CEST | 53 | 56326 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:40:16.879035950 CEST | 45437 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:16.989120960 CEST | 53 | 45437 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:40:22.279937983 CEST | 56958 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:27.284647942 CEST | 53154 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:32.289172888 CEST | 33951 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:37.293062925 CEST | 51699 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:42.297494888 CEST | 40315 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:50.603571892 CEST | 55003 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:50.713721037 CEST | 53 | 55003 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:40:50.714104891 CEST | 37800 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:50.824773073 CEST | 53 | 37800 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:40:50.824995995 CEST | 39868 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:50.935035944 CEST | 53 | 39868 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:40:50.935437918 CEST | 33298 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:51.046464920 CEST | 53 | 33298 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:40:51.046788931 CEST | 42462 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:51.156920910 CEST | 53 | 42462 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:40:57.476568937 CEST | 36915 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:57.586621046 CEST | 53 | 36915 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:40:57.586791039 CEST | 36692 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:57.696903944 CEST | 53 | 36692 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:40:57.697148085 CEST | 48861 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:57.808834076 CEST | 53 | 48861 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:40:57.808967113 CEST | 44609 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:57.919137955 CEST | 53 | 44609 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:40:57.919250011 CEST | 45194 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:40:58.029397011 CEST | 53 | 45194 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:01.328332901 CEST | 40942 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:01.438394070 CEST | 53 | 40942 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:01.438673019 CEST | 59953 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:01.548835993 CEST | 53 | 59953 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:01.549149036 CEST | 48414 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:01.659481049 CEST | 53 | 48414 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:01.659746885 CEST | 45533 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:01.770061970 CEST | 53 | 45533 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:01.770462036 CEST | 53565 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:01.880614042 CEST | 53 | 53565 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:06.204205990 CEST | 53282 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:06.314966917 CEST | 53 | 53282 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:06.315361023 CEST | 56169 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:06.425687075 CEST | 53 | 56169 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:06.426103115 CEST | 44278 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:06.536216021 CEST | 53 | 44278 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:06.536544085 CEST | 43584 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:06.646641970 CEST | 53 | 43584 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:06.646995068 CEST | 37717 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:06.757262945 CEST | 53 | 37717 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:13.056627035 CEST | 37511 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:13.166735888 CEST | 53 | 37511 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:13.166959047 CEST | 47463 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:13.277139902 CEST | 53 | 47463 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:13.277348995 CEST | 53921 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:13.387511015 CEST | 53 | 53921 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:13.387793064 CEST | 50846 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:13.497778893 CEST | 53 | 50846 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:13.498065948 CEST | 43265 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:13.608064890 CEST | 53 | 43265 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:23.934552908 CEST | 34960 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:28.933044910 CEST | 56486 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:33.933176041 CEST | 53441 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:38.937551975 CEST | 56851 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:43.942002058 CEST | 60911 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:50.182017088 CEST | 53 | 56851 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:53.301814079 CEST | 40944 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:53.412024021 CEST | 53 | 40944 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:53.412323952 CEST | 43206 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:53.522459030 CEST | 53 | 43206 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:53.522731066 CEST | 43247 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:53.632661104 CEST | 53 | 43247 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:53.632818937 