Play interactive tourEdit tour
Linux Analysis Report beamer.x86-20211202-2350
Overview
General Information
Sample Name: | beamer.x86-20211202-2350 |
Analysis ID: | 533079 |
MD5: | 04e178a6fe92b38222e03a4c2e2303e0 |
SHA1: | ba0e9885d263093c13e955cb79cf6e86039d4177 |
SHA256: | 1000ab055531e011407b62ff66cc2b122334eb14dc01f56f9487023beeb38f59 |
Infos: |
Detection
Score: | 52 |
Range: | 0 - 100 |
Whitelisted: | false |
Signatures
Multi AV Scanner detection for submitted file
Machine Learning detection for sample
Tries to connect to HTTP servers, but all servers are down (expired dropper behavior)
Detected TCP or UDP traffic on non-standard ports
Executes the "rm" command used to delete files or directories
Sample has stripped symbol table
Sample contains strings indicative of BusyBox which embeds multiple Unix commands in a single executable
Classification
Analysis Advice |
---|
All HTTP servers contacted by the sample do not answer. Likely the sample is an old dropper which does no longer work |
General Information |
---|
Joe Sandbox Version: | 34.0.0 Boulder Opal |
Analysis ID: | 533079 |
Start date: | 03.12.2021 |
Start time: | 01:01:18 |
Joe Sandbox Product: | CloudBasic |
Overall analysis duration: | 0h 5m 27s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Sample file name: | beamer.x86-20211202-2350 |
Cookbook file name: | defaultlinuxfilecookbook.jbs |
Analysis system description: | Ubuntu Linux 20.04 x64 (Kernel 5.4.0-72, Firefox 91.0, Evince Document Viewer 3.36.10, LibreOffice 6.4.7.2, OpenJDK 11.0.11) |
Analysis Mode: | default |
Detection: | MAL |
Classification: | mal52.linX86-20211202-2350@0/0@0/0 |
Process Tree |
---|
|
Yara Overview |
---|
No yara matches |
---|
Jbx Signature Overview |
---|
Click to jump to signature section
Show All Signature Results
AV Detection: |
---|
Multi AV Scanner detection for submitted file | Show sources |
Source: | Virustotal: | Perma Link | ||
Source: | ReversingLabs: |
Machine Learning detection for sample | Show sources |
Source: | Joe Sandbox ML: |
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: | ||
Source: | TCP traffic: |
Source: | TCP traffic: |
Source: | Network traffic detected: | ||
Source: | Network traffic detected: | ||
Source: | Network traffic detected: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | .symtab present: |
Source: | String containing 'busybox' found: | ||
Source: | String containing 'busybox' found: |
Source: | Classification label: |
Source: | Rm executable: | Jump to behavior |
Mitre Att&ck Matrix |
---|
Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Exfiltration | Command and Control | Network Effects | Remote Service Effects | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Valid Accounts | Windows Management Instrumentation | Path Interception | Path Interception | File Deletion1 | OS Credential Dumping | System Service Discovery | Remote Services | Data from Local System | Exfiltration Over Other Network Medium | Encrypted Channel1 | Eavesdrop on Insecure Network Communication | Remotely Track Device Without Authorization | Modify System Partition |
Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | Rootkit | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | Exfiltration Over Bluetooth | Non-Standard Port1 | Exploit SS7 to Redirect Phone Calls/SMS | Remotely Wipe Data Without Authorization | Device Lockout |
Domain Accounts | At (Linux) | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | Automated Exfiltration | Application Layer Protocol1 | Exploit SS7 to Track Device Location | Obtain Device Cloud Backups | Delete Device Data |
Malware Configuration |
---|
No configs have been found |
---|
Behavior Graph |
---|
Antivirus, Machine Learning and Genetic Malware Detection |
---|
Initial Sample |
---|
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
24% | Virustotal | Browse | ||
31% | ReversingLabs | Linux.Trojan.Mirai | ||
100% | Joe Sandbox ML |
Dropped Files |
---|
No Antivirus matches |
---|
Domains |
---|
No Antivirus matches |
---|
URLs |
---|
No Antivirus matches |
---|
Domains and IPs |
---|
Contacted Domains |
---|
No contacted domains info |
---|
Contacted IPs |
---|
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
Public |
---|
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
45.134.225.20 | unknown | Germany | 203380 | DAINTERNATIONALGROUPGB | false | |
34.249.145.219 | unknown | United States | 16509 | AMAZON-02US | false | |
109.202.202.202 | unknown | Switzerland | 13030 | INIT7CH | false | |
91.189.91.43 | unknown | United Kingdom | 41231 | CANONICAL-ASGB | false | |
91.189.91.42 | unknown | United Kingdom | 41231 | CANONICAL-ASGB | false |
Runtime Messages |
---|
Command: | /tmp/beamer.x86-20211202-2350 |
Exit Code: | 0 |
Exit Code Info: | |
Killed: | False |
Standard Output: | |
Standard Error: |
Joe Sandbox View / Context |
---|
IPs |
---|
Match | Associated Sample Name / URL | SHA 256 | Detection | Link | Context |
---|---|---|---|---|---|
45.134.225.20 | Get hash | malicious | Browse | ||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
34.249.145.219 | Get hash | malicious | Browse | ||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
109.202.202.202 | Get hash | malicious | Browse | ||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse | |||
Get hash | malicious | Browse |
Domains |
---|
No context |
---|
ASN |
---|
Match | Associated Sample Name / URL | SHA 256 | Detection | Link | Context |
---|---|---|---|---|---|
DAINTERNATIONALGROUPGB | Get hash | malicious | Browse |
| |
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
AMAZON-02US | Get hash | malicious | Browse |
| |
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
| ||
Get hash | malicious | Browse |
|
JA3 Fingerprints |
---|
No context |
---|
Dropped Files |
---|
No context |
---|
Created / dropped Files |
---|
