Create Interactive Tour

Linux Analysis Report
morte.arm7.elf

Overview

General Information

Sample name:morte.arm7.elf
Analysis ID:1646186
MD5:23346ecd1cc5cad4847ac8e30cdb0e3f
SHA1:2ac03d3a876a40a5b4357e8c58e6ecc647a9dc1c
SHA256:c6600d76dc4e2ef2535a5b002fb9620f9fb9c1c4216d65f4ba10e39cf53f3f98
Tags:elfuser-abuse_ch
Infos:

Detection

Okiru
Score:80
Range:0 - 100

Signatures

Multi AV Scanner detection for submitted file
Sample tries to kill a massive number of system processes
Yara detected Okiru
Reads system files that contain records of logged in users
Sample is packed with UPX
Sample reads /proc/mounts (often used for finding a writable filesystem)
Sample tries to kill multiple processes (SIGKILL)
Creates hidden files and/or directories
Deletes log files
Detected TCP or UDP traffic on non-standard ports
ELF contains segments with high entropy indicating compressed/encrypted content
Enumerates processes within the "proc" file system
Executes commands using a shell command-line interpreter
Executes the "grep" command used to find patterns in files or piped streams
Executes the "kill" or "pkill" command typically used to terminate processes
HTTP GET or POST without a user agent
Reads CPU information from /sys indicative of miner or evasive malware
Reads system information from the proc file system
Reads system version information
Reads the 'hosts' file potentially containing internal network hosts
Sample contains only a LOAD segment without any section mappings
Sample listens on a socket
Sample tries to kill a process (SIGKILL)
Sample tries to set the executable flag
Uses the "uname" system call to query kernel version information (possible evasion)

Classification

RansomwareSpreadingPhishingBankerTrojan / BotAdwareSpywareExploiterEvaderMinercleansuspiciousmalicious
Joe Sandbox version:42.0.0 Malachite
Analysis ID:1646186
Start date and time:2025-03-23 15:42:13 +01:00
Joe Sandbox product:CloudBasic
Overall analysis duration:0h 4m 27s
Hypervisor based Inspection enabled:false
Report type:full
Cookbook file name:defaultlinuxfilecookbook.jbs
Analysis system description:Ubuntu Linux 20.04 x64 (Kernel 5.4.0-72, Firefox 91.0, Evince Document Viewer 3.36.10, LibreOffice 6.4.7.2, OpenJDK 11.0.11)
Analysis Mode:default
Sample name:morte.arm7.elf
Detection:MAL
Classification:mal80.spre.troj.evad.linELF@0/48@3/0
  • Connection to analysis system has been lost, crash info: Unknown
  • Some HTTPS proxied raw data packets have been limited to 10 per session. Please view the PCAPs for the complete data.
Command:/tmp/morte.arm7.elf
PID:6232
Exit Code:0
Exit Code Info:
Killed:False
Standard Output:
lzrd cock fest"/proc/"/exe
Standard Error:
  • system is lnxubuntu20
  • systemd New Fork (PID: 6240, Parent: 1)
  • journalctl (PID: 6240, Parent: 1, MD5: bf3a987344f3bacafc44efd882abda8b) Arguments: /usr/bin/journalctl --smart-relinquish-var
  • systemd New Fork (PID: 6261, Parent: 1)
  • dbus-daemon (PID: 6261, Parent: 1, MD5: 3089d47e3f3ab84cd81c48fd406d7a8c) Arguments: /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only
  • systemd New Fork (PID: 6275, Parent: 1)
  • rsyslogd (PID: 6275, Parent: 1, MD5: 0b8087fc907c42eb3c81a691db258e33) Arguments: /usr/sbin/rsyslogd -n -iNONE
  • systemd New Fork (PID: 6276, Parent: 1860)
  • pulseaudio (PID: 6276, Parent: 1860, MD5: 0c3b4c789d8ffb12b25507f27e14c186) Arguments: /usr/bin/pulseaudio --daemonize=no --log-target=journal
  • fusermount (PID: 6277, Parent: 2038, MD5: 576a1b135c82bdcbc97a91acea900566) Arguments: fusermount -u -q -z -- /run/user/1000/gvfs
  • systemd New Fork (PID: 6280, Parent: 1)
  • systemd-journald (PID: 6280, Parent: 1, MD5: 474667ece6cecb5e04c6eb897a1d0d9e) Arguments: /lib/systemd/systemd-journald
  • systemd New Fork (PID: 6282, Parent: 1)
  • dbus-daemon (PID: 6282, Parent: 1, MD5: 3089d47e3f3ab84cd81c48fd406d7a8c) Arguments: /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only
  • systemd New Fork (PID: 6285, Parent: 1)
  • rsyslogd (PID: 6285, Parent: 1, MD5: 0b8087fc907c42eb3c81a691db258e33) Arguments: /usr/sbin/rsyslogd -n -iNONE
  • systemd New Fork (PID: 6296, Parent: 1)
  • systemd-logind (PID: 6296, Parent: 1, MD5: 8dd58a1b4c12f7a1d5fe3ce18b2aaeef) Arguments: /lib/systemd/systemd-logind
  • gdm3 New Fork (PID: 6353, Parent: 1320)
  • Default (PID: 6353, Parent: 1320, MD5: 1e6b1c887c59a315edb7eb9a315fc84c) Arguments: /etc/gdm3/PrimeOff/Default
  • gdm3 New Fork (PID: 6355, Parent: 1320)
  • Default (PID: 6355, Parent: 1320, MD5: 1e6b1c887c59a315edb7eb9a315fc84c) Arguments: /etc/gdm3/PrimeOff/Default
  • gdm3 New Fork (PID: 6356, Parent: 1320)
  • Default (PID: 6356, Parent: 1320, MD5: 1e6b1c887c59a315edb7eb9a315fc84c) Arguments: /etc/gdm3/PrimeOff/Default
  • systemd New Fork (PID: 6358, Parent: 1)
  • agetty (PID: 6358, Parent: 1, MD5: 3a374724ba7e863768139bdd60ca36f7) Arguments: /sbin/agetty -o "-p -- \\u" --noclear tty2 linux
  • systemd New Fork (PID: 6359, Parent: 1)
  • gpu-manager (PID: 6359, Parent: 1, MD5: 8fae9dd5dd67e1f33d873089c2fd8761) Arguments: /usr/bin/gpu-manager --log /var/log/gpu-manager.log
    • sh (PID: 6360, Parent: 6359, MD5: 1e6b1c887c59a315edb7eb9a315fc84c) Arguments: sh -c "grep -G \"^blacklist.*nvidia[[:space:]]*$\" /etc/modprobe.d/*.conf"
      • sh New Fork (PID: 6361, Parent: 6360)
      • grep (PID: 6361, Parent: 6360, MD5: 1e6ebb9dd094f774478f72727bdba0f5) Arguments: grep -G ^blacklist.*nvidia[[:space:]]*$ /etc/modprobe.d/alsa-base.conf /etc/modprobe.d/amd64-microcode-blacklist.conf /etc/modprobe.d/blacklist-ath_pci.conf /etc/modprobe.d/blacklist-firewire.conf /etc/modprobe.d/blacklist-framebuffer.conf /etc/modprobe.d/blacklist-modem.conf /etc/modprobe.d/blacklist-oss.conf /etc/modprobe.d/blacklist-rare-network.conf /etc/modprobe.d/blacklist.conf /etc/modprobe.d/intel-microcode-blacklist.conf /etc/modprobe.d/iwlwifi.conf /etc/modprobe.d/mdadm.conf
    • sh (PID: 6362, Parent: 6359, MD5: 1e6b1c887c59a315edb7eb9a315fc84c) Arguments: sh -c "grep -G \"^blacklist.*nvidia[[:space:]]*$\" /lib/modprobe.d/*.conf"
      • sh New Fork (PID: 6363, Parent: 6362)
      • grep (PID: 6363, Parent: 6362, MD5: 1e6ebb9dd094f774478f72727bdba0f5) Arguments: grep -G ^blacklist.*nvidia[[:space:]]*$ /lib/modprobe.d/aliases.conf /lib/modprobe.d/blacklist_linux_5.4.0-72-generic.conf /lib/modprobe.d/blacklist_linux_5.4.0-81-generic.conf /lib/modprobe.d/fbdev-blacklist.conf /lib/modprobe.d/systemd.conf
    • sh (PID: 6364, Parent: 6359, MD5: 1e6b1c887c59a315edb7eb9a315fc84c) Arguments: sh -c "grep -G \"^blacklist.*radeon[[:space:]]*$\" /etc/modprobe.d/*.conf"
      • sh New Fork (PID: 6365, Parent: 6364)
      • grep (PID: 6365, Parent: 6364, MD5: 1e6ebb9dd094f774478f72727bdba0f5) Arguments: grep -G ^blacklist.*radeon[[:space:]]*$ /etc/modprobe.d/alsa-base.conf /etc/modprobe.d/amd64-microcode-blacklist.conf /etc/modprobe.d/blacklist-ath_pci.conf /etc/modprobe.d/blacklist-firewire.conf /etc/modprobe.d/blacklist-framebuffer.conf /etc/modprobe.d/blacklist-modem.conf /etc/modprobe.d/blacklist-oss.conf /etc/modprobe.d/blacklist-rare-network.conf /etc/modprobe.d/blacklist.conf /etc/modprobe.d/intel-microcode-blacklist.conf /etc/modprobe.d/iwlwifi.conf /etc/modprobe.d/mdadm.conf
    • sh (PID: 6366, Parent: 6359, MD5: 1e6b1c887c59a315edb7eb9a315fc84c) Arguments: sh -c "grep -G \"^blacklist.*radeon[[:space:]]*$\" /lib/modprobe.d/*.conf"
      • sh New Fork (PID: 6367, Parent: 6366)
      • grep (PID: 6367, Parent: 6366, MD5: 1e6ebb9dd094f774478f72727bdba0f5) Arguments: grep -G ^blacklist.*radeon[[:space:]]*$ /lib/modprobe.d/aliases.conf /lib/modprobe.d/blacklist_linux_5.4.0-72-generic.conf /lib/modprobe.d/blacklist_linux_5.4.0-81-generic.conf /lib/modprobe.d/fbdev-blacklist.conf /lib/modprobe.d/systemd.conf
    • sh (PID: 6368, Parent: 6359, MD5: 1e6b1c887c59a315edb7eb9a315fc84c) Arguments: sh -c "grep -G \"^blacklist.*amdgpu[[:space:]]*$\" /etc/modprobe.d/*.conf"
      • sh New Fork (PID: 6369, Parent: 6368)
      • grep (PID: 6369, Parent: 6368, MD5: 1e6ebb9dd094f774478f72727bdba0f5) Arguments: grep -G ^blacklist.*amdgpu[[:space:]]*$ /etc/modprobe.d/alsa-base.conf /etc/modprobe.d/amd64-microcode-blacklist.conf /etc/modprobe.d/blacklist-ath_pci.conf /etc/modprobe.d/blacklist-firewire.conf /etc/modprobe.d/blacklist-framebuffer.conf /etc/modprobe.d/blacklist-modem.conf /etc/modprobe.d/blacklist-oss.conf /etc/modprobe.d/blacklist-rare-network.conf /etc/modprobe.d/blacklist.conf /etc/modprobe.d/intel-microcode-blacklist.conf /etc/modprobe.d/iwlwifi.conf /etc/modprobe.d/mdadm.conf
    • sh (PID: 6370, Parent: 6359, MD5: 1e6b1c887c59a315edb7eb9a315fc84c) Arguments: sh -c "grep -G \"^blacklist.*amdgpu[[:space:]]*$\" /lib/modprobe.d/*.conf"
      • sh New Fork (PID: 6371, Parent: 6370)
      • grep (PID: 6371, Parent: 6370, MD5: 1e6ebb9dd094f774478f72727bdba0f5) Arguments: grep -G ^blacklist.*amdgpu[[:space:]]*$ /lib/modprobe.d/aliases.conf /lib/modprobe.d/blacklist_linux_5.4.0-72-generic.conf /lib/modprobe.d/blacklist_linux_5.4.0-81-generic.conf /lib/modprobe.d/fbdev-blacklist.conf /lib/modprobe.d/systemd.conf
    • sh (PID: 6374, Parent: 6359, MD5: 1e6b1c887c59a315edb7eb9a315fc84c) Arguments: sh -c "grep -G \"^blacklist.*nouveau[[:space:]]*$\" /etc/modprobe.d/*.conf"
      • sh New Fork (PID: 6375, Parent: 6374)
      • grep (PID: 6375, Parent: 6374, MD5: 1e6ebb9dd094f774478f72727bdba0f5) Arguments: grep -G ^blacklist.*nouveau[[:space:]]*$ /etc/modprobe.d/alsa-base.conf /etc/modprobe.d/amd64-microcode-blacklist.conf /etc/modprobe.d/blacklist-ath_pci.conf /etc/modprobe.d/blacklist-firewire.conf /etc/modprobe.d/blacklist-framebuffer.conf /etc/modprobe.d/blacklist-modem.conf /etc/modprobe.d/blacklist-oss.conf /etc/modprobe.d/blacklist-rare-network.conf /etc/modprobe.d/blacklist.conf /etc/modprobe.d/intel-microcode-blacklist.conf /etc/modprobe.d/iwlwifi.conf /etc/modprobe.d/mdadm.conf
    • sh (PID: 6376, Parent: 6359, MD5: 1e6b1c887c59a315edb7eb9a315fc84c) Arguments: sh -c "grep -G \"^blacklist.*nouveau[[:space:]]*$\" /lib/modprobe.d/*.conf"
      • sh New Fork (PID: 6377, Parent: 6376)
      • grep (PID: 6377, Parent: 6376, MD5: 1e6ebb9dd094f774478f72727bdba0f5) Arguments: grep -G ^blacklist.*nouveau[[:space:]]*$ /lib/modprobe.d/aliases.conf /lib/modprobe.d/blacklist_linux_5.4.0-72-generic.conf /lib/modprobe.d/blacklist_linux_5.4.0-81-generic.conf /lib/modprobe.d/fbdev-blacklist.conf /lib/modprobe.d/systemd.conf
  • systemd New Fork (PID: 6379, Parent: 1)
  • journalctl (PID: 6379, Parent: 1, MD5: bf3a987344f3bacafc44efd882abda8b) Arguments: /usr/bin/journalctl --flush
  • systemd New Fork (PID: 6382, Parent: 1)
  • generate-config (PID: 6382, Parent: 1, MD5: 1e6b1c887c59a315edb7eb9a315fc84c) Arguments: /usr/share/gdm/generate-config
    • pkill (PID: 6383, Parent: 6382, MD5: fa96a75a08109d8842e4865b2907d51f) Arguments: pkill --signal HUP --uid gdm dconf-service
  • systemd New Fork (PID: 6386, Parent: 1)
  • gdm-wait-for-drm (PID: 6386, Parent: 1, MD5: 82043ba752c6930b4e6aaea2f7747545) Arguments: /usr/lib/gdm3/gdm-wait-for-drm
  • systemd New Fork (PID: 6391, Parent: 1)
  • gdm3 (PID: 6391, Parent: 1, MD5: 2492e2d8d34f9377e3e530a61a15674f) Arguments: /usr/sbin/gdm3
    • gdm3 New Fork (PID: 6394, Parent: 6391)
    • plymouth (PID: 6394, Parent: 6391, MD5: 87003efd8dad470042f5e75360a8f49f) Arguments: plymouth --ping
    • gdm3 New Fork (PID: 6410, Parent: 6391)
    • gdm-session-worker (PID: 6410, Parent: 6391, MD5: 692243754bd9f38fe9bd7e230b5c060a) Arguments: "gdm-session-worker [pam/gdm-launch-environment]"
      • gdm-wayland-session (PID: 6414, Parent: 6410, MD5: d3def63cf1e83f7fb8a0f13b1744ff7c) Arguments: /usr/lib/gdm3/gdm-wayland-session "dbus-run-session -- gnome-session --autostart /usr/share/gdm/greeter/autostart"
        • dbus-daemon (PID: 6416, Parent: 6414, MD5: 3089d47e3f3ab84cd81c48fd406d7a8c) Arguments: dbus-daemon --print-address 3 --session
          • dbus-daemon New Fork (PID: 6418, Parent: 6416)
            • false (PID: 6419, Parent: 6418, MD5: 3177546c74e4f0062909eae43d948bfc) Arguments: /bin/false
        • dbus-run-session (PID: 6420, Parent: 6414, MD5: 245f3ef6a268850b33b0225a8753b7f4) Arguments: dbus-run-session -- gnome-session --autostart /usr/share/gdm/greeter/autostart
          • dbus-daemon (PID: 6421, Parent: 6420, MD5: 3089d47e3f3ab84cd81c48fd406d7a8c) Arguments: dbus-daemon --nofork --print-address 4 --session
    • gdm3 New Fork (PID: 6422, Parent: 6391)
    • Default (PID: 6422, Parent: 6391, MD5: 1e6b1c887c59a315edb7eb9a315fc84c) Arguments: /etc/gdm3/PrimeOff/Default
    • gdm3 New Fork (PID: 6423, Parent: 6391)
    • Default (PID: 6423, Parent: 6391, MD5: 1e6b1c887c59a315edb7eb9a315fc84c) Arguments: /etc/gdm3/PrimeOff/Default
  • systemd New Fork (PID: 6395, Parent: 1)
  • accounts-daemon (PID: 6395, Parent: 1, MD5: 01a899e3fb5e7e434bea1290255a1f30) Arguments: /usr/lib/accountsservice/accounts-daemon
    • language-validate (PID: 6399, Parent: 6395, MD5: 1e6b1c887c59a315edb7eb9a315fc84c) Arguments: /usr/share/language-tools/language-validate en_US.UTF-8
      • language-options (PID: 6400, Parent: 6399, MD5: 16a21f464119ea7fad1d3660de963637) Arguments: /usr/share/language-tools/language-options
        • sh (PID: 6401, Parent: 6400, MD5: 1e6b1c887c59a315edb7eb9a315fc84c) Arguments: sh -c "locale -a | grep -F .utf8 "
          • sh New Fork (PID: 6402, Parent: 6401)
          • locale (PID: 6402, Parent: 6401, MD5: c72a78792469db86d91369c9057f20d2) Arguments: locale -a
          • sh New Fork (PID: 6403, Parent: 6401)
          • grep (PID: 6403, Parent: 6401, MD5: 1e6ebb9dd094f774478f72727bdba0f5) Arguments: grep -F .utf8
  • systemd New Fork (PID: 6404, Parent: 1)
  • polkitd (PID: 6404, Parent: 1, MD5: 8efc9b4b5b524210ad2ea1954a9d0e69) Arguments: /usr/lib/policykit-1/polkitd --no-debug
  • systemd New Fork (PID: 6449, Parent: 1860)
  • dbus-daemon (PID: 6449, Parent: 1860, MD5: 3089d47e3f3ab84cd81c48fd406d7a8c) Arguments: /usr/bin/dbus-daemon --session --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only
  • systemd New Fork (PID: 6450, Parent: 1860)
  • pulseaudio (PID: 6450, Parent: 1860, MD5: 0c3b4c789d8ffb12b25507f27e14c186) Arguments: /usr/bin/pulseaudio --daemonize=no --log-target=journal
  • systemd New Fork (PID: 6451, Parent: 1)
  • rtkit-daemon (PID: 6451, Parent: 1, MD5: df0cacf1db4ec95ac70f5b6e06b8ffd7) Arguments: /usr/libexec/rtkit-daemon
  • cleanup
SourceRuleDescriptionAuthorStrings
6232.1.00007f3bc4017000.00007f3bc402e000.r-x.sdmpJoeSecurity_OkiruYara detected OkiruJoe Security
    6238.1.00007f3bc4017000.00007f3bc402e000.r-x.sdmpJoeSecurity_OkiruYara detected OkiruJoe Security
      6236.1.00007f3bc4017000.00007f3bc402e000.r-x.sdmpJoeSecurity_OkiruYara detected OkiruJoe Security
        6234.1.00007f3bc4017000.00007f3bc402e000.r-x.sdmpJoeSecurity_OkiruYara detected OkiruJoe Security
          Process Memory Space: morte.arm7.elf PID: 6232JoeSecurity_OkiruYara detected OkiruJoe Security
            Click to see the 3 entries
            No Suricata rule has matched