CEST | 46863 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:53.742932081 CEST | 53 | 46863 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:53.743092060 CEST | 57568 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:53.853065968 CEST | 53 | 57568 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:58.147743940 CEST | 33050 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:58.258069992 CEST | 53 | 33050 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:58.258224010 CEST | 45334 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:58.368407011 CEST | 53 | 45334 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:58.368657112 CEST | 45093 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:58.479062080 CEST | 53 | 45093 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:58.479176998 CEST | 42264 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:58.589138985 CEST | 53 | 42264 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:41:58.589299917 CEST | 53015 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:41:58.699491024 CEST | 53 | 53015 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:02.020212889 CEST | 41628 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:02.130573034 CEST | 53 | 41628 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:02.130740881 CEST | 60561 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:02.241035938 CEST | 53 | 60561 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:02.241164923 CEST | 47724 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:02.351187944 CEST | 53 | 47724 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:02.351294994 CEST | 42558 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:02.461388111 CEST | 53 | 42558 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:02.461850882 CEST | 47401 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:02.572213888 CEST | 53 | 47401 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:11.866027117 CEST | 49440 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:11.978164911 CEST | 53 | 49440 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:11.978327990 CEST | 40870 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:12.090689898 CEST | 53 | 40870 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:12.090881109 CEST | 59380 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:12.200954914 CEST | 53 | 59380 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:12.201220036 CEST | 58675 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:12.311253071 CEST | 53 | 58675 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:12.311405897 CEST | 46813 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:12.421546936 CEST | 53 | 46813 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:15.742043018 CEST | 55699 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:15.852236986 CEST | 53 | 55699 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:15.852413893 CEST | 36111 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:15.962650061 CEST | 53 | 36111 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:15.962811947 CEST | 54646 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:16.072999954 CEST | 53 | 54646 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:16.073148966 CEST | 51878 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:16.183120966 CEST | 53 | 51878 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:16.183448076 CEST | 49791 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:16.296529055 CEST | 53 | 49791 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:17.592125893 CEST | 55104 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:17.702182055 CEST | 53 | 55104 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:17.702316999 CEST | 48945 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:17.812402010 CEST | 53 | 48945 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:17.812614918 CEST | 46236 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:17.922672987 CEST | 53 | 46236 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:17.922820091 CEST | 49239 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:18.033011913 CEST | 53 | 49239 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:18.033188105 CEST | 55350 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:18.143389940 CEST | 53 | 55350 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:25.442331076 CEST | 54807 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:25.552623987 CEST | 53 | 54807 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:25.553100109 CEST | 51071 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:25.663248062 CEST | 53 | 51071 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:25.663655043 CEST | 43570 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:25.773850918 CEST | 53 | 43570 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:25.774182081 CEST | 44880 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:25.884248972 CEST | 53 | 44880 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:25.884788990 CEST | 55725 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:25.994925976 CEST | 53 | 55725 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:31.289905071 CEST | 54082 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:31.400162935 CEST | 53 | 54082 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:31.400471926 CEST | 50553 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:31.510391951 CEST | 53 | 50553 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:31.510576963 CEST | 49929 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:31.620702982 CEST | 53 | 49929 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:31.620857000 CEST | 59918 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:31.731089115 CEST | 53 | 59918 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:31.731245041 CEST | 46534 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:31.841420889 CEST | 53 | 46534 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:35.139875889 CEST | 45756 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:35.249830961 CEST | 53 | 45756 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:35.250417948 CEST | 55520 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:35.360599995 CEST | 53 | 55520 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:35.361006975 CEST | 50266 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:35.471096039 CEST | 53 | 50266 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:35.471322060 CEST | 49683 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:35.581975937 CEST | 53 | 49683 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:35.582199097 CEST | 57053 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:35.693192959 CEST | 53 | 57053 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:44.012273073 CEST | 58008 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:44.122466087 CEST | 53 | 58008 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:44.122771025 CEST | 52483 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:44.232994080 CEST | 53 | 52483 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:44.233294964 CEST | 58279 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:44.343329906 CEST | 53 | 58279 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:44.343575954 CEST | 46989 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:44.453754902 CEST | 53 | 46989 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:44.454015970 CEST | 59250 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:44.565205097 CEST | 53 | 59250 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:49.857693911 CEST | 38611 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:49.967822075 CEST | 53 | 38611 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:49.968147039 CEST | 41628 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:50.078286886 CEST | 53 | 41628 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:50.078813076 CEST | 52126 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:50.188848972 CEST | 53 | 52126 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:50.189078093 CEST | 51348 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:50.299186945 CEST | 53 | 51348 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:50.299597979 CEST | 54909 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:50.410079956 CEST | 53 | 54909 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:57.732839108 CEST | 39698 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:57.842860937 CEST | 53 | 39698 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:57.843067884 CEST | 51128 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:57.953200102 CEST | 53 | 51128 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:57.953428984 CEST | 36566 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:58.063457012 CEST | 53 | 36566 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:58.063730955 CEST | 57678 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:58.173702955 CEST | 53 | 57678 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:42:58.173876047 CEST | 59952 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:42:58.284090042 CEST | 53 | 59952 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:43:08.603586912 CEST | 45172 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:43:08.715282917 CEST | 53 | 45172 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:43:08.715630054 CEST | 47463 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:43:08.825793028 CEST | 53 | 47463 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:43:08.826188087 CEST | 34082 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:43:08.936424971 CEST | 53 | 34082 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:43:08.936880112 CEST | 53860 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:43:09.047096014 CEST | 53 | 53860 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:43:09.047527075 CEST | 49114 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:43:09.157818079 CEST | 53 | 49114 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:43:17.476852894 CEST | 34513 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:43:17.586781979 CEST | 53 | 34513 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:43:17.587143898 CEST | 54149 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:43:17.697321892 CEST | 53 | 54149 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:43:17.697829008 CEST | 51855 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:43:17.807945013 CEST | 53 | 51855 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:43:17.808315039 CEST | 52287 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:43:17.918411970 CEST | 53 | 52287 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:43:17.918962955 CEST | 53069 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:43:18.029055119 CEST | 53 | 53069 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:43:27.321808100 CEST | 38766 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:43:27.432040930 CEST | 53 | 38766 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:43:27.432737112 CEST | 32947 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:43:27.542809010 CEST | 53 | 32947 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:43:27.543425083 CEST | 48119 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:43:27.653589964 CEST | 53 | 48119 