Click to jump to signature section
Source: SecuriteInfo.com.Other.Malware-gen.3200.4135.elf | Avira: detected |
Source: SecuriteInfo.com.Other.Malware-gen.3200.4135.elf | ReversingLabs: Detection: 47% |
Source: unknown | HTTPS traffic detected: 54.171.230.55:443 -> 192.168.2.23:33608 version: TLS 1.2 |
Source: global traffic | TCP traffic: 147.78.12.176 ports 0,1,2,24150,4,5 |
Source: unknown | DNS traffic detected: query: 60da859e8a.ignorelist.com replaycode: Name error (3) |
Source: unknown | DNS traffic detected: query: 60da859e8a.websersaiosnginxo.ru replaycode: Name error (3) |
Source: unknown | DNS traffic detected: query: 60da859e8a.strangled.net replaycode: Name error (3) |
Source: unknown | DNS traffic detected: query: 60da859e8a.ddnsfree.com replaycode: Name error (3) |
Source: unknown | DNS traffic detected: query: 60da859e8a.mooo.com replaycode: Name error (3) |
Source: unknown | DNS traffic detected: query: 60da859e8a.nl replaycode: Name error (3) |
Source: unknown | DNS traffic detected: query: 60da859e8a.ru replaycode: Name error (3) |
Source: unknown | DNS traffic detected: query: 60da859e8a.chickenkiller.com replaycode: Name error (3) |
Source: unknown | DNS traffic detected: query: 60da859e8a.adminpanel.oss replaycode: Name error (3) |
Source: unknown | DNS traffic detected: query: 60da859e8a.geek replaycode: Name error (3) |
Source: unknown | DNS traffic detected: query: 60da859e8a.oss replaycode: Name error (3) |
Source: unknown | DNS traffic detected: query: 60da859e8a.accesscam.org replaycode: Name error (3) |
Source: unknown | DNS traffic detected: query: 60da859e8a.duckdns.org replaycode: Name error (3) |
Source: unknown | DNS traffic detected: query: 60da859e8a.casacam.net replaycode: Name error (3) |
Source: unknown | DNS query: name: 60da859e8a.admincs.duckdns.org |
Source: unknown | DNS query: name: 60da859e8a.duckdns.org |
Source: global traffic | TCP traffic: 192.168.2.23:57328 -> 147.78.12.176:24150 |
Source: unknown | TCP traffic detected without corresponding DNS query: 91.189.91.42 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 54.171.230.55 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 91.189.91.43 |
Source: unknown | TCP traffic detected without corresponding DNS query: 109.202.202.202 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 54.171.230.55 |
Source: unknown | TCP traffic detected without corresponding DNS query: 54.171.230.55 |
Source: unknown | TCP traffic detected without corresponding DNS query: 54.171.230.55 |
Source: unknown | TCP traffic detected without corresponding DNS query: 54.171.230.55 |
Source: unknown | TCP traffic detected without corresponding DNS query: 54.171.230.55 |
Source: unknown | TCP traffic detected without corresponding DNS query: 54.171.230.55 |
Source: unknown | TCP traffic detected without corresponding DNS query: 54.171.230.55 |
Source: unknown | TCP traffic detected without corresponding DNS query: 54.171.230.55 |
