Linux Analysis Report seWzsbHlCC
Overview
General Information
Sample Name: | seWzsbHlCC |
Analysis ID: | 528748 |
MD5: | 4a3e4fcf840711d95a782a1aa01a3758 |
SHA1: | 1debbe3bda8a84261eee99edc5f672165a44813d |
SHA256: | 8797bac4f4912bf412e4dc586f0747c0161de7b3ebd0e680eb814be4e20a7b39 |
Tags: | 32armelfmirai |
Infos: |
Detection
Score: | 88 |
Range: | 0 - 100 |
Whitelisted: | false |
Signatures
Classification
Analysis Advice |
---|
All HTTP servers contacted by the sample do not answer. Likely the sample is an old dropper which does no longer work |
Static ELF header machine description suggests that the sample might only run correctly on MIPS or ARM architectures |
Static ELF header machine description suggests that the sample might not execute correctly on this machine |
General Information |
---|
Joe Sandbox Version: | 34.0.0 Boulder Opal |
Analysis ID: | 528748 |
Start date: | 25.11.2021 |
Start time: | 18:28:37 |
Joe Sandbox Product: | CloudBasic |
Overall analysis duration: | 0h 10m 10s |
Hypervisor based Inspection enabled: | false |
Report type: | light |
Sample file name: | seWzsbHlCC |
Cookbook file name: | defaultlinuxfilecookbook.jbs |
Analysis system description: | Ubuntu Linux 20.04 x64 (Kernel 5.4.0-72, Firefox 91.0, Evince Document Viewer 3.36.10, LibreOffice 6.4.7.2, OpenJDK 11.0.11) |
Analysis Mode: | default |
Detection: | MAL |
Classification: | mal88.spre.troj.evad.lin@0/9@2/0 |
Warnings: | Show All
|
Process Tree |
---|
|
Yara Overview |
---|
Initial Sample |
---|
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
SUSP_ELF_LNX_UPX_Compressed_File | Detects a suspicious ELF binary with UPX compression | Florian Roth |
|
PCAP (Network Traffic) |
---|
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_Mirai_12 | Yara detected Mirai | Joe Security |
Jbx Signature Overview |
---|
Click to jump to signature section
Source: | Reads CPU info from /sys: | Jump to behavior | ||
Source: | Reads CPU info from /sys: | Jump to behavior | ||
Source: | Reads CPU info from /sys: | Jump to behavior | ||
Source: | Reads CPU info from /sys: | Jump to behavior | ||
Source: | Reads CPU info from /sys: | Jump to behavior | ||
Source: | Reads CPU info from /sys: | Jump to behavior |
Networking: |
---|
Snort IDS alert for network traffic (e.g. based on Emerging Threat rules) | Show sources |
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: | ||
Source: | Snort IDS: |
Deletes all firewall rules | Show sources |
Source: | Args: |
Connects to many ports of the same IP (likely port scanning) | Show sources |
Source: | TCP traffic: |
Uses known network protocols on non-standard ports | Show sources |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: |
Source: | TCP traffic: |
Source: | Socket: | ||
Source: | Socket: | ||
Source: | Socket: |
Source: | Iptables executable: | ||
Source: | Iptables executable: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | String found in binary or memory: |
Source: | DNS traffic detected: |
System Summary: |
---|
Sample tries to kill many processes (SIGKILL) | Show sources |
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: |
Source: | Program segment: |
Source: | Matched rule: |
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: | ||
Source: | SIGKILL sent: |
Source: | Classification label: |
Data Obfuscation: |
---|
Sample is packed with UPX | Show sources |
Source: | String containing UPX found: | ||
Source: | String containing UPX found: | ||
Source: | String containing UPX found: |
Persistence and Installation Behavior: |
---|
Deletes all firewall rules | Show sources |
Source: | Args: |
Sample reads /proc/mounts (often used for finding a writable filesystem) | Show sources |
Source: | File: | Jump to behavior |
Source: | Pkill executable: | ||
Source: | Pkill executable: | ||
Source: | Pkill executable: | ||
Source: | Pkill executable: | ||
Source: | Pkill executable: |
Source: | Grep executable: | ||
Source: | Grep executable: | ||
Source: | Grep executable: | ||
Source: | Grep executable: | ||
Source: | Grep executable: | ||
Source: | Grep executable: | ||
Source: | Grep executable: | ||
Source: | Grep executable: | ||
Source: | Grep executable: | ||
Source: | Grep executable: | ||
Source: | Grep executable: | ||
Source: | Grep executable: | ||
Source: | Grep executable: | ||
Source: | Grep executable: | ||
Source: | Grep executable: | ||
Source: | Grep executable: |
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: | ||
Source: | File opened: |
Source: | Directory: | Jump to behavior |
Source: | Iptables executable: | ||
Source: | Iptables executable: |
Source: | File: | Jump to behavior | ||
Source: | File: | Jump to behavior | ||
Source: | File: | Jump to behavior | ||
Source: | File: | Jump to behavior | ||
Source: | File: | Jump to behavior |
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: | ||
Source: | Shell command executed: |
Source: | Rm executable: | ||
Source: | Rm executable: | ||
Source: | Rm executable: | ||
Source: | Rm executable: | ||
Source: | Rm executable: |
Source: | Log file created: | Jump to dropped file |
Source: | Sed executable: | ||
Source: | Sed executable: |
Hooking and other Techniques for Hiding and Protection: |
---|
Sample deletes itself | Show sources |
Source: | File: | Jump to behavior |
Uses known network protocols on non-standard ports | Show sources |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Malware Analysis System Evasion: |
---|
Deletes security-related log files | Show sources |
Source: | Truncated file: | Jump to behavior |
Source: | Reads CPU info from /sys: | Jump to behavior | ||
Source: | Reads CPU info from /sys: | Jump to behavior | ||
Source: | Reads CPU info from /sys: | Jump to behavior | ||
Source: | Reads CPU info from /sys: | Jump to behavior | ||
Source: | Reads CPU info from /sys: | Jump to behavior | ||
Source: | Reads CPU info from /sys: | Jump to behavior |
Source: | Queries kernel information via 'uname': | ||
Source: | Queries kernel information via 'uname': | ||
Source: | Queries kernel information via 'uname': | ||
Source: | Queries kernel information via 'uname': | ||
Source: | Queries kernel information via 'uname': |
Source: | Truncated file: | Jump to behavior | ||
Source: | Truncated file: | |||
Source: | Truncated file: |
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: |
Stealing of Sensitive Information: |
---|
Yara detected Mirai | Show sources |
Source: | File source: |
Remote Access Functionality: |
---|
Yara detected Mirai | Show sources |
Source: | File source: |
Mitre Att&ck Matrix |
---|
Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Exfiltration | Command and Control | Network Effects | Remote Service Effects | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Valid Accounts | Command and Scripting Interpreter1 | Path Interception | Path Interception | File and Directory Permissions Modification1 | OS Credential Dumping1 | Security Software Discovery11 | Remote Services | Data from Local System | Exfiltration Over Other Network Medium | Encrypted Channel1 | Eavesdrop on Insecure Network Communication | Remotely Track Device Without Authorization | Modify System Partition |
Default Accounts | Scripting1 | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | Disable or Modify Tools1 | LSASS Memory | System Network Configuration Discovery1 | Remote Desktop Protocol | Data from Removable Media | Exfiltration Over Bluetooth | Non-Standard Port11 | Exploit SS7 to Redirect Phone Calls/SMS | Remotely Wipe Data Without Authorization | Device Lockout |
Domain Accounts | At (Linux) | Logon Script (Windows) | Logon Script (Windows) | Scripting1 | Security Account Manager | File and Directory Discovery1 | SMB/Windows Admin Shares | Data from Network Shared Drive | Automated Exfiltration | Non-Application Layer Protocol1 | Exploit SS7 to Track Device Location | Obtain Device Cloud Backups | Delete Device Data |
Local Accounts | At (Windows) | Logon Script (Mac) | Logon Script (Mac) | Hidden Files and Directories1 | NTDS | System Information Discovery1 | Distributed Component Object Model | Input Capture | Scheduled Transfer | Application Layer Protocol2 | SIM Card Swap | Carrier Billing Fraud | |
Cloud Accounts | Cron | Network Logon Script | Network Logon Script | Obfuscated Files or Information1 | LSA Secrets | Remote System Discovery | SSH | Keylogging | Data Transfer Size Limits | Fallback Channels | Manipulate Device Communication | Manipulate App Store Rankings or Ratings | |
Replication Through Removable Media | Launchd | Rc.common | Rc.common | Disable or Modify System Firewall1 | Cached Domain Credentials | System Owner/User Discovery | VNC | GUI Input Capture | Exfiltration Over C2 Channel | Multiband Communication | Jamming or Denial of Service | Abuse Accessibility Features | |
