Edit tour
Linux
Analysis Report
sshd.elf
Overview
General Information
| Sample name: | sshd.elf |
| Analysis ID: | 1650657 |
| MD5: | 8c184e48a5a22b3444fcb029391d7e91 |
| SHA1: | cde922465869cc7f84d0ad315276594363b7f834 |
| SHA256: | 44d4a2750bfcb8a436106ea06f92a3062660d24e3d48dc1d2d4e2479150dc806 |
| Tags: | elfuser-abuse_ch |
| Infos: |  |
Detection
Gafgyt, Mirai
| Score: | 84 |
| Range: | 0 - 100 |
Signatures
Antivirus / Scanner detection for submitted sample
Found malware configuration
Multi AV Scanner detection for submitted file
Yara detected Gafgyt
Yara detected Mirai
Opens /proc/net/* files useful for finding connected devices and routers
Detected TCP or UDP traffic on non-standard ports
Executes the "rm" command used to delete files or directories
Sample and/or dropped files contains symbols with suspicious names
Sample contains strings indicative of BusyBox which embeds multiple Unix commands in a single executable
Sample contains strings that are user agent strings indicative of HTTP manipulation
Uses the "uname" system call to query kernel version information (possible evasion)
Classification
| Joe Sandbox version: | 42.0.0 Malachite |
| Analysis ID: | 1650657 |
| Start date and time: | 2025-03-27 22:04:17 +01:00 |
| Joe Sandbox product: | CloudBasic |
| Overall analysis duration: | 0h 5m 15s |
| Hypervisor based Inspection enabled: | false |
| Report type: | full |
| Cookbook file name: | defaultlinuxfilecookbook.jbs |
| Analysis system description: | Ubuntu Linux 20.04 x64 (Kernel 5.4.0-72, Firefox 91.0, Evince Document Viewer 3.36.10, LibreOffice 6.4.7.2, OpenJDK 11.0.11) |
| Analysis Mode: | default |
| Sample name: | sshd.elf |
| Detection: | MAL |
| Classification: | mal84.spre.troj.linELF@0/0@2/0 |
- VT rate limit hit for: http://46.101.35.30/shitty.sh;
| Command: | /tmp/sshd.elf |
| PID: | 5437 |
| Exit Code: | 0 |
| Exit Code Info: | |
| Killed: | False |
| Standard Output: | |
| Standard Error: |
- system is lnxubuntu20
- dash New Fork (PID: 5447, Parent: 3585)
- dash New Fork (PID: 5448, Parent: 3585)
- dash New Fork (PID: 5449, Parent: 3585)
- dash New Fork (PID: 5450, Parent: 3585)
- dash New Fork (PID: 5451, Parent: 3585)
- dash New Fork (PID: 5452, Parent: 3585)
- dash New Fork (PID: 5453, Parent: 3585)
- dash New Fork (PID: 5454, Parent: 3585)
- dash New Fork (PID: 5455, Parent: 3585)
- dash New Fork (PID: 5458, Parent: 3585)
- cleanup
| Name | Description | Attribution | Blogpost URLs | Link |
|---|---|---|---|---|
| Bashlite, Gafgyt | Bashlite is a malware family which infects Linux systems in order to launch distributed denial-of-service attacks (DDoS). Originally it was also known under the name Bashdoor, but this term now refers to the exploit method used by the malware. It has been used to launch attacks of up to 400 Gbps. | No Attribution |
| Name | Description | Attribution | Blogpost URLs | Link |
|---|---|---|---|---|
| Mirai | Mirai is one of the first significant botnets targeting exposed networking devices running Linux. Found in August 2016 by MalwareMustDie, its name means "future" in Japanese. Nowadays it targets a wide range of networked embedded devices such as IP cameras, home routers (many vendors involved), and other IoT devices. Since the source code was published on "Hack Forums" many variants of the Mirai family appeared, infecting mostly home networks all around the world. | No Attribution |
| Source | Rule | Description | Author | Strings |
|---|---|---|---|---|
| JoeSecurity_Gafgyt | Yara detected Gafgyt | Joe Security | ||
| JoeSecurity_Mirai_8 | Yara detected Mirai | Joe Security |
| Source | Rule | Description | Author | Strings |
|---|---|---|---|---|
| JoeSecurity_Mirai_8 | Yara detected Mirai | Joe Security | ||
| JoeSecurity_Mirai_8 | Yara detected Mirai | Joe Security |
⊘No Suricata rule has matched
- • AV Detection
- • Compliance
- • Spreading
- • Networking
- • System Summary
- • Persistence and Installation Behavior
- • Malware Analysis System Evasion
- • Stealing of Sensitive Information
- • Remote Access Functionality
Click to jump to signature section
Show All Signature Results
AV Detection |   |
|---|
| Source: | Avira: | ||
| Source: | Malware Configuration Extractor: | ||
| Source: | ReversingLabs: | ||
| Source: | HTTPS traffic detected: | ||
Spreading | |
|---|
| Source: | Opens: | Jump to behavior | ||
| Source: | TCP traffic: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | TCP traffic detected without corresponding DNS query: | ||
| Source: | UDP traffic detected without corresponding DNS query: | ||
| Source: | UDP traffic detected without corresponding DNS query: | ||
| Source: | DNS traffic detected: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | String found in binary or memory: | ||
| Source: | Network traffic detected: | ||
| Source: | Network traffic detected: | ||
| Source: | HTTPS traffic detected: | ||
| Source: | ELF static info symbol of initial sample: | ||
| Source: | ELF static info symbol of initial sample: | ||
| Source: | ELF static info symbol of initial sample: | ||
| Source: | String containing 'busybox' found: | ||
| Source: | String containing 'busybox' found: | ||
| Source: | String containing 'busybox' found: | ||
| Source: | String containing 'busybox' found: | ||
| Source: | Classification label: | ||
| Source: | ELF static info symbol of initial sample: | ||
| Source: | ELF static info symbol of initial sample: | ||
| Source: | ELF static info symbol of initial sample: | ||
| Source: | ELF static info symbol of initial sample: | ||
| Source: | ELF static info symbol of initial sample: | ||
| Source: | ELF static info symbol of initial sample: | ||
| Source: | Rm executable: | Jump to behavior | ||
| Source: | Rm executable: | Jump to behavior | ||
| Source: | Queries kernel information via 'uname': | Jump to behavior | ||
| Source: | Binary or memory string: | ||
| Source: | Binary or memory string: | ||