No created / dropped files found |
---|
Static File Info |
---|
General | |
---|---|
File type: | |
Entropy (8bit): | 6.469954580077168 |
TrID: |
|
File name: | beamer.x86-20211202-2350 |
File size: | 42164 |
MD5: | 04e178a6fe92b38222e03a4c2e2303e0 |
SHA1: | ba0e9885d263093c13e955cb79cf6e86039d4177 |
SHA256: | 1000ab055531e011407b62ff66cc2b122334eb14dc01f56f9487023beeb38f59 |
SHA512: | a698ac1122eeed10d8785d6543bb9fcab3b99a99ead80f69b1a6b04594c9681272d1b8a95d016fc0239b8cc60f1f2633884703bcabbce1c35df6c6816ed5679c |
SSDEEP: | 768:fDQqegtrUdSHBnMslsWcBUxUBCFJoTR3CjeYnBnCLMiZ8USCIy:7QqegtIdShZIBfBC8DYnJuMiTSC |
File Content Preview: | .ELF....................d...4...$.......4. ...(.............................................. ... .......(..........Q.td............................U..S.......w....h....3...[]...$.............U......=.#...t..5....$ .....$ ......u........t....h............ |
Static ELF Info |
---|
ELF header | |
---|---|
Class: | |
Data: | |
Version: | |
Machine: | |
Version Number: | |
Type: | |
OS/ABI: | |
ABI Version: | |
Entry Point Address: | |
Flags: | |
ELF Header Size: | |
Program Header Offset: | |
Program Header Size: | |
Number of Program Headers: | |
Section Header Offset: | |
Section Header Size: | |
Number of Section Headers: | |
Header String Table Index: |
Sections |
---|
Name | Type | Address | Offset | Size | EntSize | Flags | Flags Description | Link | Info | Align |
---|---|---|---|---|---|---|---|---|---|---|
NULL | 0x0 | 0x0 | 0x0 | 0x0 | 0x0 | 0 | 0 | 0 | ||
.init | PROGBITS | 0x8048094 | 0x94 | 0x1c | 0x0 | 0x6 | AX | 0 | 0 | 1 |
.text | PROGBITS | 0x80480b0 | 0xb0 | 0x8256 | 0x0 | 0x6 | AX | 0 | 0 | 16 |
.fini | PROGBITS | 0x8050306 | 0x8306 | 0x17 | 0x0 | 0x6 | AX | 0 | 0 | 1 |
.rodata | PROGBITS | 0x8050320 | 0x8320 | 0x19fc | 0x0 | 0x2 | A | 0 | 0 | 32 |
.ctors | PROGBITS | 0x8052000 | 0xa000 | 0x8 | 0x0 | 0x3 | WA | 0 | 0 | 4 |
.dtors | PROGBITS | 0x8052008 | 0xa008 | 0x8 | 0x0 | 0x3 | WA | 0 | 0 | 4 |
.data | PROGBITS | 0x8052020 | 0xa020 | 0x2c4 | 0x0 | 0x3 | WA | 0 | 0 | 32 |
.bss | NOBITS | 0x8052300 | 0xa2e4 | 0x25a0 | 0x0 | 0x3 | WA | 0 | 0 | 32 |
.shstrtab | STRTAB | 0x0 | 0xa2e4 | 0x3e | 0x0 | 0x0 | 0 | 0 | 1 |
Program Segments |
---|
Type | Offset | Virtual Address | Physical Address | File Size | Memory Size | Entropy | Flags | Flags Description | Align | Prog Interpreter | Section Mappings |
---|---|---|---|---|---|---|---|---|---|---|---|
LOAD | 0x0 | 0x8048000 | 0x8048000 | 0x9d1c | 0x9d1c | 4.1761 | 0x5 | R E | 0x1000 | .init .text .fini .rodata | |
LOAD | 0xa000 | 0x8052000 | 0x8052000 | 0x2e4 | 0x28a0 | 2.6149 | 0x6 | RW | 0x1000 | .ctors .dtors .data .bss | |
GNU_STACK | 0x0 | 0x0 | 0x0 | 0x0 | 0x0 | 0.0000 | 0x6 | RW | 0x4 |
Network Behavior |
---|
Network Port Distribution |
---|
TCP Packets |
---|
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Dec 3, 2021 01:02:03.713726997 CET | 52018 | 544 | 192.168.2.23 | 45.134.225.20 |
