Linux
Analysis Report
Space.mpsl.elf
Overview
General Information
Sample name: | Space.mpsl.elf |
Analysis ID: | 1644271 |
MD5: | 92cbd3549361cc6766eabc5ffae9d086 |
SHA1: | 93fd50736f83c0d27bb20eb0620bf15ba50f5bea |
SHA256: | 0b9c554e5fb0c25ac58dd84bf23fb43cb94580fe388d57b0bf68b61d31ab029b |
Tags: | elfMiraiuser-abuse_ch |
Infos: |
Detection
Score: | 68 |
Range: | 0 - 100 |
Signatures
Antivirus / Scanner detection for submitted sample
Malicious sample detected (through community Yara rule)
Multi AV Scanner detection for submitted file
Sample is packed with UPX
Detected TCP or UDP traffic on non-standard ports
ELF contains segments with high entropy indicating compressed/encrypted content
Enumerates processes within the "proc" file system
Sample contains only a LOAD segment without any section mappings
Uses the "uname" system call to query kernel version information (possible evasion)
Yara signature match
Classification
Joe Sandbox version: | 42.0.0 Malachite |
Analysis ID: | 1644271 |
Start date and time: | 2025-03-20 13:57:03 +01:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 4m 40s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | defaultlinuxfilecookbook.jbs |
Analysis system description: | Ubuntu Linux 20.04 x64 (Kernel 5.4.0-72, Firefox 91.0, Evince Document Viewer 3.36.10, LibreOffice 6.4.7.2, OpenJDK 11.0.11) |
Analysis Mode: | default |
Sample name: | Space.mpsl.elf |
Detection: | MAL |
Classification: | mal68.evad.linELF@0/0@0/0 |
Command: | /tmp/Space.mpsl.elf |
PID: | 5434 |
Exit Code: | 0 |
Exit Code Info: | |
Killed: | False |
Standard Output: | lzrd cock fest"/proc/"/exe |
Standard Error: |
- system is lnxubuntu20
- Space.mpsl.elf New Fork (PID: 5436, Parent: 5434)
- Space.mpsl.elf New Fork (PID: 5438, Parent: 5436)
- Space.mpsl.elf New Fork (PID: 5440, Parent: 5436)
- Space.mpsl.elf New Fork (PID: 5454, Parent: 5434)
- Space.mpsl.elf New Fork (PID: 5455, Parent: 5434)
- cleanup
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
Linux_Trojan_Gafgyt_28a2fe0c | unknown | unknown |
| |
Linux_Trojan_Gafgyt_28a2fe0c | unknown | unknown |
| |
Linux_Trojan_Gafgyt_28a2fe0c | unknown | unknown |
| |
Linux_Trojan_Gafgyt_28a2fe0c | unknown | unknown |
| |
Linux_Trojan_Gafgyt_28a2fe0c | unknown | unknown |
| |
Click to see the 3 entries |
⊘No Suricata rule has matched
- • AV Detection
- • Networking
- • System Summary
- • Data Obfuscation
- • Persistence and Installation Behavior
- • Hooking and other Techniques for Hiding and Protection
- • Malware Analysis System Evasion
Click to jump to signature section
Show All Signature Results
AV Detection |
---|
Source: | Avira: |
Source: | Virustotal: | Perma Link | ||
Source: | ReversingLabs: |
Source: | TCP traffic: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | String found in binary or memory: |
System Summary |
---|
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: |
Source: | Program segment: |
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: |
Source: | Classification label: |
Data Obfuscation |
---|
Source: | String containing UPX found: | ||
Source: | String containing UPX found: | ||
Source: | String containing UPX found: |
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior |
Source: | Submission file: |
Source: | Queries kernel information via 'uname': | Jump to behavior |
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | Path Interception | 11 Obfuscated Files or Information | 1 OS Credential Dumping | 11 Security Software Discovery | Remote Services | Data from Local System | 1 Non-Standard Port | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
⊘No configs have been found
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
42% | Virustotal | Browse | ||
44% | ReversingLabs | Linux.Trojan.Mirai | ||
100% | Avira | EXP/ELF.Agent.M.28 |
⊘No Antivirus matches
⊘No Antivirus matches
⊘No Antivirus matches
⊘No contacted domains info
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
false | high |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
209.97.147.158 | unknown | United States | 14061 | DIGITALOCEAN-ASNUS | false |
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
209.97.147.158 | Get hash | malicious | Unknown | Browse | ||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Unknown | Browse | |||
Get hash | malicious | Mirai | Browse | |||
Get hash | malicious | Unknown | Browse |
⊘No context
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
DIGITALOCEAN-ASNUS | Get hash | malicious | Unknown | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Mirai | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Emotet | Browse |
| ||
Get hash | malicious | Emotet | Browse |
| ||
Get hash | malicious | Rusty Stealer | Browse |
|
⊘No context
⊘No context
⊘No created / dropped files found
File type: | |
Entropy (8bit): | 7.943478508741437 |
TrID: |
|
File name: | Space.mpsl.elf |
File size: | 44'352 bytes |
MD5: | 92cbd3549361cc6766eabc5ffae9d086 |
SHA1: | 93fd50736f83c0d27bb20eb0620bf15ba50f5bea |
SHA256: | 0b9c554e5fb0c25ac58dd84bf23fb43cb94580fe388d57b0bf68b61d31ab029b |