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:43:27.654161930 CEST | 41993 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:43:27.764249086 CEST | 53 | 41993 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:43:27.764653921 CEST | 33826 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:43:27.874694109 CEST | 53 | 33826 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:43:35.197743893 CEST | 53620 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:43:35.307998896 CEST | 53 | 53620 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:43:35.308542967 CEST | 35258 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:43:35.418844938 CEST | 53 | 35258 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:43:35.419102907 CEST | 56284 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:43:35.529413939 CEST | 53 | 56284 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:43:35.529823065 CEST | 38787 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:43:35.641057968 CEST | 53 | 38787 | 8.8.8.8 | 192.168.2.23 |
| Apr 25, 2024 14:43:35.641366959 CEST | 48129 | 53 | 192.168.2.23 | 8.8.8.8 |
| Apr 25, 2024 14:43:35.751553059 CEST | 53 | 48129 | 8.8.8.8 | 192.168.2.23 |
| Timestamp | Source IP | Dest IP | Checksum | Code | Type |
|---|---|---|---|---|---|
| Apr 25, 2024 14:41:50.182619095 CEST | 192.168.2.23 | 8.8.8.8 | cff1 | (Port unreachable) | Destination Unreachable |
| Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
|---|---|---|---|---|---|---|---|---|
| Apr 25, 2024 14:40:07.561259031 CEST | 192.168.2.23 | 8.8.8.8 | 0x7596 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:07.671993971 CEST | 192.168.2.23 | 8.8.8.8 | 0x7596 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:07.782423019 CEST | 192.168.2.23 | 8.8.8.8 | 0x7596 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:07.892671108 CEST | 192.168.2.23 | 8.8.8.8 | 0x7596 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:08.003006935 CEST | 192.168.2.23 | 8.8.8.8 | 0x7596 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:16.436328888 CEST | 192.168.2.23 | 8.8.8.8 | 0xc71c | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:16.546979904 CEST | 192.168.2.23 | 8.8.8.8 | 0xc71c | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:16.657505989 CEST | 192.168.2.23 | 8.8.8.8 | 0xc71c | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:16.768546104 CEST | 192.168.2.23 | 8.8.8.8 | 0xc71c | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:16.879035950 CEST | 192.168.2.23 | 8.8.8.8 | 0xc71c | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:22.279937983 CEST | 192.168.2.23 | 8.8.8.8 | 0x7b42 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:27.284647942 CEST | 192.168.2.23 | 8.8.8.8 | 0x7b42 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:32.289172888 CEST | 192.168.2.23 | 8.8.8.8 | 0x7b42 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:37.293062925 CEST | 192.168.2.23 | 8.8.8.8 | 0x7b42 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:42.297494888 CEST | 192.168.2.23 | 8.8.8.8 | 0x7b42 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:50.603571892 CEST | 192.168.2.23 | 8.8.8.8 | 0xff30 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:50.714104891 CEST | 192.168.2.23 | 8.8.8.8 | 0xff30 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:50.824995995 CEST | 192.168.2.23 | 8.8.8.8 | 0xff30 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:50.935437918 CEST | 192.168.2.23 | 8.8.8.8 | 0xff30 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:51.046788931 CEST | 192.168.2.23 | 8.8.8.8 | 0xff30 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:57.476568937 CEST | 192.168.2.23 | 8.8.8.8 | 0xec82 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:57.586791039 CEST | 192.168.2.23 | 8.8.8.8 | 0xec82 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:57.697148085 CEST | 192.168.2.23 | 8.8.8.8 | 0xec82 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:57.808967113 CEST | 192.168.2.23 | 8.8.8.8 | 0xec82 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:40:57.919250011 CEST | 192.168.2.23 | 8.8.8.8 | 0xec82 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:01.328332901 CEST | 192.168.2.23 | 8.8.8.8 | 0x1b7b | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:01.438673019 CEST | 192.168.2.23 | 8.8.8.8 | 0x1b7b | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:01.549149036 CEST | 192.168.2.23 | 8.8.8.8 | 0x1b7b | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:01.659746885 CEST | 192.168.2.23 | 8.8.8.8 | 0x1b7b | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:01.770462036 CEST | 192.168.2.23 | 8.8.8.8 | 0x1b7b | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:06.204205990 CEST | 192.168.2.23 | 8.8.8.8 | 0x8430 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:06.315361023 CEST | 192.168.2.23 | 8.8.8.8 | 0x8430 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:06.426103115 CEST | 192.168.2.23 | 8.8.8.8 | 0x8430 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:06.536544085 CEST | 192.168.2.23 | 8.8.8.8 | 0x8430 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:06.646995068 CEST | 192.168.2.23 | 8.8.8.8 | 0x8430 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:13.056627035 CEST | 192.168.2.23 | 8.8.8.8 | 0x6fd6 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:13.166959047 CEST | 192.168.2.23 | 8.8.8.8 | 0x6fd6 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:13.277348995 CEST | 192.168.2.23 | 8.8.8.8 | 0x6fd6 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:13.387793064 CEST | 192.168.2.23 | 8.8.8.8 | 0x6fd6 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:13.498065948 CEST | 192.168.2.23 | 8.8.8.8 | 0x6fd6 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:23.934552908 