Source: unknown | TCP traffic detected without corresponding DNS query: 54.171.230.55 |
Source: unknown | TCP traffic detected without corresponding DNS query: 54.171.230.55 |
Source: unknown | TCP traffic detected without corresponding DNS query: 54.171.230.55 |
Source: unknown | TCP traffic detected without corresponding DNS query: 54.171.230.55 |
Source: unknown | TCP traffic detected without corresponding DNS query: 54.171.230.55 |
Source: unknown | TCP traffic detected without corresponding DNS query: 54.171.230.55 |
Source: unknown | TCP traffic detected without corresponding DNS query: 54.171.230.55 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 91.189.91.42 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 91.189.91.43 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 109.202.202.202 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: unknown | TCP traffic detected without corresponding DNS query: 147.78.12.176 |
Source: global traffic | DNS traffic detected: DNS query: 60da859e8a.dontargetme.nl |
Source: global traffic | DNS traffic detected: DNS query: 60da859e8a.websersaiosnginxo.ru |
Source: global traffic | DNS traffic detected: DNS query: 60da859e8a.adminpanel.oss |
Source: global traffic | DNS traffic detected: DNS query: 60da859e8a.admincs.duckdns.org |
Source: global traffic | DNS traffic detected: DNS query: 60da859e8a.session.geek |
Source: global traffic | DNS traffic detected: DNS query: 60da859e8a.duckdns.org |
Source: global traffic | DNS traffic detected: DNS query: 60da859e8a.geek |
Source: global traffic | DNS traffic detected: DNS query: 60da859e8a.oss |
Source: global traffic | DNS traffic detected: DNS query: 60da859e8a.chickenkiller.com |
Source: global traffic | DNS traffic detected: DNS query: 60da859e8a.accesscam.org |
Source: global traffic | DNS traffic detected: DNS query: 60da859e8a.casacam.net |
Source: global traffic | DNS traffic detected: DNS query: 60da859e8a.ddnsfree.com |
Source: global traffic | DNS traffic detected: DNS query: 60da859e8a.mooo.com |
Source: global traffic | DNS traffic detected: DNS query: 60da859e8a.strangled.net |
Source: global traffic | DNS traffic detected: DNS query: 60da859e8a.ignorelist.com |
Source: global traffic | DNS traffic detected: DNS query: 60da859e8a.ru |
Source: global traffic | DNS traffic detected: DNS query: 60da859e8a.nl |
Source: nginx_kel.16.dr | String found in binary or memory: https://qemu.org |
Source: nginx_kel.16.dr | String found in binary or memory: https://qemu.org/contribute/report-a-bug |
Source: unknown | Network traffic detected: HTTP traffic on port 443 -> 33608 |
Source: unknown | Network traffic detected: HTTP traffic on port 43928 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 33608 -> 443 |
Source: unknown | Network traffic detected: HTTP traffic on port 42836 -> 443 |
Source: unknown | HTTPS traffic detected: 54.171.230.55:443 -> 192.168.2.23:33608 version: TLS 1.2 |
Source: nginx_kel.16.dr | ELF static info symbol of dropped file: QMPCapability_lookup |