            Click to jump to signature section

            Show All Signature Results

            AV Detection

            barindex
            Source: morte.arm7.elfReversingLabs: Detection: 44%
            Source: morte.arm7.elfVirustotal: Detection: 39%Perma Link
            Source: /usr/bin/pkill (PID: 6383)Reads CPU info from /sys: /sys/devices/system/cpu/onlineJump to behavior
            Source: /usr/bin/pulseaudio (PID: 6450)Reads CPU info from /sys: /sys/devices/system/cpu/onlineJump to behavior
            Source: global trafficTCP traffic: 192.168.2.23:46292 -> 176.65.142.252:7575
            Source: global trafficHTTP traffic detected: POST /9aadafe2051348cd32033e1cad68f0a5fe46fba3240ac1e6e42158f31b8a1371790c09baf3996b4979fe8e533446c7dedf30f654c68b25357334c66911dc6a9e HTTP/1.1Host: daisy.ubuntu.comAccept: */*Content-Type: application/octet-streamX-Whoopsie-Version: 0.2.69ubuntu0.3Content-Length: 164887Expect: 100-continue
            Source: /usr/sbin/rsyslogd (PID: 6285)Reads hosts file: /etc/hostsJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6234)Socket: 127.0.0.1:65279Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)Socket: unknown address familyJump to behavior
            Source: /usr/sbin/gdm3 (PID: 6391)Socket: unknown address familyJump to behavior
            Source: /usr/bin/dbus-daemon (PID: 6416)Socket: unknown address familyJump to behavior
            Source: unknownTCP traffic detected without corresponding DNS query: 176.65.142.252
            Source: unknownTCP traffic detected without corresponding DNS query: 176.65.142.252
            Source: unknownTCP traffic detected without corresponding DNS query: 176.65.142.252
            Source: unknownTCP traffic detected without corresponding DNS query: 176.65.142.252
            Source: unknownTCP traffic detected without corresponding DNS query: 91.189.91.43
            Source: unknownTCP traffic detected without corresponding DNS query: 109.202.202.202
            Source: unknownTCP traffic detected without corresponding DNS query: 176.65.142.252
            Source: unknownTCP traffic detected without corresponding DNS query: 176.65.142.252
            Source: unknownTCP traffic detected without corresponding DNS query: 91.189.91.42
            Source: unknownTCP traffic detected without corresponding DNS query: 91.189.91.43
            Source: unknownTCP traffic detected without corresponding DNS query: 109.202.202.202
            Source: unknownTCP traffic detected without corresponding DNS query: 91.189.91.42
            Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
            Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
            Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
            Source: global trafficDNS traffic detected: DNS query: daisy.ubuntu.com
            Source: unknownHTTP traffic detected: POST /9aadafe2051348cd32033e1cad68f0a5fe46fba3240ac1e6e42158f31b8a1371790c09baf3996b4979fe8e533446c7dedf30f654c68b25357334c66911dc6a9e HTTP/1.1Host: daisy.ubuntu.comAccept: */*Content-Type: application/octet-streamX-Whoopsie-Version: 0.2.69ubuntu0.3Content-Length: 164887Expect: 100-continue
            Source: morte.arm7.elfString found in binary or memory: http://upx.sf.net
            Source: syslog.35.drString found in binary or memory: https://www.rsyslog.com
            Source: unknownNetwork traffic detected: HTTP traffic on port 37604 -> 443
            Source: unknownNetwork traffic detected: HTTP traffic on port 43928 -> 443
            Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 37604
            Source: unknownNetwork traffic detected: HTTP traffic on port 42836 -> 443

            System Summary

            barindex
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 1 (init), result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 491, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 658, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 720, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 721, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 759, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 761, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 772, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 774, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 777, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 785, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 793, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 797, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 936, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 2, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 3, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 4, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 6, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 9, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 10, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 11, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 12, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 13, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 14, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 15, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 16, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 17, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 18, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 20, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 21, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 22, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 23, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 24, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 25, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 26, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 27, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 28, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 29, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 30, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 35, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 77, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 78, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 79, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 80, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 81, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 82, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 83, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 84, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 85, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 88, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 89, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 91, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 92, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 93, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 94, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 95, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 96, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 97, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 98, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 99, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 100, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 101, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 102, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 103, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 104, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 105, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 106, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 107, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 108, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 109, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 110, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 111, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 112, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 113, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 114, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 115, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 116, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 117, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 118, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 119, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 120, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 121, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 122, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 123, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 124, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 125, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 126, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 127, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 128, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 130, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 132, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 141, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 144, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 157, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 201, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 202, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 203, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 204, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 205, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 206, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 207, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 208, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 209, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 210, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 211, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 212, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 213, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 214, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 215, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 216, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 217, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 218, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 219, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 220, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 221, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 222, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 223, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 224, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 225, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 226, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 227, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 228, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 229, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 230, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 231, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 232, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 233, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 234, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 235, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 236, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 237, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 243, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 248, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 249, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 250, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 251, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 252, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 253, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 254, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 255, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 256, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 257, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 258, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 259, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 260, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 261, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 262, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 263, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 264, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 265, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 266, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 267, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 269, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 270, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 272, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 274, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 278, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 281, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 286, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 322, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 324, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 326, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 327, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 328, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 333, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 346, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 379, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 419, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 420, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 517, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 654, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 655, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 656, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 657, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 667, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 670, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 674, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 675, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 676, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent to PID below 1000: pid: 677, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1 (init), result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 491, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 658, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 720, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 721, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 759, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 761, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 772, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 774, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 777, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 785, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 793, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 797, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 936, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1320, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1334, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1335, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1344, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1389, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1476, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1601, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1809, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1860, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1872, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1886, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1983, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2038, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2048, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4332, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4511, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6067, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6215, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6216, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6240, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6261, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6274, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6275, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6276, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 3, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 9, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 10, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 11, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 12, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 13, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 14, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 15, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 16, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 17, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 18, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 20, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 21, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 22, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 23, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 24, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 25, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 26, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 27, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 28, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 29, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 30, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 35, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 77, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 78, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 79, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 80, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 81, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 82, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 83, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 84, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 85, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 88, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 89, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 91, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 92, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 93, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 94, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 95, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 96, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 97, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 98, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 99, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 100, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 101, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 102, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 103, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 104, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 105, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 106, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 107, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 108, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 109, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 110, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 111, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 112, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 113, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 114, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 115, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 116, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 117, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 118, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 119, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 120, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 121, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 122, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 123, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 124, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 125, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 126, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 127, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 128, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 130, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 132, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 141, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 144, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 157, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 201, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 202, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 203, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 204, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 205, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 206, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 207, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 208, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 209, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 210, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 211, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 212, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 213, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 214, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 215, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 216, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 217, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 218, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 219, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 220, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 221, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 222, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 223, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 224, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 225, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 226, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 227, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 228, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 229, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 230, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 231, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 232, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 233, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 234, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 235, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 236, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 237, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 243, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 248, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 249, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 250, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 251, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 252, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 253, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 254, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 255, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 256, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 257, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 258, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 259, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 260, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 261, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 262, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 263, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 264, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 265, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 266, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 267, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 269, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 270, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 272, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 274, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 278, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 281, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 286, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 322, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 324, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 326, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 327, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 328, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 333, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 346, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 379, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 419, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 420, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 517, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 654, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 655, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 656, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 657, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 667, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 670, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 674, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 675, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 676, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 677, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1207, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2014, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2180, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2208, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2289, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2302, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2746, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2749, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2761, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2882, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 3021, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 3088, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4355, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4356, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4357, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4446, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4447, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4448, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4449, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4479, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4481, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4485, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6179, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6187, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6234, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6236, result: unknownJump to behavior
            Source: LOAD without section mappingsProgram segment: 0x8000
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1 (init), result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 491, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 658, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 720, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 721, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 759, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 761, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 772, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 774, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 777, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 785, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 793, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 797, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 936, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1320, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1334, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1335, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1344, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1389, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1476, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1601, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1809, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1860, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1872, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1886, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1983, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2038, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2048, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4332, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4511, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6067, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6215, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6216, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6240, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6261, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6274, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6275, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6276, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 3, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 9, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 10, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 11, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 12, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 13, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 14, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 15, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 16, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 17, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 18, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 20, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 21, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 22, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 23, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 24, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 25, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 26, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 27, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 28, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 29, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 30, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 35, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 77, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 78, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 79, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 80, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 81, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 82, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 83, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 84, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 85, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 88, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 89, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 91, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 92, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 93, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 94, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 95, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 96, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 97, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 98, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 99, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 100, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 101, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 102, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 103, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 104, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 105, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 106, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 107, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 108, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 109, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 110, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 111, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 112, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 113, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 114, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 115, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 116, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 117, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 118, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 119, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 120, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 121, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 122, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 123, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 124, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 125, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 126, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 127, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 128, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 130, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 132, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 141, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 144, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 157, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 201, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 202, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 203, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 204, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 205, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 206, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 207, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 208, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 209, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 210, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 211, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 212, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 213, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 214, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 215, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 216, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 217, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 218, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 219, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 220, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 221, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 222, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 223, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 224, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 225, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 226, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 227, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 228, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 229, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 230, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 231, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 232, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 233, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 234, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 235, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 236, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 237, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 243, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 248, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 249, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 250, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 251, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 252, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 253, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 254, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 255, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 256, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 257, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 258, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 259, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 260, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 261, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 262, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 263, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 264, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 265, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 266, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 267, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 269, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 270, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 272, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 274, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 278, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 281, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 286, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 322, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 324, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 326, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 327, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 328, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 333, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 346, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 379, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 419, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 420, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 517, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 654, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 655, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 656, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 657, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 667, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 670, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 674, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 675, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 676, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 677, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 1207, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2014, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2180, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2208, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2289, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2302, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2746, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2749, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2761, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 2882, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 3021, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 3088, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4355, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4356, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4357, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4446, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4447, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4448, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4449, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4479, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4481, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 4485, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6179, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6187, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6234, result: successfulJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6236)SIGKILL sent: pid: 6236, result: unknownJump to behavior
            Source: classification engineClassification label: mal80.spre.troj.evad.linELF@0/48@3/0

            Data Obfuscation

            barindex
            Source: initial sampleString containing UPX found: $Info: This file is packed with the UPX executable packer http://upx.sf.net $
            Source: initial sampleString containing UPX found: $Info: This file is packed with the UPX executable packer http://upx.sf.net $
            Source: initial sampleString containing UPX found: $Id: UPX 3.94 Copyright (C) 1996-2017 the UPX Team. All Rights Reserved. $

            Persistence and Installation Behavior

            barindex
            Source: /usr/bin/dbus-daemon (PID: 6261)File: /proc/6261/mountsJump to behavior
            Source: /bin/fusermount (PID: 6277)File: /proc/6277/mountsJump to behavior
            Source: /usr/bin/dbus-daemon (PID: 6282)File: /proc/6282/mountsJump to behavior
            Source: /usr/bin/dbus-daemon (PID: 6416)File: /proc/6416/mountsJump to behavior
            Source: /usr/bin/dbus-daemon (PID: 6421)File: /proc/6421/mountsJump to behavior
            Source: /usr/bin/dbus-daemon (PID: 6449)File: /proc/6449/mountsJump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:7643840l7a2Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:76451KqP0Z1Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:76452ahNNe5Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:76455nG9s15Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:76456YDnjz4Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:76457FlrEL2Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:76458xtaN65Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:76470G7QA42Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:76471G2v6E2Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:76480iLlQc4Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:764818BUJp6Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:76482tVOBY2Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:76483O9WGi3Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:76590NTGFu3Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:76610IETR51Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:76707mFXO23Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:76799lBTiJ3Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:778645tNeZ5Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:77866PSshh4Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:77902eC0Ll4Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:779047zDlf2Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:76996L9sKe6Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:77000zOrCs5Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)File: /run/systemd/journal/streams/.#9:77012NS9mG5Jump to behavior
            Source: /lib/systemd/systemd-logind (PID: 6296)Directory: <invalid fd (18)>/..Jump to behavior
            Source: /lib/systemd/systemd-logind (PID: 6296)Directory: <invalid fd (17)>/..Jump to behavior
            Source: /lib/systemd/systemd-logind (PID: 6296)File: /run/systemd/seats/.#seat0MO6kBgJump to behavior
            Source: /lib/systemd/systemd-logind (PID: 6296)File: /run/systemd/users/.#12728thAfJump to behavior
            Source: /lib/systemd/systemd-logind (PID: 6296)File: /run/systemd/users/.#127encfOgJump to behavior
            Source: /lib/systemd/systemd-logind (PID: 6296)File: /run/systemd/seats/.#seat0LDd6viJump to behavior
            Source: /lib/systemd/systemd-logind (PID: 6296)File: /run/systemd/users/.#127GfpHniJump to behavior
            Source: /lib/systemd/systemd-logind (PID: 6296)File: /run/systemd/users/.#127QJ0kIhJump to behavior
            Source: /lib/systemd/systemd-logind (PID: 6296)File: /run/systemd/users/.#127JJHSziJump to behavior
            Source: /lib/systemd/systemd-logind (PID: 6296)File: /run/systemd/users/.#127r4X6lfJump to behavior
            Source: /usr/lib/gdm3/gdm-wayland-session (PID: 6414)Directory: /var/lib/gdm3/.cacheJump to behavior
            Source: /usr/lib/accountsservice/accounts-daemon (PID: 6395)Directory: /var/lib/gdm3/.pam_environmentJump to behavior
            Source: /usr/lib/accountsservice/accounts-daemon (PID: 6395)Directory: /root/.cacheJump to behavior
            Source: /usr/lib/policykit-1/polkitd (PID: 6404)Directory: /root/.cacheJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/6234/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/6234/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/6236/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/6236/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/3088/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/3088/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/230/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/230/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/110/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/110/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/231/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/231/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/111/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/111/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/232/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/232/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/112/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/112/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/233/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/233/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/113/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/113/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/234/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/234/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/1335/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/1335/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/114/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/114/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/235/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/235/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/1334/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/1334/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/2302/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/2302/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/115/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/115/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/236/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/236/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/116/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/116/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/237/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/237/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/117/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/117/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/118/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/118/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/910/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/910/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/119/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/119/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/10/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/10/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/11/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/11/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/12/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/12/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/13/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/13/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/14/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/14/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/15/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/15/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/16/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/16/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/17/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/17/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/18/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/18/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/120/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/120/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/121/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/121/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/1/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/1/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/122/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/122/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/243/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/243/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/123/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/123/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/2/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/2/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/124/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/124/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/3/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/3/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/4/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/4/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/125/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/125/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/126/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/126/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/248/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/248/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/6/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/6/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/127/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/127/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/128/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/128/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/249/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/249/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/9/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/9/cmdlineJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/6358/statusJump to behavior
            Source: /usr/bin/pkill (PID: 6383)File opened: /proc/6358/cmdlineJump to behavior
            Source: /usr/bin/gpu-manager (PID: 6360)Shell command executed: sh -c "grep -G \"^blacklist.*nvidia[[:space:]]*$\" /etc/modprobe.d/*.conf"Jump to behavior
            Source: /usr/bin/gpu-manager (PID: 6362)Shell command executed: sh -c "grep -G \"^blacklist.*nvidia[[:space:]]*$\" /lib/modprobe.d/*.conf"Jump to behavior
            Source: /usr/bin/gpu-manager (PID: 6364)Shell command executed: sh -c "grep -G \"^blacklist.*radeon[[:space:]]*$\" /etc/modprobe.d/*.conf"Jump to behavior
            Source: /usr/bin/gpu-manager (PID: 6366)Shell command executed: sh -c "grep -G \"^blacklist.*radeon[[:space:]]*$\" /lib/modprobe.d/*.conf"Jump to behavior
            Source: /usr/bin/gpu-manager (PID: 6368)Shell command executed: sh -c "grep -G \"^blacklist.*amdgpu[[:space:]]*$\" /etc/modprobe.d/*.conf"Jump to behavior
            Source: /usr/bin/gpu-manager (PID: 6370)Shell command executed: sh -c "grep -G \"^blacklist.*amdgpu[[:space:]]*$\" /lib/modprobe.d/*.conf"Jump to behavior
            Source: /usr/bin/gpu-manager (PID: 6374)Shell command executed: sh -c "grep -G \"^blacklist.*nouveau[[:space:]]*$\" /etc/modprobe.d/*.conf"Jump to behavior
            Source: /usr/bin/gpu-manager (PID: 6376)Shell command executed: sh -c "grep -G \"^blacklist.*nouveau[[:space:]]*$\" /lib/modprobe.d/*.conf"Jump to behavior
            Source: /usr/share/language-tools/language-options (PID: 6401)Shell command executed: sh -c "locale -a | grep -F .utf8 "Jump to behavior
            Source: /bin/sh (PID: 6361)Grep executable: /usr/bin/grep -> grep -G ^blacklist.*nvidia[[:space:]]*$ /etc/modprobe.d/alsa-base.conf /etc/modprobe.d/amd64-microcode-blacklist.conf /etc/modprobe.d/blacklist-ath_pci.conf /etc/modprobe.d/blacklist-firewire.conf /etc/modprobe.d/blacklist-framebuffer.conf /etc/modprobe.d/blacklist-modem.conf /etc/modprobe.d/blacklist-oss.conf /etc/modprobe.d/blacklist-rare-network.conf /etc/modprobe.d/blacklist.conf /etc/modprobe.d/intel-microcode-blacklist.conf /etc/modprobe.d/iwlwifi.conf /etc/modprobe.d/mdadm.confJump to behavior
            Source: /bin/sh (PID: 6363)Grep executable: /usr/bin/grep -> grep -G ^blacklist.*nvidia[[:space:]]*$ /lib/modprobe.d/aliases.conf /lib/modprobe.d/blacklist_linux_5.4.0-72-generic.conf /lib/modprobe.d/blacklist_linux_5.4.0-81-generic.conf /lib/modprobe.d/fbdev-blacklist.conf /lib/modprobe.d/systemd.confJump to behavior
            Source: /bin/sh (PID: 6365)Grep executable: /usr/bin/grep -> grep -G ^blacklist.*radeon[[:space:]]*$ /etc/modprobe.d/alsa-base.conf /etc/modprobe.d/amd64-microcode-blacklist.conf /etc/modprobe.d/blacklist-ath_pci.conf /etc/modprobe.d/blacklist-firewire.conf /etc/modprobe.d/blacklist-framebuffer.conf /etc/modprobe.d/blacklist-modem.conf /etc/modprobe.d/blacklist-oss.conf /etc/modprobe.d/blacklist-rare-network.conf /etc/modprobe.d/blacklist.conf /etc/modprobe.d/intel-microcode-blacklist.conf /etc/modprobe.d/iwlwifi.conf /etc/modprobe.d/mdadm.confJump to behavior
            Source: /bin/sh (PID: 6367)Grep executable: /usr/bin/grep -> grep -G ^blacklist.*radeon[[:space:]]*$ /lib/modprobe.d/aliases.conf /lib/modprobe.d/blacklist_linux_5.4.0-72-generic.conf /lib/modprobe.d/blacklist_linux_5.4.0-81-generic.conf /lib/modprobe.d/fbdev-blacklist.conf /lib/modprobe.d/systemd.confJump to behavior
            Source: /bin/sh (PID: 6369)Grep executable: /usr/bin/grep -> grep -G ^blacklist.*amdgpu[[:space:]]*$ /etc/modprobe.d/alsa-base.conf /etc/modprobe.d/amd64-microcode-blacklist.conf /etc/modprobe.d/blacklist-ath_pci.conf /etc/modprobe.d/blacklist-firewire.conf /etc/modprobe.d/blacklist-framebuffer.conf /etc/modprobe.d/blacklist-modem.conf /etc/modprobe.d/blacklist-oss.conf /etc/modprobe.d/blacklist-rare-network.conf /etc/modprobe.d/blacklist.conf /etc/modprobe.d/intel-microcode-blacklist.conf /etc/modprobe.d/iwlwifi.conf /etc/modprobe.d/mdadm.confJump to behavior
            Source: /bin/sh (PID: 6371)Grep executable: /usr/bin/grep -> grep -G ^blacklist.*amdgpu[[:space:]]*$ /lib/modprobe.d/aliases.conf /lib/modprobe.d/blacklist_linux_5.4.0-72-generic.conf /lib/modprobe.d/blacklist_linux_5.4.0-81-generic.conf /lib/modprobe.d/fbdev-blacklist.conf /lib/modprobe.d/systemd.confJump to behavior
            Source: /bin/sh (PID: 6375)Grep executable: /usr/bin/grep -> grep -G ^blacklist.*nouveau[[:space:]]*$ /etc/modprobe.d/alsa-base.conf /etc/modprobe.d/amd64-microcode-blacklist.conf /etc/modprobe.d/blacklist-ath_pci.conf /etc/modprobe.d/blacklist-firewire.conf /etc/modprobe.d/blacklist-framebuffer.conf /etc/modprobe.d/blacklist-modem.conf /etc/modprobe.d/blacklist-oss.conf /etc/modprobe.d/blacklist-rare-network.conf /etc/modprobe.d/blacklist.conf /etc/modprobe.d/intel-microcode-blacklist.conf /etc/modprobe.d/iwlwifi.conf /etc/modprobe.d/mdadm.confJump to behavior
            Source: /bin/sh (PID: 6377)Grep executable: /usr/bin/grep -> grep -G ^blacklist.*nouveau[[:space:]]*$ /lib/modprobe.d/aliases.conf /lib/modprobe.d/blacklist_linux_5.4.0-72-generic.conf /lib/modprobe.d/blacklist_linux_5.4.0-81-generic.conf /lib/modprobe.d/fbdev-blacklist.conf /lib/modprobe.d/systemd.confJump to behavior
            Source: /bin/sh (PID: 6403)Grep executable: /usr/bin/grep -> grep -F .utf8Jump to behavior
            Source: /usr/share/gdm/generate-config (PID: 6383)Pkill executable: /usr/bin/pkill -> pkill --signal HUP --uid gdm dconf-serviceJump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)Reads from proc file: /proc/meminfoJump to behavior
            Source: /sbin/agetty (PID: 6358)Reads version info: /etc/issueJump to behavior
            Source: /usr/sbin/gdm3 (PID: 6391)File: /var/run/gdm3 (bits: - usr: -x grp: x all: rwx)Jump to behavior
            Source: /usr/sbin/gdm3 (PID: 6391)File: /var/log/gdm3 (bits: - usr: -x grp: x all: rwx)Jump to behavior
            Source: /usr/lib/accountsservice/accounts-daemon (PID: 6395)File: /var/lib/AccountsService/icons (bits: - usr: rx grp: rwx all: rwx)Jump to behavior
            Source: /usr/lib/accountsservice/accounts-daemon (PID: 6395)File: /var/lib/AccountsService/users (bits: - usr: - grp: - all: rwx)Jump to behavior
            Source: /usr/sbin/rsyslogd (PID: 6285)Log file created: /var/log/kern.logJump to dropped file
            Source: /usr/sbin/rsyslogd (PID: 6285)Log file created: /var/log/auth.logJump to dropped file
            Source: /usr/bin/gpu-manager (PID: 6359)Log file created: /var/log/gpu-manager.logJump to dropped file
            Source: morte.arm7.elfSubmission file: segment LOAD with 7.9729 entropy (max. 8.0)
            Source: /usr/bin/gpu-manager (PID: 6359)Truncated file: /var/log/gpu-manager.logJump to behavior
            Source: /usr/bin/pkill (PID: 6383)Reads CPU info from /sys: /sys/devices/system/cpu/onlineJump to behavior
            Source: /usr/bin/pulseaudio (PID: 6450)Reads CPU info from /sys: /sys/devices/system/cpu/onlineJump to behavior
            Source: /tmp/morte.arm7.elf (PID: 6232)Queries kernel information via 'uname': Jump to behavior
            Source: /usr/sbin/rsyslogd (PID: 6275)Queries kernel information via 'uname': Jump to behavior
            Source: /lib/systemd/systemd-journald (PID: 6280)Queries kernel information via 'uname': Jump to behavior
            Source: /usr/sbin/rsyslogd (PID: 6285)Queries kernel information via 'uname': Jump to behavior
            Source: /sbin/agetty (PID: 6358)Queries kernel information via 'uname': Jump to behavior
            Source: /usr/bin/gpu-manager (PID: 6359)Queries kernel information via 'uname': Jump to behavior
            Source: /usr/lib/gdm3/gdm-session-worker (PID: 6410)Queries kernel information via 'uname': Jump to behavior
            Source: /usr/bin/pulseaudio (PID: 6450)Queries kernel information via 'uname': Jump to behavior
            Source: morte.arm7.elf, 6232.1.000055df2b4c5000.000055df2b673000.rw-.sdmp, morte.arm7.elf, 6234.1.000055df2b4c5000.000055df2b673000.rw-.sdmp, morte.arm7.elf, 6236.1.000055df2b4c5000.000055df2b673000.rw-.sdmp, morte.arm7.elf, 6238.1.000055df2b4c5000.000055df2b673000.rw-.sdmpBinary or memory string: U!/etc/qemu-binfmt/arm
            Source: morte.arm7.elf, 6236.1.00007fff2f230000.00007fff2f251000.rw-.sdmpBinary or memory string: U/tmp/qemu-open.XZ6TAH
            Source: morte.arm7.elf, 6232.1.000055df2b4c5000.000055df2b673000.rw-.sdmp, morte.arm7.elf, 6234.1.000055df2b4c5000.000055df2b673000.rw-.sdmp, morte.arm7.elf, 6236.1.000055df2b4c5000.000055df2b673000.rw-.sdmp, morte.arm7.elf, 6238.1.000055df2b4c5000.000055df2b673000.rw-.sdmpBinary or memory string: /etc/qemu-binfmt/arm
            Source: morte.arm7.elf, 6232.1.00007fff2f230000.00007fff2f251000.rw-.sdmp, morte.arm7.elf, 6234.1.00007fff2f230000.00007fff2f251000.rw-.sdmp, morte.arm7.elf, 6236.1.00007fff2f230000.00007fff2f251000.rw-.sdmp, morte.arm7.elf, 6238.1.00007fff2f230000.00007fff2f251000.rw-.sdmpBinary or memory string: /usr/bin/qemu-arm
            Source: morte.arm7.elf, 6236.1.00007fff2f230000.00007fff2f251000.rw-.sdmpBinary or memory string: /tmp/qemu-open.XZ6TAH
            Source: morte.arm7.elf, 6232.1.00007fff2f230000.00007fff2f251000.rw-.sdmp, morte.arm7.elf, 6234.1.00007fff2f230000.00007fff2f251000.rw-.sdmp, morte.arm7.elf, 6236.1.00007fff2f230000.00007fff2f251000.rw-.sdmp, morte.arm7.elf, 6238.1.00007fff2f230000.00007fff2f251000.rw-.sdmpBinary or memory string: x86_64/usr/bin/qemu-arm/tmp/morte.arm7.elfSUDO_USER=saturninoPATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/snap/binDISPLAY=:1.0XAUTHORITY=/run/user/1000/gdm/XauthoritySUDO_UID=1000TERM=xterm-256colorCOLORTERM=truecolorLOGNAME=rootUSER=rootLANG=en_US.UTF-8SUDO_COMMAND=/bin/bashHOME=/rootMAIL=/var/mail/rootSUDO_GID=1000SHELL=/bin/bash/tmp/morte.arm7.elf