Dec 3, 2021 01:02:03.741457939 CET | 544 | 52018 | 45.134.225.20 | 192.168.2.23 |
Dec 3, 2021 01:02:03.741532087 CET | 52018 | 544 | 192.168.2.23 | 45.134.225.20 |
Dec 3, 2021 01:02:03.741556883 CET | 52018 | 544 | 192.168.2.23 | 45.134.225.20 |
Dec 3, 2021 01:02:03.769165993 CET | 544 | 52018 | 45.134.225.20 | 192.168.2.23 |
Dec 3, 2021 01:02:03.769198895 CET | 544 | 52018 | 45.134.225.20 | 192.168.2.23 |
Dec 3, 2021 01:02:03.769251108 CET | 52018 | 544 | 192.168.2.23 | 45.134.225.20 |
Dec 3, 2021 01:02:03.769290924 CET | 52018 | 544 | 192.168.2.23 | 45.134.225.20 |
Dec 3, 2021 01:02:03.796756983 CET | 544 | 52018 | 45.134.225.20 | 192.168.2.23 |
Dec 3, 2021 01:02:04.652885914 CET | 42836 | 443 | 192.168.2.23 | 91.189.91.43 |
Dec 3, 2021 01:02:04.652993917 CET | 42516 | 80 | 192.168.2.23 | 109.202.202.202 |
Dec 3, 2021 01:02:04.769454002 CET | 52020 | 544 | 192.168.2.23 | 45.134.225.20 |
Dec 3, 2021 01:02:04.797152042 CET | 544 | 52020 | 45.134.225.20 | 192.168.2.23 |
Dec 3, 2021 01:02:04.797265053 CET | 52020 | 544 | 192.168.2.23 | 45.134.225.20 |
Dec 3, 2021 01:02:04.797352076 CET | 52020 | 544 | 192.168.2.23 | 45.134.225.20 |
Dec 3, 2021 01:02:04.825161934 CET | 544 | 52020 | 45.134.225.20 | 192.168.2.23 |
Dec 3, 2021 01:02:04.825382948 CET | 52020 | 544 | 192.168.2.23 | 45.134.225.20 |
Dec 3, 2021 01:02:04.853236914 CET | 544 | 52020 | 45.134.225.20 | 192.168.2.23 |
Dec 3, 2021 01:02:19.853104115 CET | 544 | 52020 | 45.134.225.20 | 192.168.2.23 |
Dec 3, 2021 01:02:19.853360891 CET | 52020 | 544 | 192.168.2.23 | 45.134.225.20 |
Dec 3, 2021 01:02:20.268871069 CET | 43928 | 443 | 192.168.2.23 | 91.189.91.42 |
Dec 3, 2021 01:02:25.998893023 CET | 39246 | 443 | 192.168.2.23 | 34.249.145.219 |
Dec 3, 2021 01:02:27.021008015 CET | 39246 | 443 | 192.168.2.23 | 34.249.145.219 |
Dec 3, 2021 01:02:29.036896944 CET | 39246 | 443 | 192.168.2.23 | 34.249.145.219 |
Dec 3, 2021 01:02:30.508909941 CET | 42836 | 443 | 192.168.2.23 | 91.189.91.43 |
Dec 3, 2021 01:02:33.068954945 CET | 39246 | 443 | 192.168.2.23 | 34.249.145.219 |
Dec 3, 2021 01:02:34.604963064 CET | 42516 | 80 | 192.168.2.23 | 109.202.202.202 |
Dec 3, 2021 01:02:34.881095886 CET | 544 | 52020 | 45.134.225.20 | 192.168.2.23 |
Dec 3, 2021 01:02:34.881218910 CET | 52020 | 544 | 192.168.2.23 | 45.134.225.20 |
Dec 3, 2021 01:02:41.260885000 CET | 39246 | 443 | 192.168.2.23 | 34.249.145.219 |
Dec 3, 2021 01:02:44.828872919 CET | 52020 | 544 | 192.168.2.23 | 45.134.225.20 |
Dec 3, 2021 01:02:44.856843948 CET | 544 | 52020 | 45.134.225.20 | 192.168.2.23 |
Dec 3, 2021 01:02:57.388839960 CET | 39246 | 443 | 192.168.2.23 | 34.249.145.219 |
Dec 3, 2021 01:02:59.891980886 CET | 544 | 52020 | 45.134.225.20 | 192.168.2.23 |
Dec 3, 2021 01:02:59.892126083 CET | 52020 | 544 | 192.168.2.23 | 45.134.225.20 |
Dec 3, 2021 01:03:01.228825092 CET | 43928 | 443 | 192.168.2.23 | 91.189.91.42 |
Dec 3, 2021 01:03:14.932059050 CET | 544 | 52020 | 45.134.225.20 | 192.168.2.23 |