| Source: | Binary or memory string: | ||
| Source: | Binary or memory string: | ||
Stealing of Sensitive Information | |
|---|
| Source: | File source: | ||
| Source: | File source: | ||
| Source: | File source: | ||
| Source: | File source: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
| Source: | User agent string found: | ||
Remote Access Functionality | |
|---|
| Source: | File source: | ||
| Source: | File source: | ||
| Source: | File source: | ||
| Source: | File source: | ||
| Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | Path Interception | 1 Masquerading | OS Credential Dumping | 11 Security Software Discovery | Remote Services | Data from Local System | 1 Data Obfuscation | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
| Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | 1 File Deletion | LSASS Memory | 1 Remote System Discovery | Remote Desktop Protocol | Data from Removable Media | 1 Encrypted Channel | Exfiltration Over Bluetooth | Network Denial of Service |
| Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 1 Non-Standard Port | Automated Exfiltration | Data Encrypted for Impact |
| Employee Names | Virtual Private Server | Local Accounts | Cron | Login Hook | Login Hook | Binary Padding | NTDS | System Network Configuration Discovery | Distributed Component Object Model | Input Capture | 1 Non-Application Layer Protocol | Traffic Duplication | Data Destruction |
| Gather Victim Network Information | Server | Cloud Accounts | Launchd | Network Logon Script | Network Logon Script | Software Packing | LSA Secrets | Internet Connection Discovery | SSH | Keylogging | 2 Application Layer Protocol | Scheduled Transfer | Data Encrypted for Impact |
{
"C2 url": "93.115.172.234:6667"
}
Is Dropped
Number of created Files
Is malicious
Internet| Source | Detection | Scanner | Label | Link |
|---|---|---|---|---|
| 67% | ReversingLabs | Linux.Trojan.Gafgyt | ||
| 100% | Avira | EXP/ELF.Gafgyt.U |
⊘No Antivirus matches
⊘No Antivirus matches
⊘No Antivirus matches
| Name | IP | Active | Malicious | Antivirus Detection | Reputation |
|---|---|---|---|---|---|
| daisy.ubuntu.com | 162.213.35.25 | true | false | high |
| Name | Malicious | Antivirus Detection | Reputation |
|---|---|---|---|
| false | high |
| Name | Source | Malicious | Antivirus Detection | Reputation |
|---|---|---|---|---|
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | unknown | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high | |||
| false | high |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
| IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
|---|---|---|---|---|---|---|
| 34.254.182.186 | unknown | United States | 16509 | AMAZON-02US | false | |
| 93.115.172.234 | unknown | Romania | 39531 | ALTER-NET-ASZorilorNr11SfGheorgheRO | true |
| Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
|---|---|---|---|---|---|---|
| 34.254.182.186 | Get hash | malicious | Prometei | Browse | ||
| Get hash | malicious | Unknown | Browse | |||
| Get hash | malicious | Unknown | Browse | |||
| Get hash | malicious | Unknown | Browse | |||
| Get hash | malicious | Prometei | Browse | |||
| Get hash | malicious | Unknown | Browse | |||
| Get hash | malicious | Prometei | Browse | |||
| Get hash | malicious | Unknown | Browse | |||
| Get hash | malicious | Unknown | Browse | |||
| Get hash | malicious | Unknown | Browse | |||
| 93.115.172.234 | Get hash | malicious | Gafgyt, Mirai | Browse | ||
| Get hash | malicious | Gafgyt, Mirai | Browse | |||
| Get hash | malicious | Gafgyt, Mirai | Browse | |||
| Get hash | malicious | Gafgyt, Mirai | Browse | |||
| Get hash | malicious | Gafgyt, Mirai | Browse | |||
| Get hash | malicious | Gafgyt, Mirai | Browse | |||
| Get hash | malicious | Gafgyt | Browse | |||
| Get hash | malicious | Gafgyt | Browse | |||
| Get hash | malicious | Gafgyt | Browse | |||
| Get hash | malicious | Gafgyt | Browse |
| Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
|---|---|---|---|---|---|---|
| daisy.ubuntu.com | Get hash | malicious | Unknown | Browse |
| |
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Gafgyt | Browse |
| ||
| Get hash | malicious | Gafgyt | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
|
| Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
|---|---|---|---|---|---|---|
| ALTER-NET-ASZorilorNr11SfGheorgheRO | Get hash | malicious | Gafgyt, Mirai | Browse |
| |
| Get hash | malicious | Gafgyt, Mirai | Browse |
| ||
| Get hash | malicious | Gafgyt, Mirai | Browse |
| ||
| Get hash | malicious | Gafgyt, Mirai | Browse |
| ||
| Get hash | malicious | Gafgyt, Mirai | Browse |
| ||
| Get hash | malicious | Gafgyt, Mirai | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Gafgyt | Browse |
| ||
| Get hash | malicious | Gafgyt | Browse |
| ||
| Get hash | malicious | Gafgyt | Browse |
| ||
| AMAZON-02US | Get hash | malicious | Prometei | Browse |
| |
| Get hash | malicious | Prometei | Browse |
| ||
| Get hash | malicious | HTMLPhisher | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Prometei | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Prometei | Browse |
| ||
| Get hash | malicious | Prometei | Browse |
| ||
| Get hash | malicious | Mirai | Browse |
|
| Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
|---|---|---|---|---|---|---|
| fb4726d465c5f28b84cd6d14cedd13a7 | Get hash | malicious | Prometei | Browse |
| |
| Get hash | malicious | Gafgyt | Browse |
| ||
| Get hash | malicious | Gafgyt | Browse |
| ||
| Get hash | malicious | Prometei | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Prometei | Browse |
| ||
| Get hash | malicious | Prometei | Browse |
| ||
| Get hash | malicious | Unknown | Browse |
| ||
| Get hash | malicious | Gafgyt, Mirai | Browse |
| ||
| Get hash | malicious | Mirai | Browse |
|
⊘No context
⊘No created / dropped files found
| File type: | |
| Entropy (8bit): | 5.599215888024637 |
| TrID: |
|