Source: nginx_kel.16.dr | ELF static info symbol of dropped file: _ZNSt8__detail15_List_node_base7_M_hookEPS0_ |
Source: nginx_kel.16.dr | ELF static info symbol of dropped file: _ZNSt8__detail15_List_node_base9_M_unhookEv |
Source: nginx_kel.16.dr | ELF static info symbol of dropped file: arm_register_el_change_hook |
Source: nginx_kel.16.dr | ELF static info symbol of dropped file: arm_register_pre_el_change_hook |
Source: LOAD without section mappings | Program segment: 0x8000 |
Source: classification engine | Classification label: mal100.troj.evad.linELF@0/8@17/0 |
Source: /bin/sh (PID: 6270) | Crontab executable: /usr/bin/crontab -> crontab /var/tmp/.recoverys | Jump to behavior |
Source: /usr/bin/ln (PID: 6269) | File: /etc/rcS.d/S99dnsconfig -> /etc/init.d/dnsconfig | Jump to behavior |
Source: /usr/bin/ln (PID: 6295) | File: /etc/rc.d/S99dnsconfig -> /etc/init.d/dnsconfig | Jump to behavior |
Source: /usr/bin/ln (PID: 6304) | File: /etc/rc0.d/S99dnsconfig -> /etc/init.d/dnsconfig | Jump to behavior |
Source: /usr/bin/ln (PID: 6318) | File: /etc/rc1.d/S99dnsconfig -> /etc/init.d/dnsconfig | Jump to behavior |
Source: /usr/bin/ln (PID: 6324) | File: /etc/rc2.d/S99dnsconfig -> /etc/init.d/dnsconfig | Jump to behavior |
Source: /usr/bin/ln (PID: 6339) | File: /etc/rc3.d/S99dnsconfig -> /etc/init.d/dnsconfig | Jump to behavior |
Source: /usr/bin/ln (PID: 6342) | File: /etc/rc4.d/S99dnsconfig -> /etc/init.d/dnsconfig | Jump to behavior |
Source: /usr/bin/ln (PID: 6345) | File: /etc/rc5.d/S99dnsconfig -> /etc/init.d/dnsconfig | Jump to behavior |
Source: /usr/bin/ln (PID: 6348) | File: /etc/rc6.d/S99dnsconfig -> /etc/init.d/dnsconfig | Jump to behavior |
Source: /usr/bin/ln (PID: 6353) | File: /etc/rc.d/S99dnsconfigs -> /etc/rc.d/init.d/dnsconfigs | Jump to behavior |
Source: /usr/bin/ln (PID: 6359) | File: /etc/rc0.d/S99dnsconfigs -> /etc/rc.d/init.d/dnsconfigs | Jump to behavior |
Source: /usr/bin/ln (PID: 6363) | File: /etc/rc1.d/S99dnsconfigs -> /etc/rc.d/init.d/dnsconfigs | Jump to behavior |
Source: /usr/bin/ln (PID: 6366) | File: /etc/rc2.d/S99dnsconfigs -> /etc/rc.d/init.d/dnsconfigs | Jump to behavior |
Source: /usr/bin/ln (PID: 6373) | File: /etc/rc3.d/S99dnsconfigs -> /etc/rc.d/init.d/dnsconfigs | Jump to behavior |
Source: /usr/bin/ln (PID: 6376) | File: /etc/rc4.d/S99dnsconfigs -> /etc/rc.d/init.d/dnsconfigs | Jump to behavior |
Source: /usr/bin/ln (PID: 6379) | File: /etc/rc5.d/S99dnsconfigs -> /etc/rc.d/init.d/dnsconfigs | Jump to behavior |
Source: /usr/bin/ln (PID: 6382) | File: /etc/rc6.d/S99dnsconfigs -> /etc/rc.d/init.d/dnsconfigs | Jump to behavior |
Source: /usr/bin/crontab (PID: 6270) | File: /var/spool/cron/crontabs/tmp.pn4Slk | Jump to behavior |
Source: /usr/bin/crontab (PID: 6270) | File: /var/spool/cron/crontabs/root | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6241) | File: /etc/init.d/dnsconfig (bits: - usr: rx grp: rx all: rwx) | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6227) | File: /var/tmp/.recoverys | Jump to behavior |