Dec 3, 2021 01:03:14.932248116 CET | 52020 | 544 | 192.168.2.23 | 45.134.225.20 |
Dec 3, 2021 01:03:21.708774090 CET | 42836 | 443 | 192.168.2.23 | 91.189.91.43 |
Dec 3, 2021 01:03:29.972131968 CET | 544 | 52020 | 45.134.225.20 | 192.168.2.23 |
Dec 3, 2021 01:03:29.972275972 CET | 52020 | 544 | 192.168.2.23 | 45.134.225.20 |
Dec 3, 2021 01:03:44.876784086 CET | 52020 | 544 | 192.168.2.23 | 45.134.225.20 |
Dec 3, 2021 01:03:44.904932976 CET | 544 | 52020 | 45.134.225.20 | 192.168.2.23 |
Dec 3, 2021 01:03:59.923870087 CET | 544 | 52020 | 45.134.225.20 | 192.168.2.23 |
Dec 3, 2021 01:03:59.923993111 CET | 52020 | 544 | 192.168.2.23 | 45.134.225.20 |
Dec 3, 2021 01:04:14.964004993 CET | 544 | 52020 | 45.134.225.20 | 192.168.2.23 |
Dec 3, 2021 01:04:14.964142084 CET | 52020 | 544 | 192.168.2.23 | 45.134.225.20 |
Dec 3, 2021 01:04:30.003947020 CET | 544 | 52020 | 45.134.225.20 | 192.168.2.23 |
Dec 3, 2021 01:04:30.004060984 CET | 52020 | 544 | 192.168.2.23 | 45.134.225.20 |
Dec 3, 2021 01:04:44.924628019 CET | 52020 | 544 | 192.168.2.23 | 45.134.225.20 |
Dec 3, 2021 01:04:44.952501059 CET | 544 | 52020 | 45.134.225.20 | 192.168.2.23 |
Dec 3, 2021 01:04:59.956001043 CET | 544 | 52020 | 45.134.225.20 | 192.168.2.23 |
Dec 3, 2021 01:04:59.956279039 CET | 52020 | 544 | 192.168.2.23 | 45.134.225.20 |
Dec 3, 2021 01:05:14.995980024 CET | 544 | 52020 | 45.134.225.20 | 192.168.2.23 |
Dec 3, 2021 01:05:14.996109962 CET | 52020 | 544 | 192.168.2.23 | 45.134.225.20 |
Dec 3, 2021 01:05:30.036056995 CET | 544 | 52020 | 45.134.225.20 | 192.168.2.23 |
Dec 3, 2021 01:05:30.036411047 CET | 52020 | 544 | 192.168.2.23 | 45.134.225.20 |
System Behavior |
---|
General |
---|
Start time: | 01:02:02 |
Start date: | 03/12/2021 |
Path: | /tmp/beamer.x86-20211202-2350 |
Arguments: | /tmp/beamer.x86-20211202-2350 |
File size: | 42164 bytes |
MD5 hash: | 04e178a6fe92b38222e03a4c2e2303e0 |
General |
---|
Start time: | 01:02:02 |
Start date: | 03/12/2021 |
Path: | /tmp/beamer.x86-20211202-2350 |
Arguments: | n/a |
File size: | 42164 bytes |
MD5 hash: | 04e178a6fe92b38222e03a4c2e2303e0 |
General |
---|
Start time: | 01:02:02 |
Start date: | 03/12/2021 |
Path: | /tmp/beamer.x86-20211202-2350 |
Arguments: | n/a |
File size: | 42164 bytes |
MD5 hash: | 04e178a6fe92b38222e03a4c2e2303e0 |
General |
---|
Start time: | 01:02:02 |
Start date: | 03/12/2021 |
Path: | /tmp/beamer.x86-20211202-2350 |
Arguments: | n/a |
File size: | 42164 bytes |
MD5 hash: | 04e178a6fe92b38222e03a4c2e2303e0 |
General |
---|
Start time: | 01:03:25 |
Start date: | 03/12/2021 |
Path: | /usr/bin/dash |
Arguments: | n/a |
File size: | 129816 bytes |
MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
General |
---|
Start time: | 01:03:25 |
Start date: | 03/12/2021 |
Path: | /usr/bin/rm |
Arguments: | rm -f /tmp/tmp.AlKkHgaC4m /tmp/tmp.GpcnZvv7fC /tmp/tmp.zmqkJtmHaS |
File size: | 72056 bytes |
MD5 hash: | aa2b5496fdbfd88e38791ab81f90b95b |