External Remote Services | Scheduled Task | Startup Items | Startup Items | Indicator Removal on Host11 | DCSync | Network Sniffing | Windows Remote Management | Web Portal Capture | Exfiltration Over Alternative Protocol | Commonly Used Port | Rogue Wi-Fi Access Points | Data Encrypted for Impact | |
Drive-by Compromise | Command and Scripting Interpreter | Scheduled Task/Job | Scheduled Task/Job | File Deletion11 | Proc Filesystem | Network Service Scanning | Shared Webroot | Credential API Hooking | Exfiltration Over Symmetric Encrypted Non-C2 Protocol | Application Layer Protocol | Downgrade to Insecure Protocols | Generate Fraudulent Advertising Revenue |
Malware Configuration |
---|
No configs have been found |
---|
Behavior Graph |
---|
Antivirus, Machine Learning and Genetic Malware Detection |
---|
Initial Sample |
---|
No Antivirus matches |
---|
Dropped Files |
---|
No Antivirus matches |
---|
Domains |
---|
No Antivirus matches |
---|
URLs |
---|
No Antivirus matches |
---|
Domains and IPs |
---|
Contacted Domains |
---|
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
daisy.ubuntu.com | 162.213.33.132 | true | false | high |
URLs from Memory and Binaries |
---|
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false | high |
Contacted IPs |
---|
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
Public |
---|
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
125.42.146.103 | unknown | China | 4837 | CHINA169-BACKBONECHINAUNICOMChina169BackboneCN | false | |
70.181.35.187 | unknown | United States | 22773 | ASN-CXA-ALL-CCI-22773-RDCUS | false | |
207.202.194.215 | unknown | United States | 2044 | IINET-2044US | false | |
78.161.56.209 | unknown | Turkey | 9121 | TTNETTR | false | |
1.183.129.29 | unknown | China | 4134 | CHINANET-BACKBONENo31Jin-rongStreetCN | false | |
154.157.137.159 | unknown | Kenya | 36926 | CKL1-ASNKE | false | |
129.140.169.249 | unknown | Malawi | 37440 | Airtel-MW | false | |
63.198.166.79 | unknown | United States | 7018 | ATT-INTERNET4US | false | |
181.213.135.162 | unknown | Brazil | 28573 | CLAROSABR | false | |
190.73.147.200 | unknown | Venezuela | 8048 | CANTVServiciosVenezuelaVE | false | |
2.93.45.7 | unknown | Russian Federation | 8402 | CORBINA-ASOJSCVimpelcomRU | false | |
188.74.238.42 | unknown | Romania | 60741 | MIZA-ASRO | false | |
37.248.66.119 | unknown | Poland | 8374 | PLUSNETPlusnetworkoperatorinPolandPL | false | |
151.93.49.118 | unknown | Italy | 1267 | ASN-WINDTREIUNETEU | false | |
8.28.61.5 | unknown | United States | 64279 | TFSLAOCUS | false | |
200.83.48.33 | unknown | Chile | 22047 | VTRBANDAANCHASACL | false | |
155.254.17.225 | unknown | United States | 397423 | TIER-NETUS | false | |
19.187.8.243 | unknown | United States | 3 | MIT-GATEWAYSUS | false | |
150.217.104.194 | unknown | Italy | 137 | ASGARRConsortiumGARREU | false | |
122.105.197.216 | unknown | Australia | 4804 | MPX-ASMicroplexPTYLTDAU | false | |
179.254.251.220 | unknown | Brazil | 8167 | BrasilTelecomSA-FilialDistritoFederalBR | false | |
98.19.126.248 | unknown | United States | 7029 | WINDSTREAMUS | false | |
93.87.57.223 | unknown | Serbia | 8400 | TELEKOM-ASRS | false | |
99.177.214.190 | unknown | United States | 7018 | ATT-INTERNET4US | false | |
165.139.128.251 | unknown | United States | 11686 | ENAUS | false | |
47.207.214.207 | unknown | United States | 5650 | FRONTIER-FRTRUS | false | |
169.97.116.2 | unknown | United States | 37611 | AfrihostZA | false | |
184.242.62.164 | unknown | United States | 10507 | SPCSUS | false | |
115.165.146.158 | unknown | Japan | 9365 | ITSCOMitscommunicationsIncJP | false | |
182.134.184.52 | unknown | China | 4134 | CHINANET-BACKBONENo31Jin-rongStreetCN | false | |
86.73.60.242 | unknown | France | 15557 | LDCOMNETFR | false | |
47.166.238.203 | unknown | United States | 5650 | FRONTIER-FRTRUS | false | |
216.81.216.18 | unknown | United States | 11320 | LIGHTEDGE-AS-02US | false | |
110.132.116.231 | unknown | Japan | 9824 | JTCL-JP-ASJupiterTelecommunicationCoLtdJP | false | |
5.127.54.104 | unknown | Iran (ISLAMIC Republic Of) | 44244 | IRANCELL-ASIR | false | |
18.45.73.155 | unknown | United States | 3 | MIT-GATEWAYSUS | false | |
112.54.85.168 | unknown | China | 24444 | CMNET-V4SHANDONG-AS-APShandongMobileCommunicationCompany | false | |
174.207.243.210 | unknown | United States | 22394 | CELLCOUS | false | |
207.48.168.24 | unknown | United States | 3561 | CENTURYLINK-LEGACY-SAVVISUS | false | |
1.141.94.214 | unknown | Australia | 1221 | ASN-TELSTRATelstraCorporationLtdAU | false | |
206.89.242.95 | unknown | United States | 3549 | LVLT-3549US | false | |
74.221.73.184 | unknown | United States | 29979 | PWN-ASBLKUS | false | |
38.83.60.43 | unknown | United States | 174 | COGENT-174US | false | |
46.161.206.75 | unknown | Syrian Arab Republic | 29256 | INT-PDN-STE-ASSTEPDNInternalASSY | false | |
171.84.126.231 | unknown | China | 4808 | CHINA169-BJChinaUnicomBeijingProvinceNetworkCN | false | |
112.140.228.143 | unknown | Korea Republic of | 18318 | SPEEDON-AS-KRLGHelloVisionCorpKR | false | |
166.59.141.111 | unknown | United States | 3377 | MCI-ASNUS | false | |
20.220.220.250 | unknown | United States | 8075 | MICROSOFT-CORP-MSN-AS-BLOCKUS | false | |
177.201.217.219 | unknown | Brazil | 8167 | BrasilTelecomSA-FilialDistritoFederalBR | false | |
42.134.246.139 | unknown | China | 4249 | LILLY-ASUS | false | |
43.11.77.239 | unknown | Japan | 4249 | LILLY-ASUS | false | |
93.254.32.66 | unknown | Germany | 3320 | DTAGInternetserviceprovideroperationsDE | false | |
35.59.121.11 | unknown | United States | 36375 | UMICH-AS-5US | false | |
39.223.215.28 | unknown | Indonesia | 23693 | TELKOMSEL-ASN-IDPTTelekomunikasiSelularID | false | |
65.92.251.70 | unknown | Canada | 577 | BACOMCA | false | |
63.182.214.13 | unknown | United States | 1239 | SPRINTLINKUS | false | |
135.174.27.61 | unknown | United States | 14962 | NCR-252US | false | |
124.57.70.69 | unknown | Korea Republic of | 17858 | POWERVIS-AS-KRLGPOWERCOMMKR | false | |
122.32.33.208 | unknown | Korea Republic of | 17858 | POWERVIS-AS-KRLGPOWERCOMMKR | false | |
44.44.171.245 | unknown | United States | 7377 | UCSDUS | false | |
197.222.122.203 | unknown | Egypt | 37069 | MOBINILEG | false | |
205.173.0.246 | unknown | United States | 21633 | DOI-NBC-NETUS | false | |
202.41.22.160 | unknown | India | 10225 | NETTLINX-IN-APNettlinxLimitedIN | false | |
163.112.152.93 | unknown | France | 17816 | CHINA169-GZChinaUnicomIPnetworkChina169Guangdongprovi | false | |
19.52.128.103 | unknown | United States | 3 | MIT-GATEWAYSUS | false | |
57.157.134.55 | unknown | Belgium | 2686 | ATGS-MMD-ASUS | false | |
210.74.100.133 | unknown | China | 4808 | CHINA169-BJChinaUnicomBeijingProvinceNetworkCN | false | |
223.216.178.39 | unknown | Japan | 4713 | OCNNTTCommunicationsCorporationJP | false | |
174.127.145.127 | unknown | United States | 11404 | AS-WAVE-1US | false | |
203.14.250.15 | unknown | Australia | 9328 | DATACOM-AUDATACOMSYSTEMSAUPTYLTDAU | false | |
39.85.149.204 | unknown | China | 4837 | CHINA169-BACKBONECHINAUNICOMChina169BackboneCN | false | |
220.221.217.83 | unknown | Japan | 4713 | OCNNTTCommunicationsCorporationJP | false | |
32.135.39.52 | unknown | United States | 2686 | ATGS-MMD-ASUS | false | |
210.115.6.130 | unknown | Korea Republic of | 4766 | KIXS-AS-KRKoreaTelecomKR | false | |
144.187.229.91 | unknown | United States | 22562 | CSC-IGN-EMEAUS | false | |
72.46.16.140 | unknown | United States | 62833 | HUDSONFIBERNETUS | false | |
208.236.99.194 | unknown | United States | 4208 | THE-ISERV-COMPANYUS | false | |
96.94.23.175 | unknown | United States | 7922 | COMCAST-7922US | false | |
40.62.7.72 | unknown | United States | 4249 | LILLY-ASUS | false | |
117.157.129.101 | unknown | China | 9808 | CMNET-GDGuangdongMobileCommunicationCoLtdCN | false | |
58.51.227.57 | unknown | China | 4134 | CHINANET-BACKBONENo31Jin-rongStreetCN | false | |
176.83.195.186 | unknown | Spain | 3352 | TELEFONICA_DE_ESPANAES | false | |
131.2.49.7 | unknown | United States | 61458 | GOBIERNOAUTONOMOMUNICIPALDELAPAZBO | false | |
20.130.139.144 | unknown | United States | 8075 | MICROSOFT-CORP-MSN-AS-BLOCKUS | false | |
104.15.73.68 | unknown | United States | 7018 | ATT-INTERNET4US | false | |
47.53.48.241 | unknown | United States | 30722 | VODAFONE-IT-ASNIT | false | |
125.32.16.88 | unknown | China | 4837 | CHINA169-BACKBONECHINAUNICOMChina169BackboneCN | false | |
134.197.162.8 | unknown | United States | 3851 | NSHE-NEVADANETUS | false | |
146.181.229.218 | unknown | United States | 786 | JANETJiscServicesLimitedGB | false | |
78.253.216.102 | unknown | France | 12322 | PROXADFR | false | |
178.141.254.107 | unknown | Russian Federation | 44677 | MTS-KRV-ASRU | false | |
108.7.134.33 | unknown | United States | 701 | UUNETUS | false | |
143.183.65.250 | unknown | United States | 4983 | INTEL-SC-ASUS | false | |
