Source: unknown |
TCP traffic detected without corresponding DNS query: 91.92.240.97 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 13.100.199.221 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 92.106.112.202 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 248.140.178.18 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 31.206.179.123 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 177.88.60.53 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 121.249.15.2 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 165.178.50.221 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 223.86.58.19 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 59.142.189.15 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 45.49.199.24 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 178.236.151.157 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 211.52.121.220 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 64.246.229.137 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 19.102.112.196 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 43.78.157.178 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 37.215.116.131 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 203.113.114.232 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 75.224.211.35 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 67.176.29.86 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 107.248.220.3 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 27.201.11.20 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 164.122.42.37 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 179.244.227.165 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 199.99.165.41 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 198.182.87.3 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 221.147.129.163 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 83.27.161.5 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 36.50.222.88 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 145.251.223.215 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 91.116.11.202 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 108.78.112.194 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 182.9.18.95 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 170.26.48.201 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 197.242.141.228 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 24.231.233.252 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 155.0.147.181 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 213.237.246.221 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 34.132.29.161 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 4.39.169.202 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 69.37.150.203 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 116.222.21.239 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 109.72.254.248 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 68.244.118.74 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 202.4.186.78 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 53.134.2.110 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 130.195.17.120 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 59.107.103.198 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 221.196.36.59 |
Source: unknown |
TCP traffic detected without corresponding DNS query: 248.42.72.27 |
Source: mKBZo65Fcb.elf, type: SAMPLE |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c Author: unknown |
Source: mKBZo65Fcb.elf, type: SAMPLE |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 Author: unknown |
Source: 5589.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c Author: unknown |
Source: 5589.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 Author: unknown |
Source: 5604.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c Author: unknown |
Source: 5604.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 Author: unknown |
Source: 5462.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c Author: unknown |
Source: 5462.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 Author: unknown |
Source: 5470.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c Author: unknown |
Source: 5470.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 Author: unknown |
Source: 5460.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c Author: unknown |