CEST | 192.168.2.23 | 8.8.8.8 | 0x7336 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:28.933044910 CEST | 192.168.2.23 | 8.8.8.8 | 0x7336 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:33.933176041 CEST | 192.168.2.23 | 8.8.8.8 | 0x7336 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:38.937551975 CEST | 192.168.2.23 | 8.8.8.8 | 0x7336 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:43.942002058 CEST | 192.168.2.23 | 8.8.8.8 | 0x7336 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:53.301814079 CEST | 192.168.2.23 | 8.8.8.8 | 0xb663 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:53.412323952 CEST | 192.168.2.23 | 8.8.8.8 | 0xb663 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:53.522731066 CEST | 192.168.2.23 | 8.8.8.8 | 0xb663 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:53.632818937 CEST | 192.168.2.23 | 8.8.8.8 | 0xb663 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:53.743092060 CEST | 192.168.2.23 | 8.8.8.8 | 0xb663 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:58.147743940 CEST | 192.168.2.23 | 8.8.8.8 | 0xafd7 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:58.258224010 CEST | 192.168.2.23 | 8.8.8.8 | 0xafd7 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:58.368657112 CEST | 192.168.2.23 | 8.8.8.8 | 0xafd7 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:58.479176998 CEST | 192.168.2.23 | 8.8.8.8 | 0xafd7 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:41:58.589299917 CEST | 192.168.2.23 | 8.8.8.8 | 0xafd7 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:02.020212889 CEST | 192.168.2.23 | 8.8.8.8 | 0x5ec6 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:02.130740881 CEST | 192.168.2.23 | 8.8.8.8 | 0x5ec6 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:02.241164923 CEST | 192.168.2.23 | 8.8.8.8 | 0x5ec6 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:02.351294994 CEST | 192.168.2.23 | 8.8.8.8 | 0x5ec6 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:02.461850882 CEST | 192.168.2.23 | 8.8.8.8 | 0x5ec6 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:11.866027117 CEST | 192.168.2.23 | 8.8.8.8 | 0xcee7 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:11.978327990 CEST | 192.168.2.23 | 8.8.8.8 | 0xcee7 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:12.090881109 CEST | 192.168.2.23 | 8.8.8.8 | 0xcee7 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:12.201220036 CEST | 192.168.2.23 | 8.8.8.8 | 0xcee7 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:12.311405897 CEST | 192.168.2.23 | 8.8.8.8 | 0xcee7 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:15.742043018 CEST | 192.168.2.23 | 8.8.8.8 | 0xb706 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:15.852413893 CEST | 192.168.2.23 | 8.8.8.8 | 0xb706 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:15.962811947 CEST | 192.168.2.23 | 8.8.8.8 | 0xb706 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:16.073148966 CEST | 192.168.2.23 | 8.8.8.8 | 0xb706 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:16.183448076 CEST | 192.168.2.23 | 8.8.8.8 | 0xb706 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:17.592125893 CEST | 192.168.2.23 | 8.8.8.8 | 0x6b94 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:17.702316999 CEST | 192.168.2.23 | 8.8.8.8 | 0x6b94 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:17.812614918 CEST | 192.168.2.23 | 8.8.8.8 | 0x6b94 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:17.922820091 CEST | 192.168.2.23 | 8.8.8.8 | 0x6b94 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:18.033188105 CEST | 192.168.2.23 | 8.8.8.8 | 0x6b94 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:25.442331076 CEST | 192.168.2.23 | 8.8.8.8 | 0xcb83 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:25.553100109 CEST | 192.168.2.23 | 8.8.8.8 | 0xcb83 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:25.663655043 CEST | 192.168.2.23 | 8.8.8.8 | 0xcb83 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:25.774182081 CEST | 192.168.2.23 | 8.8.8.8 | 0xcb83 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:25.884788990 CEST | 192.168.2.23 | 8.8.8.8 | 0xcb83 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:31.289905071 CEST | 192.168.2.23 | 8.8.8.8 | 0x99dd | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:31.400471926 CEST | 192.168.2.23 | 8.8.8.8 | 0x99dd | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:31.510576963 CEST | 192.168.2.23 | 8.8.8.8 | 0x99dd | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:31.620857000 CEST | 192.168.2.23 | 8.8.8.8 | 0x99dd | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:31.731245041 CEST | 192.168.2.23 | 8.8.8.8 | 0x99dd | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:35.139875889 CEST | 192.168.2.23 | 8.8.8.8 | 0x9868 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:35.250417948 CEST | 192.168.2.23 | 8.8.8.8 | 0x9868 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:35.361006975 CEST | 192.168.2.23 | 8.8.8.8 | 0x9868 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:35.471322060 CEST | 192.168.2.23 | 8.8.8.8 | 0x9868 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:35.582199097 CEST | 192.168.2.23 | 8.8.8.8 | 0x9868 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:44.012273073 CEST | 192.168.2.23 | 8.8.8.8 | 0x1081 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:44.122771025 CEST | 192.168.2.23 | 8.8.8.8 | 0x1081 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:44.233294964 CEST | 192.168.2.23 | 8.8.8.8 | 0x1081 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:44.343575954 CEST | 192.168.2.23 | 8.8.8.8 | 0x1081 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:44.454015970 CEST | 192.168.2.23 | 8.8.8.8 | 0x1081 