            Language, Device and Operating System Detection

            barindex
            Source: /usr/lib/accountsservice/accounts-daemon (PID: 6395)Logged in records file read: /var/log/wtmpJump to behavior

            Stealing of Sensitive Information

            barindex
            Source: Yara matchFile source: 6232.1.00007f3bc4017000.00007f3bc402e000.r-x.sdmp, type: MEMORY
            Source: Yara matchFile source: 6238.1.00007f3bc4017000.00007f3bc402e000.r-x.sdmp, type: MEMORY
            Source: Yara matchFile source: 6236.1.00007f3bc4017000.00007f3bc402e000.r-x.sdmp, type: MEMORY
            Source: Yara matchFile source: 6234.1.00007f3bc4017000.00007f3bc402e000.r-x.sdmp, type: MEMORY
            Source: Yara matchFile source: Process Memory Space: morte.arm7.elf PID: 6232, type: MEMORYSTR
            Source: Yara matchFile source: Process Memory Space: morte.arm7.elf PID: 6234, type: MEMORYSTR
            Source: Yara matchFile source: Process Memory Space: morte.arm7.elf PID: 6236, type: MEMORYSTR
            Source: Yara matchFile source: Process Memory Space: morte.arm7.elf PID: 6238, type: MEMORYSTR

            Remote Access Functionality

            barindex
            Source: Yara matchFile source: 6232.1.00007f3bc4017000.00007f3bc402e000.r-x.sdmp, type: MEMORY
            Source: Yara matchFile source: 6238.1.00007f3bc4017000.00007f3bc402e000.r-x.sdmp, type: MEMORY
            Source: Yara matchFile source: 6236.1.00007f3bc4017000.00007f3bc402e000.r-x.sdmp, type: MEMORY
            Source: Yara matchFile source: 6234.1.00007f3bc4017000.00007f3bc402e000.r-x.sdmp, type: MEMORY
            Source: Yara matchFile source: Process Memory Space: morte.arm7.elf PID: 6232, type: MEMORYSTR
            Source: Yara matchFile source: Process Memory Space: morte.arm7.elf PID: 6234, type: MEMORYSTR
            Source: Yara matchFile source: Process Memory Space: morte.arm7.elf PID: 6236, type: MEMORYSTR
            Source: Yara matchFile source: Process Memory Space: morte.arm7.elf PID: 6238, type: MEMORYSTR
            ReconnaissanceResource DevelopmentInitial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionCommand and ControlExfiltrationImpact
            Gather Victim Identity Information1
            Scripting
            Valid AccountsWindows Management Instrumentation1
            Scripting
            Path Interception1
            File and Directory Permissions Modification
            1
            OS Credential Dumping
            11
            Security Software Discovery
            Remote ServicesData from Local System1
            Encrypted Channel
            Exfiltration Over Other Network Medium2
            Service Stop
            CredentialsDomainsDefault AccountsScheduled Task/JobBoot or Logon Initialization ScriptsBoot or Logon Initialization Scripts1
            Disable or Modify Tools
            LSASS Memory1
            System Owner/User Discovery
            Remote Desktop ProtocolData from Removable Media1
            Non-Standard Port
            Exfiltration Over BluetoothNetwork Denial of Service
            Email AddressesDNS ServerDomain AccountsAtLogon Script (Windows)Logon Script (Windows)1
            Hidden Files and Directories
            Security Account Manager11
            File and Directory Discovery
            SMB/Windows Admin SharesData from Network Shared Drive2
            Non-Application Layer Protocol
            Automated ExfiltrationData Encrypted for Impact
            Employee NamesVirtual Private ServerLocal AccountsCronLogin HookLogin Hook11
            Obfuscated Files or Information
            NTDS3
            System Information Discovery
            Distributed Component Object ModelInput Capture3
            Application Layer Protocol
            Traffic DuplicationData Destruction
            Gather Victim Network InformationServerCloud AccountsLaunchdNetwork Logon ScriptNetwork Logon Script1
            Indicator Removal
            LSA SecretsInternet Connection DiscoverySSHKeyloggingFallback ChannelsScheduled TransferData Encrypted for Impact
            No configs have been found
            Hide Legend

            Legend:

            • Process
            • Signature
            • Created File
            • DNS/IP Info
            • Is Dropped
            • Number of created Files
            • Is malicious
            • Internet
            behaviorgraph top1 dnsIp2 2 Behavior Graph ID: 1646186 Sample: morte.arm7.elf Startdate: 23/03/2025 Architecture: LINUX Score: 80 78 176.65.142.252, 46292, 7575 WEBTRAFFICDE Germany 2->78 80 109.202.202.202, 80 INIT7CH Switzerland 2->80 82 4 other IPs or domains 2->82 90 Multi AV Scanner detection for submitted file 2->90 92 Yara detected Okiru 2->92 94 Sample is packed with UPX 2->94 11 systemd gdm3 2->11         started        13 systemd gpu-manager 2->13         started        15 morte.arm7.elf 2->15         started        17 21 other processes 2->17 signatures3 process4 file5 21 gdm3 gdm-session-worker 11->21         started        35 3 other processes 11->35 23 gpu-manager sh 13->23         started        25 gpu-manager sh 13->25         started        27 gpu-manager sh 13->27         started        37 5 other processes 13->37 29 morte.arm7.elf 15->29         started        76 /var/log/wtmp, data 17->76 dropped 84 Sample reads /proc/mounts (often used for finding a writable filesystem) 17->84 86 Reads system files that contain records of logged in users 17->86 31 accounts-daemon language-validate 17->31         started        33 generate-config pkill 17->33         started        signatures6 process7 process8 39 gdm-session-worker gdm-wayland-session 21->39         started        41 sh grep 23->41         started        43 sh grep 25->43         started        45 sh grep 27->45         started        47 morte.arm7.elf 29->47         started        50 morte.arm7.elf 29->50         started        52 language-validate language-options 31->52         started        54 sh grep 37->54         started        56 4 other processes 37->56 signatures9 58 gdm-wayland-session dbus-run-session 39->58         started        60 gdm-wayland-session dbus-daemon 39->60         started        98 Sample tries to kill a massive number of system processes 47->98 100 Sample tries to kill multiple processes (SIGKILL) 47->100 63 language-options sh 52->63         started        process10 signatures11 65 dbus-run-session dbus-daemon 58->65         started        96 Sample reads /proc/mounts (often used for finding a writable filesystem) 60->96 68 dbus-daemon 60->68         started        70 sh locale 63->70         started        72 sh grep 63->72         started        process12 signatures13 88 Sample reads /proc/mounts (often used for finding a writable filesystem) 65->88 74 dbus-daemon false 68->74         started        process14
            SourceDetectionScannerLabelLink
            morte.arm7.elf44%ReversingLabsLinux.Trojan.Mirai
            morte.arm7.elf39%VirustotalBrowse
            No Antivirus matches
            No Antivirus matches
            No Antivirus matches