Source: /usr/bin/crontab (PID: 6270) | Directory: /var/tmp/.recoverys | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6212) | Shell command executed: sh -c "mount -o bind /tmp/nginx_server /proc/6208/ > /dev/null 2>&1" | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6248) | Shell command executed: sh -c "ln -sf /etc/init.d/dnsconfig /etc/rcS.d/S99dnsconfig > /dev/null 2>&1" | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6273) | Shell command executed: sh -c "ln -sf /etc/init.d/dnsconfig /etc/rc.d/S99dnsconfig > /dev/null 2>&1" | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6302) | Shell command executed: sh -c "ln -sf /etc/init.d/dnsconfig /etc/rc0.d/S99dnsconfig > /dev/null 2>&1" | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6305) | Shell command executed: sh -c "ln -sf /etc/init.d/dnsconfig /etc/rc1.d/S99dnsconfig > /dev/null 2>&1" | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6319) | Shell command executed: sh -c "ln -sf /etc/init.d/dnsconfig /etc/rc2.d/S99dnsconfig > /dev/null 2>&1" | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6336) | Shell command executed: sh -c "ln -sf /etc/init.d/dnsconfig /etc/rc3.d/S99dnsconfig > /dev/null 2>&1" | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6340) | Shell command executed: sh -c "ln -sf /etc/init.d/dnsconfig /etc/rc4.d/S99dnsconfig > /dev/null 2>&1" | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6343) | Shell command executed: sh -c "ln -sf /etc/init.d/dnsconfig /etc/rc5.d/S99dnsconfig > /dev/null 2>&1" | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6346) | Shell command executed: sh -c "ln -sf /etc/init.d/dnsconfig /etc/rc6.d/S99dnsconfig > /dev/null 2>&1" | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6349) | Shell command executed: sh -c "ln -sf /etc/rc.d/init.d/dnsconfigs /etc/rc.d/S99dnsconfigs > /dev/null 2>&1" | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6355) | Shell command executed: sh -c "ln -sf /etc/rc.d/init.d/dnsconfigs /etc/rc0.d/S99dnsconfigs > /dev/null 2>&1" | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6361) | Shell command executed: sh -c "ln -sf /etc/rc.d/init.d/dnsconfigs /etc/rc1.d/S99dnsconfigs > /dev/null 2>&1" | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6364) | Shell command executed: sh -c "ln -sf /etc/rc.d/init.d/dnsconfigs /etc/rc2.d/S99dnsconfigs > /dev/null 2>&1" | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6367) | Shell command executed: sh -c "ln -sf /etc/rc.d/init.d/dnsconfigs /etc/rc3.d/S99dnsconfigs > /dev/null 2>&1" | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6374) | Shell command executed: sh -c "ln -sf /etc/rc.d/init.d/dnsconfigs /etc/rc4.d/S99dnsconfigs > /dev/null 2>&1" | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6377) | Shell command executed: sh -c "ln -sf /etc/rc.d/init.d/dnsconfigs /etc/rc5.d/S99dnsconfigs > /dev/null 2>&1" | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6380) | Shell command executed: sh -c "ln -sf /etc/rc.d/init.d/dnsconfigs /etc/rc6.d/S99dnsconfigs > /dev/null 2>&1" | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6245) | Shell command executed: sh -c "crontab /var/tmp/.recoverys" | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6297) | Shell command executed: sh -c "systemctl daemon-reload > /dev/null 2>&1" | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6334) | Shell command executed: sh -c "systemctl enable dnsconfigs.service > /dev/null 2>&1" | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6357) | Shell command executed: sh -c "systemctl start dnsconfigs.service > /dev/null 2>&1" | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6244) | Shell command executed: sh -c "mount -o bind /tmp/nginx_server /proc/6240/ > /dev/null 2>&1" | Jump to behavior |
Source: /usr/bin/dash (PID: 6392) | Rm executable: /usr/bin/rm -> rm -f /tmp/tmp.W12VpjdjU0 /tmp/tmp.9MZwt69YkC /tmp/tmp.q0ZKQX1Uze | Jump to behavior |
Source: /usr/bin/dash (PID: 6401) | Rm executable: /usr/bin/rm -> rm -f /tmp/tmp.W12VpjdjU0 /tmp/tmp.9MZwt69YkC /tmp/tmp.q0ZKQX1Uze | Jump to behavior |
Source: /bin/sh (PID: 6301) | Systemctl executable: /usr/bin/systemctl -> systemctl daemon-reload | Jump to behavior |
Source: /bin/sh (PID: 6337) | Systemctl executable: /usr/bin/systemctl -> systemctl enable dnsconfigs.service | Jump to behavior |
Source: /bin/sh (PID: 6360) | Systemctl executable: /usr/bin/systemctl -> systemctl start dnsconfigs.service | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6227) | File: /var/tmp/nginx_kel (bits: - usr: rx grp: rx all: rwx) | Jump to behavior |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6241) | File: /etc/init.d/dnsconfig (bits: - usr: rx grp: rx all: rwx) | Jump to behavior |
Source: /bin/cp (PID: 6210) | File written: /var/tmp/nginx_kel | Jump to dropped file |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6241) | Writes shell script file to disk with an unusual file extension: /etc/init.d/dnsconfig | Jump to dropped file |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6241) | File: /etc/init.d/dnsconfig | Jump to dropped file |
Source: SecuriteInfo.com.Other.Malware-gen.3200.4135.elf | Submission file: segment LOAD with 7.6392 entropy (max. 8.0) |
Source: SecuriteInfo.com.Other.Malware-gen.3200.4135.elf | Submission file: segment LOAD with 7.7426 entropy (max. 8.0) |
Source: /tmp/SecuriteInfo.com.Other.Malware-gen.3200.4135.elf (PID: 6208) | Queries kernel information via 'uname': | Jump to behavior |
Source: /var/tmp/nginx_kel (PID: 6446) | Queries kernel information via 'uname': | Jump to behavior |
Source: /var/tmp/nginx_kel (PID: 6491) | Queries kernel information via 'uname': | Jump to behavior |
Source: nginx_kel.16.dr | Binary or memory string: qemu_dcache_linesize_log |
Source: nginx_kel.16.dr | Binary or memory string: qemu_opts_set_defaults |
Source: nginx_kel.16.dr | Binary or memory string: /build/qemu-rbeYHu/qemu-4.2/target/arm/internals.h |