| File name: | sshd.elf |
| File size: | 174'955 bytes |
| MD5: | 8c184e48a5a22b3444fcb029391d7e91 |
| SHA1: | cde922465869cc7f84d0ad315276594363b7f834 |
| SHA256: | 44d4a2750bfcb8a436106ea06f92a3062660d24e3d48dc1d2d4e2479150dc806 |
| SHA512: | 20405559462247ff0740eecc052cdca7c9fe2f685b8e320f03e512fc96eca843b50b9552bbff7ddb66983e258af8a59d825a1d8cb153fab536c7b98013f6815a |
| SSDEEP: | 3072:C0uz84mwFN7BwetJ8add9QzhspyOHsqdfi+KqLwZi+LUk:C0uz8OFdyetJ8addQkDTdfi+KqLwU+Lf |
| TLSH: | D904D81B6B618EB3D81ECD33029A1201108DDD6B55D93BAFB6B4E95CE76A84F05E3DC0 |
| File Content Preview: | .ELF......................@.4....S......4. ...(........p......@...@...........................@...@.X...X.....................F...F.(....z..........Q.td..................................................F....<...'!......'.......................<...'!... .. |
ELF header | |
|---|---|
| Class: | |
| Data: | |
| Version: | |
| Machine: | |
| Version Number: | |
| Type: | |
| OS/ABI: | |
| ABI Version: | 0 |
| Entry Point Address: | |
| Flags: | |
| ELF Header Size: | 52 |
| Program Header Offset: | 52 |
| Program Header Size: | 32 |
| Number of Program Headers: | 4 |
| Section Header Offset: | 152540 |
| Section Header Size: | 40 |
| Number of Section Headers: | 21 |
| Header String Table Index: | 18 |
| Name | Type | Address | Offset | Size | EntSize | Flags | Flags Description | Link | Info | Align |
|---|---|---|---|---|---|---|---|---|---|---|
| NULL | 0x0 | 0x0 | 0x0 | 0x0 | 0x0 | 0 | 0 | 0 | ||
| .reginfo | MIPS_REGINFO | 0x4000b4 | 0xb4 | 0x18 | 0x18 | 0x2 | A | 0 | 0 | 4 |
| .init | PROGBITS | 0x4000cc | 0xcc | 0x8c | 0x0 | 0x6 | AX | 0 | 0 | 4 |
| .text | PROGBITS | 0x400160 | 0x160 | 0x17900 | 0x0 | 0x6 | AX | 0 | 0 | 16 |
| .fini | PROGBITS | 0x417a60 | 0x17a60 | 0x5c | 0x0 | 0x6 | AX | 0 | 0 | 4 |
| .rodata | PROGBITS | 0x417ac0 | 0x17ac0 | 0x9494 | 0x0 | 0x2 | A | 0 | 0 | 16 |
| .eh_frame | PROGBITS | 0x420f54 | 0x20f54 | 0x4 | 0x0 | 0x2 | A | 0 | 0 | 4 |
| .ctors | PROGBITS | 0x461000 | 0x21000 | 0x8 | 0x0 | 0x3 | WA | 0 | 0 | 4 |
| .dtors | PROGBITS | 0x461008 | 0x21008 | 0x8 | 0x0 | 0x3 | WA | 0 | 0 | 4 |
| .jcr | PROGBITS | 0x461010 | 0x21010 | 0x4 | 0x0 | 0x3 | WA | 0 | 0 | 4 |
| .data.rel.ro | PROGBITS | 0x461014 | 0x21014 | 0xac0 | 0x0 | 0x3 | WA | 0 | 0 | 4 |
| .data | PROGBITS | 0x461ae0 | 0x21ae0 | 0x700 | 0x0 | 0x3 | WA | 0 | 0 | 16 |
| .got | PROGBITS | 0x4621e0 | 0x221e0 | 0x548 | 0x4 | 0x10000003 | WAp | 0 | 0 | 16 |
| .sbss | NOBITS | 0x462728 | 0x22728 | 0x20 | 0x0 | 0x10000003 | WAp | 0 | 0 | 4 |
| .bss | NOBITS | 0x462750 | 0x22728 | 0x63a4 | 0x0 | 0x3 | WA | 0 | 0 | 16 |
| .comment | PROGBITS | 0x0 | 0x22728 | 0xc18 | 0x0 | 0x0 | 0 | 0 | 1 | |
| .mdebug.abi32 | PROGBITS | 0xc18 | 0x23340 | 0x0 | 0x0 | 0x0 | 0 | 0 | 1 | |
| .pdr | PROGBITS | 0x0 | 0x23340 | 0x2000 | 0x0 | 0x0 | 0 | 0 | 4 | |
| .shstrtab | STRTAB | 0x0 | 0x25340 | 0x9a | 0x0 | 0x0 | 0 | 0 | 1 | |
| .symtab | SYMTAB | 0x0 | 0x25724 | 0x3060 | 0x10 | 0x0 | 20 | 319 | 4 | |
| .strtab | STRTAB | 0x0 | 0x28784 | 0x23e7 | 0x0 | 0x0 | 0 | 0 | 1 |
| Type | Offset | Virtual Address | Physical Address | File Size | Memory Size | Entropy | Flags | Flags Description | Align | Prog Interpreter | Section Mappings |
|---|---|---|---|---|---|---|---|---|---|---|---|
| <unknown> | 0xb4 | 0x4000b4 | 0x4000b4 | 0x18 | 0x18 | 0.9834 | 0x4 | R | 0x4 | .reginfo | |
| LOAD | 0x0 | 0x400000 | 0x400000 | 0x20f58 | 0x20f58 | 5.6567 | 0x5 | R E | 0x10000 | .reginfo .init .text .fini .rodata .eh_frame | |
| LOAD | 0x21000 | 0x461000 | 0x461000 | 0x1728 | 0x7af4 | 4.7909 | 0x6 | RW | 0x10000 | .ctors .dtors .jcr .data.rel.ro .data .got .sbss .bss | |
| GNU_STACK | 0x0 | 0x0 | 0x0 | 0x0 | 0x0 | 0.0000 | 0x7 | RWE | 0x4 |
| Name | Version Info Name | Version Info File Name | Section Name | Value | Size | Symbol Type | Symbol Bind | Symbol Visibility | Ndx |
|---|---|---|---|---|---|---|---|---|---|
| .symtab | 0x0 | 0 | NOTYPE | <unknown> | DEFAULT | SHN_UNDEF | |||
| .symtab | 0x4000b4 | 0 | SECTION | <unknown> | DEFAULT | 1 | |||
| .symtab | 0x4000cc | 0 | SECTION | <unknown> | DEFAULT | 2 | |||
| .symtab | 0x400160 | 0 | SECTION | <unknown> | DEFAULT | 3 | |||
| .symtab | 0x417a60 | 0 | SECTION | <unknown> | DEFAULT | 4 | |||
| .symtab | 0x417ac0 | 0 | SECTION | <unknown> | DEFAULT | 5 | |||
| .symtab | 0x420f54 | 0 | SECTION | <unknown> | DEFAULT | 6 | |||
| .symtab | 0x461000 | 0 | SECTION | <unknown> | DEFAULT | 7 | |||
| .symtab | 0x461008 | 0 | SECTION | <unknown> | DEFAULT | 8 | |||
| .symtab | 0x461010 | 0 | SECTION | <unknown> | DEFAULT | 9 | |||
| .symtab | 0x461014 | 0 | SECTION | <unknown> | DEFAULT | 10 | |||
| .symtab | 0x461ae0 | 0 | SECTION | <unknown> | DEFAULT | 11 | |||
| .symtab | 0x4621e0 | 0 | SECTION | <unknown> | DEFAULT | 12 | |||
| .symtab | 0x462728 | 0 | SECTION | <unknown> | DEFAULT | 13 | |||
| .symtab | 0x462750 | 0 | SECTION | <unknown> | DEFAULT | 14 | |||
| .symtab | 0x0 | 0 | SECTION | <unknown> | DEFAULT | 15 | |||
| .symtab | 0xc18 | 0 | SECTION | <unknown> | DEFAULT | 16 | |||
| .symtab | 0x0 | 0 | SECTION | <unknown> | DEFAULT | 17 | |||
| .symtab | 0x0 | 0 | SECTION | <unknown> | DEFAULT | 18 | |||
| .symtab | 0x0 | 0 | SECTION | <unknown> | DEFAULT | 19 | |||
| .symtab | 0x0 | 0 | SECTION | <unknown> | DEFAULT | 20 | |||
| C.290.5998 | .symtab | 0x461014 | 144 | OBJECT | <unknown> | DEFAULT | 10 | ||
| C.339.6371 | .symtab | 0x4610b0 | 2596 | OBJECT | <unknown> | DEFAULT | 10 | ||
| C.340.6372 | .symtab | 0x4610a4 | 12 | OBJECT | <unknown> | DEFAULT | 10 | ||
| ClearHistory | .symtab | 0x40807c | 160 | FUNC | <unknown> | DEFAULT | 3 | ||
| GetRandomIP | .symtab | 0x404698 | 172 | FUNC | <unknown> | DEFAULT | 3 | ||
| GetRandomPublicIP | .symtab | 0x403e7c | 2076 | FUNC | <unknown> | DEFAULT | 3 | ||
| Nranges | .symtab | 0x461b14 | 64 | OBJECT | <unknown> | DEFAULT | 11 | ||
| PromServer | .symtab | 0x461cb8 | 4 | OBJECT | <unknown> | DEFAULT | 11 | ||