4.209.69.186 | unknown | United States | 3356 | LEVEL3US | false | |
187.129.233.71 | unknown | Mexico | 28283 | AdylnetTelecomBR | false | |
160.120.31.151 | unknown | Cote D'ivoire | 29571 | ORANGE-COTE-IVOIRECI | false | |
216.227.170.102 | unknown | United States | 174 | COGENT-174US | false | |
153.47.23.88 | unknown | United States | 19512 | LYONDELLUS | false | |
205.153.15.235 | unknown | United States | 209 | CENTURYLINK-US-LEGACY-QWESTUS | false | |
34.99.239.143 | unknown | United States | 15169 | GOOGLEUS | false |
Joe Sandbox View / Context |
---|
IPs |
---|
Match | Associated Sample Name / URL | SHA 256 | Detection | Link | Context |
---|---|---|---|---|---|
151.93.49.118 | Get hash | malicious | Browse |
Domains |
---|
Match | Associated Sample Name / URL | SHA 256 | Detection | Link | Context |
---|---|---|---|---|---|
daisy.ubuntu.com | Get hash | malicious | Browse |
| |
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
|
ASN |
---|
Match | Associated Sample Name / URL | SHA 256 | Detection | Link | Context |
---|---|---|---|---|---|
CHINA169-BACKBONECHINAUNICOMChina169BackboneCN | Get hash | malicious | Browse |
| |
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
ASN-CXA-ALL-CCI-22773-RDCUS | Get hash | malicious | Browse |
| |
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
|
JA3 Fingerprints |
---|
No context |
---|
Dropped Files |
---|
No context |
---|
Created / dropped Files |
---|
Process: | /usr/bin/pulseaudio |
File Type: | |
Category: | dropped |
Size (bytes): | 10 |
Entropy (8bit): | 2.9219280948873623 |
Encrypted: | false |
SSDEEP: | 3:5bkPn:pkP |
MD5: | FF001A15CE15CF062A3704CEA2991B5F |
SHA1: | B06F6855F376C3245B82212AC73ADED55DFE5DEF |
SHA-256: | C54830B41ECFA1B6FBDC30397188DDA86B7B200E62AEAC21AE694A6192DCC38A |
SHA-512: | 65EBF7C31F6F65713CE01B38A112E97D0AE64A6BD1DA40CE4C1B998F10CD3912EE1A48BB2B279B24493062118AAB3B8753742E2AF28E56A31A7AAB27DE80E7BF |
Malicious: | false |
Reputation: | moderate, very likely benign file |
Preview: |
|
Process: | /usr/bin/pulseaudio |
File Type: | |
Category: | dropped |
Size (bytes): | 18 |
Entropy (8bit): | 3.4613201402110088 |
Encrypted: | false |
SSDEEP: | 3:5bkrIZsXvn:pkckv |
MD5: | 28FE6435F34B3367707BB1C5D5F6B430 |
SHA1: | EB8FE2D16BD6BBCCE106C94E4D284543B2573CF6 |
SHA-256: | 721A37C69E555799B41D308849E8F8125441883AB021B723FED90A9B744F36C0 |
SHA-512: | 6B6AB7C0979629D0FEF6BE47C5C6BCC367EDD0AAE3FC973F4DE2FD5F0A819C89E7656DB65D453B1B5398E54012B27EDFE02894AD87A7E0AF3A9C5F2EB24A9919 |
Malicious: | false |
Reputation: | moderate, very likely benign file |
Preview: |
|
Process: | /usr/sbin/sshd |
File Type: | |
Category: | dropped |
Size (bytes): | 6 |
Entropy (8bit): | 1.7924812503605778 |
Encrypted: | false |
SSDEEP: | 3:ptn:Dn |
MD5: | CBF282CC55ED0792C33D10003D1F760A |
SHA1: | 007DD8BD75468E6B7ABA4285E9B267202C7EAEED |
SHA-256: | FCDBAB99FCC0F4409E5F9D7D6FC497780288B4C441698126BB62832412774D22 |
SHA-512: | 4643A8675D213C7DA35CC0C2BFB3B6F20324F9C48AEA7BA79F470615698C9A0CEFDA45CAA1957FC29110EE746BC8458AB8AB1E43EB513912A5E1E8858812CC00 |
Malicious: | false |
Reputation: | high, very likely benign file |
Preview: |
|
Process: | /usr/sbin/sshd |
File Type: | |
Category: | dropped |
Size (bytes): | 5 |
Entropy (8bit): | 2.321928094887362 |
Encrypted: | false |
SSDEEP: | 3:E3v:E3v |
MD5: | 0BE520D99530BBA5C73589931A7285F6 |
SHA1: | AB4844E657DB95D0813D4A6947608894835CFF55 |
SHA-256: | 730C50DA4C1A692C53478AAF119272CB220377D13DC420B57D25ACD5BA02BB0A |
SHA-512: | B7DB6AAE5EC96AC7CF2B41D7A55B5E32FC5A24FBAABA0C6E829F833C9FDA597DBEFCAEE72E8003B6562EF2A88AC480AF345999497A2B94BE80B8CE8B52DB3312 |
Malicious: | false |
Reputation: | low |
Preview: |
|
Process: | /tmp/seWzsbHlCC |
File Type: | |
Category: | dropped |
Size (bytes): | 38 |
Entropy (8bit): | 3.3918926446809334 |
Encrypted: | false |
SSDEEP: | 3:KkZRAkd:KaAu |
MD5: | C7EA09D26E26605227076E0514A33038 |
SHA1: | C3F9736E9AF7BD0885578859A50B205C8FA5FC8E |
SHA-256: | 7E8AD76E0D200E93918CA2E93C99FF8ECD02071953BF1479819DB3AC0DBB6D07 |
SHA-512: | 17D0088725EB9991E9EB82E8A3DE0878E45E6F394BBC2AD260AA59C786FF0AD565E145E21256425D1C0ABE15F3ECB402EBB0A6A5E1C2D5BA7A4D95EC93A2861F |
Malicious: | false |
Reputation: | moderate, very likely benign file |
Preview: |
|
Process: | /usr/bin/pulseaudio |
File Type: | |
Category: | dropped |
Size (bytes): | 5 |
Entropy (8bit): | 1.9219280948873623 |
Encrypted: | false |
SSDEEP: | 3:E1v:E1v |
MD5: | 6E8DD5F0924CE30B35AEAED9C61A5ADD |
SHA1: | 1208595C4CA7CD0E6980DD4C17DB3965CD6DFBB3 |
SHA-256: | DC19BDFF69BBF08AFC8FC0C584CBFCD3315D3AAB266D7F97564E71CE74D2774C |
SHA-512: | 353092740BF752D54D1A451EA5C41A87029B9A5784571F191433028BCDC810D5F4B86493F16C1D83A178776CE5B7B5FE7392B076CD32ECF362C1F2520239539E |
Malicious: | false |
Reputation: | low |
Preview: |
|
Process: | /usr/bin/gpu-manager |
File Type: | |
Category: | dropped |
Size (bytes): | 1515 |
Entropy (8bit): | 4.825813629825568 |
Encrypted: | false |
SSDEEP: | 24:wPXXX9uV6BNu3WDF3GF3XFFxFFed2uk2HUvJlfWkpPpx7uvvAdow9555Ro7uRkoT:wPXXXe6vejpeC2HUR5WkpPpcvAdow959 |
MD5: | 7B48386106F00126E44F428D0193E1ED |
SHA1: | 75F652293B2DE03A845A73B678A5CB7E9701A9F4 |
SHA-256: | 9F60B5D0D5C6F6CB3892E1687D16333F36E3BD450713B00FDF0B2BB90EC7312C |
SHA-512: | 57D0856EC65558B4A843A4696B644AC3E80B3EA0E6EC1C2FAC7A00015B96EBB2CC30967EB8DEFC3E648E59AC6882F6A4F69468D4B6CD0FD60F9F343C206DBFBC |
Malicious: | false |
Preview: |
|
Process: | /usr/sbin/gdm3 |
File Type: | |
Category: | dropped |
Size (bytes): | 5 |
Entropy (8bit): | 1.9219280948873623 |
Encrypted: | false |
SSDEEP: | 3:Fd/n:n/n |
MD5: | 5DE88F8B8A42BF20A95C7C449C13D8DE |
SHA1: | 42E07D8ECA0D77F8445F835510C1C634DC89E74F |
SHA-256: | F9615512F25BC98071A42105AA4A18C4FD1E77EE6B8E7B63B60BAB517DC0114A |
SHA-512: | 5E1C807B5E7CA6E7A27545BE9418C1954AF3DCA07DE61C9768FCC333A13D646D116DF3B4197B1E106B5C0920DA6FB96FBF83C2F0081937163F22B2FA484661DE |
Malicious: | false |
Preview: |
|
Static File Info |
---|
General | |
---|---|
File type: | |
Entropy (8bit): | 7.977062127211769 |
TrID: |
|
File name: | seWzsbHlCC |
File size: | 48788 |
MD5: | 4a3e4fcf840711d95a782a1aa01a3758 |
SHA1: | 1debbe3bda8a84261eee99edc5f672165a44813d |
SHA256: | 8797bac4f4912bf412e4dc586f0747c0161de7b3ebd0e680eb814be4e20a7b39 |
SHA512: | 3c978fc2340be0aa980be1302d14d5f9c37c6fc762c1ed579c018410003d45a524f600affca34ebe604a1887e2cf4d186df0836c01d03783a0e2fbee1bf3a6bf |
SSDEEP: | 768:3UTrAuYC4Ut7wwfhcYIeXrGgkoJBSwrauyOgYfZDAK+/BVZUUMK+P3FKxUOphDl7:3On4Utwch5Gm70/6UL+P3FK6QhR5yz1S |
File Content Preview: | .ELF...a..........(......+..4...........4. ...(.........................................@o..@o..@o..................Q.td............................t.6.UPX!....................S..........?.E.h;.}...^..........f.+....E.....~.....*.....k.#..^.8......Nf3p2f. |
Static ELF Info |
---|
ELF header | |
---|---|
Class: | |
Data: | |
Version: | |
Machine: | |
Version Number: | |
Type: | |
OS/ABI: | |
ABI Version: | |
Entry Point Address: | |
Flags: | |
ELF Header Size: | |
Program Header Offset: | |
Program Header Size: | |
Number of Program Headers: | |
Section Header Offset: | |
Section Header Size: | |
Number of Section Headers: | |
Header String Table Index: |
Program Segments |
---|
Type | Offset | Virtual Address | Physical Address | File Size | Memory Size | Entropy | Flags | Flags Description | Align | Prog Interpreter | Section Mappings |
---|---|---|---|---|---|---|---|---|---|---|---|
LOAD | 0x0 | 0x8000 | 0x8000 | 0xbda7 | 0xbda7 | 4.0364 | 0x5 | R E | 0x8000 | ||
LOAD | 0x6f40 | 0x36f40 | 0x36f40 | 0x0 | 0x0 | 0.0000 | 0x6 | RW | 0x8000 | ||
GNU_STACK | 0x0 | 0x0 | 0x0 | 0x0 | 0x0 | 0.0000 | 0x7 | RWE | 0x4 |
Network Behavior |
---|
Network Port Distribution |
---|
TCP Packets |
---|
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Nov 25, 2021 18:29:22.738009930 CET | 51945 | 23 | 192.168.2.23 | 185.174.86.135 |
Nov 25, 2021 18:29:22.738338947 CET | 51945 | 23 | 192.168.2.23 | 147.145.201.135 |
Nov 25, 2021 18:29:22.738367081 CET | 51945 | 23 | 192.168.2.23 | 101.172.161.173 |
Nov 25, 2021 18:29:22.738379002 CET | 51945 | 23 | 192.168.2.23 | 165.249.86.132 |
Nov 25, 2021 18:29:22.738379955 CET | 51945 | 23 | 192.168.2.23 | 157.68.78.60 |
Nov 25, 2021 18:29:22.738406897 CET | 51945 | 23 | 192.168.2.23 | 85.105.184.86 |
Nov 25, 2021 18:29:22.738418102 CET | 51945 | 23 | 192.168.2.23 | 77.124.17.46 |
Nov 25, 2021 18:29:22.738425016 CET | 51945 | 23 | 192.168.2.23 | 206.204.80.87 |
Nov 25, 2021 18:29:22.738451958 CET | 51945 | 23 | 192.168.2.23 | 216.148.132.203 |
Nov 25, 2021 18:29:22.738451958 CET | 51945 | 23 | 192.168.2.23 | 207.140.150.1 |
Nov 25, 2021 18:29:22.738462925 CET | 51945 | 23 | 192.168.2.23 | 109.215.13.121 |
Nov 25, 2021 18:29:22.738466978 CET | 51945 | 23 | 192.168.2.23 | 95.23.32.192 |
Nov 25, 2021 18:29:22.738476038 CET | 51945 | 23 | 192.168.2.23 | 144.148.82.187 |