            Download Network PCAP: filteredfull

            NameIPActiveMaliciousAntivirus DetectionReputation
            daisy.ubuntu.com
            162.213.35.25
            truefalse
              high
              NameMaliciousAntivirus DetectionReputation
              https://daisy.ubuntu.com/9aadafe2051348cd32033e1cad68f0a5fe46fba3240ac1e6e42158f31b8a1371790c09baf3996b4979fe8e533446c7dedf30f654c68b25357334c66911dc6a9efalse
                high
                NameSourceMaliciousAntivirus DetectionReputation
                https://www.rsyslog.comsyslog.35.drfalse
                  high
                  http://upx.sf.netmorte.arm7.elffalse
                    high
                    • No. of IPs < 25%
                    • 25% < No. of IPs < 50%
                    • 50% < No. of IPs < 75%
                    • 75% < No. of IPs
                    IPDomainCountryFlagASNASN NameMalicious
                    176.65.142.252
                    unknownGermany
                    8649WEBTRAFFICDEfalse
                    162.213.35.24
                    unknownUnited States
                    41231CANONICAL-ASGBfalse
                    109.202.202.202
                    unknownSwitzerland
                    13030INIT7CHfalse
                    91.189.91.43
                    unknownUnited Kingdom
                    41231CANONICAL-ASGBfalse
                    91.189.91.42
                    unknownUnited Kingdom
                    41231CANONICAL-ASGBfalse
                    MatchAssociated Sample Name / URLSHA 256DetectionThreat NameLinkContext
                    176.65.142.252morte.sh4.elfGet hashmaliciousGafgyt, OkiruBrowse
                      morte.mips.elfGet hashmaliciousGafgyt, OkiruBrowse
                        morte.arm.elfGet hashmaliciousGafgyt, OkiruBrowse
                          morte.x86.elfGet hashmaliciousOkiruBrowse
                            morte.m68k.elfGet hashmaliciousGafgyt, OkiruBrowse
                              morte.ppc.elfGet hashmaliciousOkiruBrowse
                                morte.mpsl.elfGet hashmaliciousGafgyt, OkiruBrowse
                                  morte.x64.elfGet hashmaliciousGafgyt, OkiruBrowse
                                    morte.ppc.elfGet hashmaliciousUnknownBrowse
                                      morte.mpsl.elfGet hashmaliciousUnknownBrowse
                                        162.213.35.24morte.m68k.elfGet hashmaliciousGafgyt, OkiruBrowse
                                          drea4.elfGet hashmaliciousUnknownBrowse
                                            morte.ppc.elfGet hashmaliciousOkiruBrowse
                                              eehah4.elfGet hashmaliciousUnknownBrowse
                                                efjepc.elfGet hashmaliciousUnknownBrowse
                                                  drea4.elfGet hashmaliciousUnknownBrowse
                                                    weje64.elfGet hashmaliciousUnknownBrowse
                                                      vejfa5.elfGet hashmaliciousUnknownBrowse
                                                        bejv86.elfGet hashmaliciousUnknownBrowse
                                                          Aqua.arm7.elfGet hashmaliciousMiraiBrowse
                                                            109.202.202.202kpLwzBouH4.elfGet hashmaliciousUnknownBrowse
                                                            • ch.archive.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_92.0%2bbuild3-0ubuntu0.20.04.1_amd64.deb
                                                            91.189.91.43morte.sh4.elfGet hashmaliciousGafgyt, OkiruBrowse
                                                              morte.arm5.elfGet hashmaliciousOkiruBrowse
                                                                na.elfGet hashmaliciousPrometeiBrowse
                                                                  na.elfGet hashmaliciousPrometeiBrowse
                                                                    miner.elfGet hashmaliciousUnknownBrowse
                                                                      morte.arm.elfGet hashmaliciousGafgyt, OkiruBrowse
                                                                        na.elfGet hashmaliciousPrometeiBrowse
                                                                          na.elfGet hashmaliciousPrometeiBrowse
                                                                            na.elfGet hashmaliciousPrometeiBrowse
                                                                              Aqua.mips.elfGet hashmaliciousUnknownBrowse
                                                                                MatchAssociated Sample Name / URLSHA 256DetectionThreat NameLinkContext
                                                                                daisy.ubuntu.commorte.sh4.elfGet hashmaliciousGafgyt, OkiruBrowse
                                                                                • 162.213.35.24
                                                                                morte.arm.elfGet hashmaliciousGafgyt, OkiruBrowse
                                                                                • 162.213.35.24
                                                                                morte.arm6.elfGet hashmaliciousGafgyt, OkiruBrowse
                                                                                • 162.213.35.24
                                                                                morte.m68k.elfGet hashmaliciousGafgyt, OkiruBrowse
                                                                                • 162.213.35.25
                                                                                sshd.elfGet hashmaliciousUnknownBrowse
                                                                                • 162.213.35.25
                                                                                arm6.elfGet hashmaliciousMiraiBrowse
                                                                                • 162.213.35.24
                                                                                .i.elfGet hashmaliciousUnknownBrowse
                                                                                • 162.213.35.25
                                                                                drea4.elfGet hashmaliciousUnknownBrowse
                                                                                • 162.213.35.25
                                                                                efea6.elfGet hashmaliciousUnknownBrowse
                                                                                • 162.213.35.25
                                                                                boatnet.ppc.elfGet hashmaliciousMiraiBrowse
                                                                                • 162.213.35.25
                                                                                MatchAssociated Sample Name / URLSHA 256DetectionThreat NameLinkContext
                                                                                CANONICAL-ASGBmorte.sh4.elfGet hashmaliciousGafgyt, OkiruBrowse
                                                                                • 91.189.91.42
                                                                                morte.arm5.elfGet hashmaliciousOkiruBrowse
                                                                                • 91.189.91.42
                                                                                na.elfGet hashmaliciousPrometeiBrowse
                                                                                • 91.189.91.42
                                                                                na.elfGet hashmaliciousPrometeiBrowse
                                                                                • 91.189.91.42
                                                                                miner.elfGet hashmaliciousUnknownBrowse
                                                                                • 91.189.91.42
                                                                                morte.arm.elfGet hashmaliciousGafgyt, OkiruBrowse
                                                                                • 91.189.91.42
                                                                                na.elfGet hashmaliciousPrometeiBrowse
                                                                                • 91.189.91.42
                                                                                na.elfGet hashmaliciousPrometeiBrowse
                                                                                • 91.189.91.42
                                                                                na.elfGet hashmaliciousPrometeiBrowse
                                                                                • 91.189.91.42
                                                                                Aqua.mips.elfGet hashmaliciousUnknownBrowse
                                                                                • 91.189.91.42
                                                                                WEBTRAFFICDEmorte.sh4.elfGet hashmaliciousGafgyt, OkiruBrowse
                                                                                • 176.65.142.252
                                                                                morte.mips.elfGet hashmaliciousGafgyt, OkiruBrowse
                                                                                • 176.65.142.252
                                                                                morte.arm.elfGet hashmaliciousGafgyt, OkiruBrowse
                                                                                • 176.65.142.252
                                                                                morte.x86.elfGet hashmaliciousOkiruBrowse
                                                                                • 176.65.142.252
                                                                                morte.m68k.elfGet hashmaliciousGafgyt, OkiruBrowse
                                                                                • 176.65.142.252
                                                                                morte.ppc.elfGet hashmaliciousOkiruBrowse
                                                                                • 176.65.142.252
                                                                                morte.mpsl.elfGet hashmaliciousGafgyt, OkiruBrowse
                                                                                • 176.65.142.252
                                                                                morte.x64.elfGet hashmaliciousGafgyt, OkiruBrowse
                                                                                • 176.65.142.252
                                                                                morte.ppc.elfGet hashmaliciousUnknownBrowse
                                                                                • 176.65.142.252
                                                                                morte.mpsl.elfGet hashmaliciousUnknownBrowse
                                                                                • 176.65.142.252
                                                                                CANONICAL-ASGBmorte.sh4.elfGet hashmaliciousGafgyt, OkiruBrowse
                                                                                • 91.189.91.42
                                                                                morte.arm5.elfGet hashmaliciousOkiruBrowse
                                                                                • 91.189.91.42
                                                                                na.elfGet hashmaliciousPrometeiBrowse
                                                                                • 91.189.91.42
                                                                                na.elfGet hashmaliciousPrometeiBrowse
                                                                                • 91.189.91.42
                                                                                miner.elfGet hashmaliciousUnknownBrowse
                                                                                • 91.189.91.42
                                                                                morte.arm.elfGet hashmaliciousGafgyt, OkiruBrowse
                                                                                • 91.189.91.42
                                                                                na.elfGet hashmaliciousPrometeiBrowse
                                                                                • 91.189.91.42
                                                                                na.elfGet hashmaliciousPrometeiBrowse
                                                                                • 91.189.91.42
                                                                                na.elfGet hashmaliciousPrometeiBrowse
                                                                                • 91.189.91.42
                                                                                Aqua.mips.elfGet hashmaliciousUnknownBrowse
                                                                                • 91.189.91.42
                                                                                INIT7CHmorte.sh4.elfGet hashmaliciousGafgyt, OkiruBrowse
                                                                                • 109.202.202.202
                                                                                morte.arm5.elfGet hashmaliciousOkiruBrowse
                                                                                • 109.202.202.202
                                                                                na.elfGet hashmaliciousPrometeiBrowse
                                                                                • 109.202.202.202
                                                                                na.elfGet hashmaliciousPrometeiBrowse
                                                                                • 109.202.202.202
                                                                                miner.elfGet hashmaliciousUnknownBrowse
                                                                                • 109.202.202.202
                                                                                morte.arm.elfGet hashmaliciousGafgyt, OkiruBrowse
                                                                                • 109.202.202.202
                                                                                na.elfGet hashmaliciousPrometeiBrowse
                                                                                • 109.202.202.202
                                                                                na.elfGet hashmaliciousPrometeiBrowse
                                                                                • 109.202.202.202
                                                                                na.elfGet hashmaliciousPrometeiBrowse
                                                                                • 109.202.202.202
                                                                                Aqua.mips.elfGet hashmaliciousUnknownBrowse
                                                                                • 109.202.202.202
                                                                                No context
                                                                                No context
                                                                                Process:/usr/bin/pulseaudio
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):10
                                                                                Entropy (8bit):2.9219280948873623
                                                                                Encrypted:false
                                                                                SSDEEP:3:5bkPn:pkP
                                                                                MD5:FF001A15CE15CF062A3704CEA2991B5F
                                                                                SHA1:B06F6855F376C3245B82212AC73ADED55DFE5DEF
                                                                                SHA-256:C54830B41ECFA1B6FBDC30397188DDA86B7B200E62AEAC21AE694A6192DCC38A
                                                                                SHA-512:65EBF7C31F6F65713CE01B38A112E97D0AE64A6BD1DA40CE4C1B998F10CD3912EE1A48BB2B279B24493062118AAB3B8753742E2AF28E56A31A7AAB27DE80E7BF
                                                                                Malicious:false
                                                                                Reputation:moderate, very likely benign file
                                                                                Preview:auto_null.
                                                                                Process:/usr/bin/pulseaudio
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):18
                                                                                Entropy (8bit):3.4613201402110088
                                                                                Encrypted:false
                                                                                SSDEEP:3:5bkrIZsXvn:pkckv
                                                                                MD5:28FE6435F34B3367707BB1C5D5F6B430
                                                                                SHA1:EB8FE2D16BD6BBCCE106C94E4D284543B2573CF6
                                                                                SHA-256:721A37C69E555799B41D308849E8F8125441883AB021B723FED90A9B744F36C0
                                                                                SHA-512:6B6AB7C0979629D0FEF6BE47C5C6BCC367EDD0AAE3FC973F4DE2FD5F0A819C89E7656DB65D453B1B5398E54012B27EDFE02894AD87A7E0AF3A9C5F2EB24A9919
                                                                                Malicious:false
                                                                                Reputation:moderate, very likely benign file
                                                                                Preview:auto_null.monitor.
                                                                                Process:/usr/bin/dbus-daemon
                                                                                File Type:very short file (no magic)
                                                                                Category:dropped
                                                                                Size (bytes):1
                                                                                Entropy (8bit):0.0
                                                                                Encrypted:false
                                                                                SSDEEP:3:V:V
                                                                                MD5:CFCD208495D565EF66E7DFF9F98764DA
                                                                                SHA1:B6589FC6AB0DC82CF12099D1C2D40AB994E8410C
                                                                                SHA-256:5FECEB66FFC86F38D952786C6D696C79C2DBC239DD4E91B46729D73A27FB57E9
                                                                                SHA-512:31BCA02094EB78126A517B206A88C73CFA9EC6F704C7030D18212CACE820F025F00BF0EA68DBF3F3A5436CA63B53BF7BF80AD8D5DE7D8359D0B7FED9DBC3AB99
                                                                                Malicious:false
                                                                                Reputation:high, very likely benign file
                                                                                Preview:0
                                                                                Process:/usr/sbin/gdm3
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):5
                                                                                Entropy (8bit):2.321928094887362
                                                                                Encrypted:false
                                                                                SSDEEP:3:X2:G
                                                                                MD5:C6733A10A907D115736253130FFC1E16
                                                                                SHA1:4894C014175828BF6AC22FA3EFA33CFDD3905436
                                                                                SHA-256:6090476896F07F4B60F5CB387CD33A06A2BD5A60E597618A817AA51C7865F9C1
                                                                                SHA-512:C4D174E5E837EF62A2EDC53DFC0079815A0B97A267CABAB40B6D3BA86CAD2AA58D6CDF53DD6F9DA47405B83C1D0BEC6AF6A67269C1B8D5F4572CDD1B3E54479A
                                                                                Malicious:false
                                                                                Reputation:low
                                                                                Preview:6391.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):223
                                                                                Entropy (8bit):5.488840806181424
                                                                                Encrypted:false
                                                                                SSDEEP:3:SbFVVmFyinKMsPOYsn9ms954Hh6SnLAqC+h6KV+h6CQzuxm+LzVEQ55kQEQ7S5x3:SbFuFyLVIg1BG+f+M+LzDZEqHji4s
                                                                                MD5:D406C6EF02A413C57F6313C86F0BA749
                                                                                SHA1:DAD83CDE172E106333802463272A0A320BC19A1B
                                                                                SHA-256:BAC064A2A375C4CAE52BF4AF4054A0BFCDA018FBD9E9EC89944AA7F8B1E9CFBA
                                                                                SHA-512:E30502BB8A2E37DFFB2A82A4B033FAD991B8EE7CDCA4A39142B004854A853CAFCE7D857B746C432887849E64B90294B12D109CB3881404EDB06129B1D523083E
                                                                                Malicious:false
                                                                                Reputation:low
                                                                                Preview:# This is private data. Do not parse.PRIORITY=30.LEVEL_PREFIX=1.FORWARD_TO_SYSLOG=0.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=4a66c7e0a5e94da5bb9cb15a5b70675b.IDENTIFIER=journalctl.UNIT=systemd-journal-flush.service.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):207
                                                                                Entropy (8bit):5.3784360030438005
                                                                                Encrypted:false
                                                                                SSDEEP:3:SbFVVmFyinKMsPOYsn9ms954Hh6SnLAqC+h6KV+h6CQzuxmozSE2D286js1Hadme:SbFuFyLVIg1BG+f+MozgR6josQu
                                                                                MD5:A74B288AEF8404A081425F238604F793
                                                                                SHA1:232517260F652759DB47EACBCE9D230119A60F09
                                                                                SHA-256:3814F5E60E00EEEF3BCB1414CE3F2B0F1BD1DDFABCA4BB4708F7EC91A8397166
                                                                                SHA-512:2E5DD144A7BAB753568AC9011B54FE3E9B4B8330A850F3043149A853DC241D06C8B6A8C790EEAA9DD139DD75F0E7339A83C7A8E8BB758353BC9BA8823AED35E4
                                                                                Malicious:false
                                                                                Reputation:low
                                                                                Preview:# This is private data. Do not parse.PRIORITY=30.LEVEL_PREFIX=1.FORWARD_TO_SYSLOG=0.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=b384b4be7ae64f30807ca85e0ebb3079.IDENTIFIER=dbus-daemon.UNIT=dbus.service.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):200
                                                                                Entropy (8bit):5.415571922611232
                                                                                Encrypted:false
                                                                                SSDEEP:3:SbFVVmFyinKMsPOdvP69ms947z+h6SnLAqC+h6KV+h6CQzuxms+JUUhBWAg2js+M:SbFuFyLVK6g7/+BG+f+MsaUU5jFmzXvn
                                                                                MD5:C199C68E1A528ECC303C72F88CDE8298
                                                                                SHA1:45CBAC9AB78ED93D1DD09219DE0A84FEEFE679A2
                                                                                SHA-256:B57013B3467B299197FFD586FE47A0A2003B0ED10791EA8F96002428FF8F2472
                                                                                SHA-512:9614B608157D5C7B8FEC60A2D877FE3E5FC593D0B014BD6DBAED2E3E46BBE9F80F90AB7E7259935D9889D7537006E6895E063FFE94C229D6868F4DA48D03B068
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse.PRIORITY=6.LEVEL_PREFIX=0.FORWARD_TO_SYSLOG=0.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=f7bbd72e50bf4f2cb9e6c9f41a49bee4.IDENTIFIER=org.gnome.Shell.desktop.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):200
                                                                                Entropy (8bit):5.430251232854837
                                                                                Encrypted:false
                                                                                SSDEEP:6:SbFuFyLVI6g7/+BG+f+MqXAlNrqjFmzXvn:qgFqdg7/+0+f+MqCNEQXvn
                                                                                MD5:4D788AA0A20BA7EC9CA1D50BB31060E4
                                                                                SHA1:4358FD50BA83268244A3E2307CDBBA3C3AEAA6AC
                                                                                SHA-256:0CDE5688435C64D49338A970D151A341137CA6EE354B3D898E71A4EA41C97EDD
                                                                                SHA-512:6FD9AE5C1F26CB5C307D6FF25CE692973E71CD28BA4DE21FA3C4E89403E2DA7570304CB4B30928629FC08E4A8A0499C5CB2FB3CCD6E145BBC94FE18E6248AB57
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse.PRIORITY=4.LEVEL_PREFIX=0.FORWARD_TO_SYSLOG=0.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=12c86fdd075c4a5694d13aae7532530e.IDENTIFIER=org.gnome.Shell.desktop.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):208
                                                                                Entropy (8bit):5.388857143065481
                                                                                Encrypted:false
                                                                                SSDEEP:3:SbFVVmFyinKMsPOYsn9ms954Hh6SnLAqC+h6KV+h6CQzuxmun6s5HHEbWGxhgrxV:SbFuFyLVIg1BG+f+Mu6ZbBnuqjdCLKzK
                                                                                MD5:D4733A2A74CFF27CB53CD4A55A3A1B72
                                                                                SHA1:3941B06FE57E4DBD6A18E6FACD7797399E2B5F76
                                                                                SHA-256:28FDCB174DC430CE42382A03671CE315ED7E3607C3EDBEABF379DEA39CD3A2CD
                                                                                SHA-512:539C4D98CFF115BBC1CECB437BDCDDCB1CF27582EAAB0700389A0501B12EFB0B6103D06AF2945FE1C97D5CB333FDB0932C829EC040F15A35BABD1EE9AD86EA40
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse.PRIORITY=30.LEVEL_PREFIX=1.FORWARD_TO_SYSLOG=0.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=dbb8727961df40afa4bb0a24009383c3.IDENTIFIER=whoopsie.UNIT=whoopsie.service.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):188
                                                                                Entropy (8bit):5.332118668530091
                                                                                Encrypted:false
                                                                                SSDEEP:3:SbFVVmFyinKMsPOYsn9ms954Hh6SnLAqC+h6KV+h6CQzuxmp0EReAQRSfA+sjshQ:SbFuFyLVIg1BG+f+MmE8AQR+8jtWL0
                                                                                MD5:5F13E6B6C7915C0228086551FE26E74D
                                                                                SHA1:9699B722C961CF018DEC70587BC84111D58A60C0