Source: 5460.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 Author: unknown |
Source: 5594.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c Author: unknown |
Source: 5594.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 Author: unknown |
Source: 5583.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c Author: unknown |
Source: 5583.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 Author: unknown |
Source: 5463.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c Author: unknown |
Source: 5463.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 Author: unknown |
Source: Process Memory Space: mKBZo65Fcb.elf PID: 5462, type: MEMORYSTR |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c Author: unknown |
Source: Process Memory Space: mKBZo65Fcb.elf PID: 5462, type: MEMORYSTR |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 Author: unknown |
Source: Process Memory Space: mKBZo65Fcb.elf PID: 5589, type: MEMORYSTR |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c Author: unknown |
Source: Process Memory Space: mKBZo65Fcb.elf PID: 5589, type: MEMORYSTR |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 Author: unknown |
Source: Process Memory Space: mKBZo65Fcb.elf PID: 5594, type: MEMORYSTR |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c Author: unknown |
Source: Process Memory Space: mKBZo65Fcb.elf PID: 5594, type: MEMORYSTR |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 Author: unknown |
Source: Process Memory Space: mKBZo65Fcb.elf PID: 5604, type: MEMORYSTR |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c Author: unknown |
Source: Process Memory Space: mKBZo65Fcb.elf PID: 5604, type: MEMORYSTR |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 Author: unknown |
Source: mKBZo65Fcb.elf, type: SAMPLE |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = a2c6beaec18ca876e8487c11bcc7a29279669588aacb7d3027d8d8df8f5bcead, id = 28a2fe0c-eed5-4c79-81e6-3b11b73a4ebd, last_modified = 2021-09-16 |
Source: mKBZo65Fcb.elf, type: SAMPLE |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = aa4aee9f3d6bedd8234eaf8778895a0f5d71c42b21f2a428f01f121e85704e8e, id = ea92cca8-bba7-4a1c-9b88-a2d051ad0021, last_modified = 2021-09-16 |
Source: 5589.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = a2c6beaec18ca876e8487c11bcc7a29279669588aacb7d3027d8d8df8f5bcead, id = 28a2fe0c-eed5-4c79-81e6-3b11b73a4ebd, last_modified = 2021-09-16 |
Source: 5589.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = aa4aee9f3d6bedd8234eaf8778895a0f5d71c42b21f2a428f01f121e85704e8e, id = ea92cca8-bba7-4a1c-9b88-a2d051ad0021, last_modified = 2021-09-16 |
Source: 5604.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = a2c6beaec18ca876e8487c11bcc7a29279669588aacb7d3027d8d8df8f5bcead, id = 28a2fe0c-eed5-4c79-81e6-3b11b73a4ebd, last_modified = 2021-09-16 |
Source: 5604.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = aa4aee9f3d6bedd8234eaf8778895a0f5d71c42b21f2a428f01f121e85704e8e, id = ea92cca8-bba7-4a1c-9b88-a2d051ad0021, last_modified = 2021-09-16 |
Source: 5462.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = a2c6beaec18ca876e8487c11bcc7a29279669588aacb7d3027d8d8df8f5bcead, id = 28a2fe0c-eed5-4c79-81e6-3b11b73a4ebd, last_modified = 2021-09-16 |
Source: 5462.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = aa4aee9f3d6bedd8234eaf8778895a0f5d71c42b21f2a428f01f121e85704e8e, id = ea92cca8-bba7-4a1c-9b88-a2d051ad0021, last_modified = 2021-09-16 |
Source: 5470.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = a2c6beaec18ca876e8487c11bcc7a29279669588aacb7d3027d8d8df8f5bcead, id = 28a2fe0c-eed5-4c79-81e6-3b11b73a4ebd, last_modified = 2021-09-16 |
Source: 5470.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = aa4aee9f3d6bedd8234eaf8778895a0f5d71c42b21f2a428f01f121e85704e8e, id = ea92cca8-bba7-4a1c-9b88-a2d051ad0021, last_modified = 2021-09-16 |
Source: 5460.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = a2c6beaec18ca876e8487c11bcc7a29279669588aacb7d3027d8d8df8f5bcead, id = 28a2fe0c-eed5-4c79-81e6-3b11b73a4ebd, last_modified = 2021-09-16 |
Source: 5460.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = aa4aee9f3d6bedd8234eaf8778895a0f5d71c42b21f2a428f01f121e85704e8e, id = ea92cca8-bba7-4a1c-9b88-a2d051ad0021, last_modified = 2021-09-16 |
Source: 5594.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = a2c6beaec18ca876e8487c11bcc7a29279669588aacb7d3027d8d8df8f5bcead, id = 28a2fe0c-eed5-4c79-81e6-3b11b73a4ebd, last_modified = 2021-09-16 |