| Q | .symtab | 0x46278c | 16384 | OBJECT | <unknown> | DEFAULT | 14 | ||
| TelnetScanner | .symtab | 0x404dd8 | 6820 | FUNC | <unknown> | DEFAULT | 3 | ||
| UpdateBins | .symtab | 0x4089fc | 196 | FUNC | <unknown> | DEFAULT | 3 | ||
| _GLOBAL_OFFSET_TABLE_ | .symtab | 0x4621e0 | 0 | OBJECT | <unknown> | DEFAULT | 12 | ||
| _Jv_RegisterClasses | .symtab | 0x0 | 0 | NOTYPE | <unknown> | DEFAULT | SHN_UNDEF | ||
| _READ.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| _WRITE.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| __CTOR_END__ | .symtab | 0x461004 | 0 | OBJECT | <unknown> | DEFAULT | 7 | ||
| __CTOR_LIST__ | .symtab | 0x461000 | 0 | OBJECT | <unknown> | DEFAULT | 7 | ||
| __C_ctype_b | .symtab | 0x461e00 | 4 | OBJECT | <unknown> | DEFAULT | 11 | ||
| __C_ctype_b.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| __C_ctype_b_data | .symtab | 0x41f7b0 | 768 | OBJECT | <unknown> | DEFAULT | 5 | ||
| __C_ctype_tolower | .symtab | 0x462180 | 4 | OBJECT | <unknown> | DEFAULT | 11 | ||
| __C_ctype_tolower.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| __C_ctype_tolower_data | .symtab | 0x420af0 | 768 | OBJECT | <unknown> | DEFAULT | 5 | ||
| __C_ctype_toupper | .symtab | 0x461e10 | 4 | OBJECT | <unknown> | DEFAULT | 11 | ||
| __C_ctype_toupper.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| __C_ctype_toupper_data | .symtab | 0x41fab0 | 768 | OBJECT | <unknown> | DEFAULT | 5 | ||
| __DTOR_END__ | .symtab | 0x46100c | 0 | OBJECT | <unknown> | DEFAULT | 8 | ||
| __DTOR_LIST__ | .symtab | 0x461008 | 0 | OBJECT | <unknown> | DEFAULT | 8 | ||
| __EH_FRAME_BEGIN__ | .symtab | 0x420f54 | 0 | OBJECT | <unknown> | DEFAULT | 6 | ||
| __FRAME_END__ | .symtab | 0x420f54 | 0 | OBJECT | <unknown> | DEFAULT | 6 | ||
| __GI___C_ctype_b | .symtab | 0x461e00 | 4 | OBJECT | <unknown> | HIDDEN | 11 | ||
| __GI___C_ctype_b_data | .symtab | 0x41f7b0 | 768 | OBJECT | <unknown> | HIDDEN | 5 | ||
| __GI___C_ctype_tolower | .symtab | 0x462180 | 4 | OBJECT | <unknown> | HIDDEN | 11 | ||
| __GI___C_ctype_tolower_data | .symtab | 0x420af0 | 768 | OBJECT | <unknown> | HIDDEN | 5 | ||
| __GI___C_ctype_toupper | .symtab | 0x461e10 | 4 | OBJECT | <unknown> | HIDDEN | 11 | ||
| __GI___C_ctype_toupper_data | .symtab | 0x41fab0 | 768 | OBJECT | <unknown> | HIDDEN | 5 | ||
| __GI___ctype_b | .symtab | 0x461e04 | 4 | OBJECT | <unknown> | HIDDEN | 11 | ||
| __GI___ctype_tolower | .symtab | 0x462184 | 4 | OBJECT | <unknown> | HIDDEN | 11 | ||
| __GI___ctype_toupper | .symtab | 0x461e14 | 4 | OBJECT | <unknown> | HIDDEN | 11 | ||
| __GI___errno_location | .symtab | 0x40cea0 | 24 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI___fgetc_unlocked | .symtab | 0x414190 | 388 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI___glibc_strerror_r | .symtab | 0x40fcd0 | 68 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI___h_errno_location | .symtab | 0x413100 | 24 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI___libc_fcntl | .symtab | 0x40c3e0 | 136 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI___libc_fcntl64 | .symtab | 0x40c470 | 104 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI___libc_open | .symtab | 0x40ca30 | 124 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI___uClibc_fini | .symtab | 0x4126e0 | 196 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI___uClibc_init | .symtab | 0x41283c | 140 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI___xpg_strerror_r | .symtab | 0x40fd20 | 392 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI__exit | .symtab | 0x40c4e0 | 80 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_abort | .symtab | 0x415950 | 428 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_atoi | .symtab | 0x411fc0 | 28 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_atol | .symtab | 0x411fc0 | 28 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_brk | .symtab | 0x415b30 | 112 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_chdir | .symtab | 0x40c530 | 88 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_close | .symtab | 0x40c590 | 84 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_connect | .symtab | 0x4107a0 | 84 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_dup2 | .symtab | 0x40c5f0 | 84 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_errno | .symtab | 0x4689f0 | 4 | OBJECT | <unknown> | HIDDEN | 14 | ||
| __GI_execl | .symtab | 0x412340 | 204 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_execve | .symtab | 0x412dd0 | 84 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_exit | .symtab | 0x412250 | 236 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_fclose | .symtab | 0x40cec0 | 512 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_fcntl | .symtab | 0x40c3e0 | 136 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_fcntl64 | .symtab | 0x40c470 | 104 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_fflush_unlocked | .symtab | 0x40f0b0 | 628 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_fgetc_unlocked | .symtab | 0x414190 | 388 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_fgets | .symtab | 0x40ed70 | 216 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_fgets_unlocked | .symtab | 0x40f330 | 268 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_fopen | .symtab | 0x40d0c0 | 28 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_fork | .symtab | 0x40c650 | 84 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_fputs | .symtab | 0x40ee50 | 200 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_fputs_unlocked | .symtab | 0x40f440 | 128 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_fseek | .symtab | 0x415c00 | 68 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_fseeko64 | .symtab | 0x415c50 | 388 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_fwrite_unlocked | .symtab | 0x40f4c0 | 280 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_getc_unlocked | .symtab | 0x414190 | 388 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_getcwd | .symtab | 0x40c6b0 | 364 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_getdtablesize | .symtab | 0x40c820 | 72 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_getegid | .symtab | 0x412e30 | 88 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_geteuid | .symtab | 0x412e90 | 88 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_getgid | .symtab | 0x412ef0 | 84 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_gethostbyname | .symtab | 0x4102c0 | 116 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_gethostbyname_r | .symtab | 0x410340 | 1108 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_getpagesize | .symtab | 0x40c870 | 48 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_getpid | .symtab | 0x40c8a0 | 84 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_getrlimit | .symtab | 0x40c900 | 84 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_getsockname | .symtab | 0x410800 | 84 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_getuid | .symtab | 0x412f50 | 84 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_h_errno | .symtab | 0x4689f4 | 4 | OBJECT | <unknown> | HIDDEN | 14 | ||
| __GI_inet_addr | .symtab | 0x410270 | 72 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_inet_aton | .symtab | 0x4149d0 | 280 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_inet_ntoa | .symtab | 0x41024c | 32 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_inet_ntoa_r | .symtab | 0x410190 | 188 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_inet_ntop | .symtab | 0x416980 | 852 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_inet_pton | .symtab | 0x4164d0 | 700 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_initstate_r | .symtab | 0x411c30 | 328 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_ioctl | .symtab | 0x40c960 | 104 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_isatty | .symtab | 0x410020 | 60 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_kill | .symtab | 0x40c9d0 | 88 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_lseek64 | .symtab | 0x417630 | 164 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_memchr | .symtab | 0x414320 | 264 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_memcpy | .symtab | 0x40f5e0 | 308 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_memmove | .symtab | 0x414430 | 816 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_mempcpy | .symtab | 0x414760 | 76 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_memrchr | .symtab | 0x4147b0 | 272 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_memset | .symtab | 0x40f720 | 144 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_nanosleep | .symtab | 0x412fb0 | 84 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_open | .symtab | 0x40ca30 | 124 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_pipe | .symtab | 0x40c3a0 | 64 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_poll | .symtab | 0x415ba0 | 84 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_printf | .symtab | 0x40d0e0 | 92 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_raise | .symtab | 0x4175e0 | 76 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_random | .symtab | 0x411600 | 164 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_random_r | .symtab | 0x411a0c | 176 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_rawmemchr | .symtab | 0x416170 | 200 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_read | .symtab | 0x40cb50 | 84 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_recv | .symtab | 0x4108e0 | 84 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_sbrk | .symtab | 0x413010 | 144 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_select | .symtab | 0x40cbb0 | 120 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_send | .symtab | 0x410940 | 84 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_sendto | .symtab | 0x4109a0 | 128 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_setsid | .symtab | 0x40cc30 | 84 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_setsockopt | .symtab | 0x410a20 | 120 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_setstate_r | .symtab | 0x4118d0 | 316 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_sigaction | .symtab | 0x412c80 | 232 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_sigaddset | .symtab | 0x410b00 | 104 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_sigemptyset | .symtab | 0x410b70 | 60 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_signal | .symtab | 0x410bb0 | 252 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_sigprocmask | .symtab | 0x40cc90 | 148 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_sleep | .symtab | 0x412410 | 564 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_snprintf | .symtab | 0x40d140 | 68 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_socket | .symtab | 0x410aa0 | 84 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_sprintf | .symtab | 0x40d190 | 80 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_srandom_r | .symtab | 0x411abc | 372 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_strcasecmp | .symtab | 0x40fef0 | 108 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_strcasestr | .symtab | 0x40ff60 | 152 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_strcat | .symtab | 0x40f7b0 | 52 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_strchr | .symtab | 0x40f7f0 | 256 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_strcmp | .symtab | 0x40f8f0 | 44 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_strcoll | .symtab | 0x40f8f0 | 44 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_strcpy | .symtab | 0x40f920 | 36 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_strdup | .symtab | 0x416350 | 144 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_strlen | .symtab | 0x40f950 | 184 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_strncat | .symtab | 0x416240 | 180 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_strncpy | .symtab | 0x40fa10 | 188 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_strnlen | .symtab | 0x40fad0 | 256 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_strpbrk | .symtab | 0x414990 | 64 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_strspn | .symtab | 0x416300 | 76 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_strstr | .symtab | 0x40fbd0 | 256 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_strtok | .symtab | 0x410000 | 32 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_strtok_r | .symtab | 0x4148c0 | 204 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_strtol | .symtab | 0x411fe0 | 28 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_tcgetattr | .symtab | 0x410060 | 176 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_time | .symtab | 0x40cd30 | 84 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_tolower | .symtab | 0x4176e0 | 60 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_toupper | .symtab | 0x40ce60 | 60 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_vfork | .symtab | 0x40cd90 | 28 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_vfprintf | .symtab | 0x40d8d0 | 260 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_vsnprintf | .symtab | 0x40d1e0 | 260 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_wait4 | .symtab | 0x4130a0 | 88 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_waitpid | .symtab | 0x40cdb0 | 28 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_wcrtomb | .symtab | 0x413120 | 112 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_wcsnrtombs | .symtab | 0x4131d0 | 228 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_wcsrtombs | .symtab | 0x413190 | 64 | FUNC | <unknown> | HIDDEN | 3 | ||
| __GI_write | .symtab | 0x40cdd0 | 84 | FUNC | <unknown> | HIDDEN | 3 | ||
| __JCR_END__ | .symtab | 0x461010 | 0 | OBJECT | <unknown> | DEFAULT | 9 | ||
| __JCR_LIST__ | .symtab | 0x461010 | 0 | OBJECT | <unknown> | DEFAULT | 9 | ||
| __app_fini | .symtab | 0x4689dc | 4 | OBJECT | <unknown> | HIDDEN | 14 | ||
| __atexit_lock | .symtab | 0x462150 | 24 | OBJECT | <unknown> | DEFAULT | 11 | ||
| __bsd_signal | .symtab | 0x410bb0 | 252 | FUNC | <unknown> | HIDDEN | 3 | ||
| __bss_start | .symtab | 0x462728 | 0 | NOTYPE | <unknown> | DEFAULT | SHN_ABS | ||
| __check_one_fd | .symtab | 0x4127b4 | 136 | FUNC | <unknown> | DEFAULT | 3 | ||
| __ctype_b | .symtab | 0x461e04 | 4 | OBJECT | <unknown> | DEFAULT | 11 | ||
| __ctype_tolower | .symtab | 0x462184 | 4 | OBJECT | <unknown> | DEFAULT | 11 | ||
| __ctype_toupper | .symtab | 0x461e14 | 4 | OBJECT | <unknown> | DEFAULT | 11 | ||
| __curbrk | .symtab | 0x468a30 | 4 | OBJECT | <unknown> | HIDDEN | 14 | ||
| __data_start | .symtab | 0x461b00 | 0 | OBJECT | <unknown> | DEFAULT | 11 | ||
| __decode_answer | .symtab | 0x416fe0 | 340 | FUNC | <unknown> | HIDDEN | 3 | ||
| __decode_dotted | .symtab | 0x417840 | 340 | FUNC | <unknown> | HIDDEN | 3 | ||
| __decode_header | .symtab | 0x416df0 | 228 | FUNC | <unknown> | HIDDEN | 3 | ||
| __deregister_frame_info | .symtab | 0x0 | 0 | FUNC | <unknown> | DEFAULT | SHN_UNDEF | ||
| __dns_lookup | .symtab | 0x414af0 | 2568 | FUNC | <unknown> | HIDDEN | 3 | ||
| __do_global_ctors_aux | .symtab | 0x4179f0 | 0 | FUNC | <unknown> | DEFAULT | 3 | ||
| __do_global_dtors_aux | .symtab | 0x400160 | 0 | FUNC | <unknown> | DEFAULT | 3 | ||
| __dso_handle | .symtab | 0x461ae0 | 0 | OBJECT | <unknown> | HIDDEN | 11 | ||
| __encode_dotted | .symtab | 0x417720 | 280 | FUNC | <unknown> | HIDDEN | 3 | ||
| __encode_header | .symtab | 0x416ce0 | 272 | FUNC | <unknown> | HIDDEN | 3 | ||
| __encode_question | .symtab | 0x416ee0 | 172 | FUNC | <unknown> | HIDDEN | 3 | ||
| __environ | .symtab | 0x4689d4 | 4 | OBJECT | <unknown> | DEFAULT | 14 | ||
| __errno_location | .symtab | 0x40cea0 | 24 | FUNC | <unknown> | DEFAULT | 3 | ||
| __errno_location.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| __exit_cleanup | .symtab | 0x4689c0 | 4 | OBJECT | <unknown> | HIDDEN | 14 | ||
| __fgetc_unlocked | .symtab | 0x414190 | 388 | FUNC | <unknown> | DEFAULT | 3 | ||
| __fini_array_end | .symtab | 0x461000 | 0 | NOTYPE | <unknown> | HIDDEN | SHN_ABS | ||
| __fini_array_start | .symtab | 0x461000 | 0 | NOTYPE | <unknown> | HIDDEN | SHN_ABS | ||
| __get_hosts_byname_r | .symtab | 0x4158e0 | 104 | FUNC | <unknown> | HIDDEN | 3 | ||
| __getpagesize | .symtab | 0x40c870 | 48 | FUNC | <unknown> | DEFAULT | 3 | ||
| __glibc_strerror_r | .symtab | 0x40fcd0 | 68 | FUNC | <unknown> | DEFAULT | 3 | ||
| __glibc_strerror_r.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| __h_errno_location | .symtab | 0x413100 | 24 | FUNC | <unknown> | DEFAULT | 3 | ||
| __h_errno_location.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| __heap_alloc | .symtab | 0x4112a0 | 188 | FUNC | <unknown> | DEFAULT | 3 | ||
| __heap_alloc_at | .symtab | 0x411360 | 184 | FUNC | <unknown> | DEFAULT | 3 | ||
| __heap_free | .symtab | 0x411468 | 364 | FUNC | <unknown> | DEFAULT | 3 | ||
| __heap_link_free_area | .symtab | 0x411420 | 44 | FUNC | <unknown> | DEFAULT | 3 | ||
| __heap_link_free_area_after | .symtab | 0x41144c | 28 | FUNC | <unknown> | DEFAULT | 3 | ||
| __init_array_end | .symtab | 0x461000 | 0 | NOTYPE | <unknown> | HIDDEN | SHN_ABS | ||
| __init_array_start | .symtab | 0x461000 | 0 | NOTYPE | <unknown> | HIDDEN | SHN_ABS | ||
| __length_dotted | .symtab | 0x4179a0 | 72 | FUNC | <unknown> | HIDDEN | 3 | ||
| __length_question | .symtab | 0x416f90 | 72 | FUNC | <unknown> | HIDDEN | 3 | ||
| __libc_close | .symtab | 0x40c590 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| __libc_connect | .symtab | 0x4107a0 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| __libc_creat | .symtab | 0x40caac | 28 | FUNC | <unknown> | DEFAULT | 3 | ||