Nov 25, 2021 18:29:22.738491058 CET | 51945 | 23 | 192.168.2.23 | 41.147.213.38 |
Nov 25, 2021 18:29:22.738522053 CET | 51945 | 23 | 192.168.2.23 | 17.179.94.217 |
Nov 25, 2021 18:29:22.738532066 CET | 51945 | 23 | 192.168.2.23 | 48.121.4.250 |
Nov 25, 2021 18:29:22.738532066 CET | 51945 | 23 | 192.168.2.23 | 170.171.137.68 |
Nov 25, 2021 18:29:22.738533974 CET | 51945 | 23 | 192.168.2.23 | 122.35.156.9 |
Nov 25, 2021 18:29:22.738537073 CET | 51945 | 23 | 192.168.2.23 | 123.183.200.233 |
Nov 25, 2021 18:29:22.738538027 CET | 51945 | 23 | 192.168.2.23 | 90.131.136.159 |
Nov 25, 2021 18:29:22.738539934 CET | 51945 | 23 | 192.168.2.23 | 140.154.149.1 |
Nov 25, 2021 18:29:22.738539934 CET | 51945 | 23 | 192.168.2.23 | 35.75.90.209 |
Nov 25, 2021 18:29:22.738543987 CET | 51945 | 23 | 192.168.2.23 | 206.177.180.146 |
Nov 25, 2021 18:29:22.738552094 CET | 51945 | 23 | 192.168.2.23 | 113.184.204.137 |
Nov 25, 2021 18:29:22.738552094 CET | 51945 | 23 | 192.168.2.23 | 34.121.250.0 |
Nov 25, 2021 18:29:22.738549948 CET | 51945 | 23 | 192.168.2.23 | 65.22.59.61 |
Nov 25, 2021 18:29:22.738559961 CET | 51945 | 23 | 192.168.2.23 | 111.196.65.29 |
Nov 25, 2021 18:29:22.738564014 CET | 51945 | 23 | 192.168.2.23 | 114.93.66.26 |
Nov 25, 2021 18:29:22.738570929 CET | 51945 | 23 | 192.168.2.23 | 67.41.210.145 |
Nov 25, 2021 18:29:22.738599062 CET | 51945 | 23 | 192.168.2.23 | 66.4.96.250 |
Nov 25, 2021 18:29:22.738621950 CET | 51945 | 23 | 192.168.2.23 | 120.142.202.163 |
Nov 25, 2021 18:29:22.738630056 CET | 51945 | 23 | 192.168.2.23 | 44.196.192.32 |
Nov 25, 2021 18:29:22.738641977 CET | 51945 | 23 | 192.168.2.23 | 1.45.214.176 |
Nov 25, 2021 18:29:22.738656998 CET | 51945 | 23 | 192.168.2.23 | 88.123.62.136 |
Nov 25, 2021 18:29:22.738663912 CET | 51945 | 23 | 192.168.2.23 | 123.12.14.8 |
Nov 25, 2021 18:29:22.738708019 CET | 51945 | 23 | 192.168.2.23 | 60.173.87.20 |
Nov 25, 2021 18:29:22.738717079 CET | 51945 | 23 | 192.168.2.23 | 148.216.197.233 |
Nov 25, 2021 18:29:22.738720894 CET | 51945 | 23 | 192.168.2.23 | 124.110.17.122 |
Nov 25, 2021 18:29:22.738759041 CET | 51945 | 23 | 192.168.2.23 | 62.26.241.157 |
Nov 25, 2021 18:29:22.738766909 CET | 51945 | 23 | 192.168.2.23 | 180.19.155.94 |
Nov 25, 2021 18:29:22.738790989 CET | 51945 | 23 | 192.168.2.23 | 185.140.46.7 |
Nov 25, 2021 18:29:22.738791943 CET | 51945 | 23 | 192.168.2.23 | 152.64.186.78 |
Nov 25, 2021 18:29:22.738796949 CET | 51945 | 23 | 192.168.2.23 | 67.187.89.149 |
Nov 25, 2021 18:29:22.738810062 CET | 51945 | 23 | 192.168.2.23 | 141.115.0.49 |
Nov 25, 2021 18:29:22.738810062 CET | 51945 | 23 | 192.168.2.23 | 9.137.234.67 |
Nov 25, 2021 18:29:22.738815069 CET | 51945 | 23 | 192.168.2.23 | 156.47.130.141 |
Nov 25, 2021 18:29:22.738825083 CET | 51945 | 23 | 192.168.2.23 | 165.146.155.109 |
Nov 25, 2021 18:29:22.738831043 CET | 51945 | 23 | 192.168.2.23 | 218.132.15.181 |
Nov 25, 2021 18:29:22.738845110 CET | 51945 | 23 | 192.168.2.23 | 119.7.98.20 |
Nov 25, 2021 18:29:22.738851070 CET | 51945 | 23 | 192.168.2.23 | 163.148.235.64 |
Nov 25, 2021 18:29:22.738868952 CET | 51945 | 23 | 192.168.2.23 | 169.231.176.193 |
Nov 25, 2021 18:29:22.738878965 CET | 51945 | 23 | 192.168.2.23 | 209.108.255.11 |
Nov 25, 2021 18:29:22.738893986 CET | 51945 | 23 | 192.168.2.23 | 223.202.100.106 |
Nov 25, 2021 18:29:22.738898039 CET | 51945 | 23 | 192.168.2.23 | 67.129.186.224 |
Nov 25, 2021 18:29:22.738907099 CET | 51945 | 23 | 192.168.2.23 | 92.14.167.206 |
Nov 25, 2021 18:29:22.738918066 CET | 51945 | 23 | 192.168.2.23 | 24.254.57.219 |
Nov 25, 2021 18:29:22.738920927 CET | 51945 | 23 | 192.168.2.23 | 66.172.126.103 |
Nov 25, 2021 18:29:22.738931894 CET | 51945 | 23 | 192.168.2.23 | 82.198.185.12 |
Nov 25, 2021 18:29:22.738946915 CET | 51945 | 23 | 192.168.2.23 | 139.71.57.227 |
Nov 25, 2021 18:29:22.738962889 CET | 51945 | 23 | 192.168.2.23 | 60.152.190.24 |
Nov 25, 2021 18:29:22.738971949 CET | 51945 | 23 | 192.168.2.23 | 220.151.161.255 |
Nov 25, 2021 18:29:22.738998890 CET | 51945 | 23 | 192.168.2.23 | 156.246.86.115 |
Nov 25, 2021 18:29:22.739015102 CET | 51945 | 23 | 192.168.2.23 | 160.231.49.58 |
Nov 25, 2021 18:29:22.739032984 CET | 51945 | 23 | 192.168.2.23 | 12.64.58.107 |
Nov 25, 2021 18:29:22.739047050 CET | 51945 | 23 | 192.168.2.23 | 46.175.67.250 |
Nov 25, 2021 18:29:22.739053965 CET | 51945 | 23 | 192.168.2.23 | 103.217.87.176 |
Nov 25, 2021 18:29:22.739063978 CET | 51945 | 23 | 192.168.2.23 | 70.137.182.23 |
Nov 25, 2021 18:29:22.739067078 CET | 51945 | 23 | 192.168.2.23 | 18.80.251.148 |
Nov 25, 2021 18:29:22.739075899 CET | 51945 | 23 | 192.168.2.23 | 103.205.115.250 |
Nov 25, 2021 18:29:22.739090919 CET | 51945 | 23 | 192.168.2.23 | 131.79.135.103 |
Nov 25, 2021 18:29:22.739092112 CET | 51945 | 23 | 192.168.2.23 | 222.5.203.146 |
Nov 25, 2021 18:29:22.739103079 CET | 51945 | 23 | 192.168.2.23 | 78.27.194.242 |
Nov 25, 2021 18:29:22.739113092 CET | 51945 | 23 | 192.168.2.23 | 160.76.90.251 |
Nov 25, 2021 18:29:22.739147902 CET | 51945 | 23 | 192.168.2.23 | 45.253.7.171 |
Nov 25, 2021 18:29:22.739157915 CET | 51945 | 23 | 192.168.2.23 | 93.124.174.154 |
Nov 25, 2021 18:29:22.739167929 CET | 51945 | 23 | 192.168.2.23 | 148.245.174.83 |
Nov 25, 2021 18:29:22.739176989 CET | 51945 | 23 | 192.168.2.23 | 183.115.201.180 |
Nov 25, 2021 18:29:22.739188910 CET | 51945 | 23 | 192.168.2.23 | 112.32.188.203 |
Nov 25, 2021 18:29:22.739201069 CET | 51945 | 23 | 192.168.2.23 | 4.118.78.34 |
Nov 25, 2021 18:29:22.739219904 CET | 51945 | 23 | 192.168.2.23 | 204.114.190.79 |
Nov 25, 2021 18:29:22.739222050 CET | 51945 | 23 | 192.168.2.23 | 131.54.118.129 |
Nov 25, 2021 18:29:22.739228010 CET | 51945 | 23 | 192.168.2.23 | 167.124.247.128 |
Nov 25, 2021 18:29:22.739238024 CET | 51945 | 23 | 192.168.2.23 | 5.49.91.39 |
Nov 25, 2021 18:29:22.739262104 CET | 51945 | 23 | 192.168.2.23 | 73.75.255.161 |
Nov 25, 2021 18:29:22.739269972 CET | 51945 | 23 | 192.168.2.23 | 66.40.200.211 |
Nov 25, 2021 18:29:22.739279032 CET | 51945 | 23 | 192.168.2.23 | 88.241.104.44 |
Nov 25, 2021 18:29:22.739304066 CET | 51945 | 23 | 192.168.2.23 | 133.193.36.130 |
Nov 25, 2021 18:29:22.739309072 CET | 51945 | 23 | 192.168.2.23 | 169.246.70.213 |
Nov 25, 2021 18:29:22.739322901 CET | 51945 | 23 | 192.168.2.23 | 58.159.179.9 |
Nov 25, 2021 18:29:22.739330053 CET | 51945 | 23 | 192.168.2.23 | 61.111.58.44 |
Nov 25, 2021 18:29:22.739340067 CET | 51945 | 23 | 192.168.2.23 | 156.195.210.238 |
Nov 25, 2021 18:29:22.739362955 CET | 51945 | 23 | 192.168.2.23 | 102.162.13.134 |
Nov 25, 2021 18:29:22.739378929 CET | 51945 | 23 | 192.168.2.23 | 114.133.239.235 |
Nov 25, 2021 18:29:22.739389896 CET | 51945 | 23 | 192.168.2.23 | 20.208.22.242 |
Nov 25, 2021 18:29:22.739392996 CET | 51945 | 23 | 192.168.2.23 | 133.204.145.61 |
Nov 25, 2021 18:29:22.739408016 CET | 51945 | 23 | 192.168.2.23 | 92.211.166.54 |
Nov 25, 2021 18:29:22.739409924 CET | 51945 | 23 | 192.168.2.23 | 200.216.96.192 |
Nov 25, 2021 18:29:22.739418983 CET | 51945 | 23 | 192.168.2.23 | 188.101.74.102 |
Nov 25, 2021 18:29:22.739432096 CET | 51945 | 23 | 192.168.2.23 | 175.102.63.209 |
Nov 25, 2021 18:29:22.739439011 CET | 51945 | 23 | 192.168.2.23 | 102.140.18.230 |
DNS Queries |
---|
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class |
---|---|---|---|---|---|---|---|
Nov 25, 2021 18:30:11.517456055 CET | 192.168.2.23 | 8.8.8.8 | 0x808e | Standard query (0) | A (IP address) | IN (0x0001) | |
Nov 25, 2021 18:30:11.518490076 CET | 192.168.2.23 | 8.8.8.8 | 0xbc8d | Standard query (0) | 28 | IN (0x0001) |
DNS Answers |
---|
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class |
---|---|---|---|---|---|---|---|---|---|
Nov 25, 2021 18:30:11.549971104 CET | 8.8.8.8 | 192.168.2.23 | 0x808e | No error (0) | 162.213.33.132 | A (IP address) | IN (0x0001) | ||
Nov 25, 2021 18:30:11.549971104 CET | 8.8.8.8 | 192.168.2.23 | 0x808e | No error (0) | 162.213.33.108 | A (IP address) | IN (0x0001) |
System Behavior |
---|
General |
---|
Start time: | 18:29:21 |
Start date: | 25/11/2021 |
Path: | /tmp/seWzsbHlCC |
Arguments: | /tmp/seWzsbHlCC |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
General |
---|
Start time: | 18:29:22 |
Start date: | 25/11/2021 |
Path: | /tmp/seWzsbHlCC |
Arguments: | n/a |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
General |
---|
Start time: | 18:29:22 |
Start date: | 25/11/2021 |
Path: | /tmp/seWzsbHlCC |
Arguments: | n/a |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
General |
---|
Start time: | 18:29:22 |
Start date: | 25/11/2021 |
Path: | /tmp/seWzsbHlCC |
Arguments: | n/a |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
General |
---|
Start time: | 18:29:22 |
Start date: | 25/11/2021 |
Path: | /tmp/seWzsbHlCC |
Arguments: | n/a |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
General |
---|
Start time: | 18:29:22 |
Start date: | 25/11/2021 |
Path: | /tmp/seWzsbHlCC |
Arguments: | n/a |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