Source: 5594.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = aa4aee9f3d6bedd8234eaf8778895a0f5d71c42b21f2a428f01f121e85704e8e, id = ea92cca8-bba7-4a1c-9b88-a2d051ad0021, last_modified = 2021-09-16 |
Source: 5583.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = a2c6beaec18ca876e8487c11bcc7a29279669588aacb7d3027d8d8df8f5bcead, id = 28a2fe0c-eed5-4c79-81e6-3b11b73a4ebd, last_modified = 2021-09-16 |
Source: 5583.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = aa4aee9f3d6bedd8234eaf8778895a0f5d71c42b21f2a428f01f121e85704e8e, id = ea92cca8-bba7-4a1c-9b88-a2d051ad0021, last_modified = 2021-09-16 |
Source: 5463.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = a2c6beaec18ca876e8487c11bcc7a29279669588aacb7d3027d8d8df8f5bcead, id = 28a2fe0c-eed5-4c79-81e6-3b11b73a4ebd, last_modified = 2021-09-16 |
Source: 5463.1.00007fc590001000.00007fc590016000.r-x.sdmp, type: MEMORY |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = aa4aee9f3d6bedd8234eaf8778895a0f5d71c42b21f2a428f01f121e85704e8e, id = ea92cca8-bba7-4a1c-9b88-a2d051ad0021, last_modified = 2021-09-16 |
Source: Process Memory Space: mKBZo65Fcb.elf PID: 5462, type: MEMORYSTR |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = a2c6beaec18ca876e8487c11bcc7a29279669588aacb7d3027d8d8df8f5bcead, id = 28a2fe0c-eed5-4c79-81e6-3b11b73a4ebd, last_modified = 2021-09-16 |
Source: Process Memory Space: mKBZo65Fcb.elf PID: 5462, type: MEMORYSTR |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = aa4aee9f3d6bedd8234eaf8778895a0f5d71c42b21f2a428f01f121e85704e8e, id = ea92cca8-bba7-4a1c-9b88-a2d051ad0021, last_modified = 2021-09-16 |
Source: Process Memory Space: mKBZo65Fcb.elf PID: 5589, type: MEMORYSTR |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = a2c6beaec18ca876e8487c11bcc7a29279669588aacb7d3027d8d8df8f5bcead, id = 28a2fe0c-eed5-4c79-81e6-3b11b73a4ebd, last_modified = 2021-09-16 |
Source: Process Memory Space: mKBZo65Fcb.elf PID: 5589, type: MEMORYSTR |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = aa4aee9f3d6bedd8234eaf8778895a0f5d71c42b21f2a428f01f121e85704e8e, id = ea92cca8-bba7-4a1c-9b88-a2d051ad0021, last_modified = 2021-09-16 |
Source: Process Memory Space: mKBZo65Fcb.elf PID: 5594, type: MEMORYSTR |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = a2c6beaec18ca876e8487c11bcc7a29279669588aacb7d3027d8d8df8f5bcead, id = 28a2fe0c-eed5-4c79-81e6-3b11b73a4ebd, last_modified = 2021-09-16 |
Source: Process Memory Space: mKBZo65Fcb.elf PID: 5594, type: MEMORYSTR |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = aa4aee9f3d6bedd8234eaf8778895a0f5d71c42b21f2a428f01f121e85704e8e, id = ea92cca8-bba7-4a1c-9b88-a2d051ad0021, last_modified = 2021-09-16 |
Source: Process Memory Space: mKBZo65Fcb.elf PID: 5604, type: MEMORYSTR |
Matched rule: Linux_Trojan_Gafgyt_28a2fe0c os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = a2c6beaec18ca876e8487c11bcc7a29279669588aacb7d3027d8d8df8f5bcead, id = 28a2fe0c-eed5-4c79-81e6-3b11b73a4ebd, last_modified = 2021-09-16 |
Source: Process Memory Space: mKBZo65Fcb.elf PID: 5604, type: MEMORYSTR |
Matched rule: Linux_Trojan_Gafgyt_ea92cca8 os = linux, severity = x86, creation_date = 2021-01-12, scan_context = file, memory, license = Elastic License v2, threat_name = Linux.Trojan.Gafgyt, fingerprint = aa4aee9f3d6bedd8234eaf8778895a0f5d71c42b21f2a428f01f121e85704e8e, id = ea92cca8-bba7-4a1c-9b88-a2d051ad0021, last_modified = 2021-09-16 |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/490/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/791/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/794/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/795/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/797/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/853/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/917/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/780/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/1/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/661/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/782/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/785/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/940/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/767/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/800/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/888/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/801/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/725/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/769/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/726/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/803/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/806/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/807/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5462) |