| __libc_fcntl | .symtab | 0x40c3e0 | 136 | FUNC | <unknown> | DEFAULT | 3 | ||
| __libc_fcntl64 | .symtab | 0x40c470 | 104 | FUNC | <unknown> | DEFAULT | 3 | ||
| __libc_fork | .symtab | 0x40c650 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| __libc_getpid | .symtab | 0x40c8a0 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| __libc_lseek64 | .symtab | 0x417630 | 164 | FUNC | <unknown> | DEFAULT | 3 | ||
| __libc_nanosleep | .symtab | 0x412fb0 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| __libc_open | .symtab | 0x40ca30 | 124 | FUNC | <unknown> | DEFAULT | 3 | ||
| __libc_poll | .symtab | 0x415ba0 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| __libc_read | .symtab | 0x40cb50 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| __libc_recv | .symtab | 0x4108e0 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| __libc_select | .symtab | 0x40cbb0 | 120 | FUNC | <unknown> | DEFAULT | 3 | ||
| __libc_send | .symtab | 0x410940 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| __libc_sendto | .symtab | 0x4109a0 | 128 | FUNC | <unknown> | DEFAULT | 3 | ||
| __libc_sigaction | .symtab | 0x412c80 | 232 | FUNC | <unknown> | DEFAULT | 3 | ||
| __libc_stack_end | .symtab | 0x4689d0 | 4 | OBJECT | <unknown> | DEFAULT | 14 | ||
| __libc_system | .symtab | 0x411d80 | 568 | FUNC | <unknown> | DEFAULT | 3 | ||
| __libc_waitpid | .symtab | 0x40cdb0 | 28 | FUNC | <unknown> | DEFAULT | 3 | ||
| __libc_write | .symtab | 0x40cdd0 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| __malloc_heap | .symtab | 0x462080 | 4 | OBJECT | <unknown> | DEFAULT | 11 | ||
| __malloc_heap_lock | .symtab | 0x4689a0 | 24 | OBJECT | <unknown> | DEFAULT | 14 | ||
| __malloc_sbrk_lock | .symtab | 0x468ac0 | 24 | OBJECT | <unknown> | DEFAULT | 14 | ||
| __nameserver | .symtab | 0x468ae8 | 12 | OBJECT | <unknown> | HIDDEN | 14 | ||
| __nameservers | .symtab | 0x462738 | 4 | OBJECT | <unknown> | HIDDEN | 13 | ||
| __open_etc_hosts | .symtab | 0x417140 | 108 | FUNC | <unknown> | HIDDEN | 3 | ||
| __open_nameservers | .symtab | 0x415500 | 984 | FUNC | <unknown> | HIDDEN | 3 | ||
| __pagesize | .symtab | 0x4689d8 | 4 | OBJECT | <unknown> | DEFAULT | 14 | ||
| __preinit_array_end | .symtab | 0x461000 | 0 | NOTYPE | <unknown> | HIDDEN | SHN_ABS | ||
| __preinit_array_start | .symtab | 0x461000 | 0 | NOTYPE | <unknown> | HIDDEN | SHN_ABS | ||
| __pthread_initialize_minimal | .symtab | 0x0 | 0 | FUNC | <unknown> | DEFAULT | SHN_UNDEF | ||
| __pthread_mutex_init | .symtab | 0x4127a4 | 8 | FUNC | <unknown> | DEFAULT | 3 | ||
| __pthread_mutex_lock | .symtab | 0x4127a4 | 8 | FUNC | <unknown> | DEFAULT | 3 | ||
| __pthread_mutex_trylock | .symtab | 0x4127a4 | 8 | FUNC | <unknown> | DEFAULT | 3 | ||
| __pthread_mutex_unlock | .symtab | 0x4127a4 | 8 | FUNC | <unknown> | DEFAULT | 3 | ||
| __pthread_return_0 | .symtab | 0x4127a4 | 8 | FUNC | <unknown> | DEFAULT | 3 | ||
| __pthread_return_void | .symtab | 0x4127ac | 8 | FUNC | <unknown> | DEFAULT | 3 | ||
| __raise | .symtab | 0x4175e0 | 76 | FUNC | <unknown> | HIDDEN | 3 | ||
| __read_etc_hosts_r | .symtab | 0x4171ac | 1076 | FUNC | <unknown> | HIDDEN | 3 | ||
| __register_frame_info | .symtab | 0x0 | 0 | FUNC | <unknown> | DEFAULT | SHN_UNDEF | ||
| __resolv_lock | .symtab | 0x4621a0 | 24 | OBJECT | <unknown> | DEFAULT | 11 | ||
| __rtld_fini | .symtab | 0x4689e0 | 4 | OBJECT | <unknown> | HIDDEN | 14 | ||
| __searchdomain | .symtab | 0x468ad8 | 16 | OBJECT | <unknown> | HIDDEN | 14 | ||
| __searchdomains | .symtab | 0x46273c | 4 | OBJECT | <unknown> | HIDDEN | 13 | ||
| __sigaddset | .symtab | 0x410cd8 | 44 | FUNC | <unknown> | DEFAULT | 3 | ||
| __sigdelset | .symtab | 0x410d04 | 48 | FUNC | <unknown> | DEFAULT | 3 | ||
| __sigismember | .symtab | 0x410cb0 | 40 | FUNC | <unknown> | DEFAULT | 3 | ||
| __start | .symtab | 0x4002a0 | 100 | FUNC | <unknown> | DEFAULT | 3 | ||
| __stdin | .symtab | 0x461e6c | 4 | OBJECT | <unknown> | DEFAULT | 11 | ||
| __stdio_READ | .symtab | 0x415de0 | 140 | FUNC | <unknown> | HIDDEN | 3 | ||
| __stdio_WRITE | .symtab | 0x4132c0 | 280 | FUNC | <unknown> | HIDDEN | 3 | ||
| __stdio_adjust_position | .symtab | 0x415e70 | 320 | FUNC | <unknown> | HIDDEN | 3 | ||
| __stdio_fwrite | .symtab | 0x4133e0 | 472 | FUNC | <unknown> | HIDDEN | 3 | ||
| __stdio_init_mutex | .symtab | 0x40d718 | 32 | FUNC | <unknown> | HIDDEN | 3 | ||
| __stdio_mutex_initializer.3833 | .symtab | 0x41fdb0 | 24 | OBJECT | <unknown> | DEFAULT | 5 | ||
| __stdio_rfill | .symtab | 0x415fb0 | 88 | FUNC | <unknown> | HIDDEN | 3 | ||
| __stdio_seek | .symtab | 0x416100 | 112 | FUNC | <unknown> | HIDDEN | 3 | ||
| __stdio_trans2r_o | .symtab | 0x416010 | 228 | FUNC | <unknown> | HIDDEN | 3 | ||
| __stdio_trans2w_o | .symtab | 0x4135c0 | 308 | FUNC | <unknown> | HIDDEN | 3 | ||
| __stdio_wcommit | .symtab | 0x40d860 | 100 | FUNC | <unknown> | HIDDEN | 3 | ||
| __stdout | .symtab | 0x461e70 | 4 | OBJECT | <unknown> | DEFAULT | 11 | ||
| __syscall_error | .symtab | 0x412c30 | 72 | FUNC | <unknown> | HIDDEN | 3 | ||
| __syscall_error.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| __syscall_fcntl.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| __syscall_fcntl64.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| __syscall_rt_sigaction | .symtab | 0x412d70 | 84 | FUNC | <unknown> | HIDDEN | 3 | ||
| __syscall_rt_sigaction.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| __uClibc_fini | .symtab | 0x4126e0 | 196 | FUNC | <unknown> | DEFAULT | 3 | ||
| __uClibc_init | .symtab | 0x41283c | 140 | FUNC | <unknown> | DEFAULT | 3 | ||
| __uClibc_main | .symtab | 0x4128c8 | 864 | FUNC | <unknown> | DEFAULT | 3 | ||
| __uClibc_main.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| __uclibc_progname | .symtab | 0x462170 | 4 | OBJECT | <unknown> | HIDDEN | 11 | ||
| __vfork | .symtab | 0x40cd90 | 28 | FUNC | <unknown> | HIDDEN | 3 | ||