                                                                                SHA-256:08DDB2F6452EBFC3FFA24E3865B04447C0A0A80D09860A9F1F921FBAF823533E
                                                                                SHA-512:E8B046B0F616F09C0F157A60F4865906364A3A60CA9E4E0DDEA7DAFDD63E2F22C28CFE19956F8BAF6BE9912E4EEB223AAC27D62D4CE36694C56819399C74F85C
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse.PRIORITY=30.LEVEL_PREFIX=1.FORWARD_TO_SYSLOG=0.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=ca882c08832943149e5479800fa012dc.IDENTIFIER=pulseaudio.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):207
                                                                                Entropy (8bit):5.4245790899244435
                                                                                Encrypted:false
                                                                                SSDEEP:3:SbFVVmFyinKMsPOYsn9ms954Hh6SnLAqC+h6KV+h6CQzuxm6kGdIGvBkhNrqjs16:SbFuFyLVIg1BG+f+M6kmIwBO0josQu
                                                                                MD5:B67B5AB9AE9E29C2E953CA3ED13D2E6C
                                                                                SHA1:98250A2E7C9B451983115B3CA94CE70B17D59CF9
                                                                                SHA-256:3FFDC36077E0B966D746437B353089BB869B0E0452FEB3BC448087EE0550FA80
                                                                                SHA-512:C461AC23AFDD6E021528A3F7E1BEEFDEE4270C1819886906BB884699BE5D0E4B5F8F7833803E8178D00382D782FE883EA93864CE044DC2B4B9CAAF7C95770BB8
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse.PRIORITY=30.LEVEL_PREFIX=1.FORWARD_TO_SYSLOG=0.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=0852c7212fac49a4b27ca1d06504dec6.IDENTIFIER=dbus-daemon.UNIT=dbus.service.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):208
                                                                                Entropy (8bit):5.405855251494758
                                                                                Encrypted:false
                                                                                SSDEEP:3:SbFVVmFyinKMsPOYsn9ms954Hh6SnLAqC+h6KV+h6CQzuxmufByMT0dzl6s22jst:SbFuFyLVIg1BG+f+MuMMT0dp5jdCLKzK
                                                                                MD5:EBABD0DD41EEE8F9BFC46A94ADA0C9BE
                                                                                SHA1:32FA623259263F810A4C5F28EA16FBFD3CA7D56F
                                                                                SHA-256:E4F34D62E45B33F89EA5668A6B26EDF0BBB7AB7497C5E3016044AA4A844BCA3D
                                                                                SHA-512:A20275251DCC5329E18317B4E6E9F3087FEBF37570F8E1389874DCBEBB114E471B505AF8F2DAFC669FD9538D271BFFF973194DF428C7E3C7421FA5F1EAEE1256
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse.PRIORITY=30.LEVEL_PREFIX=1.FORWARD_TO_SYSLOG=0.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=dffd56dd9c1b42d6b18bca0db5c82715.IDENTIFIER=whoopsie.UNIT=whoopsie.service.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):220
                                                                                Entropy (8bit):5.487756461336383
                                                                                Encrypted:false
                                                                                SSDEEP:6:SbFuFyLVIg1BG+f+MNUhSUAGjZcHcljX+:qgFq6g10+f+MPImAu
                                                                                MD5:D688BB2C3FDCEA052A75563F91DA450F
                                                                                SHA1:67E9B44C4D14006FC84D1DD5F8709812752B46D0
                                                                                SHA-256:B4FA2358910B4EBDCA13013F36EA7D7538ED6C6CB975198613D1EB84ACF15994
                                                                                SHA-512:9E686CD29BA6B470F0585838CE0A80489916BDC393AA983A4C1BDA5B9CE1823CDF9F3765164502DAFD1A53FE4BF459F215D36ADFD8A4FEE7CCF472D5BF6C1C9F
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse.PRIORITY=30.LEVEL_PREFIX=1.FORWARD_TO_SYSLOG=0.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=14f7919f6a724af088c7f944628ef946.IDENTIFIER=systemd-logind.UNIT=systemd-logind.service.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):228
                                                                                Entropy (8bit):5.462491588935925
                                                                                Encrypted:false
                                                                                SSDEEP:3:SbFVVmFyinKMsPOYsn9ms954Hh6SnLAqC+h6KV+h6CQzuxm5LD23T0SqbAUYjsm4:SbFuFyLVIg1BG+f+MxtAUYjdCt/rRMtq
                                                                                MD5:AE36562C3C976099CAA71514B0FCFA2C
                                                                                SHA1:95C60E4EBAB6579FC19878B3B4A1BADECF9ABD29
                                                                                SHA-256:1CD119FE589C37D144A2CEC303DB749EE9C4752EE5874E20877D0E4852D797EB
                                                                                SHA-512:EE7C4A3BA7A03CB6183D708BDE4081360B9B265F491274549C7F8C57D418AD28BE9BD805FE2FDA8CBE1659E454E9E16084A4ED3FD449F1CAA7C5CE7B58A0D6BF
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse.PRIORITY=30.LEVEL_PREFIX=1.FORWARD_TO_SYSLOG=0.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=36bac89b0c094467b9fdd7cc0635e1bf.IDENTIFIER=whoopsie-upload-all.UNIT=apport-autoreport.service.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):223
                                                                                Entropy (8bit):5.524902886809076
                                                                                Encrypted:false
                                                                                SSDEEP:3:SbFVVmFyinKMsPOYsn9ms954Hh6SnLAqC+h6KV+h6CQzuxmsEW+B2cFV37uxsjsv:SbFuFyLVIg1BG+f+MsGBjLTji4s
                                                                                MD5:EFEA5946FCB83D69A13558D04E960130
                                                                                SHA1:9C8B814475687E3BC424C77D7B947437125D6B37
                                                                                SHA-256:88442C2351DB73E1E372AD63F070AAF18047070D6681AD26A64AADCA74223A0D
                                                                                SHA-512:FF34049072899A7043384EC9350E4FAD3D496B5E27FF87B4417BCF5E0D4A93018E4D5F4BC0E9B0725E59D3E09459B2FA5CD06FA65CD4E0BAEE114A2BFD9AC82F
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse.PRIORITY=30.LEVEL_PREFIX=1.FORWARD_TO_SYSLOG=0.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=fa26bf30194a4591abd2f7a9c52bcb5b.IDENTIFIER=journalctl.UNIT=systemd-journal-flush.service.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):208
                                                                                Entropy (8bit):5.402706107109887
                                                                                Encrypted:false
                                                                                SSDEEP:3:SbFVVmFyinKMsPOYsn9ms954Hh6SnLAqC+h6KV+h6CQzuxm9UEH6UN1GzTjswkCM:SbFuFyLVIg1BG+f+Me2JiTjLkGq
                                                                                MD5:6739AD1009D7A76AA91F253AAE17DA95
                                                                                SHA1:57650658E00A06DD292EEB4C134221E5A583E63D
                                                                                SHA-256:CFEC671768EF4C982C0E72F8B30CE7282242608B6B408F77F6FD9E6F5F4B648E
                                                                                SHA-512:5876D395DB54A6A010963FE6D715278D81D0A011A49A747D2A5CBC0560F7AF0C08416A833576C33402A91F354D7E4DAE3E22771F13EC668979D64A80BC8D5E96
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse.PRIORITY=30.LEVEL_PREFIX=1.FORWARD_TO_SYSLOG=0.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=783b95d0ecaf48778087bf23f11b0c8e.IDENTIFIER=agetty.UNIT=getty@tty2.service.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):210
                                                                                Entropy (8bit):5.425053535163563
                                                                                Encrypted:false
                                                                                SSDEEP:3:SbFVVmFyinKMsPOYsn9ms954Hh6SnLCHh6KV+h6CQzuxmv0zXpQxXDdMqjs2ALAQ:SbFuFyLVIg1BAf+MMZQddZjNALyAZD
                                                                                MD5:49F37C18B3220E0B1E9B53A1BEB69E44
                                                                                SHA1:850324DAC1B51101CC83ACE6D2E0C04BD59B29A8
                                                                                SHA-256:4338EE8027BF27C7D8876EB592DB990591423839D77A15D8880E86F448868A3F
                                                                                SHA-512:556AC91948B57B3BAB2A08B2198692933B72C47C598EB478C734EEDC1C8645D33B8DD06A454C5C2F55BCBD27D9A99D0520DBC498A77C9FEA6F2907A85748B41D
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse.PRIORITY=30.LEVEL_PREFIX=1.FORWARD_TO_SYSLOG=1.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=e6f0cc9882194df2be426e7ec08267dd.IDENTIFIER=generate-config.UNIT=gdm.service.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):211
                                                                                Entropy (8bit):5.439248212214306
                                                                                Encrypted:false
                                                                                SSDEEP:6:SbFuFyLVIg1BAf+MleDIIVNRgrqjNdQIeXD:qgFq6g1af+MlelFgM2D
                                                                                MD5:922EDA581FD28B7BD7E8227A43777642
                                                                                SHA1:69686F77F6BF67358CA63B4715E4A050E19F9421
                                                                                SHA-256:0545BFF006ADE27A4174FA36CF9B401A1DCC8A81001EDCAAC776D41656131C48
                                                                                SHA-512:222DBF5A3137BBDF13126D49C31A12283194DDB72E20EDE594B8409BF757068E2C5C32346F9EDB8672E21D61D6B5B019869AFC8A39B262D19486B4775F175E8D
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse.PRIORITY=30.LEVEL_PREFIX=1.FORWARD_TO_SYSLOG=1.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=c639b32a908a4cc393f1a5dcb0b2a30e.IDENTIFIER=gdm-wait-for-drm.UNIT=gdm.service.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):199
                                                                                Entropy (8bit):5.397935517269181
                                                                                Encrypted:false
                                                                                SSDEEP:3:SbFVVmFyinKMsPOYsn9ms954Hh6SnLCHh6KV+h6CQzuxmzWaSMVSGRwAr8vF2jsa:SbFuFyLVIg1BAf+MCZMVbwAO2jNTZD
                                                                                MD5:ECB44AE794D34BF0BEE9686D0C12440D
                                                                                SHA1:DF3DF706DC685B273B5FBA7CAA1AD86D91C6ADBB
                                                                                SHA-256:41CDFF91A81BFD42F4A0B67588D16B79646B1841992BDE06DA8DDC6EF13F6A4B
                                                                                SHA-512:53B87342B6214A5395F6C483A1ACF31083446768DEEF5B04C34DE0DE0898C439219D91519B9255A140732C63990FE36D079ADA5ABD867816A16C47E8E43106A2
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse.PRIORITY=30.LEVEL_PREFIX=1.FORWARD_TO_SYSLOG=1.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=92c53c72907c4e7f9e7521a3e4f55645.IDENTIFIER=gdm3.UNIT=gdm.service.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):222
                                                                                Entropy (8bit):5.436324030363797
                                                                                Encrypted:false
                                                                                SSDEEP:6:SbFuFyLVIg1BG+f+MoBlRolWZjLTTIWTIL:qgFq6g10+f+MoBlRxpEWEL
                                                                                MD5:87134505787E370BBBAADCEB083A1486
                                                                                SHA1:CFECE24EADF33250921BE81449F209F4E8DDAD7D
                                                                                SHA-256:1AF88CFD360AC713E21FB07DE9A4D5C62A1F0326FD73A0317172335CADBE1156
                                                                                SHA-512:6532404E975AE07A184B1E5D272F62F5804A149DA2FA97BCAC98BC051EE8F660EC34615A54A6B55282318A896BC4BAE59365FDB5B32F90EE4A2579EC3453036D
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse.PRIORITY=30.LEVEL_PREFIX=1.FORWARD_TO_SYSLOG=0.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=bd964f988f90430fb00b2539b6d1cee0.IDENTIFIER=accounts-daemon.UNIT=accounts-daemon.service.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):205
                                                                                Entropy (8bit):5.429443237888697
                                                                                Encrypted:false
                                                                                SSDEEP:3:SbFVVmFyinKMsPOYsn9ms954Hh6SnLAqC+h6KV+h6CQzuxm50NTNTOTRN30huxs4:SbFuFyLVIg1BG+f+MWBN4RNkhuqjbVC
                                                                                MD5:589B62A46E0C71487AB52E84293A5A55
                                                                                SHA1:EF25AD713780377D745F9B004027515601FCA291
                                                                                SHA-256:DD2686B286273D6EED779A5612EB48759FF92746A9A0360411D268D9DB46052F
                                                                                SHA-512:A9C4C5362657DA820247DCE6B8C885BC1680928046F3522ADBFDD5C470D74ED68E88BA3E2D2A25BD20784139C868AC8887C56ECCF6C88D4F64181DDC8FF0F6DF
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse.PRIORITY=30.LEVEL_PREFIX=1.FORWARD_TO_SYSLOG=0.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=3a84d8b7568d4683bfc1266872add98c.IDENTIFIER=polkitd.UNIT=polkit.service.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):189
                                                                                Entropy (8bit):5.393208839627671
                                                                                Encrypted:false
                                                                                SSDEEP:3:SbFVVmFyinKMsPOYsn9ms954Hh6SnLAqC+h6KV+h6CQzuxmr1tcMWLRdlHdshTjx:SbFuFyLVIg1BG+f+MIMWT8joa
                                                                                MD5:DFBACDDB617CFD7364D932B9A9F74E29
                                                                                SHA1:E52036A9FD148910DC4DE0FBDDEF0B794117B9AC
                                                                                SHA-256:38FBC6D7A916A9FE7DD417CF1CA138FB6A19DB756A01FB5A364E4E914247F3F7
                                                                                SHA-512:981CB2F0C5AD2457A00BAF17E242342B05B97376D80DC580D336205064628005C6380A73883A9C5C8218B6FA7ACFB9E4F5B44CDD527E3F77A972527683B2C8BE
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse.PRIORITY=30.LEVEL_PREFIX=1.FORWARD_TO_SYSLOG=0.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=ab01459293f245bf97a83a827616bfae.IDENTIFIER=dbus-daemon.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):188
                                                                                Entropy (8bit):5.312795646930405
                                                                                Encrypted:false
                                                                                SSDEEP:3:SbFVVmFyinKMsPOYsn9ms954Hh6SnLAqC+h6KV+h6CQzuxmrEAU2DN9Uh+sjshQJ:SbFuFyLVIg1BG+f+MwAU2wZjtWL0
                                                                                MD5:087800F8FE770FD909CFC53806352097
                                                                                SHA1:76D1390680B3128B4A230A2BDFC0FA2F5B2D0593
                                                                                SHA-256:AA6FAA501D6303DABECA8EDC78CDA3C5CD4745DDAF0EF71563F2C0BAC044B095
                                                                                SHA-512:24CB2FE322FEE5CC567B5871861CACAA2DFC2DB1A01C37CEC19AF268C2CC03DE37ABAA5EF3738DF473D693A4677D9EBB4E02052FA475EBAE08E815E8A4AC50BD
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse.PRIORITY=30.LEVEL_PREFIX=1.FORWARD_TO_SYSLOG=0.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=abeabb595e8340cd88d112a70d5d39ab.IDENTIFIER=pulseaudio.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):216
                                                                                Entropy (8bit):5.395203035292875
                                                                                Encrypted:false
                                                                                SSDEEP:3:SbFVVmFyinKMsPOYsn9ms954Hh6SnLAqC+h6KV+h6CQzuxm9mjhGFjPDAd6kAW7Y:SbFuFyLVIg1BG+f+Ms0FTcPz7ZjNE
                                                                                MD5:36B0ACB583AFC4FAC0E1C113498EDFF1
                                                                                SHA1:C307405688FFC48D7960E19BF9C4EFB32C5B7853
                                                                                SHA-256:24D9B7953695C7038BE5CCFAA901D4C5AFB5C08CE45CF467A6E5A466FB068DA0
                                                                                SHA-512:857C48D4CC346B5059DD0C43F191FC9C84D2CD47B0393C283F2D91775350F9908EF8B0068ABAAC5ECAB657D2E42BB5CF3C2FD623D0081EC8E57B66DAF38EA1F3
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse.PRIORITY=30.LEVEL_PREFIX=1.FORWARD_TO_SYSLOG=0.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=74ef80444c2945608edcfe1aae1d7e3a.IDENTIFIER=rtkit-daemon.UNIT=rtkit-daemon.service.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):195
                                                                                Entropy (8bit):5.406247152828324
                                                                                Encrypted:false
                                                                                SSDEEP:3:SbFVVmFyinKMsPOdvP69ms947z+h6SnLAqC+h6KV+h6CQzuxm6f9aHdHAglsjs2q:SbFuFyLVK6g7/+BG+f+M6Ng2jNq
                                                                                MD5:969EC8D802CBCB94680E6D27ADFF8B83
                                                                                SHA1:8208DDB5D26131EFC0654640509FFF7938572539
                                                                                SHA-256:C9640E4C757E43D0F1C33E6076AF79D624D5768C9ED0CED81BB0781BF2BFE45C
                                                                                SHA-512:38A915018262E56C3663DA1B65D03FB76376BC07891EF2BDB937A77FF663B1A402FA183AF3E87E078705E2FFAA81D269B99B61D0E8043E573C2FE766E0930917
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse.PRIORITY=6.LEVEL_PREFIX=0.FORWARD_TO_SYSLOG=0.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=006d20baae95484da5974c5383929c23.IDENTIFIER=gdm-session-worker.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):195
                                                                                Entropy (8bit):5.391904940099453
                                                                                Encrypted:false
                                                                                SSDEEP:3:SbFVVmFyinKMsPOfvP69ms947z+h6SnLAqC+h6KV+h6CQzuxmzL1y3WcdRVsJEcT:SbFuFyLVI6g7/+BG+f+Mv1eXzjNq
                                                                                MD5:66A09BB3DDAE7E8AF77D17B29FB6E6CC
                                                                                SHA1:660440BA8D208388B41C817D4C14C249A3E11B5F
                                                                                SHA-256:FA6AC7E9D9A1E9FCCAE8F9B88060E73B430F8AE4760A2CB38A0FBBF3C6F9A8C2
                                                                                SHA-512:88E57231F95DCEE0A9B639E40F6CC9297CAAE8AE13C8E1A0EA67D24E930AFCF3628E198B9857BCA2FFAECB0B813189FBAB1BF7325CDC475E21798CEFE829197D
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse.PRIORITY=4.LEVEL_PREFIX=0.FORWARD_TO_SYSLOG=0.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=9ef11be9ae24436584374a84b400da9b.IDENTIFIER=gdm-session-worker.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):210
                                                                                Entropy (8bit):5.511533789971156
                                                                                Encrypted:false
                                                                                SSDEEP:6:SbFuFyLVK6g7/+BG+f+MOmf49B6TjFQMzKaBu:qgFqo6g7/+0+f+MOT9BQTmh
                                                                                MD5:D9262263DEDCAEE7F00C6558A0809DFF
                                                                                SHA1:E32C7A611180E9AC316C5A70D8444A2FFAC1A992
                                                                                SHA-256:69A579F41347FA0F0FEA0A67BE189305153A97F1FD61B6850CF19C477D70480C
                                                                                SHA-512:01F7CA00F2BCF212EC13363DC8E80455BCC77BF6A955AA6543D28C566DE13358EAE5C3199C730DDB88F7567F95755DAE1837934EDCF3C3AC7CE37896451F1E6C
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse.PRIORITY=6.LEVEL_PREFIX=0.FORWARD_TO_SYSLOG=0.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=ced62424b7be46a9a2a837802c92e51e.IDENTIFIER=/usr/lib/gdm3/gdm-wayland-session.
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):210
                                                                                Entropy (8bit):5.481888254308381
                                                                                Encrypted:false
                                                                                SSDEEP:6:SbFuFyLVI6g7/+BG+f+MpGk8T3huqjFQMzKaBu:qgFqdg7/+0+f+MR8T3hNTmh
                                                                                MD5:7414B3F6D79EEF19BCABBF1B7F272EBC
                                                                                SHA1:11C6F3D8396F0217D8B24AD450F9C4B7D6BCDDE4
                                                                                SHA-256:C0CD1B1FEC8627B97FC14FD42B24931DDB8A97E55E797515D6B887EE53C420D5
                                                                                SHA-512:B0F072340D9FFAF38FB8FA6ED1AAB9B9D3A8B99EB1A0A936E23694F6CAF5D98E04743F3792572B58B623879A01E2D6DA56162C11262DBDC1AE1C26320815B724
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse.PRIORITY=4.LEVEL_PREFIX=0.FORWARD_TO_SYSLOG=0.FORWARD_TO_KMSG=0.FORWARD_TO_CONSOLE=0.STREAM_ID=307b2b3198424244b25211eba0af250e.IDENTIFIER=/usr/lib/gdm3/gdm-wayland-session.
                                                                                Process:/lib/systemd/systemd-logind
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):116
                                                                                Entropy (8bit):4.957035419463244
                                                                                Encrypted:false
                                                                                SSDEEP:3:SbFVVmFyinKMsuH47rLg205vmLUbr+ugKQ2KwshcXSv:SbFuFyLwH47Pg20ggWunQ2rNXc
                                                                                MD5:66D114877B3B4DB3BDD8A3AD4F5E7421
                                                                                SHA1:62E0CB0F51E0E3F97BE251CB917968DFF69ED344
                                                                                SHA-256:A922628916A7DDBE2BAA33F421C82250527EA3C28E429749353A1C75C0C18860
                                                                                SHA-512:5651247FA236DCF020A3C8456E4A9A74A85C5B9B3CCE94A3CF8F85FD4D66465C9F97DF7A1822E6CA4553C02BE149F3021D58DCC0C8CB6DCF37F915BD0A158187
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse..IS_SEAT0=1.CAN_MULTI_SESSION=1.CAN_TTY=1.CAN_GRAPHICAL=0.SESSIONS=c1.UIDS=127.
                                                                                Process:/lib/systemd/systemd-logind
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):95
                                                                                Entropy (8bit):4.921230646592726
                                                                                Encrypted:false
                                                                                SSDEEP:3:SbFVVmFyinKMsuH47rLg205vmLUbr+v:SbFuFyLwH47Pg20ggWv
                                                                                MD5:BE58CCABC942125F5E27AF6EB1BA2F88
                                                                                SHA1:07C20F55E36EE48869B223B8FC4DBC227C7353AC
                                                                                SHA-256:551B1D1C8E5953D5D0CF49C83C1568E2FBEF8BDDB69903B3DA82240B777B4629
                                                                                SHA-512:E5A270995FDE80530927E0BACD3BF76EE820C968AABD55D2E34579326F388AFD6DE7FB8C5D54F69D3F6AC30A5B587FD3B0456FC60326E7DF4F45789A900D046C
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse..IS_SEAT0=1.CAN_MULTI_SESSION=1.CAN_TTY=1.CAN_GRAPHICAL=0.
                                                                                Process:/lib/systemd/systemd-logind
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):188
                                                                                Entropy (8bit):4.928997328913428
                                                                                Encrypted:false
                                                                                SSDEEP:3:SbFVVmFyinKMs5BuSgVuMI2sKiYiesnAv/XS12K2hwEY8mTQ2pJi22sQ2KkmD2pi:SbFuFyL3BVgVuR257iesnAi12thQc2p4
                                                                                MD5:065A3AD1A34A9903F536410ECA748105
                                                                                SHA1:21CD684DF60D569FA96EEEB66A0819EAC1B2B1A4
                                                                                SHA-256:E80554BF0FF4E32C61D4FA3054F8EFB27A26F1C37C91AE4EA94445C400693941
                                                                                SHA-512:DB3C42E893640BAEE9F0001BDE6E93ED40CC33198AC2B47328F577D3C71E2C2E986AAAFEF5BD8ADBC639B5C24ADF715D87034AE24B697331FF6FEC5962630064
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse..NAME=gdm.STATE=opening.STOPPING=no.RUNTIME=/run/user/127.SESSIONS=c1.SEATS=seat0.ACTIVE_SESSIONS=.ONLINE_SESSIONS=c1.ACTIVE_SEATS=.ONLINE_SEATS=seat0.
                                                                                Process:/lib/systemd/systemd-logind
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):282
                                                                                Entropy (8bit):5.254904022190963
                                                                                Encrypted:false
                                                                                SSDEEP:6:SbFuFyL3BVgVuR257iesnAir/0Ixff6z0gLEunQ2thQc2pb02/g2p9rwB:qgFq30VuR8L/ibBngVjthQHtPYq9M
                                                                                MD5:8B10D7C89AD47D584FD4B8EB9497BF37
                                                                                SHA1:C703A344D1CE88D70B8F29B059B73DD87C23A4BC
                                                                                SHA-256:1472E4403405A54746743AEA4E6EAE04D8062361722EFDBCFE10169D674CE16E
                                                                                SHA-512:3746E25C06D79685F0C8D638CF28E12BBCCDF7967772FA614C484AD84DC9F80DF949C00F18E5CA133D5BA6F06D95F99BE96D4EFCEF9D4BE3DE803FB0328F17EC
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse..NAME=gdm.STATE=opening.STOPPING=no.RUNTIME=/run/user/127.SERVICE_JOB=/org/freedesktop/systemd1/job/12409.REALTIME=1742741014840740.MONOTONIC=451757752.SESSIONS=c1.SEATS=seat0.ACTIVE_SESSIONS=.ONLINE_SESSIONS=c1.ACTIVE_SEATS=.ONLINE_SEATS=seat0.
                                                                                Process:/lib/systemd/systemd-logind
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):223
                                                                                Entropy (8bit):5.433469268112716
                                                                                Encrypted:false
                                                                                SSDEEP:6:SbFuFyL3BVgdL87ynAir/0Ixff6tzgLEOt6On:qgFq30dABibBCgBIO
                                                                                MD5:3663BEECA864B74E2CEBD4A61FB4BD27