File opened: /proc/928/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/490/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/791/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/794/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/795/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/797/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/853/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/917/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/780/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/1/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/661/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/782/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/785/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/940/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/767/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/800/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/888/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/801/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/725/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/769/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/726/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/803/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/806/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/807/fd |
Jump to behavior |
Source: /tmp/mKBZo65Fcb.elf (PID: 5468) |
File opened: /proc/928/fd |
Jump to behavior |
Source: mKBZo65Fcb.elf, 5460.1.00007ffceab09000.00007ffceab2a000.rw-.sdmp, mKBZo65Fcb.elf, 5462.1.00007ffceab09000.00007ffceab2a000.rw-.sdmp, mKBZo65Fcb.elf, 5589.1.00007ffceab09000.00007ffceab2a000.rw-.sdmp, mKBZo65Fcb.elf, 5604.1.00007ffceab09000.00007ffceab2a000.rw-.sdmp, mKBZo65Fcb.elf, 5594.1.00007ffceab09000.00007ffceab2a000.rw-.sdmp, mKBZo65Fcb.elf, 5463.1.00007ffceab09000.00007ffceab2a000.rw-.sdmp, mKBZo65Fcb.elf, 5583.1.00007ffceab09000.00007ffceab2a000.rw-.sdmp, mKBZo65Fcb.elf, 5470.1.00007ffceab09000.00007ffceab2a000.rw-.sdmp |
Binary or memory string: /usr/bin/qemu-m68k |
Source: mKBZo65Fcb.elf, 5460.1.00007ffceab09000.00007ffceab2a000.rw-.sdmp, mKBZo65Fcb.elf, 5462.1.00007ffceab09000.00007ffceab2a000.rw-.sdmp, mKBZo65Fcb.elf, 5589.1.00007ffceab09000.00007ffceab2a000.rw-.sdmp, mKBZo65Fcb.elf, 5604.1.00007ffceab09000.00007ffceab2a000.rw-.sdmp, mKBZo65Fcb.elf, 5594.1.00007ffceab09000.00007ffceab2a000.rw-.sdmp, mKBZo65Fcb.elf, 5463.1.00007ffceab09000.00007ffceab2a000.rw-.sdmp, mKBZo65Fcb.elf, 5583.1.00007ffceab09000.00007ffceab2a000.rw-.sdmp, mKBZo65Fcb.elf, 5470.1.00007ffceab09000.00007ffceab2a000.rw-.sdmp |
Binary or memory string: x86_64/usr/bin/qemu-m68k/tmp/mKBZo65Fcb.elfSUDO_USER=saturninoPATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/binDISPLAY=:1.0XAUTHORITY=/run/user/1000/gdm/XauthoritySUDO_UID=1000TERM=xterm-256colorCOLORTERM=truecolorLOGNAME=rootUSER=rootLANG=en_US.UTF-8SUDO_COMMAND=/bin/bashHOME=/rootMAIL=/var/mail/rootSUDO_GID=1000SHELL=/bin/bash/tmp/mKBZo65Fcb.elf |
Source: mKBZo65Fcb.elf, 5460.1.0000560b27ae2000.0000560b27b68000.rw-.sdmp, mKBZo65Fcb.elf, 5462.1.0000560b27ae2000.0000560b27b68000.rw-.sdmp, mKBZo65Fcb.elf, 5589.1.0000560b27ae2000.0000560b27b68000.rw-.sdmp, mKBZo65Fcb.elf, 5604.1.0000560b27ae2000.0000560b27b68000.rw-.sdmp, mKBZo65Fcb.elf, 5594.1.0000560b27ae2000.0000560b27b68000.rw-.sdmp, mKBZo65Fcb.elf, 5463.1.0000560b27ae2000.0000560b27b68000.rw-.sdmp, mKBZo65Fcb.elf, 5583.1.0000560b27ae2000.0000560b27b68000.rw-.sdmp, mKBZo65Fcb.elf, 5470.1.0000560b27ae2000.0000560b27b68000.rw-.sdmp |
Binary or memory string: /etc/qemu-binfmt/m68k |
Source: mKBZo65Fcb.elf, 5460.1.0000560b27ae2000.0000560b27b68000.rw-.sdmp, mKBZo65Fcb.elf, 5462.1.0000560b27ae2000.0000560b27b68000.rw-.sdmp, mKBZo65Fcb.elf, 5589.1.0000560b27ae2000.0000560b27b68000.rw-.sdmp, mKBZo65Fcb.elf, 5604.1.0000560b27ae2000.0000560b27b68000.rw-.sdmp, mKBZo65Fcb.elf, 5594.1.0000560b27ae2000.0000560b27b68000.rw-.sdmp, mKBZo65Fcb.elf, 5463.1.0000560b27ae2000.0000560b27b68000.rw-.sdmp, mKBZo65Fcb.elf, 5583.1.0000560b27ae2000.0000560b27b68000.rw-.sdmp, mKBZo65Fcb.elf, 5470.1.0000560b27ae2000.0000560b27b68000.rw-.sdmp |
Binary or memory string: V!/etc/qemu-binfmt/m68k |