SHA512: | 036d157a6b4309a54d81359086f61f09984488ad8922acd63fb8a2ca42b367eec8dc6d356d6238e5316543f54a5257eab1819dc6890344b163853557a66fbb7a |
SSDEEP: | 768:4QdzLFMbXkqyyxwmGFm3qsSPhkj96MiKrecs6cDtyO5XnQDhuF+69uWh:nPmwqBOc31LNrecs6KtPXQDhsl |
TLSH: | 6913F14EDBE2ED65C8CF5839B4CD03615A92B1C224270FDCA3596C8CA5958CA78CD8B5 |
File Content Preview: | .ELF........................4...........4. ...(...............................................C...C.....................UPX!d...................V..........?.E.h;....#......b.L#>g7.9f......1....F.....f.u.(L.X.Ak..8......~.Dl0..Wl../... ..il...&..........p? |
ELF header | |
---|---|
Class: | |
Data: | |
Version: | |
Machine: | |
Version Number: | |
Type: | |
OS/ABI: | |
ABI Version: | 0 |
Entry Point Address: | |
Flags: | |
ELF Header Size: | 52 |
Program Header Offset: | 52 |
Program Header Size: | 32 |
Number of Program Headers: | 2 |
Section Header Offset: | 0 |
Section Header Size: | 40 |
Number of Section Headers: | 0 |
Header String Table Index: | 0 |
Type | Offset | Virtual Address | Physical Address | File Size | Memory Size | Entropy | Flags | Flags Description | Align | Prog Interpreter | Section Mappings |
---|---|---|---|---|---|---|---|---|---|---|---|
LOAD | 0x0 | 0x100000 | 0x100000 | 0xac15 | 0xac15 | 7.9461 | 0x5 | R E | 0x10000 | ||
LOAD | 0xaffc | 0x43affc | 0x43affc | 0x0 | 0x0 | 0.0000 | 0x6 | RW | 0x10000 |
Download Network PCAP: filtered – full
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Mar 20, 2025 13:57:52.188072920 CET | 45902 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:57:53.207586050 CET | 45902 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:57:55.223783016 CET | 45902 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:57:57.810692072 CET | 45904 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:57:58.839797020 CET | 45904 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:57:59.319787979 CET | 45902 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:00.855639935 CET | 45904 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:03.214822054 CET | 45906 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:04.215786934 CET | 45906 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:04.951781988 CET | 45904 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:06.231695890 CET | 45906 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:08.864934921 CET | 45908 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:09.879759073 CET | 45908 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:10.327729940 CET | 45906 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:11.895804882 CET | 45908 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:14.222759962 CET | 45910 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:15.223759890 CET | 45910 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:15.959640026 CET | 45908 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:17.239561081 CET | 45910 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:19.881611109 CET | 45912 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:20.887816906 CET | 45912 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:21.335887909 CET | 45910 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:22.903749943 CET | 45912 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:25.239286900 CET | 45914 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:26.263798952 CET | 45914 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:26.967910051 CET | 45912 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:28.279757023 CET | 45914 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:30.899297953 CET | 45916 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:31.927834988 CET | 45916 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:32.343609095 CET | 45914 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:33.943759918 CET | 45916 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:36.257667065 CET | 45918 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:37.271672964 CET | 45918 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:37.975651979 CET | 45916 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:39.287796021 CET | 45918 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:41.916951895 CET | 45920 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:42.935935020 CET | 45920 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:43.351702929 CET | 45918 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:44.951862097 CET | 45920 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:47.270987034 CET | 45922 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:48.279863119 CET | 45922 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:48.983880043 CET | 45920 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:50.295906067 CET | 45922 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:52.924627066 CET | 45924 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:53.943787098 CET | 45924 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:54.359838009 CET | 45922 