General |
---|
Start time: | 18:29:22 |
Start date: | 25/11/2021 |
Path: | /tmp/seWzsbHlCC |
Arguments: | n/a |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
General |
---|
Start time: | 18:29:22 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "rm -rf /tmp/* /var/* /var/run/* /var/tmp/*" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:22 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:22 |
Start date: | 25/11/2021 |
Path: | /usr/bin/rm |
Arguments: | rm -rf /tmp/config-err-dHT8bZ /tmp/dmesgtail.log /tmp/seWzsbHlCC /tmp/snap.lxd /tmp/ssh-hOQ5FjG2iVgO /tmp/systemd-private-ec795e01d534441298b2bf519e4c51fc-ModemManager.service-c4RYFi /tmp/systemd-private-ec795e01d534441298b2bf519e4c51fc-colord.service-gKIF8e /tmp/systemd-private-ec795e01d534441298b2bf519e4c51fc-fwupd.service-gB0a9f /tmp/systemd-private-ec795e01d534441298b2bf519e4c51fc-switcheroo-control.service-APWnLg /tmp/systemd-private-ec795e01d534441298b2bf519e4c51fc-systemd-logind.service-IofUpj /tmp/systemd-private-ec795e01d534441298b2bf519e4c51fc-systemd-resolved.service-AfPZzg /tmp/systemd-private-ec795e01d534441298b2bf519e4c51fc-upower.service-x0xO0i /tmp/vmware-root_721-4290559889 /var/backups /var/cache /var/crash /var/lib /var/local /var/lock /var/log /var/mail /var/metrics /var/opt /var/run /var/snap /var/spool /var/tmp /var/run/NetworkManager /var/run/acpid.pid /var/run/acpid.socket /var/run/apport.lock /var/run/avahi-daemon /var/run/blkid /var/run/cloud-init /var/run/console-setup /var/run/crond.pid /var/run/crond.reboot /var/run/cryptsetup /var/run/cups /var/run/dbus /var/run/dmeventd-client /var/run/dmeventd-server /var/run/gdm3 /var/run/gdm3.pid /var/run/initctl /var/run/initramfs /var/run/irqbalance /var/run/lock /var/run/log /var/run/lvm /var/run/mlocate.daily.lock /var/run/mono-xsp4 /var/run/mono-xsp4.pid /var/run/motd.d /var/run/mount /var/run/multipathd.pid /var/run/netns /var/run/network /var/run/screen /var/run/sendsigs.omit.d /var/run/shm /var/run/snapd /var/run/snapd-snap.socket /var/run/snapd.socket /var/run/speech-dispatcher /var/run/spice-vdagentd /var/run/sshd /var/run/sshd.pid /var/run/sudo /var/run/systemd /var/run/tmpfiles.d /var/run/udev /var/run/udisks2 /var/run/unattended-upgrades.lock /var/run/user /var/run/utmp /var/run/uuidd /var/run/vmware /var/tmp/systemd-private-ec795e01d534441298b2bf519e4c51fc-ModemManager.service-J6Q1Te /var/tmp/systemd-private-ec795e01d534441298b2bf519e4c51fc-colord.service-srP90f /var/tmp/systemd-private-ec795e01d534441298b2bf519e4c51fc-fwupd.service-biJ0Gi /var/tmp/systemd-private-ec795e01d534441298b2bf519e4c51fc-switcheroo-control.service-1jIxdj /var/tmp/systemd-private-ec795e01d534441298b2bf519e4c51fc-systemd-logind.service-llmWag /var/tmp/systemd-private-ec795e01d534441298b2bf519e4c51fc-systemd-resolved.service-X16eHh /var/tmp/systemd-private-ec795e01d534441298b2bf519e4c51fc-upower.service-GpSnaf |
File size: | 72056 bytes |
MD5 hash: | aa2b5496fdbfd88e38791ab81f90b95b |
General |
---|
Start time: | 18:29:34 |
Start date: | 25/11/2021 |
Path: | /tmp/seWzsbHlCC |
Arguments: | n/a |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
General |
---|
Start time: | 18:29:34 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "rm -rf /var/log/wtmp" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:34 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:34 |
Start date: | 25/11/2021 |
Path: | /usr/bin/rm |
Arguments: | rm -rf /var/log/wtmp |
File size: | 72056 bytes |
MD5 hash: | aa2b5496fdbfd88e38791ab81f90b95b |
General |
---|
Start time: | 18:29:34 |
Start date: | 25/11/2021 |
Path: | /tmp/seWzsbHlCC |
Arguments: | n/a |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
General |
---|
Start time: | 18:29:34 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "rm -rf /tmp/*" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:34 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:34 |
Start date: | 25/11/2021 |
Path: | /usr/bin/rm |
Arguments: | rm -rf /tmp/* |
File size: | 72056 bytes |
MD5 hash: | aa2b5496fdbfd88e38791ab81f90b95b |
General |
---|
Start time: | 18:29:34 |
Start date: | 25/11/2021 |
Path: | /tmp/seWzsbHlCC |
Arguments: | n/a |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
General |
---|
Start time: | 18:29:34 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "rm -rf /bin/netstat" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:34 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:34 |
Start date: | 25/11/2021 |
Path: | /usr/bin/rm |
Arguments: | rm -rf /bin/netstat |
File size: | 72056 bytes |
MD5 hash: | aa2b5496fdbfd88e38791ab81f90b95b |
General |
---|
Start time: | 18:29:34 |
Start date: | 25/11/2021 |
Path: | /tmp/seWzsbHlCC |
Arguments: | n/a |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
General |
---|
Start time: | 18:29:34 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "iptables -F" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:34 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:34 |
Start date: | 25/11/2021 |
Path: | /usr/sbin/iptables |
Arguments: | iptables -F |
File size: | 99296 bytes |
MD5 hash: | 1ab05fef765b6342cdfadaa5275b33af |
General |
---|
Start time: | 18:29:34 |
Start date: | 25/11/2021 |
Path: | /tmp/seWzsbHlCC |
Arguments: | n/a |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
General |
---|
Start time: | 18:29:34 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "pkill -9 busybox" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:34 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:34 |
Start date: | 25/11/2021 |
Path: | /usr/bin/pkill |
Arguments: | pkill -9 busybox |
File size: | 30968 bytes |
MD5 hash: | fa96a75a08109d8842e4865b2907d51f |
General |
---|
Start time: | 18:29:36 |
Start date: | 25/11/2021 |
Path: | /tmp/seWzsbHlCC |
Arguments: | n/a |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
General |
---|
Start time: | 18:29:36 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "pkill -9 perl" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:36 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:36 |
Start date: | 25/11/2021 |
Path: | /usr/bin/pkill |
Arguments: | pkill -9 perl |
File size: | 30968 bytes |
MD5 hash: | fa96a75a08109d8842e4865b2907d51f |
General |
---|
Start time: | 18:29:38 |
Start date: | 25/11/2021 |
Path: | /tmp/seWzsbHlCC |
Arguments: | n/a |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
General |
---|
Start time: | 18:29:38 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "pkill -9 python" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:38 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:38 |
Start date: | 25/11/2021 |
Path: | /usr/bin/pkill |
Arguments: | pkill -9 python |
File size: | 30968 bytes |
MD5 hash: | fa96a75a08109d8842e4865b2907d51f |
General |
---|
Start time: | 18:29:41 |
Start date: | 25/11/2021 |
Path: | /tmp/seWzsbHlCC |
Arguments: | n/a |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
General |
---|
Start time: | 18:29:41 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "service iptables stop" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:41 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:41 |
Start date: | 25/11/2021 |
Path: | /usr/sbin/service |
Arguments: | service iptables stop |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:41 |
Start date: | 25/11/2021 |
Path: | /usr/sbin/service |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:41 |
Start date: | 25/11/2021 |
Path: | /usr/bin/basename |
Arguments: | basename /usr/sbin/service |
File size: | 39256 bytes |
MD5 hash: | 3283660e59f128df18bec9b96fbd4d41 |
General |
---|
Start time: | 18:29:41 |
Start date: | 25/11/2021 |
Path: | /usr/sbin/service |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:41 |
Start date: | 25/11/2021 |
Path: | /usr/bin/basename |
Arguments: | basename /usr/sbin/service |
File size: | 39256 bytes |
MD5 hash: | 3283660e59f128df18bec9b96fbd4d41 |
General |
---|
Start time: | 18:29:41 |
Start date: | 25/11/2021 |
Path: | /usr/sbin/service |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:41 |
Start date: | 25/11/2021 |
Path: | /usr/bin/systemctl |
Arguments: | systemctl --quiet is-active multi-user.target |
File size: | 996584 bytes |
MD5 hash: | 4deddfb6741481f68aeac522cc26ff4b |
General |
---|
Start time: | 18:29:41 |
Start date: | 25/11/2021 |
Path: | /usr/sbin/service |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:41 |
Start date: | 25/11/2021 |
Path: | /usr/sbin/service |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:41 |
Start date: | 25/11/2021 |
Path: | /usr/bin/systemctl |
Arguments: | systemctl list-unit-files --full --type=socket |
File size: | 996584 bytes |
MD5 hash: | 4deddfb6741481f68aeac522cc26ff4b |
General |
---|
Start time: | 18:29:41 |
Start date: | 25/11/2021 |
Path: | /usr/sbin/service |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:41 |