                                                                                SHA1:6F7B3B5184439D52C015FB406CA715DF04DA701C
                                                                                SHA-256:A628AE3F7BBA61BD83A02044BEA93430950308B0148885D88C46899268555AB8
                                                                                SHA-512:40B31093F99B216A9C6C561969E08FC823B62677ADB8BFBB28805CFFD24CD5F82FAD934F07431BEC5ADE6AF81313B068B239E0DA708913B701975F47DA1CFAF5
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse..NAME=gdm.STATE=closing.STOPPING=yes.RUNTIME=/run/user/127.SERVICE_JOB=/org/freedesktop/systemd1/job/12471.REALTIME=1742741014840740.MONOTONIC=451757752.LAST_SESSION_TIMESTAMP=451880938.
                                                                                Process:/lib/systemd/systemd-logind
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):174
                                                                                Entropy (8bit):5.283342078453736
                                                                                Encrypted:false
                                                                                SSDEEP:3:SbFVVmFyinKMs5BuSgdNR2sKiYiesnAv/XSHxJgku6WAxk9H206qodcn:SbFuFyL3BVgdL87iesnAiRJgLEOt6On
                                                                                MD5:5C162616ECC73477EADA798471237CCF
                                                                                SHA1:99E0ADF03667FF27CD094A76B564AC1DDA689C19
                                                                                SHA-256:56923D4F6663C1B411F72A72367209F6C30D2F581E5B5083624E045074456CA6
                                                                                SHA-512:481275831907FF68C3D59C4DD7D9C5138ABF54BDECF1608EFD6FD2CAC143101AC0AFD74BBBFD46A2F317A623534DE197802CFC664629478D36D5793A28EC707C
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse..NAME=gdm.STATE=closing.STOPPING=no.RUNTIME=/run/user/127.REALTIME=1742741014840740.MONOTONIC=451757752.LAST_SESSION_TIMESTAMP=451880938.
                                                                                Process:/lib/systemd/systemd-logind
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):282
                                                                                Entropy (8bit):5.254904022190963
                                                                                Encrypted:false
                                                                                SSDEEP:6:SbFuFyL3BVgVuR257iesnAir/0Ixff6z0gLEunQ2thQc2pb02/g2p9rwB:qgFq30VuR8L/ibBngVjthQHtPYq9M
                                                                                MD5:8B10D7C89AD47D584FD4B8EB9497BF37
                                                                                SHA1:C703A344D1CE88D70B8F29B059B73DD87C23A4BC
                                                                                SHA-256:1472E4403405A54746743AEA4E6EAE04D8062361722EFDBCFE10169D674CE16E
                                                                                SHA-512:3746E25C06D79685F0C8D638CF28E12BBCCDF7967772FA614C484AD84DC9F80DF949C00F18E5CA133D5BA6F06D95F99BE96D4EFCEF9D4BE3DE803FB0328F17EC
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse..NAME=gdm.STATE=opening.STOPPING=no.RUNTIME=/run/user/127.SERVICE_JOB=/org/freedesktop/systemd1/job/12409.REALTIME=1742741014840740.MONOTONIC=451757752.SESSIONS=c1.SEATS=seat0.ACTIVE_SESSIONS=.ONLINE_SESSIONS=c1.ACTIVE_SEATS=.ONLINE_SEATS=seat0.
                                                                                Process:/lib/systemd/systemd-logind
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):223
                                                                                Entropy (8bit):5.433469268112716
                                                                                Encrypted:false
                                                                                SSDEEP:6:SbFuFyL3BVgdL87ynAir/0Ixff6tzgLEOt6On:qgFq30dABibBCgBIO
                                                                                MD5:3663BEECA864B74E2CEBD4A61FB4BD27
                                                                                SHA1:6F7B3B5184439D52C015FB406CA715DF04DA701C
                                                                                SHA-256:A628AE3F7BBA61BD83A02044BEA93430950308B0148885D88C46899268555AB8
                                                                                SHA-512:40B31093F99B216A9C6C561969E08FC823B62677ADB8BFBB28805CFFD24CD5F82FAD934F07431BEC5ADE6AF81313B068B239E0DA708913B701975F47DA1CFAF5
                                                                                Malicious:false
                                                                                Preview:# This is private data. Do not parse..NAME=gdm.STATE=closing.STOPPING=yes.RUNTIME=/run/user/127.SERVICE_JOB=/org/freedesktop/systemd1/job/12471.REALTIME=1742741014840740.MONOTONIC=451757752.LAST_SESSION_TIMESTAMP=451880938.
                                                                                Process:/usr/bin/pulseaudio
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):5
                                                                                Entropy (8bit):2.321928094887362
                                                                                Encrypted:false
                                                                                SSDEEP:3:Y:Y
                                                                                MD5:A80D703472FC5766CAE46D8D596262DD
                                                                                SHA1:7B01D0FBE2CBB711EBA794E944F2138C22032C60
                                                                                SHA-256:73D267E7B9831FEB83499133F3B4072D05D52E481EAFA86C8FF999AB19565CDA
                                                                                SHA-512:E48826B0BC0E965C580916AAC266BBA5C64DA47AE6C16CF80CD607C325EFE2150920CE6E5BB2FCFEBA37246656E8F2784ED0AD12A66464F067F2655680664AAE
                                                                                Malicious:false
                                                                                Preview:6450.
                                                                                Process:/sbin/agetty
                                                                                File Type:data
                                                                                Category:dropped
                                                                                Size (bytes):384
                                                                                Entropy (8bit):0.6775035134351415
                                                                                Encrypted:false
                                                                                SSDEEP:3:50sXlXEWtl/yOE/l:n+ylaOkl
                                                                                MD5:55FFF4499096DDFFF0C6F82AB79FB9F9
                                                                                SHA1:AFAE7C2232C988DED20171B65C9926228FB28866
                                                                                SHA-256:D9A23D50FF90DF655E9DB6DBBE949868C431C332F2D16E8E89C23DC3F626FCA9
                                                                                SHA-512:98CD92F7CA74A12B9ACEE6E6DD44BA263B416BFAAD88A339AB34452A3EDF9A33E9F10881A9920C643DCEB56449C0E7338BAAD10926A40056384100E5434C3027
                                                                                Malicious:false
                                                                                Preview:........tty2.tty2.......................tty2LOGIN......................................................................................................................................................................................................................................................................................................g........................................
                                                                                Process:/tmp/morte.arm7.elf
                                                                                File Type:data
                                                                                Category:dropped
                                                                                Size (bytes):20
                                                                                Entropy (8bit):3.5841837197791886
                                                                                Encrypted:false
                                                                                SSDEEP:3:TgnRAiTG:TgnRAcG
                                                                                MD5:1D4597466DDBF682D38AFBB7B65D3B18
                                                                                SHA1:2599983BFE818CF189424DEDCF924F1F693F9D12
                                                                                SHA-256:50656C99A700312EDA073E6600C56264B0453EF23DFA2778E14FDA81CD16EA19
                                                                                SHA-512:1DA8280C401503D521852A2D9D2466F99D435DC8AE9DC19710A64ED19588EB55E2711AB41D8E878D04259574C525BD2F29AD4746BC6C6AE13836D1460E7FF859
                                                                                Malicious:false
                                                                                Preview:/tmp/morte.arm7.elf.
                                                                                Process:/usr/lib/accountsservice/accounts-daemon
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):61
                                                                                Entropy (8bit):4.66214589518167
                                                                                Encrypted:false
                                                                                SSDEEP:3:urzMQvNT+PzKLrAan4R8AKn:gzMQIzKLrAa4M
                                                                                MD5:542BA3FB41206AE43928AF1C5E61FEBC
                                                                                SHA1:F56F574DAF50D609526B36B5B54FDD59EA4D6A26
                                                                                SHA-256:730D9509D4EAA7266829A8F5A8CFEBA6BBDDD5873FC2BD580AD464F4A237E11A
                                                                                SHA-512:D774B8F191A5C65228D1B3CA1181701CFCD07A3D91C5571B0DDF32AD3E241C2D7BDFC0697AB97DC10441EF9CDC8AEE5B19BC34E13E5C8B0B91AD06EEF42F5AEA
                                                                                Malicious:false
                                                                                Preview:[User].XSession=.Icon=/var/lib/gdm3/.face.SystemAccount=true.
                                                                                Process:/usr/bin/gpu-manager
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):25
                                                                                Entropy (8bit):2.7550849518197795
                                                                                Encrypted:false
                                                                                SSDEEP:3:JoT/V9fDVbn:M/V3n
                                                                                MD5:078760523943E160756979906B85FB5E
                                                                                SHA1:0962643266F4C5537F7D125046F28F21D6DD0C89
                                                                                SHA-256:048416AC7A9A99690B8B53718CD39F32F637B55CC8DD8E67E58E5AEF060DD41C
                                                                                SHA-512:DEFAAE8F8B54C61A716A0B0B4884358FEB8EB44DFEA01AAA5A687FDA7182792B7DEBB34AA840672EB3B40EB59FD0186749E08E47D181786C7FAA8C8F73F0104D
                                                                                Malicious:false
                                                                                Preview:15ad:0405;0000:00:0f:0;1.
                                                                                Process:/usr/sbin/rsyslogd
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):1963
                                                                                Entropy (8bit):4.923877593372584
                                                                                Encrypted:false
                                                                                SSDEEP:24:ptBoB6QdqaZ4yZetdn6TkxAvpA2+Vi0pYraJrlWrCQU:KQxKvufVdYr8rlWrCn
                                                                                MD5:8B7D94DD97387B6304A9BFD31163F123
                                                                                SHA1:53B4493B7A0D7BB9DC28BE0109B61BD68327A786
                                                                                SHA-256:94A68EF8103F70CD558F427F79636D6F1D46722EE60F4151FA6D673300A25545
                                                                                SHA-512:E6010FA2D5B19C6AACEDB95FE8CD06C54131258311E96EB82C394B20468544DD77DC761971803D7035630EC1E8B57241EF92CC7202EC22D9D17698517C69D48C
                                                                                Malicious:false
                                                                                Preview:Mar 23 09:43:17 galassia gdm-launch-environment]: pam_unix(gdm-launch-environment:session): session closed for user gdm.Mar 23 09:43:17 galassia gdm-password]: pam_unix(gdm-password:session): session closed for user saturnino.Mar 23 09:43:17 galassia gdm-password]: pam_systemd(gdm-password:session): Failed to release session: No session '2' known.Mar 23 09:43:18 galassia systemd-logind[6296]: Failed to add user by file name 127, ignoring: Invalid argument.Mar 23 09:43:18 galassia systemd-logind[6296]: Failed to add user by file name 1000, ignoring: Invalid argument.Mar 23 09:43:18 galassia systemd-logind[6296]: User enumeration failed: Invalid argument.Mar 23 09:43:18 galassia systemd-logind[6296]: User of session c2 not known..Mar 23 09:43:18 galassia systemd-logind[6296]: User of session 2 not known..Mar 23 09:43:18 galassia systemd-logind[6296]: User of session c1 not known..Mar 23 09:43:18 galassia systemd-logind[6296]: Session enumeration failed: No such file or directory.Mar 23 0
                                                                                Process:/usr/bin/gpu-manager
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):1371
                                                                                Entropy (8bit):4.8296848499188485
                                                                                Encrypted:false
                                                                                SSDEEP:24:wPXXX9uV6BNu3WDF3GF3XFFxFFed2uk2HUvJlfWkpPpx7uvvAdow9555cJz:wPXXXe6vejpeC2HUR5WkpPpcvAdow95O
                                                                                MD5:3AF77E630DA00B3BE24F4E8AA5D78B13
                                                                                SHA1:BCF2D99E002F6DE2413A183227B011CFBEF5673D
                                                                                SHA-256:EB1CBBA20845237B4409274D693FEAE13F835274DA3337B7A9D14F4D7FDF9DEA
                                                                                SHA-512:8524B1E8A761F962B32F396812099B9B0B2DCF3C9FCA8605424753CFCFF4DC67EDC5EE1D8C91B9C0ED7FAE6BB1E752898B8D514B7C421D1839D6FEDA609C593C
                                                                                Malicious:false
                                                                                Preview:log_file: /var/log/gpu-manager.log.last_boot_file: /var/lib/ubuntu-drivers-common/last_gfx_boot.new_boot_file: /var/lib/ubuntu-drivers-common/last_gfx_boot.can't access /run/u-d-c-nvidia-was-loaded file.can't get module info via kmodcan't access /opt/amdgpu-pro/bin/amdgpu-pro-px.Looking for nvidia modules in /lib/modules/5.4.0-72-generic/kernel.Looking for nvidia modules in /lib/modules/5.4.0-72-generic/updates/dkms.Looking for amdgpu modules in /lib/modules/5.4.0-72-generic/kernel.Looking for amdgpu modules in /lib/modules/5.4.0-72-generic/updates/dkms.Is nvidia loaded? no.Was nvidia unloaded? no.Is nvidia blacklisted? no.Is intel loaded? no.Is radeon loaded? no.Is radeon blacklisted? no.Is amdgpu loaded? no.Is amdgpu blacklisted? no.Is amdgpu versioned? no.Is amdgpu pro stack? no.Is nouveau loaded? no.Is nouveau blacklisted? no.Is nvidia kernel module available? no.Is amdgpu kernel module available? no.Vendor/Device Id: 15ad:405.BusID "PCI:0@0:15:0".Is boot vga? yes.Error: can't acce
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:data
                                                                                Category:dropped
                                                                                Size (bytes):240
                                                                                Entropy (8bit):1.448047321524811
                                                                                Encrypted:false
                                                                                SSDEEP:3:F31HlUSm0ac1MSm0akl:F35A4Akl
                                                                                MD5:8C1F3FF89EC30A7ACD175E806E1549AE
                                                                                SHA1:1EB05E03188813037CC8F5F6EBEE9BBB73CCFBE8
                                                                                SHA-256:8A86B9ABA2EE3C2599E679EB47F4101769C957A216CCE4FB8643D7338CAB5D12
                                                                                SHA-512:A18FBB96797269C9D2F00C20051E914C7B58E292928577CFD900916791367A9897E87C9B418E197218E95DD444374FCE4912747D05549437B7C57039C9FFD963
                                                                                Malicious:false
                                                                                Preview:LPKSHHRH.................l3.UB...K~.}..................................l3.UB...K~.}.........................................................................................................................................................
                                                                                Process:/lib/systemd/systemd-journald
                                                                                File Type:data
                                                                                Category:dropped
                                                                                Size (bytes):240
                                                                                Entropy (8bit):1.4313806548581443
                                                                                Encrypted:false
                                                                                SSDEEP:3:F31HlGFaTl/luFaTX/:F3WFE4F8/
                                                                                MD5:10CE97CA1709B03EBCCADB1E2B94E0CB
                                                                                SHA1:747BEBAF5DCA2CBDEAAFCD8C506C201331F2EFDC
                                                                                SHA-256:C6BDE0803C0DAB3AB3A7D746C20894529FD514FC1627225EAE6F5D6DE5EDB466
                                                                                SHA-512:7DFF228923A49B944044EF643D10316F668F341B5DD7CDCF4C6D1596BCCA6B5437AA100EB3657C502D067D664C33CDEB3308BA1A6D92AC83CF4C744248382443
                                                                                Malicious:false
                                                                                Preview:LPKSHHRH.................@....@\..a......................................@....@\..a.............................................................................................................................................................
                                                                                Process:/usr/sbin/rsyslogd
                                                                                File Type:ASCII text
                                                                                Category:dropped
                                                                                Size (bytes):9113
                                                                                Entropy (8bit):4.75666841472113
                                                                                Encrypted:false
                                                                                SSDEEP:48:1RKudtMOPExOoK44cL70LjxtUkbOWDKR4jGsKeR445v+zcY4PYuduu/hcnECmFbm:bavYt0MKR48NTMyMfOc0QaeUEalfM8
                                                                                MD5:CE64D07419E4034736643E83168EBC0C
                                                                                SHA1:87E0CE6B3A3A41807A76DCD8B71C50185360FAB2
                                                                                SHA-256:3F61B4E631CF62F252A340A8A65A9A3B3C8A47E14442B424FF0E3DF96E26A1D5
                                                                                SHA-512:B12DCB6384A7056DC17F0DC78C3A674FD29B24B6856D256CC221413B3B8BB4A3B5EF48010AE9423ECAA76C6F1352419606072298BB735EF409CCD2524A324CD8
                                                                                Malicious:false
                                                                                Preview:Mar 23 09:43:05 galassia kernel: [ 420.435035] blocking signal 9: 6236 -> 797.Mar 23 09:43:05 galassia kernel: [ 420.460346] blocking signal 9: 6236 -> 936.Mar 23 09:43:05 galassia kernel: [ 420.483265] blocking signal 9: 6236 -> 1320.Mar 23 09:43:05 galassia kernel: [ 420.502949] blocking signal 9: 6236 -> 1334.Mar 23 09:43:05 galassia kernel: [ 420.527666] blocking signal 9: 6236 -> 1335.Mar 23 09:43:05 galassia kernel: [ 420.583932] blocking signal 9: 6236 -> 1389.Mar 23 09:43:05 galassia kernel: [ 420.634688] blocking signal 9: 6236 -> 1601.Mar 23 09:43:05 galassia kernel: [ 420.684564] blocking signal 9: 6236 -> 1809.Mar 23 09:43:05 galassia kernel: [ 420.712677] blocking signal 9: 6236 -> 1860.Mar 23 09:43:05 galassia kernel: [ 420.733013] blocking signal 9: 6236 -> 1872.Mar 23 09:43:05 galassia kernel: [ 420.783448] blocking signal 9: 6236 -> 1983.Mar 23 09:43:05 galassia kernel: [ 420.831911] blocking signal 9: 6236 -> 2048.Mar 23 09:43:05 galassia kernel: [ 421.16
                                                                                Process:/usr/sbin/rsyslogd
                                                                                File Type:ASCII text, with very long lines (317)
                                                                                Category:dropped
                                                                                Size (bytes):43681
                                                                                Entropy (8bit):5.059904077736293
                                                                                Encrypted:false
                                                                                SSDEEP:768:iAwTGK8oGK8vXUYuW/UfuwUDMIyz5dHFrgbnh+uSUEuC4zbXNzdxXmIkC9z3Bomv:+42K
                                                                                MD5:E4195A7188F4164E595C6BB81F2E98D5
                                                                                SHA1:F31D882B2499CB0A8DAA90BC4A7D3B7F9B8BD452
                                                                                SHA-256:4B7320F9418B40F85B23B7B438B0B1219395C8B75B3D7B816399EEAF2EF6FA68
                                                                                SHA-512:126F7A690BF9826930988379D916E20AEF582BFEB3BEDEFC5869269E28C18327A20364CC0CF0EC87D2AFECDF9D4AB8C62FAF0AF6012D49E3070373D52697863E
                                                                                Malicious:false
                                                                                Preview:Mar 23 09:43:05 galassia kernel: [ 420.415717] systemd[1]: rsyslog.service: Main process exited, code=killed, status=9/KILL.Mar 23 09:43:05 galassia kernel: [ 420.415781] systemd[1]: rsyslog.service: Failed with result 'signal'..Mar 23 09:43:05 galassia kernel: [ 420.435035] blocking signal 9: 6236 -> 797.Mar 23 09:43:05 galassia kernel: [ 420.460346] blocking signal 9: 6236 -> 936.Mar 23 09:43:05 galassia kernel: [ 420.483265] blocking signal 9: 6236 -> 1320.Mar 23 09:43:05 galassia kernel: [ 420.502949] blocking signal 9: 6236 -> 1334.Mar 23 09:43:05 galassia kernel: [ 420.527666] blocking signal 9: 6236 -> 1335.Mar 23 09:43:05 galassia kernel: [ 420.554466] systemd[1]: rsyslog.service: Scheduled restart job, restart counter is at 1..Mar 23 09:43:05 galassia kernel: [ 420.554475] systemd[1]: Stopped System Logging Service..Mar 23 09:43:05 galassia kernel: [ 420.555108] systemd[1]: Starting System Logging Service....Mar 23 09:43:05 galassia kernel: [ 420.583932] blocking si
                                                                                Process:/sbin/agetty
                                                                                File Type:data
                                                                                Category:dropped
                                                                                Size (bytes):384
                                                                                Entropy (8bit):0.6775035134351415
                                                                                Encrypted:false
                                                                                SSDEEP:3:50sXlXEWtl/yOE/l:n+ylaOkl
                                                                                MD5:55FFF4499096DDFFF0C6F82AB79FB9F9
                                                                                SHA1:AFAE7C2232C988DED20171B65C9926228FB28866
                                                                                SHA-256:D9A23D50FF90DF655E9DB6DBBE949868C431C332F2D16E8E89C23DC3F626FCA9
                                                                                SHA-512:98CD92F7CA74A12B9ACEE6E6DD44BA263B416BFAAD88A339AB34452A3EDF9A33E9F10881A9920C643DCEB56449C0E7338BAAD10926A40056384100E5434C3027
                                                                                Malicious:true
                                                                                Preview:........tty2.tty2.......................tty2LOGIN......................................................................................................................................................................................................................................................................................................g........................................
                                                                                File type:ELF 32-bit LSB executable, ARM, EABI4 version 1 (GNU/Linux), statically linked, no section header
                                                                                Entropy (8bit):7.983887640720956
                                                                                TrID:
                                                                                • ELF Executable and Linkable format (generic) (4004/1) 100.00%
                                                                                File name:morte.arm7.elf
                                                                                File size:60'612 bytes
                                                                                MD5:23346ecd1cc5cad4847ac8e30cdb0e3f
                                                                                SHA1:2ac03d3a876a40a5b4357e8c58e6ecc647a9dc1c
                                                                                SHA256:c6600d76dc4e2ef2535a5b002fb9620f9fb9c1c4216d65f4ba10e39cf53f3f98
                                                                                SHA512:0808c81f5ade66dfb0c574c7fb9e0b65097137e3807bb6ac0152eff15db0bcb912ef91ee84dab4a20d87b0a437e2924d556437415fc26168c2215e26308e094a
                                                                                SSDEEP:1536:iiIhKf9a4XInErr8pd4c5nX3kPnLrTmazpK0Gmt+EAL:Ta4HP8H46nKLNhDa
                                                                                TLSH:254302D19A5A519C99B59963FC3A4B07132827FE41BE31933B27162EFF01684856C0D7
                                                                                File Content Preview:.ELF..............(.........4...........4. ...(.....................m...m...............d,..d...d...................Q.td............................>. NUPX!.........h...h......j..........?.E.h;....#..$...o...rH......*).......X.L.......-L*..:V...;.]..._..y