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:55.959887981 CET | 45924 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:58.286300898 CET | 45926 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:59.287719965 CET | 45926 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:58:59.991653919 CET | 45924 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:01.303747892 CET | 45926 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:03.930619001 CET | 45928 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:04.951693058 CET | 45928 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:05.367713928 CET | 45926 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:06.967667103 CET | 45928 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:09.300539017 CET | 45930 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:10.327877998 CET | 45930 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:10.999686003 CET | 45928 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:12.343713045 CET | 45930 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:14.936901093 CET | 45932 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:15.959600925 CET | 45932 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:16.375674009 CET | 45930 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:17.975661039 CET | 45932 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:20.315452099 CET | 45934 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:21.335786104 CET | 45934 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:22.007747889 CET | 45932 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:23.351809025 CET | 45934 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:25.947319984 CET | 45936 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:26.967612028 CET | 45936 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:27.383713961 CET | 45934 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:28.983637094 CET | 45936 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:31.329303980 CET | 45938 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:32.343677044 CET | 45938 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:33.015755892 CET | 45936 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:34.359635115 CET | 45938 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:36.960259914 CET | 45940 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:37.975725889 CET | 45940 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:38.391813993 CET | 45938 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:39.991739988 CET | 45940 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:42.342192888 CET | 45942 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:43.351735115 CET | 45942 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:44.023721933 CET | 45940 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:45.367649078 CET | 45942 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:47.974133968 CET | 45944 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:48.984352112 CET | 45944 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:49.399647951 CET | 45942 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:50.999646902 CET | 45944 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:53.355725050 CET | 45946 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:54.359663010 CET | 45946 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:55.031639099 CET | 45944 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:56.375637054 CET | 45946 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:58.986974955 CET | 45948 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 13:59:59.991614103 CET | 45948 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 14:00:00.407629013 CET | 45946 | 3778 | 192.168.2.13 | 209.97.147.158 |
Mar 20, 2025 14:00:02.007584095 CET | 45948 | 3778 | 192.168.2.13 | 209.97.147.158 |
System Behavior
Start time (UTC): | 12:57:51 |
Start date (UTC): | 20/03/2025 |
Path: | /tmp/Space.mpsl.elf |
Arguments: | /tmp/Space.mpsl.elf |
File size: | 5773336 bytes |
MD5 hash: | 0d6f61f82cf2f781c6eb0661071d42d9 |
Start time (UTC): | 12:57:51 |
Start date (UTC): | 20/03/2025 |
Path: | /tmp/Space.mpsl.elf |
Arguments: | - |
File size: | 5773336 bytes |
MD5 hash: | 0d6f61f82cf2f781c6eb0661071d42d9 |
Start time (UTC): | 12:57:51 |
Start date (UTC): | 20/03/2025 |
Path: | /tmp/Space.mpsl.elf |
Arguments: | - |
File size: | 5773336 bytes |
MD5 hash: | 0d6f61f82cf2f781c6eb0661071d42d9 |
Start time (UTC): | 12:57:51 |
Start date (UTC): | 20/03/2025 |
Path: | /tmp/Space.mpsl.elf |
Arguments: | - |
File size: | 5773336 bytes |
MD5 hash: | 0d6f61f82cf2f781c6eb0661071d42d9 |
Start time (UTC): | 12:57:57 |
Start date (UTC): | 20/03/2025 |
Path: | /tmp/Space.mpsl.elf |
Arguments: | - |
File size: | 5773336 bytes |
MD5 hash: | 0d6f61f82cf2f781c6eb0661071d42d9 |
Start time (UTC): | 12:57:57 |
Start date (UTC): | 20/03/2025 |
Path: | /tmp/Space.mpsl.elf |
Arguments: | - |
File size: | 5773336 bytes |
MD5 hash: | 0d6f61f82cf2f781c6eb0661071d42d9 |