Start date: | 25/11/2021 |
Path: | /usr/bin/sed |
Arguments: | sed -ne s/\\.socket\\s*[a-z]*\\s*$/.socket/p |
File size: | 121288 bytes |
MD5 hash: | 885062561f66aa1d4af4c54b9e7cc81a |
General |
---|
Start time: | 18:29:43 |
Start date: | 25/11/2021 |
Path: | /usr/bin/systemctl |
Arguments: | systemctl stop iptables.service |
File size: | 996584 bytes |
MD5 hash: | 4deddfb6741481f68aeac522cc26ff4b |
General |
---|
Start time: | 18:29:43 |
Start date: | 25/11/2021 |
Path: | /tmp/seWzsbHlCC |
Arguments: | n/a |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
General |
---|
Start time: | 18:29:43 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "/sbin/iptables -F; /sbin/iptables -X" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:43 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:43 |
Start date: | 25/11/2021 |
Path: | /sbin/iptables |
Arguments: | /sbin/iptables -F |
File size: | 99296 bytes |
MD5 hash: | 1ab05fef765b6342cdfadaa5275b33af |
General |
---|
Start time: | 18:29:43 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:43 |
Start date: | 25/11/2021 |
Path: | /sbin/iptables |
Arguments: | /sbin/iptables -X |
File size: | 99296 bytes |
MD5 hash: | 1ab05fef765b6342cdfadaa5275b33af |
General |
---|
Start time: | 18:29:44 |
Start date: | 25/11/2021 |
Path: | /tmp/seWzsbHlCC |
Arguments: | n/a |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
General |
---|
Start time: | 18:29:44 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "service firewalld stop" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:44 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:44 |
Start date: | 25/11/2021 |
Path: | /usr/sbin/service |
Arguments: | service firewalld stop |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:44 |
Start date: | 25/11/2021 |
Path: | /usr/sbin/service |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:44 |
Start date: | 25/11/2021 |
Path: | /usr/bin/basename |
Arguments: | basename /usr/sbin/service |
File size: | 39256 bytes |
MD5 hash: | 3283660e59f128df18bec9b96fbd4d41 |
General |
---|
Start time: | 18:29:44 |
Start date: | 25/11/2021 |
Path: | /usr/sbin/service |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:44 |
Start date: | 25/11/2021 |
Path: | /usr/bin/basename |
Arguments: | basename /usr/sbin/service |
File size: | 39256 bytes |
MD5 hash: | 3283660e59f128df18bec9b96fbd4d41 |
General |
---|
Start time: | 18:29:44 |
Start date: | 25/11/2021 |
Path: | /usr/sbin/service |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:44 |
Start date: | 25/11/2021 |
Path: | /usr/bin/systemctl |
Arguments: | systemctl --quiet is-active multi-user.target |
File size: | 996584 bytes |
MD5 hash: | 4deddfb6741481f68aeac522cc26ff4b |
General |
---|
Start time: | 18:29:44 |
Start date: | 25/11/2021 |
Path: | /usr/sbin/service |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:44 |
Start date: | 25/11/2021 |
Path: | /usr/sbin/service |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:44 |
Start date: | 25/11/2021 |
Path: | /usr/bin/systemctl |
Arguments: | systemctl list-unit-files --full --type=socket |
File size: | 996584 bytes |
MD5 hash: | 4deddfb6741481f68aeac522cc26ff4b |
General |
---|
Start time: | 18:29:44 |
Start date: | 25/11/2021 |
Path: | /usr/sbin/service |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:44 |
Start date: | 25/11/2021 |
Path: | /usr/bin/sed |
Arguments: | sed -ne s/\\.socket\\s*[a-z]*\\s*$/.socket/p |
File size: | 121288 bytes |
MD5 hash: | 885062561f66aa1d4af4c54b9e7cc81a |
General |
---|
Start time: | 18:29:47 |
Start date: | 25/11/2021 |
Path: | /usr/bin/systemctl |
Arguments: | systemctl stop firewalld.service |
File size: | 996584 bytes |
MD5 hash: | 4deddfb6741481f68aeac522cc26ff4b |
General |
---|
Start time: | 18:29:47 |
Start date: | 25/11/2021 |
Path: | /tmp/seWzsbHlCC |
Arguments: | n/a |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
General |
---|
Start time: | 18:29:47 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "rm -rf ~/.bash_history" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:48 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:29:48 |
Start date: | 25/11/2021 |
Path: | /usr/bin/rm |
Arguments: | rm -rf /root/.bash_history |
File size: | 72056 bytes |
MD5 hash: | aa2b5496fdbfd88e38791ab81f90b95b |
General |
---|
Start time: | 18:29:48 |
Start date: | 25/11/2021 |
Path: | /tmp/seWzsbHlCC |
Arguments: | n/a |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
General |
---|
Start time: | 18:29:48 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "history -c" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:30:10 |
Start date: | 25/11/2021 |
Path: | /usr/lib/systemd/systemd |
Arguments: | n/a |
File size: | 1620224 bytes |
MD5 hash: | 9b2bec7092a40488108543f9334aab75 |
General |
---|
Start time: | 18:30:10 |
Start date: | 25/11/2021 |
Path: | /usr/bin/whoopsie |
Arguments: | /usr/bin/whoopsie -f |
File size: | 68592 bytes |
MD5 hash: | d3a6915d0e7398fb4c89a037c13959c8 |
General |
---|
Start time: | 18:30:14 |
Start date: | 25/11/2021 |
Path: | /usr/lib/systemd/systemd |
Arguments: | n/a |
File size: | 1620224 bytes |
MD5 hash: | 9b2bec7092a40488108543f9334aab75 |
General |
---|
Start time: | 18:30:14 |
Start date: | 25/11/2021 |
Path: | /usr/sbin/sshd |
Arguments: | /usr/sbin/sshd -t |
File size: | 876328 bytes |
MD5 hash: | dbca7a6bbf7bf57fedac243d4b2cb340 |
General |
---|
Start time: | 18:30:14 |
Start date: | 25/11/2021 |
Path: | /usr/lib/systemd/systemd |
Arguments: | n/a |
File size: | 1620224 bytes |
MD5 hash: | 9b2bec7092a40488108543f9334aab75 |
General |
---|
Start time: | 18:30:14 |
Start date: | 25/11/2021 |
Path: | /usr/sbin/sshd |
Arguments: | /usr/sbin/sshd -D |
File size: | 876328 bytes |
MD5 hash: | dbca7a6bbf7bf57fedac243d4b2cb340 |
General |
---|
Start time: | 18:30:21 |
Start date: | 25/11/2021 |
Path: | /usr/sbin/gdm3 |
Arguments: | n/a |
File size: | 453296 bytes |
MD5 hash: | 2492e2d8d34f9377e3e530a61a15674f |
General |
---|
Start time: | 18:30:21 |
Start date: | 25/11/2021 |
Path: | /etc/gdm3/PrimeOff/Default |
Arguments: | /etc/gdm3/PrimeOff/Default |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:30:21 |
Start date: | 25/11/2021 |
Path: | /usr/sbin/gdm3 |
Arguments: | n/a |
File size: | 453296 bytes |
MD5 hash: | 2492e2d8d34f9377e3e530a61a15674f |
General |
---|
Start time: | 18:30:21 |
Start date: | 25/11/2021 |
Path: | /etc/gdm3/PrimeOff/Default |
Arguments: | /etc/gdm3/PrimeOff/Default |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:30:21 |
Start date: | 25/11/2021 |
Path: | /usr/lib/systemd/systemd |
Arguments: | n/a |
File size: | 1620224 bytes |
MD5 hash: | 9b2bec7092a40488108543f9334aab75 |
General |
---|
Start time: | 18:30:21 |
Start date: | 25/11/2021 |
Path: | /usr/lib/accountsservice/accounts-daemon |
Arguments: | /usr/lib/accountsservice/accounts-daemon |
File size: | 203192 bytes |
MD5 hash: | 01a899e3fb5e7e434bea1290255a1f30 |
General |
---|
Start time: | 18:30:43 |
Start date: | 25/11/2021 |
Path: | /usr/lib/systemd/systemd |
Arguments: | n/a |
File size: | 1620224 bytes |
MD5 hash: | 9b2bec7092a40488108543f9334aab75 |
General |
---|
Start time: | 18:30:43 |
Start date: | 25/11/2021 |
Path: | /usr/bin/pulseaudio |
Arguments: | /usr/bin/pulseaudio --daemonize=no --log-target=journal |
File size: | 100832 bytes |
MD5 hash: | 0c3b4c789d8ffb12b25507f27e14c186 |
General |
---|
Start time: | 18:30:47 |
Start date: | 25/11/2021 |
Path: | /usr/lib/systemd/systemd |
Arguments: | n/a |
File size: | 1620224 bytes |
MD5 hash: | 9b2bec7092a40488108543f9334aab75 |
General |
---|
Start time: | 18:30:47 |
Start date: | 25/11/2021 |
Path: | /usr/bin/gpu-manager |
Arguments: | /usr/bin/gpu-manager --log /var/log/gpu-manager.log |
File size: | 76616 bytes |
MD5 hash: | 8fae9dd5dd67e1f33d873089c2fd8761 |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /usr/bin/gpu-manager |
Arguments: | n/a |
File size: | 76616 bytes |
MD5 hash: | 8fae9dd5dd67e1f33d873089c2fd8761 |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "grep -G \"^blacklist.*nvidia[[:space:]]*$\" /etc/modprobe.d/*.conf" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /usr/bin/grep |
Arguments: | grep -G ^blacklist.*nvidia[[:space:]]*$ /etc/modprobe.d/alsa-base.conf /etc/modprobe.d/amd64-microcode-blacklist.conf /etc/modprobe.d/blacklist-ath_pci.conf /etc/modprobe.d/blacklist-firewire.conf /etc/modprobe.d/blacklist-framebuffer.conf /etc/modprobe.d/blacklist-modem.conf /etc/modprobe.d/blacklist-oss.conf /etc/modprobe.d/blacklist-rare-network.conf /etc/modprobe.d/blacklist.conf /etc/modprobe.d/intel-microcode-blacklist.conf /etc/modprobe.d/iwlwifi.conf /etc/modprobe.d/mdadm.conf |
File size: | 199136 bytes |
MD5 hash: | 1e6ebb9dd094f774478f72727bdba0f5 |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /usr/bin/gpu-manager |
Arguments: | n/a |
File size: | 76616 bytes |