                                                                                ELF header

                                                                                Class:ELF32
                                                                                Data:2's complement, little endian
                                                                                Version:1 (current)
                                                                                Machine:ARM
                                                                                Version Number:0x1
                                                                                Type:EXEC (Executable file)
                                                                                OS/ABI:UNIX - Linux
                                                                                ABI Version:0
                                                                                Entry Point Address:0x11780
                                                                                Flags:0x4000002
                                                                                ELF Header Size:52
                                                                                Program Header Offset:52
                                                                                Program Header Size:32
                                                                                Number of Program Headers:3
                                                                                Section Header Offset:0
                                                                                Section Header Size:40
                                                                                Number of Section Headers:0
                                                                                Header String Table Index:0
                                                                                TypeOffsetVirtual AddressPhysical AddressFile SizeMemory SizeEntropyFlagsFlags DescriptionAlignProg InterpreterSection Mappings
                                                                                LOAD0x00x80000x80000xa96d0xa96d7.97290x5R E0x8000
                                                                                LOAD0x2c640x2ac640x2ac640x00x00.00000x6RW 0x8000
                                                                                GNU_STACK0x00x00x00x00x00.00000x7RWE0x4

                                                                                Download Network PCAP: filteredfull

                                                                                • Total Packets: 45
                                                                                • 7575 undefined
                                                                                • 443 (HTTPS)
                                                                                • 80 (HTTP)
                                                                                • 53 (DNS)
                                                                                TimestampSource PortDest PortSource IPDest IP
                                                                                Mar 23, 2025 15:43:03.892595053 CET462927575192.168.2.23176.65.142.252
                                                                                Mar 23, 2025 15:43:04.099157095 CET757546292176.65.142.252192.168.2.23
                                                                                Mar 23, 2025 15:43:04.099263906 CET462927575192.168.2.23176.65.142.252
                                                                                Mar 23, 2025 15:43:04.275522947 CET462927575192.168.2.23176.65.142.252
                                                                                Mar 23, 2025 15:43:04.478334904 CET757546292176.65.142.252192.168.2.23
                                                                                Mar 23, 2025 15:43:04.481547117 CET462927575192.168.2.23176.65.142.252
                                                                                Mar 23, 2025 15:43:04.686151981 CET757546292176.65.142.252192.168.2.23
                                                                                Mar 23, 2025 15:43:06.606098890 CET42836443192.168.2.2391.189.91.43
                                                                                Mar 23, 2025 15:43:07.373982906 CET4251680192.168.2.23109.202.202.202
                                                                                Mar 23, 2025 15:43:09.241949081 CET462927575192.168.2.23176.65.142.252
                                                                                Mar 23, 2025 15:43:09.452577114 CET757546292176.65.142.252192.168.2.23
                                                                                Mar 23, 2025 15:43:09.452640057 CET462927575192.168.2.23176.65.142.252
                                                                                Mar 23, 2025 15:43:10.696221113 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:10.696259975 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:10.696327925 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.293406963 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.293437958 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:14.509231091 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:14.509399891 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.509543896 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.509552956 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:14.509725094 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.509733915 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:14.509864092 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:14.510198116 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.510250092 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.510255098 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:14.510438919 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.695867062 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:14.695931911 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.696002007 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.696002007 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.696070910 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:14.696135998 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.696146011 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:14.696165085 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.696186066 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.696186066 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.696199894 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:14.696213961 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.696290016 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.696367979 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:14.696424007 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.696441889 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:14.696459055 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.696470022 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.696506023 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.696657896 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:14.696691036 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:14.696721077 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.696743965 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.696743965 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.696825981 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:14.696876049 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.696950912 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:14.697007895 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:14.697024107 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:15.169636011 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:15.169715881 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:15.169725895 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:15.169814110 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:15.169819117 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:15.169862032 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:15.169953108 CET37604443192.168.2.23162.213.35.24
                                                                                Mar 23, 2025 15:43:15.169966936 CET44337604162.213.35.24192.168.2.23
                                                                                Mar 23, 2025 15:43:21.196019888 CET43928443192.168.2.2391.189.91.42
                                                                                Mar 23, 2025 15:43:33.482294083 CET42836443192.168.2.2391.189.91.43
                                                                                Mar 23, 2025 15:43:37.577723980 CET4251680192.168.2.23109.202.202.202
                                                                                Mar 23, 2025 15:44:02.150604963 CET43928443192.168.2.2391.189.91.42
                                                                                TimestampSource PortDest PortSource IPDest IP
                                                                                Mar 23, 2025 15:43:10.097697973 CET4455153192.168.2.231.1.1.1
                                                                                Mar 23, 2025 15:43:10.097791910 CET4233253192.168.2.231.1.1.1
                                                                                Mar 23, 2025 15:43:10.196626902 CET53445511.1.1.1192.168.2.23
                                                                                Mar 23, 2025 15:43:10.199898958 CET53423321.1.1.1192.168.2.23
                                                                                Mar 23, 2025 15:43:10.539180994 CET4568453192.168.2.231.1.1.1
                                                                                Mar 23, 2025 15:43:10.664638042 CET53456841.1.1.1192.168.2.23
                                                                                TimestampSource IPDest IPChecksumCodeType
                                                                                Mar 23, 2025 15:43:10.989978075 CET192.168.2.23192.168.2.18283(Port unreachable)Destination Unreachable
                                                                                Mar 23, 2025 15:44:31.005100965 CET192.168.2.23192.168.2.18283(Port unreachable)Destination Unreachable
                                                                                TimestampSource IPDest IPTrans IDOP CodeNameTypeClassDNS over HTTPS
                                                                                Mar 23, 2025 15:43:10.097697973 CET192.168.2.231.1.1.10x625bStandard query (0)daisy.ubuntu.comA (IP address)IN (0x0001)false
                                                                                Mar 23, 2025 15:43:10.097791910 CET192.168.2.231.1.1.10xcc6cStandard query (0)daisy.ubuntu.com28IN (0x0001)false
                                                                                Mar 23, 2025 15:43:10.539180994 CET192.168.2.231.1.1.10xa383Standard query (0)daisy.ubuntu.com28IN (0x0001)false
                                                                                TimestampSource IPDest IPTrans IDReply CodeNameCNameAddressTypeClassDNS over HTTPS
                                                                                Mar 23, 2025 15:43:10.196626902 CET1.1.1.1192.168.2.230x625bNo error (0)daisy.ubuntu.com162.213.35.25A (IP address)IN (0x0001)false
                                                                                Mar 23, 2025 15:43:10.196626902 CET1.1.1.1192.168.2.230x625bNo error (0)daisy.ubuntu.com162.213.35.24A (IP address)IN (0x0001)false
                                                                                • daisy.ubuntu.com
                                                                                Session IDSource IPSource PortDestination IPDestination Port
                                                                                0192.168.2.2337604162.213.35.24443
                                                                                TimestampBytes transferredDirectionData
                                                                                2025-03-23 14:43:14 UTC307OUTPOST /9aadafe2051348cd32033e1cad68f0a5fe46fba3240ac1e6e42158f31b8a1371790c09baf3996b4979fe8e533446c7dedf30f654c68b25357334c66911dc6a9e HTTP/1.1
                                                                                Host: daisy.ubuntu.com
                                                                                Accept: */*
                                                                                Content-Type: application/octet-stream
                                                                                X-Whoopsie-Version: 0.2.69ubuntu0.3
                                                                                Content-Length: 164887
                                                                                Expect: 100-continue
                                                                                2025-03-23 14:43:14 UTC25INHTTP/1.1 100 Continue
                                                                                2025-03-23 14:43:14 UTC16384OUTData Raw: 17 84 02 00 02 50 72 6f 63 45 6e 76 69 72 6f 6e 00 4e 00 00 00 50 41 54 48 3d 28 63 75 73 74 6f 6d 2c 20 6e 6f 20 75 73 65 72 29 0a 58 44 47 5f 52 55 4e 54 49 4d 45 5f 44 49 52 3d 3c 73 65 74 3e 0a 4c 41 4e 47 3d 65 6e 5f 55 53 2e 55 54 46 2d 38 0a 53 48 45 4c 4c 3d 2f 62 69 6e 2f 62 61 73 68 00 02 5f 4c 6f 67 69 6e 64 53 65 73 73 69 6f 6e 00 02 00 00 00 35 00 02 44 61 74 65 00 19 00 00 00 54 75 65 20 41 75 67 20 31 37 20 32 30 3a 31 38 3a 30 34 20 32 30 32 31 00 02 53 6f 75 72 63 65 50 61 63 6b 61 67 65 00 0d 00 00 00 6c 69 67 68 74 2d 6c 6f 63 6b 65 72 00 02 50 61 63 6b 61 67 65 41 72 63 68 69 74 65 63 74 75 72 65 00 06 00 00 00 61 6d 64 36 34 00 02 41 72 63 68 69 74 65 63 74 75 72 65 00 06 00 00 00 61 6d 64 36 34 00 02 44 69 73 74 72 6f 52 65 6c 65 61
                                                                                Data Ascii: ProcEnvironNPATH=(custom, no user)XDG_RUNTIME_DIR=<set>LANG=en_US.UTF-8SHELL=/bin/bash_LogindSession5DateTue Aug 17 20:18:04 2021SourcePackagelight-lockerPackageArchitectureamd64Architectureamd64DistroRelea
                                                                                2025-03-23 14:43:14 UTC16384OUTData Raw: 74 75 34 2e 31 0a 6c 69 62 70 61 6d 2d 72 75 6e 74 69 6d 65 20 31 2e 33 2e 31 2d 35 75 62 75 6e 74 75 34 2e 31 0a 6c 69 62 70 61 6d 2d 73 79 73 74 65 6d 64 20 32 34 35 2e 34 2d 34 75 62 75 6e 74 75 33 2e 31 31 0a 6c 69 62 70 61 6d 30 67 20 31 2e 33 2e 31 2d 35 75 62 75 6e 74 75 34 2e 31 0a 6c 69 62 70 61 6e 67 6f 2d 31 2e 30 2d 30 20 31 2e 34 34 2e 37 2d 32 75 62 75 6e 74 75 34 0a 6c 69 62 70 61 6e 67 6f 63 61 69 72 6f 2d 31 2e 30 2d 30 20 31 2e 34 34 2e 37 2d 32 75 62 75 6e 74 75 34 0a 6c 69 62 70 61 6e 67 6f 66 74 32 2d 31 2e 30 2d 30 20 31 2e 34 34 2e 37 2d 32 75 62 75 6e 74 75 34 0a 6c 69 62 70 61 6e 67 6f 78 66 74 2d 31 2e 30 2d 30 20 31 2e 34 34 2e 37 2d 32 75 62 75 6e 74 75 34 0a 6c 69 62 70 61 70 65 72 2d 75 74 69 6c 73 20 31 2e 31 2e 32 38 0a 6c
                                                                                Data Ascii: tu4.1libpam-runtime 1.3.1-5ubuntu4.1libpam-systemd 245.4-4ubuntu3.11libpam0g 1.3.1-5ubuntu4.1libpango-1.0-0 1.44.7-2ubuntu4libpangocairo-1.0-0 1.44.7-2ubuntu4libpangoft2-1.0-0 1.44.7-2ubuntu4libpangoxft-1.0-0 1.44.7-2ubuntu4libpaper-utils 1.1.28l
                                                                                2025-03-23 14:43:14 UTC16384OUTData Raw: 20 20 20 20 20 20 20 20 30 78 30 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 30 0a 67 73 20 20 20 20 20 20 20 20 20 20 20 20 20 30 78 30 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 30 0a 6b 30 20 20 20 20 20 20 20 20 20 20 20 20 20 30 78 30 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 30 0a 6b 31 20 20 20 20 20 20 20 20 20 20 20 20 20 30 78 30 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 30 0a 6b 32 20 20 20 20 20 20 20 20 20 20 20 20 20 30 78 30 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 30 0a 6b 33 20 20 20 20 20 20 20 20 20 20 20 20 20 30 78 30 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 30 0a 6b 34 20 20 20 20 20 20 20 20 20 20 20 20 20 30 78 30 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 30 0a 6b 35 20
                                                                                Data Ascii: 0x0 0gs 0x0 0k0 0x0 0k1 0x0 0k2 0x0 0k3 0x0 0k4 0x0 0k5
                                                                                2025-03-23 14:43:14 UTC16384OUTData Raw: 20 20 20 20 20 20 20 20 20 2f 75 73 72 2f 6c 69 62 2f 78 38 36 5f 36 34 2d 6c 69 6e 75 78 2d 67 6e 75 2f 6c 69 62 78 63 62 2d 72 65 6e 64 65 72 2e 73 6f 2e 30 2e 30 2e 30 0a 37 66 37 39 31 63 30 37 34 30 30 30 2d 37 66 37 39 31 63 30 37 35 30 30 30 20 2d 2d 2d 70 20 30 30 30 30 63 30 30 30 20 66 64 3a 30 30 20 38 30 36 32 36 30 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 2f 75 73 72 2f 6c 69 62 2f 78 38 36 5f 36 34 2d 6c 69 6e 75 78 2d 67 6e 75 2f 6c 69 62 78 63 62 2d 72 65 6e 64 65 72 2e 73 6f 2e 30 2e 30 2e 30 0a 37 66 37 39 31 63 30 37 35 30 30 30 2d 37 66 37 39 31 63 30 37 36 30 30 30 20 72 2d 2d 70 20 30 30 30 30 63 30 30 30 20 66 64 3a 30 30 20 38 30 36 32 36 30 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 2f 75
                                                                                Data Ascii: /usr/lib/x86_64-linux-gnu/libxcb-render.so.0.0.07f791c074000-7f791c075000 ---p 0000c000 fd:00 806260 /usr/lib/x86_64-linux-gnu/libxcb-render.so.0.0.07f791c075000-7f791c076000 r--p 0000c000 fd:00 806260 /u
                                                                                2025-03-23 14:43:14 UTC16384OUTData Raw: 6e 75 78 2d 67 6e 75 2f 6c 69 62 67 64 6b 5f 70 69 78 62 75 66 2d 32 2e 30 2e 73 6f 2e 30 2e 34 30 30 30 2e 30 0a 37 66 37 39 31 63 37 37 33 30 30 30 2d 37 66 37 39 31 63 37 37 34 30 30 30 20 72 77 2d 70 20 30 30 30 32 36 30 30 30 20 66 64 3a 30 30 20 38 30 36 32 34 35 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 2f 75 73 72 2f 6c 69 62 2f 78 38 36 5f 36 34 2d 6c 69 6e 75 78 2d 67 6e 75 2f 6c 69 62 67 64 6b 5f 70 69 78 62 75 66 2d 32 2e 30 2e 73 6f 2e 30 2e 34 30 30 30 2e 30 0a 37 66 37 39 31 63 37 37 34 30 30 30 2d 37 66 37 39 31 63 37 37 38 30 30 30 20 72 2d 2d 70 20 30 30 30 30 30 30 30 30 20 66 64 3a 30 30 20 38 30 36 32 36 38 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 20 2f 75 73 72 2f 6c 69 62 2f 78 38 36 5f 36 34
                                                                                Data Ascii: nux-gnu/libgdk_pixbuf-2.0.so.0.4000.07f791c773000-7f791c774000 rw-p 00026000 fd:00 806245 /usr/lib/x86_64-linux-gnu/libgdk_pixbuf-2.0.so.0.4000.07f791c774000-7f791c778000 r--p 00000000 fd:00 806268 /usr/lib/x86_64
                                                                                2025-03-23 14:43:14 UTC16384OUTData Raw: 20 70 6c 61 74 66 6f 72 6d 20 65 69 73 61 2e 30 3a 20 43 61 6e 6e 6f 74 20 61 6c 6c 6f 63 61 74 65 20 72 65 73 6f 75 72 63 65 20 66 6f 72 20 45 49 53 41 20 73 6c 6f 74 20 37 0a 41 75 67 20 31 37 20 32 30 3a 32 34 3a 34 36 20 67 61 6c 61 73 73 69 61 20 6b 65 72 6e 65 6c 3a 20 70 6c 61 74 66 6f 72 6d 20 65 69 73 61 2e 30 3a 20 43 61 6e 6e 6f 74 20 61 6c 6c 6f 63 61 74 65 20 72 65 73 6f 75 72 63 65 20 66 6f 72 20 45 49 53 41 20 73 6c 6f 74 20 38 0a 41 75 67 20 31 37 20 32 30 3a 32 34 3a 34 36 20 67 61 6c 61 73 73 69 61 20 6b 65 72 6e 65 6c 3a 20 73 64 20 33 32 3a 30 3a 30 3a 30 3a 20 5b 73 64 61 5d 20 41 73 73 75 6d 69 6e 67 20 64 72 69 76 65 20 63 61 63 68 65 3a 20 77 72 69 74 65 20 74 68 72 6f 75 67 68 0a 41 75 67 20 31 37 20 32 30 3a 32 34 3a 34 37 20 67
                                                                                Data Ascii: platform eisa.0: Cannot allocate resource for EISA slot 7Aug 17 20:24:46 galassia kernel: platform eisa.0: Cannot allocate resource for EISA slot 8Aug 17 20:24:46 galassia kernel: sd 32:0:0:0: [sda] Assuming drive cache: write throughAug 17 20:24:47 g
                                                                                2025-03-23 14:43:14 UTC16384OUTData Raw: 35 35 31 5d 3a 20 28 49 49 29 20 4c 6f 61 64 4d 6f 64 75 6c 65 3a 20 22 66 62 64 65 76 68 77 22 0a 41 75 67 20 31 37 20 32 30 3a 32 35 3a 30 34 20 67 61 6c 61 73 73 69 61 20 2f 75 73 72 2f 6c 69 62 2f 67 64 6d 33 2f 67 64 6d 2d 78 2d 73 65 73 73 69 6f 6e 5b 31 35 35 31 5d 3a 20 28 49 49 29 20 4c 6f 61 64 69 6e 67 20 2f 75 73 72 2f 6c 69 62 2f 78 6f 72 67 2f 6d 6f 64 75 6c 65 73 2f 6c 69 62 66 62 64 65 76 68 77 2e 73 6f 0a 41 75 67 20 31 37 20 32 30 3a 32 35 3a 30 34 20 67 61 6c 61 73 73 69 61 20 2f 75 73 72 2f 6c 69 62 2f 67 64 6d 33 2f 67 64 6d 2d 78 2d 73 65 73 73 69 6f 6e 5b 31 35 35 31 5d 3a 20 28 49 49 29 20 4d 6f 64 75 6c 65 20 66 62 64 65 76 68 77 3a 20 76 65 6e 64 6f 72 3d 22 58 2e 4f 72 67 20 46 6f 75 6e 64 61 74 69 6f 6e 22 0a 41 75 67 20 31 37
                                                                                Data Ascii: 551]: (II) LoadModule: "fbdevhw"Aug 17 20:25:04 galassia /usr/lib/gdm3/gdm-x-session[1551]: (II) Loading /usr/lib/xorg/modules/libfbdevhw.soAug 17 20:25:04 galassia /usr/lib/gdm3/gdm-x-session[1551]: (II) Module fbdevhw: vendor="X.Org Foundation"Aug 17
                                                                                2025-03-23 14:43:14 UTC16384OUTData Raw: 2f 6c 69 62 2f 67 64 6d 33 2f 67 64 6d 2d 78 2d 73 65 73 73 69 6f 6e 5b 31 35 35 31 5d 3a 20 28 49 49 29 20 76 6d 77 61 72 65 28 30 29 3a 20 4e 6f 74 20 75 73 69 6e 67 20 64 65 66 61 75 6c 74 20 6d 6f 64 65 20 22 31 39 32 30 78 31 32 30 30 22 20 28 69 6e 73 75 66 66 69 63 69 65 6e 74 20 6d 65 6d 6f 72 79 20 66 6f 72 20 6d 6f 64 65 29 0a 41 75 67 20 31 37 20 32 30 3a 32 35 3a 30 35 20 67 61 6c 61 73 73 69 61 20 2f 75 73 72 2f 6c 69 62 2f 67 64 6d 33 2f 67 64 6d 2d 78 2d 73 65 73 73 69 6f 6e 5b 31 35 35 31 5d 3a 20 28 49 49 29 20 76 6d 77 61 72 65 28 30 29 3a 20 4e 6f 74 20 75 73 69 6e 67 20 64 65 66 61 75 6c 74 20 6d 6f 64 65 20 22 39 36 30 78 36 30 30 22 20 28 62 61 64 20 6d 6f 64 65 20 63 6c 6f 63 6b 2f 69 6e 74 65 72 6c 61 63 65 2f 64 6f 75 62 6c 65 73
                                                                                Data Ascii: /lib/gdm3/gdm-x-session[1551]: (II) vmware(0): Not using default mode "1920x1200" (insufficient memory for mode)Aug 17 20:25:05 galassia /usr/lib/gdm3/gdm-x-session[1551]: (II) vmware(0): Not using default mode "960x600" (bad mode clock/interlace/doubles
                                                                                2025-03-23 14:43:14 UTC16384OUTData Raw: 20 31 33 33 36 20 31 35 32 30 20 20 38 36 34 20 38 36 35 20 38 36 38 20 38 39 35 20 2d 68 73 79 6e 63 20 2b 76 73 79 6e 63 20 28 35 33 2e 37 20 6b 48 7a 20 64 29 0a 41 75 67 20 31 37 20 32 30 3a 32 35 3a 30 35 20 67 61 6c 61 73 73 69 61 20 2f 75 73 72 2f 6c 69 62 2f 67 64 6d 33 2f 67 64 6d 2d 78 2d 73 65 73 73 69 6f 6e 5b 31 35 35 31 5d 3a 20 28 2a 2a 29 20 76 6d 77 61 72 65 28 30 29 3a 20 20 44 65 66 61 75 6c 74 20 6d 6f 64 65 20 22 31 30 32 34 78 37 36 38 22 3a 20 39 34 2e 35 20 4d 48 7a 2c 20 36 38 2e 37 20 6b 48 7a 2c 20 38 35 2e 30 20 48 7a 0a 41 75 67 20 31 37 20 32 30 3a 32 35 3a 30 35 20 67 61 6c 61 73 73 69 61 20 2f 75 73 72 2f 6c 69 62 2f 67 64 6d 33 2f 67 64 6d 2d 78 2d 73 65 73 73 69 6f 6e 5b 31 35 35 31 5d 3a 20 28 49 49 29 20 76 6d 77 61 72
                                                                                Data Ascii: 1336 1520 864 865 868 895 -hsync +vsync (53.7 kHz d)Aug 17 20:25:05 galassia /usr/lib/gdm3/gdm-x-session[1551]: (**) vmware(0): Default mode "1024x768": 94.5 MHz, 68.7 kHz, 85.0 HzAug 17 20:25:05 galassia /usr/lib/gdm3/gdm-x-session[1551]: (II) vmwar
                                                                                2025-03-23 14:43:14 UTC16384OUTData Raw: 65 64 20 53 65 74 20 32 20 6b 65 79 62 6f 61 72 64 3a 20 61 6c 77 61 79 73 20 72 65 70 6f 72 74 73 20 63 6f 72 65 20 65 76 65 6e 74 73 0a 41 75 67 20 31 37 20 32 30 3a 32 35 3a 30 35 20 67 61 6c 61 73 73 69 61 20 2f 75 73 72 2f 6c 69 62 2f 67 64 6d 33 2f 67 64 6d 2d 78 2d 73 65 73 73 69 6f 6e 5b 31 35 35 31 5d 3a 20 28 2a 2a 29 20 4f 70 74 69 6f 6e 20 22 44 65 76 69 63 65 22 20 22 2f 64 65 76 2f 69 6e 70 75 74 2f 65 76 65 6e 74 31 22 0a 41 75 67 20 31 37 20 32 30 3a 32 35 3a 30 35 20 67 61 6c 61 73 73 69 61 20 2f 75 73 72 2f 6c 69 62 2f 67 64 6d 33 2f 67 64 6d 2d 78 2d 73 65 73 73 69 6f 6e 5b 31 35 35 31 5d 3a 20 28 2a 2a 29 20 4f 70 74 69 6f 6e 20 22 5f 73 6f 75 72 63 65 22 20 22 73 65 72 76 65 72 2f 75 64 65 76 22 0a 41 75 67 20 31 37 20 32 30 3a 32 35
                                                                                Data Ascii: ed Set 2 keyboard: always reports core eventsAug 17 20:25:05 galassia /usr/lib/gdm3/gdm-x-session[1551]: (**) Option "Device" "/dev/input/event1"Aug 17 20:25:05 galassia /usr/lib/gdm3/gdm-x-session[1551]: (**) Option "_source" "server/udev"Aug 17 20:25
                                                                                2025-03-23 14:43:15 UTC279INHTTP/1.1 400 Bad Request
                                                                                Date: Sun, 23 Mar 2025 14:43:15 GMT
                                                                                Server: gunicorn/19.7.1
                                                                                X-Daisy-Revision-Number: 979
                                                                                X-Oops-Repository-Version: 0.0.0
                                                                                Strict-Transport-Security: max-age=2592000
                                                                                Connection: close
                                                                                Transfer-Encoding: chunked
                                                                                17
                                                                                Crash already reported.
                                                                                0


                                                                                System Behavior

                                                                                Start time (UTC):14:43:02
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/tmp/morte.arm7.elf
                                                                                Arguments:/tmp/morte.arm7.elf
                                                                                File size:4956856 bytes
                                                                                MD5 hash:5ebfcae4fe2471fcc5695c2394773ff1

                                                                                Start time (UTC):14:43:02
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/tmp/morte.arm7.elf
                                                                                Arguments:-
                                                                                File size:4956856 bytes
                                                                                MD5 hash:5ebfcae4fe2471fcc5695c2394773ff1

                                                                                Start time (UTC):14:43:02
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/tmp/morte.arm7.elf
                                                                                Arguments:-
                                                                                File size:4956856 bytes
                                                                                MD5 hash:5ebfcae4fe2471fcc5695c2394773ff1

                                                                                Start time (UTC):14:43:02
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/tmp/morte.arm7.elf
                                                                                Arguments:-
                                                                                File size:4956856 bytes
                                                                                MD5 hash:5ebfcae4fe2471fcc5695c2394773ff1

                                                                                Start time (UTC):14:43:03
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/systemd/systemd
                                                                                Arguments:-
                                                                                File size:1620224 bytes
                                                                                MD5 hash:9b2bec7092a40488108543f9334aab75

                                                                                Start time (UTC):14:43:03
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/journalctl
                                                                                Arguments:/usr/bin/journalctl --smart-relinquish-var
                                                                                File size:80120 bytes
                                                                                MD5 hash:bf3a987344f3bacafc44efd882abda8b

                                                                                Start time (UTC):14:43:03
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/systemd/systemd
                                                                                Arguments:-
                                                                                File size:1620224 bytes
                                                                                MD5 hash:9b2bec7092a40488108543f9334aab75

                                                                                Start time (UTC):14:43:03
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/dbus-daemon
                                                                                Arguments:/usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only
                                                                                File size:249032 bytes
                                                                                MD5 hash:3089d47e3f3ab84cd81c48fd406d7a8c

                                                                                Start time (UTC):14:43:03
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/systemd/systemd
                                                                                Arguments:-
                                                                                File size:1620224 bytes
                                                                                MD5 hash:9b2bec7092a40488108543f9334aab75

                                                                                Start time (UTC):14:43:03
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/sbin/rsyslogd
                                                                                Arguments:/usr/sbin/rsyslogd -n -iNONE
                                                                                File size:727248 bytes
                                                                                MD5 hash:0b8087fc907c42eb3c81a691db258e33

                                                                                Start time (UTC):14:43:03
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/systemd/systemd
                                                                                Arguments:-
                                                                                File size:1620224 bytes
                                                                                MD5 hash:9b2bec7092a40488108543f9334aab75

                                                                                Start time (UTC):14:43:03
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/pulseaudio
                                                                                Arguments:/usr/bin/pulseaudio --daemonize=no --log-target=journal
                                                                                File size:100832 bytes
                                                                                MD5 hash:0c3b4c789d8ffb12b25507f27e14c186

                                                                                Start time (UTC):14:43:04
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/libexec/gvfsd-fuse
                                                                                Arguments:-
                                                                                File size:47632 bytes
                                                                                MD5 hash:d18fbf1cbf8eb57b17fac48b7b4be933

                                                                                Start time (UTC):14:43:04
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/bin/fusermount
                                                                                Arguments:fusermount -u -q -z -- /run/user/1000/gvfs
                                                                                File size:39144 bytes
                                                                                MD5 hash:576a1b135c82bdcbc97a91acea900566

                                                                                Start time (UTC):14:43:04
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/systemd/systemd
                                                                                Arguments:-
                                                                                File size:1620224 bytes
                                                                                MD5 hash:9b2bec7092a40488108543f9334aab75

                                                                                Start time (UTC):14:43:04
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/systemd/systemd
                                                                                Arguments:-
                                                                                File size:1620224 bytes
                                                                                MD5 hash:9b2bec7092a40488108543f9334aab75

                                                                                Start time (UTC):14:43:04
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/dbus-daemon
                                                                                Arguments:/usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only
                                                                                File size:249032 bytes
                                                                                MD5 hash:3089d47e3f3ab84cd81c48fd406d7a8c

                                                                                Start time (UTC):14:43:04
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/systemd/systemd
                                                                                Arguments:-
                                                                                File size:1620224 bytes
                                                                                MD5 hash:9b2bec7092a40488108543f9334aab75

                                                                                Start time (UTC):14:43:04
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/sbin/rsyslogd
                                                                                Arguments:/usr/sbin/rsyslogd -n -iNONE
                                                                                File size:727248 bytes
                                                                                MD5 hash:0b8087fc907c42eb3c81a691db258e33

                                                                                Start time (UTC):14:43:07
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/systemd/systemd
                                                                                Arguments:-
                                                                                File size:1620224 bytes
                                                                                MD5 hash:9b2bec7092a40488108543f9334aab75

                                                                                Start time (UTC):14:43:07
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/lib/systemd/systemd-logind
                                                                                Arguments:/lib/systemd/systemd-logind
                                                                                File size:268576 bytes
                                                                                MD5 hash:8dd58a1b4c12f7a1d5fe3ce18b2aaeef

                                                                                Start time (UTC):14:43:08
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/sbin/gdm3
                                                                                Arguments:-
                                                                                File size:453296 bytes
                                                                                MD5 hash:2492e2d8d34f9377e3e530a61a15674f