Source: nginx_kel.16.dr | Binary or memory string: _TRACE_QEMU_MEMALIGN_DSTATE |
Source: nginx_kel.16.dr | Binary or memory string: /build/qemu-rbeYHu/qemu-4.2/include/hw/core/cpu.hError: Bad gdb register numbering for '%s', expected %d got %d%d@%zu.%06zu:gdbstub_op_exiting notifying exit with code=0x%02x |
Source: nginx_kel.16.dr | Binary or memory string: qemu_thread_naming |
Source: nginx_kel.16.dr | Binary or memory string: qemu_opt_foreach |
Source: nginx_kel.16.dr | Binary or memory string: qemu_getauxval |
Source: nginx_kel.16.dr | Binary or memory string: LORSA_EL1LOREA_EL1LORN_EL1LORC_EL1LORID_EL1CFP_RCTXDVP_RCTXCPP_RCTXCFPRCTXDVPRCTXCPPRCTXZCR_EL3ZCR_EL2ZCR_EL1DBGDRARDBGDSARMDRAR_EL1MDSCR_EL1MDCCSR_EL0OSLAR_EL1OSLSR_EL1OSDLR_EL1DBGVCRDBGVCR32_EL2MDCCINT_EL1SCR_EL3SCRSDER32_EL3SDERMVBARTTBR0_EL3TCR_EL3ELR_EL3ESR_EL3FAR_EL3SPSR_EL3CPTR_EL3TPIDR_EL3AMAIR_EL3AFSR0_EL3AFSR1_EL3TLBI_ALLE3ISTLBI_VAE3ISTLBI_VALE3ISTLBI_ALLE3TLBI_VAE3TLBI_VALE3HCR2HCR_EL2HCRHACR_EL2ELR_EL2ESR_EL2HIFARSPSR_EL2SP_EL2CPTR_EL2HMAIR1AMAIR_EL2HAMAIR1AFSR0_EL2AFSR1_EL2VTCRVTCR_EL2VTTBRVTTBR_EL2SCTLR_EL2TPIDR_EL2TTBR0_EL2HTTBRTLBIALLNSNHTLBIALLNSNHISTLBIALLHTLBIALLHISTLBIMVAHTLBIMVAHISTLBI_ALLE2TLBI_VAE2TLBI_VALE2TLBI_ALLE2ISTLBI_VAE2ISTLBI_VALE2ISMDCR_EL2HPFARHPFAR_EL2HSTR_EL2CNTHCTL_EL2CNTVOFF_EL2CNTVOFFCNTHP_CVAL_EL2CNTHP_CVALCNTHP_TVAL_EL2CNTHP_CTL_EL2NZCVDAIFFPCRFPSRDCZID_EL0DC_ZVACURRENTELIC_IALLUISIC_IALLUIC_IVAUDC_IVACDC_ISWDC_CVACDC_CSWDC_CVAUDC_CIVACDC_CISWTLBI_VMALLE1ISTLBI_VAE1ISTLBI_ASIDE1ISTLBI_VAAE1ISTLBI_VALE1ISTLBI_VAALE1ISTLBI_VMALLE1TLBI_VAE1TLBI_ASIDE1TLBI_VAAE1TLBI_VALE1TLBI_VAALE1TLBI_IPAS2E1ISTLBI_IPAS2LE1ISTLBI_ALLE1ISTLBI_VMALLS12E1ISTLBI_IPAS2E1TLBI_IPAS2LE1TLBI_ALLE1TLBI_VMALLS12E1TLBIMVALISTLBIMVAALISTLBIMVALTLBIMVAALTLBIMVALHTLBIMVALHISTLBIIPAS2TLBIIPAS2ISTLBIIPAS2LTLBIIPAS2LISICIALLUISBPIALLUISICIALLUICIMVAUBPIALLBPIMVADCIMVACDCISWDCCMVACDCCSWDCCMVAUDCCIMVACDCCISWDACRELR_EL1SPSR_EL1SP_EL0SP_EL1SPSelFPEXC32_EL2DACR32_EL2IFSR32_EL2SPSR_IRQSPSR_ABTSPSR_UNDSPSR_FIQMDCR_EL3SDCRAMAIR0TTBR0TTBR1C9_READBUFFERTC_DCACHETCI_DCACHEBXSRIICRCDCRPIRPDRCIDCRCDSRC15_IMPDEFXSCALE_CPARXSCALE_AUXCRXSCALE_LOCK_ICACHE_LINEXSCALE_UNLOCK_ICACHEXSCALE_DCACHE_LOCKXSCALE_UNLOCK_DCACHEDFSRTICONFIGIMAXIMINTHREADIDTI925T_STATUSOMAP_CACHEMAINTC9TTBCR2ESR_EL1TTBR0_EL1TTBR1_EL1TCR_EL1TTBCRIFSRDFARFAR_EL1DATA_APINSN_APDATA_EXT_APINSN_EXT_APDCACHE_CFGICACHE_CFG946_PRBS0946_PRBS1946_PRBS2946_PRBS3946_PRBS4946_PRBS5946_PRBS6946_PRBS7DRBARDRSRDRACRRGNRCNTFRQ_EL0CNTVCT_EL0TPIDR_EL0TPIDRURWTPIDRRO_EL0TPIDRUROTPIDR_EL1TPIDRPRWTEECRTEEHBRPMOVSSETPMOVSSET_EL0TLBIALLISTLBIMVAISTLBIASIDISTLBIMVAAISNOPPMCNTENSETPMCNTENSET_EL0PMCNTENCLRPMCNTENCLR_EL0PMOVSRPMOVSCLR_EL0PMSWINCPMSWINC_EL0PMSELRPMSELR_EL0PMCCNTRPMCCNTR_EL0PMCCFILTRPMCCFILTR_EL0PMXEVTYPERPMXEVTYPER_EL0PMXEVCNTRPMXEVCNTR_EL0PMUSERENRPMUSERENR_EL0PMINTENSETPMINTENSET_EL1PMINTENCLRPMINTENCLR_EL1CCSIDRCSSELRAIDRAFSR0_EL1AFSR1_EL1MAIR_EL1ISR_EL1ITLBIALLITLBIMVAITLBIASIDDTLBIALLDTLBIMVADTLBIASIDTLBIMVAAMVA_prefetchISBDSBDMBWFARCPACRWFI_v6DLOCKDOWNILOCKDOWNPRRRNMRRWFI_v5 |