MD5 hash: | 8fae9dd5dd67e1f33d873089c2fd8761 |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "grep -G \"^blacklist.*nvidia[[:space:]]*$\" /lib/modprobe.d/*.conf" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /usr/bin/grep |
Arguments: | grep -G ^blacklist.*nvidia[[:space:]]*$ /lib/modprobe.d/aliases.conf /lib/modprobe.d/blacklist_linux_5.4.0-72-generic.conf /lib/modprobe.d/blacklist_linux_5.4.0-81-generic.conf /lib/modprobe.d/fbdev-blacklist.conf /lib/modprobe.d/systemd.conf |
File size: | 199136 bytes |
MD5 hash: | 1e6ebb9dd094f774478f72727bdba0f5 |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /usr/bin/gpu-manager |
Arguments: | n/a |
File size: | 76616 bytes |
MD5 hash: | 8fae9dd5dd67e1f33d873089c2fd8761 |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "grep -G \"^blacklist.*radeon[[:space:]]*$\" /etc/modprobe.d/*.conf" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /usr/bin/grep |
Arguments: | grep -G ^blacklist.*radeon[[:space:]]*$ /etc/modprobe.d/alsa-base.conf /etc/modprobe.d/amd64-microcode-blacklist.conf /etc/modprobe.d/blacklist-ath_pci.conf /etc/modprobe.d/blacklist-firewire.conf /etc/modprobe.d/blacklist-framebuffer.conf /etc/modprobe.d/blacklist-modem.conf /etc/modprobe.d/blacklist-oss.conf /etc/modprobe.d/blacklist-rare-network.conf /etc/modprobe.d/blacklist.conf /etc/modprobe.d/intel-microcode-blacklist.conf /etc/modprobe.d/iwlwifi.conf /etc/modprobe.d/mdadm.conf |
File size: | 199136 bytes |
MD5 hash: | 1e6ebb9dd094f774478f72727bdba0f5 |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /usr/bin/gpu-manager |
Arguments: | n/a |
File size: | 76616 bytes |
MD5 hash: | 8fae9dd5dd67e1f33d873089c2fd8761 |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "grep -G \"^blacklist.*radeon[[:space:]]*$\" /lib/modprobe.d/*.conf" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /usr/bin/grep |
Arguments: | grep -G ^blacklist.*radeon[[:space:]]*$ /lib/modprobe.d/aliases.conf /lib/modprobe.d/blacklist_linux_5.4.0-72-generic.conf /lib/modprobe.d/blacklist_linux_5.4.0-81-generic.conf /lib/modprobe.d/fbdev-blacklist.conf /lib/modprobe.d/systemd.conf |
File size: | 199136 bytes |
MD5 hash: | 1e6ebb9dd094f774478f72727bdba0f5 |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /usr/bin/gpu-manager |
Arguments: | n/a |
File size: | 76616 bytes |
MD5 hash: | 8fae9dd5dd67e1f33d873089c2fd8761 |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "grep -G \"^blacklist.*amdgpu[[:space:]]*$\" /etc/modprobe.d/*.conf" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /usr/bin/grep |
Arguments: | grep -G ^blacklist.*amdgpu[[:space:]]*$ /etc/modprobe.d/alsa-base.conf /etc/modprobe.d/amd64-microcode-blacklist.conf /etc/modprobe.d/blacklist-ath_pci.conf /etc/modprobe.d/blacklist-firewire.conf /etc/modprobe.d/blacklist-framebuffer.conf /etc/modprobe.d/blacklist-modem.conf /etc/modprobe.d/blacklist-oss.conf /etc/modprobe.d/blacklist-rare-network.conf /etc/modprobe.d/blacklist.conf /etc/modprobe.d/intel-microcode-blacklist.conf /etc/modprobe.d/iwlwifi.conf /etc/modprobe.d/mdadm.conf |
File size: | 199136 bytes |
MD5 hash: | 1e6ebb9dd094f774478f72727bdba0f5 |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /usr/bin/gpu-manager |
Arguments: | n/a |
File size: | 76616 bytes |
MD5 hash: | 8fae9dd5dd67e1f33d873089c2fd8761 |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "grep -G \"^blacklist.*amdgpu[[:space:]]*$\" /lib/modprobe.d/*.conf" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /usr/bin/grep |
Arguments: | grep -G ^blacklist.*amdgpu[[:space:]]*$ /lib/modprobe.d/aliases.conf /lib/modprobe.d/blacklist_linux_5.4.0-72-generic.conf /lib/modprobe.d/blacklist_linux_5.4.0-81-generic.conf /lib/modprobe.d/fbdev-blacklist.conf /lib/modprobe.d/systemd.conf |
File size: | 199136 bytes |
MD5 hash: | 1e6ebb9dd094f774478f72727bdba0f5 |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /usr/bin/gpu-manager |
Arguments: | n/a |
File size: | 76616 bytes |
MD5 hash: | 8fae9dd5dd67e1f33d873089c2fd8761 |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "grep -G \"^blacklist.*nouveau[[:space:]]*$\" /etc/modprobe.d/*.conf" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /usr/bin/grep |
Arguments: | grep -G ^blacklist.*nouveau[[:space:]]*$ /etc/modprobe.d/alsa-base.conf /etc/modprobe.d/amd64-microcode-blacklist.conf /etc/modprobe.d/blacklist-ath_pci.conf /etc/modprobe.d/blacklist-firewire.conf /etc/modprobe.d/blacklist-framebuffer.conf /etc/modprobe.d/blacklist-modem.conf /etc/modprobe.d/blacklist-oss.conf /etc/modprobe.d/blacklist-rare-network.conf /etc/modprobe.d/blacklist.conf /etc/modprobe.d/intel-microcode-blacklist.conf /etc/modprobe.d/iwlwifi.conf /etc/modprobe.d/mdadm.conf |
File size: | 199136 bytes |
MD5 hash: | 1e6ebb9dd094f774478f72727bdba0f5 |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /usr/bin/gpu-manager |
Arguments: | n/a |
File size: | 76616 bytes |
MD5 hash: | 8fae9dd5dd67e1f33d873089c2fd8761 |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "grep -G \"^blacklist.*nouveau[[:space:]]*$\" /lib/modprobe.d/*.conf" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:30:48 |
Start date: | 25/11/2021 |
Path: | /usr/bin/grep |
Arguments: | grep -G ^blacklist.*nouveau[[:space:]]*$ /lib/modprobe.d/aliases.conf /lib/modprobe.d/blacklist_linux_5.4.0-72-generic.conf /lib/modprobe.d/blacklist_linux_5.4.0-81-generic.conf /lib/modprobe.d/fbdev-blacklist.conf /lib/modprobe.d/systemd.conf |
File size: | 199136 bytes |
MD5 hash: | 1e6ebb9dd094f774478f72727bdba0f5 |
General |
---|
Start time: | 18:30:50 |
Start date: | 25/11/2021 |
Path: | /usr/lib/systemd/systemd |
Arguments: | n/a |
File size: | 1620224 bytes |
MD5 hash: | 9b2bec7092a40488108543f9334aab75 |
General |
---|
Start time: | 18:30:50 |
Start date: | 25/11/2021 |
Path: | /usr/share/gdm/generate-config |
Arguments: | /usr/share/gdm/generate-config |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:30:50 |
Start date: | 25/11/2021 |
Path: | /usr/share/gdm/generate-config |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:30:50 |
Start date: | 25/11/2021 |
Path: | /usr/bin/pkill |
Arguments: | pkill --signal HUP --uid gdm dconf-service |
File size: | 30968 bytes |
MD5 hash: | fa96a75a08109d8842e4865b2907d51f |
General |
---|
Start time: | 18:30:52 |
Start date: | 25/11/2021 |
Path: | /usr/lib/systemd/systemd |
Arguments: | n/a |
File size: | 1620224 bytes |
MD5 hash: | 9b2bec7092a40488108543f9334aab75 |
General |
---|
Start time: | 18:30:52 |
Start date: | 25/11/2021 |
Path: | /usr/lib/gdm3/gdm-wait-for-drm |
Arguments: | /usr/lib/gdm3/gdm-wait-for-drm |
File size: | 14640 bytes |
MD5 hash: | 82043ba752c6930b4e6aaea2f7747545 |
General |
---|
Start time: | 18:30:55 |
Start date: | 25/11/2021 |
Path: | /usr/libexec/gvfsd-fuse |
Arguments: | n/a |
File size: | 47632 bytes |
MD5 hash: | d18fbf1cbf8eb57b17fac48b7b4be933 |
General |
---|
Start time: | 18:30:55 |
Start date: | 25/11/2021 |
Path: | /bin/fusermount |
Arguments: | fusermount -u -q -z -- /run/user/1000/gvfs |
File size: | 39144 bytes |
MD5 hash: | 576a1b135c82bdcbc97a91acea900566 |
General |
---|
Start time: | 18:30:55 |
Start date: | 25/11/2021 |
Path: | /usr/lib/systemd/systemd |
Arguments: | n/a |
File size: | 1620224 bytes |
MD5 hash: | 9b2bec7092a40488108543f9334aab75 |
General |
---|
Start time: | 18:30:55 |
Start date: | 25/11/2021 |
Path: | /lib/systemd/systemd-user-runtime-dir |
Arguments: | /lib/systemd/systemd-user-runtime-dir stop 1000 |
File size: | 22672 bytes |
MD5 hash: | d55f4b0847f88131dbcfb07435178e54 |
General |
---|
Start time: | 18:31:02 |
Start date: | 25/11/2021 |
Path: | /usr/lib/systemd/systemd |
Arguments: | n/a |
File size: | 1620224 bytes |
MD5 hash: | 9b2bec7092a40488108543f9334aab75 |
General |
---|
Start time: | 18:31:02 |
Start date: | 25/11/2021 |
Path: | /usr/sbin/gdm3 |
Arguments: | /usr/sbin/gdm3 |
File size: | 453296 bytes |
MD5 hash: | 2492e2d8d34f9377e3e530a61a15674f |
General |
---|
Start time: | 18:32:33 |
Start date: | 25/11/2021 |
Path: | /usr/lib/systemd/systemd |
Arguments: | n/a |
File size: | 1620224 bytes |
MD5 hash: | 9b2bec7092a40488108543f9334aab75 |
General |
---|
Start time: | 18:32:33 |
Start date: | 25/11/2021 |
Path: | /usr/bin/gpu-manager |
Arguments: | /usr/bin/gpu-manager --log /var/log/gpu-manager.log |
File size: | 76616 bytes |
MD5 hash: | 8fae9dd5dd67e1f33d873089c2fd8761 |
General |
---|
Start time: | 18:32:33 |
Start date: | 25/11/2021 |
Path: | /usr/bin/gpu-manager |
Arguments: | n/a |
File size: | 76616 bytes |
MD5 hash: | 8fae9dd5dd67e1f33d873089c2fd8761 |
General |
---|
Start time: | 18:32:33 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "grep -G \"^blacklist.*nvidia[[:space:]]*$\" /etc/modprobe.d/*.conf" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:32:33 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:32:33 |
Start date: | 25/11/2021 |
Path: | /usr/bin/grep |