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:49.857693911 CEST | 192.168.2.23 | 8.8.8.8 | 0x83d0 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:49.968147039 CEST | 192.168.2.23 | 8.8.8.8 | 0x83d0 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:50.078813076 CEST | 192.168.2.23 | 8.8.8.8 | 0x83d0 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:50.189078093 CEST | 192.168.2.23 | 8.8.8.8 | 0x83d0 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:50.299597979 CEST | 192.168.2.23 | 8.8.8.8 | 0x83d0 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:57.732839108 CEST | 192.168.2.23 | 8.8.8.8 | 0x967e | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:57.843067884 CEST | 192.168.2.23 | 8.8.8.8 | 0x967e | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:57.953428984 CEST | 192.168.2.23 | 8.8.8.8 | 0x967e | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:58.063730955 CEST | 192.168.2.23 | 8.8.8.8 | 0x967e | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:42:58.173876047 CEST | 192.168.2.23 | 8.8.8.8 | 0x967e | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:43:08.603586912 CEST | 192.168.2.23 | 8.8.8.8 | 0x9f96 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:43:08.715630054 CEST | 192.168.2.23 | 8.8.8.8 | 0x9f96 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:43:08.826188087 CEST | 192.168.2.23 | 8.8.8.8 | 0x9f96 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:43:08.936880112 CEST | 192.168.2.23 | 8.8.8.8 | 0x9f96 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:43:09.047527075 CEST | 192.168.2.23 | 8.8.8.8 | 0x9f96 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:43:17.476852894 CEST | 192.168.2.23 | 8.8.8.8 | 0xec42 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:43:17.587143898 CEST | 192.168.2.23 | 8.8.8.8 | 0xec42 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:43:17.697829008 CEST | 192.168.2.23 | 8.8.8.8 | 0xec42 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:43:17.808315039 CEST | 192.168.2.23 | 8.8.8.8 | 0xec42 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:43:17.918962955 CEST | 192.168.2.23 | 8.8.8.8 | 0xec42 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:43:27.321808100 CEST | 192.168.2.23 | 8.8.8.8 | 0x138f | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:43:27.432737112 CEST | 192.168.2.23 | 8.8.8.8 | 0x138f | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:43:27.543425083 CEST | 192.168.2.23 | 8.8.8.8 | 0x138f | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:43:27.654161930 CEST | 192.168.2.23 | 8.8.8.8 | 0x138f | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:43:27.764653921 CEST | 192.168.2.23 | 8.8.8.8 | 0x138f | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:43:35.197743893 CEST | 192.168.2.23 | 8.8.8.8 | 0xd3e3 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:43:35.308542967 CEST | 192.168.2.23 | 8.8.8.8 | 0xd3e3 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:43:35.419102907 CEST | 192.168.2.23 | 8.8.8.8 | 0xd3e3 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:43:35.529823065 CEST | 192.168.2.23 | 8.8.8.8 | 0xd3e3 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Apr 25, 2024 14:43:35.641366959 CEST | 192.168.2.23 | 8.8.8.8 | 0xd3e3 | Standard query (0) | A (IP address) | IN (0x0001) | false |
System Behavior
| Start time (UTC): | 12:40:06 |
| Start date (UTC): | 25/04/2024 |
| Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.9486.16606.elf |
| Arguments: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.9486.16606.elf |
| File size: | 4956856 bytes |
| MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
| Start time (UTC): | 12:40:06 |
| Start date (UTC): | 25/04/2024 |
| Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.9486.16606.elf |
| Arguments: | - |
| File size: | 4956856 bytes |
| MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
| Start time (UTC): | 12:40:06 |
| Start date (UTC): | 25/04/2024 |
| Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.9486.16606.elf |
| Arguments: | - |
| File size: | 4956856 bytes |
| MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
| Start time (UTC): | 12:40:06 |
| Start date (UTC): | 25/04/2024 |
| Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.9486.16606.elf |
| Arguments: | - |
| File size: | 4956856 bytes |
| MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
| Start time (UTC): | 12:40:06 |
| Start date (UTC): | 25/04/2024 |
| Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.9486.16606.elf |
| Arguments: | - |
| File size: | 4956856 bytes |
| MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
| Start time (UTC): | 12:40:07 |
| Start date (UTC): | 25/04/2024 |
| Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.9486.16606.elf |
| Arguments: | - |
| File size: | 4956856 bytes |
| MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
| Start time (UTC): | 12:41:17 |
| Start date (UTC): | 25/04/2024 |
| Path: | /usr/bin/dash |
| Arguments: | - |
| File size: | 129816 bytes |
| MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
| Start time (UTC): | 12:41:17 |
| Start date (UTC): | 25/04/2024 |
| Path: | /usr/bin/rm |
| Arguments: | rm -f /tmp/tmp.J5CWaKPzax /tmp/tmp.EXVfvdsdqT /tmp/tmp.9jIARiRVwZ |
| File size: | 72056 bytes |
| MD5 hash: | aa2b5496fdbfd88e38791ab81f90b95b |
| Start time (UTC): | 12:41:17 |
| Start date (UTC): | 25/04/2024 |
| Path: | /usr/bin/dash |
| Arguments: | - |
| File size: | 129816 bytes |
| MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
| Start time (UTC): | 12:41:17 |
| Start date (UTC): | 25/04/2024 |
| Path: | /usr/bin/rm |
| Arguments: | rm -f /tmp/tmp.J5CWaKPzax /tmp/tmp.EXVfvdsdqT /tmp/tmp.9jIARiRVwZ |
| File size: | 72056 bytes |
| MD5 hash: | aa2b5496fdbfd88e38791ab81f90b95b |