                                                                                Start time (UTC):14:43:08
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/etc/gdm3/PrimeOff/Default
                                                                                Arguments:/etc/gdm3/PrimeOff/Default
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:08
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/sbin/gdm3
                                                                                Arguments:-
                                                                                File size:453296 bytes
                                                                                MD5 hash:2492e2d8d34f9377e3e530a61a15674f

                                                                                Start time (UTC):14:43:08
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/etc/gdm3/PrimeOff/Default
                                                                                Arguments:/etc/gdm3/PrimeOff/Default
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:08
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/sbin/gdm3
                                                                                Arguments:-
                                                                                File size:453296 bytes
                                                                                MD5 hash:2492e2d8d34f9377e3e530a61a15674f

                                                                                Start time (UTC):14:43:08
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/etc/gdm3/PrimeOff/Default
                                                                                Arguments:/etc/gdm3/PrimeOff/Default
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:14
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/systemd/systemd
                                                                                Arguments:-
                                                                                File size:1620224 bytes
                                                                                MD5 hash:9b2bec7092a40488108543f9334aab75

                                                                                Start time (UTC):14:43:14
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/sbin/agetty
                                                                                Arguments:/sbin/agetty -o "-p -- \\u" --noclear tty2 linux
                                                                                File size:69000 bytes
                                                                                MD5 hash:3a374724ba7e863768139bdd60ca36f7

                                                                                Start time (UTC):14:43:10
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/systemd/systemd
                                                                                Arguments:-
                                                                                File size:1620224 bytes
                                                                                MD5 hash:9b2bec7092a40488108543f9334aab75

                                                                                Start time (UTC):14:43:10
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/gpu-manager
                                                                                Arguments:/usr/bin/gpu-manager --log /var/log/gpu-manager.log
                                                                                File size:76616 bytes
                                                                                MD5 hash:8fae9dd5dd67e1f33d873089c2fd8761

                                                                                Start time (UTC):14:43:10
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/gpu-manager
                                                                                Arguments:-
                                                                                File size:76616 bytes
                                                                                MD5 hash:8fae9dd5dd67e1f33d873089c2fd8761

                                                                                Start time (UTC):14:43:10
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/bin/sh
                                                                                Arguments:sh -c "grep -G \"^blacklist.*nvidia[[:space:]]*$\" /etc/modprobe.d/*.conf"
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:10
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/bin/sh
                                                                                Arguments:-
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:10
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/grep
                                                                                Arguments:grep -G ^blacklist.*nvidia[[:space:]]*$ /etc/modprobe.d/alsa-base.conf /etc/modprobe.d/amd64-microcode-blacklist.conf /etc/modprobe.d/blacklist-ath_pci.conf /etc/modprobe.d/blacklist-firewire.conf /etc/modprobe.d/blacklist-framebuffer.conf /etc/modprobe.d/blacklist-modem.conf /etc/modprobe.d/blacklist-oss.conf /etc/modprobe.d/blacklist-rare-network.conf /etc/modprobe.d/blacklist.conf /etc/modprobe.d/intel-microcode-blacklist.conf /etc/modprobe.d/iwlwifi.conf /etc/modprobe.d/mdadm.conf
                                                                                File size:199136 bytes
                                                                                MD5 hash:1e6ebb9dd094f774478f72727bdba0f5

                                                                                Start time (UTC):14:43:10
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/gpu-manager
                                                                                Arguments:-
                                                                                File size:76616 bytes
                                                                                MD5 hash:8fae9dd5dd67e1f33d873089c2fd8761

                                                                                Start time (UTC):14:43:10
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/bin/sh
                                                                                Arguments:sh -c "grep -G \"^blacklist.*nvidia[[:space:]]*$\" /lib/modprobe.d/*.conf"
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:10
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/bin/sh
                                                                                Arguments:-
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:10
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/grep
                                                                                Arguments:grep -G ^blacklist.*nvidia[[:space:]]*$ /lib/modprobe.d/aliases.conf /lib/modprobe.d/blacklist_linux_5.4.0-72-generic.conf /lib/modprobe.d/blacklist_linux_5.4.0-81-generic.conf /lib/modprobe.d/fbdev-blacklist.conf /lib/modprobe.d/systemd.conf
                                                                                File size:199136 bytes
                                                                                MD5 hash:1e6ebb9dd094f774478f72727bdba0f5

                                                                                Start time (UTC):14:43:11
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/gpu-manager
                                                                                Arguments:-
                                                                                File size:76616 bytes
                                                                                MD5 hash:8fae9dd5dd67e1f33d873089c2fd8761

                                                                                Start time (UTC):14:43:11
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/bin/sh
                                                                                Arguments:sh -c "grep -G \"^blacklist.*radeon[[:space:]]*$\" /etc/modprobe.d/*.conf"
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:11
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/bin/sh
                                                                                Arguments:-
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:11
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/grep
                                                                                Arguments:grep -G ^blacklist.*radeon[[:space:]]*$ /etc/modprobe.d/alsa-base.conf /etc/modprobe.d/amd64-microcode-blacklist.conf /etc/modprobe.d/blacklist-ath_pci.conf /etc/modprobe.d/blacklist-firewire.conf /etc/modprobe.d/blacklist-framebuffer.conf /etc/modprobe.d/blacklist-modem.conf /etc/modprobe.d/blacklist-oss.conf /etc/modprobe.d/blacklist-rare-network.conf /etc/modprobe.d/blacklist.conf /etc/modprobe.d/intel-microcode-blacklist.conf /etc/modprobe.d/iwlwifi.conf /etc/modprobe.d/mdadm.conf
                                                                                File size:199136 bytes
                                                                                MD5 hash:1e6ebb9dd094f774478f72727bdba0f5

                                                                                Start time (UTC):14:43:11
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/gpu-manager
                                                                                Arguments:-
                                                                                File size:76616 bytes
                                                                                MD5 hash:8fae9dd5dd67e1f33d873089c2fd8761

                                                                                Start time (UTC):14:43:11
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/bin/sh
                                                                                Arguments:sh -c "grep -G \"^blacklist.*radeon[[:space:]]*$\" /lib/modprobe.d/*.conf"
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:11
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/bin/sh
                                                                                Arguments:-
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:11
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/grep
                                                                                Arguments:grep -G ^blacklist.*radeon[[:space:]]*$ /lib/modprobe.d/aliases.conf /lib/modprobe.d/blacklist_linux_5.4.0-72-generic.conf /lib/modprobe.d/blacklist_linux_5.4.0-81-generic.conf /lib/modprobe.d/fbdev-blacklist.conf /lib/modprobe.d/systemd.conf
                                                                                File size:199136 bytes
                                                                                MD5 hash:1e6ebb9dd094f774478f72727bdba0f5

                                                                                Start time (UTC):14:43:12
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/gpu-manager
                                                                                Arguments:-
                                                                                File size:76616 bytes
                                                                                MD5 hash:8fae9dd5dd67e1f33d873089c2fd8761

                                                                                Start time (UTC):14:43:12
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/bin/sh
                                                                                Arguments:sh -c "grep -G \"^blacklist.*amdgpu[[:space:]]*$\" /etc/modprobe.d/*.conf"
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:12
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/bin/sh
                                                                                Arguments:-
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:12
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/grep
                                                                                Arguments:grep -G ^blacklist.*amdgpu[[:space:]]*$ /etc/modprobe.d/alsa-base.conf /etc/modprobe.d/amd64-microcode-blacklist.conf /etc/modprobe.d/blacklist-ath_pci.conf /etc/modprobe.d/blacklist-firewire.conf /etc/modprobe.d/blacklist-framebuffer.conf /etc/modprobe.d/blacklist-modem.conf /etc/modprobe.d/blacklist-oss.conf /etc/modprobe.d/blacklist-rare-network.conf /etc/modprobe.d/blacklist.conf /etc/modprobe.d/intel-microcode-blacklist.conf /etc/modprobe.d/iwlwifi.conf /etc/modprobe.d/mdadm.conf
                                                                                File size:199136 bytes
                                                                                MD5 hash:1e6ebb9dd094f774478f72727bdba0f5

                                                                                Start time (UTC):14:43:12
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/gpu-manager
                                                                                Arguments:-
                                                                                File size:76616 bytes
                                                                                MD5 hash:8fae9dd5dd67e1f33d873089c2fd8761

                                                                                Start time (UTC):14:43:12
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/bin/sh
                                                                                Arguments:sh -c "grep -G \"^blacklist.*amdgpu[[:space:]]*$\" /lib/modprobe.d/*.conf"
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:12
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/bin/sh
                                                                                Arguments:-
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:12
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/grep
                                                                                Arguments:grep -G ^blacklist.*amdgpu[[:space:]]*$ /lib/modprobe.d/aliases.conf /lib/modprobe.d/blacklist_linux_5.4.0-72-generic.conf /lib/modprobe.d/blacklist_linux_5.4.0-81-generic.conf /lib/modprobe.d/fbdev-blacklist.conf /lib/modprobe.d/systemd.conf
                                                                                File size:199136 bytes
                                                                                MD5 hash:1e6ebb9dd094f774478f72727bdba0f5

                                                                                Start time (UTC):14:43:13
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/gpu-manager
                                                                                Arguments:-
                                                                                File size:76616 bytes
                                                                                MD5 hash:8fae9dd5dd67e1f33d873089c2fd8761

                                                                                Start time (UTC):14:43:13
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/bin/sh
                                                                                Arguments:sh -c "grep -G \"^blacklist.*nouveau[[:space:]]*$\" /etc/modprobe.d/*.conf"
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:13
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/bin/sh
                                                                                Arguments:-
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:13
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/grep
                                                                                Arguments:grep -G ^blacklist.*nouveau[[:space:]]*$ /etc/modprobe.d/alsa-base.conf /etc/modprobe.d/amd64-microcode-blacklist.conf /etc/modprobe.d/blacklist-ath_pci.conf /etc/modprobe.d/blacklist-firewire.conf /etc/modprobe.d/blacklist-framebuffer.conf /etc/modprobe.d/blacklist-modem.conf /etc/modprobe.d/blacklist-oss.conf /etc/modprobe.d/blacklist-rare-network.conf /etc/modprobe.d/blacklist.conf /etc/modprobe.d/intel-microcode-blacklist.conf /etc/modprobe.d/iwlwifi.conf /etc/modprobe.d/mdadm.conf
                                                                                File size:199136 bytes
                                                                                MD5 hash:1e6ebb9dd094f774478f72727bdba0f5

                                                                                Start time (UTC):14:43:13
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/gpu-manager
                                                                                Arguments:-
                                                                                File size:76616 bytes
                                                                                MD5 hash:8fae9dd5dd67e1f33d873089c2fd8761

                                                                                Start time (UTC):14:43:13
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/bin/sh
                                                                                Arguments:sh -c "grep -G \"^blacklist.*nouveau[[:space:]]*$\" /lib/modprobe.d/*.conf"
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:13
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/bin/sh
                                                                                Arguments:-
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:13
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/grep
                                                                                Arguments:grep -G ^blacklist.*nouveau[[:space:]]*$ /lib/modprobe.d/aliases.conf /lib/modprobe.d/blacklist_linux_5.4.0-72-generic.conf /lib/modprobe.d/blacklist_linux_5.4.0-81-generic.conf /lib/modprobe.d/fbdev-blacklist.conf /lib/modprobe.d/systemd.conf
                                                                                File size:199136 bytes
                                                                                MD5 hash:1e6ebb9dd094f774478f72727bdba0f5

                                                                                Start time (UTC):14:43:14
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/systemd/systemd
                                                                                Arguments:-
                                                                                File size:1620224 bytes
                                                                                MD5 hash:9b2bec7092a40488108543f9334aab75

                                                                                Start time (UTC):14:43:14
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/journalctl
                                                                                Arguments:/usr/bin/journalctl --flush
                                                                                File size:80120 bytes
                                                                                MD5 hash:bf3a987344f3bacafc44efd882abda8b

                                                                                Start time (UTC):14:43:15
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/systemd/systemd
                                                                                Arguments:-
                                                                                File size:1620224 bytes
                                                                                MD5 hash:9b2bec7092a40488108543f9334aab75

                                                                                Start time (UTC):14:43:15
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/share/gdm/generate-config
                                                                                Arguments:/usr/share/gdm/generate-config
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:16
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/share/gdm/generate-config
                                                                                Arguments:-
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:16
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/pkill
                                                                                Arguments:pkill --signal HUP --uid gdm dconf-service
                                                                                File size:30968 bytes
                                                                                MD5 hash:fa96a75a08109d8842e4865b2907d51f

                                                                                Start time (UTC):14:43:19
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/systemd/systemd
                                                                                Arguments:-
                                                                                File size:1620224 bytes
                                                                                MD5 hash:9b2bec7092a40488108543f9334aab75

                                                                                Start time (UTC):14:43:19
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/gdm3/gdm-wait-for-drm
                                                                                Arguments:/usr/lib/gdm3/gdm-wait-for-drm
                                                                                File size:14640 bytes
                                                                                MD5 hash:82043ba752c6930b4e6aaea2f7747545

                                                                                Start time (UTC):14:43:30
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/systemd/systemd
                                                                                Arguments:-
                                                                                File size:1620224 bytes
                                                                                MD5 hash:9b2bec7092a40488108543f9334aab75

                                                                                Start time (UTC):14:43:30
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/sbin/gdm3
                                                                                Arguments:-
                                                                                File size:453296 bytes
                                                                                MD5 hash:2492e2d8d34f9377e3e530a61a15674f

                                                                                Start time (UTC):14:43:30
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/plymouth
                                                                                Arguments:plymouth --ping
                                                                                File size:51352 bytes
                                                                                MD5 hash:87003efd8dad470042f5e75360a8f49f

                                                                                Start time (UTC):14:43:32
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/sbin/gdm3
                                                                                Arguments:-
                                                                                File size:453296 bytes
                                                                                MD5 hash:2492e2d8d34f9377e3e530a61a15674f

                                                                                Start time (UTC):14:43:32
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/gdm3/gdm-session-worker
                                                                                Arguments:"gdm-session-worker [pam/gdm-launch-environment]"
                                                                                File size:293360 bytes
                                                                                MD5 hash:692243754bd9f38fe9bd7e230b5c060a

                                                                                Start time (UTC):14:43:35
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/gdm3/gdm-session-worker
                                                                                Arguments:-
                                                                                File size:293360 bytes
                                                                                MD5 hash:692243754bd9f38fe9bd7e230b5c060a

                                                                                Start time (UTC):14:43:35
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/gdm3/gdm-wayland-session
                                                                                Arguments:/usr/lib/gdm3/gdm-wayland-session "dbus-run-session -- gnome-session --autostart /usr/share/gdm/greeter/autostart"
                                                                                File size:76368 bytes
                                                                                MD5 hash:d3def63cf1e83f7fb8a0f13b1744ff7c

                                                                                Start time (UTC):14:43:35
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/gdm3/gdm-wayland-session
                                                                                Arguments:-
                                                                                File size:76368 bytes
                                                                                MD5 hash:d3def63cf1e83f7fb8a0f13b1744ff7c

                                                                                Start time (UTC):14:43:35
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/dbus-daemon
                                                                                Arguments:dbus-daemon --print-address 3 --session
                                                                                File size:249032 bytes
                                                                                MD5 hash:3089d47e3f3ab84cd81c48fd406d7a8c

                                                                                Start time (UTC):14:43:35
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/dbus-daemon
                                                                                Arguments:-
                                                                                File size:249032 bytes
                                                                                MD5 hash:3089d47e3f3ab84cd81c48fd406d7a8c

                                                                                Start time (UTC):14:43:35
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/dbus-daemon
                                                                                Arguments:-
                                                                                File size:249032 bytes
                                                                                MD5 hash:3089d47e3f3ab84cd81c48fd406d7a8c

                                                                                Start time (UTC):14:43:35
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/bin/false
                                                                                Arguments:/bin/false
                                                                                File size:39256 bytes
                                                                                MD5 hash:3177546c74e4f0062909eae43d948bfc

                                                                                Start time (UTC):14:43:36
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/gdm3/gdm-wayland-session
                                                                                Arguments:-
                                                                                File size:76368 bytes
                                                                                MD5 hash:d3def63cf1e83f7fb8a0f13b1744ff7c

                                                                                Start time (UTC):14:43:36
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/dbus-run-session
                                                                                Arguments:dbus-run-session -- gnome-session --autostart /usr/share/gdm/greeter/autostart
                                                                                File size:14480 bytes
                                                                                MD5 hash:245f3ef6a268850b33b0225a8753b7f4

                                                                                Start time (UTC):14:43:36
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/dbus-run-session
                                                                                Arguments:-
                                                                                File size:14480 bytes
                                                                                MD5 hash:245f3ef6a268850b33b0225a8753b7f4

                                                                                Start time (UTC):14:43:36
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/dbus-daemon
                                                                                Arguments:dbus-daemon --nofork --print-address 4 --session
                                                                                File size:249032 bytes
                                                                                MD5 hash:3089d47e3f3ab84cd81c48fd406d7a8c

                                                                                Start time (UTC):14:43:36
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/sbin/gdm3
                                                                                Arguments:-
                                                                                File size:453296 bytes
                                                                                MD5 hash:2492e2d8d34f9377e3e530a61a15674f

                                                                                Start time (UTC):14:43:36
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/etc/gdm3/PrimeOff/Default
                                                                                Arguments:/etc/gdm3/PrimeOff/Default
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:36
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/sbin/gdm3
                                                                                Arguments:-
                                                                                File size:453296 bytes
                                                                                MD5 hash:2492e2d8d34f9377e3e530a61a15674f

                                                                                Start time (UTC):14:43:36
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/etc/gdm3/PrimeOff/Default
                                                                                Arguments:/etc/gdm3/PrimeOff/Default
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:30
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/systemd/systemd
                                                                                Arguments:-
                                                                                File size:1620224 bytes
                                                                                MD5 hash:9b2bec7092a40488108543f9334aab75

                                                                                Start time (UTC):14:43:30
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/accountsservice/accounts-daemon
                                                                                Arguments:/usr/lib/accountsservice/accounts-daemon
                                                                                File size:203192 bytes
                                                                                MD5 hash:01a899e3fb5e7e434bea1290255a1f30

                                                                                Start time (UTC):14:43:30
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/accountsservice/accounts-daemon
                                                                                Arguments:-
                                                                                File size:203192 bytes
                                                                                MD5 hash:01a899e3fb5e7e434bea1290255a1f30

                                                                                Start time (UTC):14:43:30
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/share/language-tools/language-validate
                                                                                Arguments:/usr/share/language-tools/language-validate en_US.UTF-8
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:30
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/share/language-tools/language-validate
                                                                                Arguments:-
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:30
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/share/language-tools/language-options
                                                                                Arguments:/usr/share/language-tools/language-options
                                                                                File size:3478464 bytes
                                                                                MD5 hash:16a21f464119ea7fad1d3660de963637

                                                                                Start time (UTC):14:43:30
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/share/language-tools/language-options
                                                                                Arguments:-
                                                                                File size:3478464 bytes
                                                                                MD5 hash:16a21f464119ea7fad1d3660de963637

                                                                                Start time (UTC):14:43:30
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/bin/sh
                                                                                Arguments:sh -c "locale -a | grep -F .utf8 "
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:30
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/bin/sh
                                                                                Arguments:-
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:30
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/locale
                                                                                Arguments:locale -a
                                                                                File size:58944 bytes
                                                                                MD5 hash:c72a78792469db86d91369c9057f20d2

                                                                                Start time (UTC):14:43:30
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/bin/sh
                                                                                Arguments:-
                                                                                File size:129816 bytes
                                                                                MD5 hash:1e6b1c887c59a315edb7eb9a315fc84c

                                                                                Start time (UTC):14:43:30
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/grep
                                                                                Arguments:grep -F .utf8
                                                                                File size:199136 bytes
                                                                                MD5 hash:1e6ebb9dd094f774478f72727bdba0f5

                                                                                Start time (UTC):14:43:31
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/systemd/systemd
                                                                                Arguments:-
                                                                                File size:1620224 bytes
                                                                                MD5 hash:9b2bec7092a40488108543f9334aab75

                                                                                Start time (UTC):14:43:31
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/policykit-1/polkitd
                                                                                Arguments:/usr/lib/policykit-1/polkitd --no-debug
                                                                                File size:121504 bytes
                                                                                MD5 hash:8efc9b4b5b524210ad2ea1954a9d0e69

                                                                                Start time (UTC):14:44:34
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/systemd/systemd
                                                                                Arguments:-
                                                                                File size:1620224 bytes
                                                                                MD5 hash:9b2bec7092a40488108543f9334aab75

                                                                                Start time (UTC):14:44:34
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/dbus-daemon
                                                                                Arguments:/usr/bin/dbus-daemon --session --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only
                                                                                File size:249032 bytes
                                                                                MD5 hash:3089d47e3f3ab84cd81c48fd406d7a8c

                                                                                Start time (UTC):14:44:34
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/systemd/systemd
                                                                                Arguments:-
                                                                                File size:1620224 bytes
                                                                                MD5 hash:9b2bec7092a40488108543f9334aab75

                                                                                Start time (UTC):14:44:34
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/bin/pulseaudio
                                                                                Arguments:/usr/bin/pulseaudio --daemonize=no --log-target=journal
                                                                                File size:100832 bytes
                                                                                MD5 hash:0c3b4c789d8ffb12b25507f27e14c186

                                                                                Start time (UTC):14:44:34
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/lib/systemd/systemd
                                                                                Arguments:-
                                                                                File size:1620224 bytes
                                                                                MD5 hash:9b2bec7092a40488108543f9334aab75

                                                                                Start time (UTC):14:44:34
                                                                                Start date (UTC):23/03/2025
                                                                                Path:/usr/libexec/rtkit-daemon
                                                                                Arguments:/usr/libexec/rtkit-daemon
                                                                                File size:68096 bytes
                                                                                MD5 hash:df0cacf1db4ec95ac70f5b6e06b8ffd7