Arguments: | grep -G ^blacklist.*nvidia[[:space:]]*$ /etc/modprobe.d/alsa-base.conf /etc/modprobe.d/amd64-microcode-blacklist.conf /etc/modprobe.d/blacklist-ath_pci.conf /etc/modprobe.d/blacklist-firewire.conf /etc/modprobe.d/blacklist-framebuffer.conf /etc/modprobe.d/blacklist-modem.conf /etc/modprobe.d/blacklist-oss.conf /etc/modprobe.d/blacklist-rare-network.conf /etc/modprobe.d/blacklist.conf /etc/modprobe.d/intel-microcode-blacklist.conf /etc/modprobe.d/iwlwifi.conf /etc/modprobe.d/mdadm.conf |
File size: | 199136 bytes |
MD5 hash: | 1e6ebb9dd094f774478f72727bdba0f5 |
General |
---|
Start time: | 18:32:33 |
Start date: | 25/11/2021 |
Path: | /usr/bin/gpu-manager |
Arguments: | n/a |
File size: | 76616 bytes |
MD5 hash: | 8fae9dd5dd67e1f33d873089c2fd8761 |
General |
---|
Start time: | 18:32:33 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "grep -G \"^blacklist.*nvidia[[:space:]]*$\" /lib/modprobe.d/*.conf" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:32:33 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:32:33 |
Start date: | 25/11/2021 |
Path: | /usr/bin/grep |
Arguments: | grep -G ^blacklist.*nvidia[[:space:]]*$ /lib/modprobe.d/aliases.conf /lib/modprobe.d/blacklist_linux_5.4.0-72-generic.conf /lib/modprobe.d/blacklist_linux_5.4.0-81-generic.conf /lib/modprobe.d/fbdev-blacklist.conf /lib/modprobe.d/systemd.conf |
File size: | 199136 bytes |
MD5 hash: | 1e6ebb9dd094f774478f72727bdba0f5 |
General |
---|
Start time: | 18:32:33 |
Start date: | 25/11/2021 |
Path: | /usr/bin/gpu-manager |
Arguments: | n/a |
File size: | 76616 bytes |
MD5 hash: | 8fae9dd5dd67e1f33d873089c2fd8761 |
General |
---|
Start time: | 18:32:33 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "grep -G \"^blacklist.*radeon[[:space:]]*$\" /etc/modprobe.d/*.conf" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:32:33 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:32:33 |
Start date: | 25/11/2021 |
Path: | /usr/bin/grep |
Arguments: | grep -G ^blacklist.*radeon[[:space:]]*$ /etc/modprobe.d/alsa-base.conf /etc/modprobe.d/amd64-microcode-blacklist.conf /etc/modprobe.d/blacklist-ath_pci.conf /etc/modprobe.d/blacklist-firewire.conf /etc/modprobe.d/blacklist-framebuffer.conf /etc/modprobe.d/blacklist-modem.conf /etc/modprobe.d/blacklist-oss.conf /etc/modprobe.d/blacklist-rare-network.conf /etc/modprobe.d/blacklist.conf /etc/modprobe.d/intel-microcode-blacklist.conf /etc/modprobe.d/iwlwifi.conf /etc/modprobe.d/mdadm.conf |
File size: | 199136 bytes |
MD5 hash: | 1e6ebb9dd094f774478f72727bdba0f5 |
General |
---|
Start time: | 18:32:34 |
Start date: | 25/11/2021 |
Path: | /usr/bin/gpu-manager |
Arguments: | n/a |
File size: | 76616 bytes |
MD5 hash: | 8fae9dd5dd67e1f33d873089c2fd8761 |
General |
---|
Start time: | 18:32:34 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "grep -G \"^blacklist.*radeon[[:space:]]*$\" /lib/modprobe.d/*.conf" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:32:34 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:32:34 |
Start date: | 25/11/2021 |
Path: | /usr/bin/grep |
Arguments: | grep -G ^blacklist.*radeon[[:space:]]*$ /lib/modprobe.d/aliases.conf /lib/modprobe.d/blacklist_linux_5.4.0-72-generic.conf /lib/modprobe.d/blacklist_linux_5.4.0-81-generic.conf /lib/modprobe.d/fbdev-blacklist.conf /lib/modprobe.d/systemd.conf |
File size: | 199136 bytes |
MD5 hash: | 1e6ebb9dd094f774478f72727bdba0f5 |
General |
---|
Start time: | 18:32:34 |
Start date: | 25/11/2021 |
Path: | /usr/bin/gpu-manager |
Arguments: | n/a |
File size: | 76616 bytes |
MD5 hash: | 8fae9dd5dd67e1f33d873089c2fd8761 |
General |
---|
Start time: | 18:32:34 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "grep -G \"^blacklist.*amdgpu[[:space:]]*$\" /etc/modprobe.d/*.conf" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:32:34 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:32:34 |
Start date: | 25/11/2021 |
Path: | /usr/bin/grep |
Arguments: | grep -G ^blacklist.*amdgpu[[:space:]]*$ /etc/modprobe.d/alsa-base.conf /etc/modprobe.d/amd64-microcode-blacklist.conf /etc/modprobe.d/blacklist-ath_pci.conf /etc/modprobe.d/blacklist-firewire.conf /etc/modprobe.d/blacklist-framebuffer.conf /etc/modprobe.d/blacklist-modem.conf /etc/modprobe.d/blacklist-oss.conf /etc/modprobe.d/blacklist-rare-network.conf /etc/modprobe.d/blacklist.conf /etc/modprobe.d/intel-microcode-blacklist.conf /etc/modprobe.d/iwlwifi.conf /etc/modprobe.d/mdadm.conf |
File size: | 199136 bytes |
MD5 hash: | 1e6ebb9dd094f774478f72727bdba0f5 |
General |
---|
Start time: | 18:32:34 |
Start date: | 25/11/2021 |
Path: | /usr/bin/gpu-manager |
Arguments: | n/a |
File size: | 76616 bytes |
MD5 hash: | 8fae9dd5dd67e1f33d873089c2fd8761 |
General |
---|
Start time: | 18:32:34 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "grep -G \"^blacklist.*amdgpu[[:space:]]*$\" /lib/modprobe.d/*.conf" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:32:34 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:32:34 |
Start date: | 25/11/2021 |
Path: | /usr/bin/grep |
Arguments: | grep -G ^blacklist.*amdgpu[[:space:]]*$ /lib/modprobe.d/aliases.conf /lib/modprobe.d/blacklist_linux_5.4.0-72-generic.conf /lib/modprobe.d/blacklist_linux_5.4.0-81-generic.conf /lib/modprobe.d/fbdev-blacklist.conf /lib/modprobe.d/systemd.conf |
File size: | 199136 bytes |
MD5 hash: | 1e6ebb9dd094f774478f72727bdba0f5 |
General |
---|
Start time: | 18:32:34 |
Start date: | 25/11/2021 |
Path: | /usr/bin/gpu-manager |
Arguments: | n/a |
File size: | 76616 bytes |
MD5 hash: | 8fae9dd5dd67e1f33d873089c2fd8761 |
General |
---|
Start time: | 18:32:34 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "grep -G \"^blacklist.*nouveau[[:space:]]*$\" /etc/modprobe.d/*.conf" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:32:35 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:32:35 |
Start date: | 25/11/2021 |
Path: | /usr/bin/grep |
Arguments: | grep -G ^blacklist.*nouveau[[:space:]]*$ /etc/modprobe.d/alsa-base.conf /etc/modprobe.d/amd64-microcode-blacklist.conf /etc/modprobe.d/blacklist-ath_pci.conf /etc/modprobe.d/blacklist-firewire.conf /etc/modprobe.d/blacklist-framebuffer.conf /etc/modprobe.d/blacklist-modem.conf /etc/modprobe.d/blacklist-oss.conf /etc/modprobe.d/blacklist-rare-network.conf /etc/modprobe.d/blacklist.conf /etc/modprobe.d/intel-microcode-blacklist.conf /etc/modprobe.d/iwlwifi.conf /etc/modprobe.d/mdadm.conf |
File size: | 199136 bytes |
MD5 hash: | 1e6ebb9dd094f774478f72727bdba0f5 |
General |
---|
Start time: | 18:32:35 |
Start date: | 25/11/2021 |
Path: | /usr/bin/gpu-manager |
Arguments: | n/a |
File size: | 76616 bytes |
MD5 hash: | 8fae9dd5dd67e1f33d873089c2fd8761 |
General |
---|
Start time: | 18:32:35 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | sh -c "grep -G \"^blacklist.*nouveau[[:space:]]*$\" /lib/modprobe.d/*.conf" |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:32:35 |
Start date: | 25/11/2021 |
Path: | /bin/sh |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:32:35 |
Start date: | 25/11/2021 |
Path: | /usr/bin/grep |
Arguments: | grep -G ^blacklist.*nouveau[[:space:]]*$ /lib/modprobe.d/aliases.conf /lib/modprobe.d/blacklist_linux_5.4.0-72-generic.conf /lib/modprobe.d/blacklist_linux_5.4.0-81-generic.conf /lib/modprobe.d/fbdev-blacklist.conf /lib/modprobe.d/systemd.conf |
File size: | 199136 bytes |
MD5 hash: | 1e6ebb9dd094f774478f72727bdba0f5 |
General |
---|
Start time: | 18:32:35 |
Start date: | 25/11/2021 |
Path: | /usr/lib/systemd/systemd |
Arguments: | n/a |
File size: | 1620224 bytes |
MD5 hash: | 9b2bec7092a40488108543f9334aab75 |
General |
---|
Start time: | 18:32:35 |
Start date: | 25/11/2021 |
Path: | /usr/share/gdm/generate-config |
Arguments: | /usr/share/gdm/generate-config |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:32:35 |
Start date: | 25/11/2021 |
Path: | /usr/share/gdm/generate-config |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 18:32:35 |
Start date: | 25/11/2021 |
Path: | /usr/bin/pkill |
Arguments: | pkill --signal HUP --uid gdm dconf-service |
File size: | 30968 bytes |
MD5 hash: | fa96a75a08109d8842e4865b2907d51f |
General |
---|
Start time: | 18:32:37 |
Start date: | 25/11/2021 |
Path: | /usr/lib/systemd/systemd |
Arguments: | n/a |
File size: | 1620224 bytes |
MD5 hash: | 9b2bec7092a40488108543f9334aab75 |
General |
---|
Start time: | 18:32:37 |
Start date: | 25/11/2021 |
Path: | /usr/lib/gdm3/gdm-wait-for-drm |
Arguments: | /usr/lib/gdm3/gdm-wait-for-drm |
File size: | 14640 bytes |
MD5 hash: | 82043ba752c6930b4e6aaea2f7747545 |
General |
---|
Start time: | 18:32:47 |
Start date: | 25/11/2021 |
Path: | /usr/lib/systemd/systemd |
Arguments: | n/a |
File size: | 1620224 bytes |
MD5 hash: | 9b2bec7092a40488108543f9334aab75 |
General |
---|
Start time: | 18:32:47 |
Start date: | 25/11/2021 |
Path: | /usr/sbin/gdm3 |
Arguments: | /usr/sbin/gdm3 |
File size: | 453296 bytes |
MD5 hash: | 2492e2d8d34f9377e3e530a61a15674f |