| __xpg_strerror_r | .symtab | 0x40fd20 | 392 | FUNC | <unknown> | DEFAULT | 3 | ||
| __xpg_strerror_r.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| _adjust_pos.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| _charpad | .symtab | 0x40d9e0 | 128 | FUNC | <unknown> | DEFAULT | 3 | ||
| _cs_funcs.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| _dl_aux_init | .symtab | 0x415b00 | 44 | FUNC | <unknown> | DEFAULT | 3 | ||
| _dl_phdr | .symtab | 0x462740 | 4 | OBJECT | <unknown> | DEFAULT | 13 | ||
| _dl_phnum | .symtab | 0x462744 | 4 | OBJECT | <unknown> | DEFAULT | 13 | ||
| _edata | .symtab | 0x462728 | 0 | NOTYPE | <unknown> | DEFAULT | SHN_ABS | ||
| _end | .symtab | 0x468af4 | 0 | NOTYPE | <unknown> | DEFAULT | SHN_ABS | ||
| _errno | .symtab | 0x4689f0 | 4 | OBJECT | <unknown> | DEFAULT | 14 | ||
| _exit | .symtab | 0x40c4e0 | 80 | FUNC | <unknown> | DEFAULT | 3 | ||
| _exit.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| _fbss | .symtab | 0x462728 | 0 | NOTYPE | <unknown> | DEFAULT | SHN_ABS | ||
| _fdata | .symtab | 0x461ae0 | 0 | NOTYPE | <unknown> | DEFAULT | 11 | ||
| _fini | .symtab | 0x417a60 | 28 | FUNC | <unknown> | DEFAULT | 4 | ||
| _fixed_buffers | .symtab | 0x466798 | 8192 | OBJECT | <unknown> | DEFAULT | 14 | ||
| _fopen.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| _fp_out_narrow | .symtab | 0x40da60 | 228 | FUNC | <unknown> | DEFAULT | 3 | ||
| _fpmaxtostr | .symtab | 0x413940 | 2120 | FUNC | <unknown> | HIDDEN | 3 | ||
| _fpmaxtostr.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| _ftext | .symtab | 0x400160 | 0 | NOTYPE | <unknown> | DEFAULT | 3 | ||
| _fwrite.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| _gp | .symtab | 0x46a1d0 | 0 | NOTYPE | <unknown> | DEFAULT | SHN_ABS | ||
| _gp_disp | .symtab | 0x0 | 0 | OBJECT | <unknown> | DEFAULT | SHN_UNDEF | ||
| _h_errno | .symtab | 0x4689f4 | 4 | OBJECT | <unknown> | DEFAULT | 14 | ||
| _init | .symtab | 0x4000cc | 28 | FUNC | <unknown> | DEFAULT | 2 | ||
| _load_inttype | .symtab | 0x413700 | 136 | FUNC | <unknown> | HIDDEN | 3 | ||
| _load_inttype.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| _ppfs_init | .symtab | 0x40e2f0 | 220 | FUNC | <unknown> | HIDDEN | 3 | ||
| _ppfs_init.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| _ppfs_parsespec | .symtab | 0x40e6cc | 1512 | FUNC | <unknown> | HIDDEN | 3 | ||
| _ppfs_parsespec.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| _ppfs_prepargs | .symtab | 0x40e3d0 | 100 | FUNC | <unknown> | HIDDEN | 3 | ||
| _ppfs_prepargs.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| _ppfs_setargs | .symtab | 0x40e440 | 544 | FUNC | <unknown> | HIDDEN | 3 | ||
| _ppfs_setargs.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| _promoted_size | .symtab | 0x40e660 | 108 | FUNC | <unknown> | DEFAULT | 3 | ||
| _pthread_cleanup_pop_restore | .symtab | 0x4127ac | 8 | FUNC | <unknown> | DEFAULT | 3 | ||
| _pthread_cleanup_push_defer | .symtab | 0x4127ac | 8 | FUNC | <unknown> | DEFAULT | 3 | ||
| _rfill.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| _sigintr | .symtab | 0x468a40 | 128 | OBJECT | <unknown> | HIDDEN | 14 | ||
| _stdio.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| _stdio_fopen | .symtab | 0x40d2f0 | 880 | FUNC | <unknown> | HIDDEN | 3 | ||
| _stdio_init | .symtab | 0x40d660 | 184 | FUNC | <unknown> | HIDDEN | 3 | ||
| _stdio_openlist | .symtab | 0x461e74 | 4 | OBJECT | <unknown> | DEFAULT | 11 | ||
| _stdio_openlist_add_lock | .symtab | 0x461e20 | 24 | OBJECT | <unknown> | DEFAULT | 11 | ||
| _stdio_openlist_dec_use | .symtab | 0x40ef20 | 400 | FUNC | <unknown> | DEFAULT | 3 | ||
| _stdio_openlist_del_count | .symtab | 0x466794 | 4 | OBJECT | <unknown> | DEFAULT | 14 | ||
| _stdio_openlist_del_lock | .symtab | 0x461e38 | 24 | OBJECT | <unknown> | DEFAULT | 11 | ||
| _stdio_openlist_use_count | .symtab | 0x466790 | 4 | OBJECT | <unknown> | DEFAULT | 14 | ||
| _stdio_streams | .symtab | 0x461e78 | 240 | OBJECT | <unknown> | DEFAULT | 11 | ||
| _stdio_term | .symtab | 0x40d738 | 284 | FUNC | <unknown> | HIDDEN | 3 | ||
| _stdio_user_locking | .symtab | 0x461e50 | 4 | OBJECT | <unknown> | DEFAULT | 11 | ||
| _stdlib_strto_l | .symtab | 0x412000 | 592 | FUNC | <unknown> | HIDDEN | 3 | ||
| _stdlib_strto_l.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| _store_inttype | .symtab | 0x413790 | 68 | FUNC | <unknown> | HIDDEN | 3 | ||
| _store_inttype.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| _string_syserrmsgs | .symtab | 0x41ff20 | 2934 | OBJECT | <unknown> | HIDDEN | 5 | ||
| _string_syserrmsgs.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| _trans2r.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| _trans2w.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| _uintmaxtostr | .symtab | 0x4137e0 | 340 | FUNC | <unknown> | HIDDEN | 3 | ||
| _uintmaxtostr.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| _vfprintf_internal | .symtab | 0x40db44 | 1960 | FUNC | <unknown> | HIDDEN | 3 | ||
| _vfprintf_internal.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| _wcommit.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| abort | .symtab | 0x415950 | 428 | FUNC | <unknown> | DEFAULT | 3 | ||
| abort.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| advance_state | .symtab | 0x402d88 | 204 | FUNC | <unknown> | DEFAULT | 3 | ||
| advances | .symtab | 0x461d8c | 20 | OBJECT | <unknown> | DEFAULT | 11 | ||
| advances2 | .symtab | 0x461dd0 | 44 | OBJECT | <unknown> | DEFAULT | 11 | ||
| atoi | .symtab | 0x411fc0 | 28 | FUNC | <unknown> | DEFAULT | 3 | ||
| atol | .symtab | 0x411fc0 | 28 | FUNC | <unknown> | DEFAULT | 3 | ||
| atol.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| bcopy | .symtab | 0x40feb0 | 32 | FUNC | <unknown> | DEFAULT | 3 | ||
| bcopy.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| been_there_done_that | .symtab | 0x468a20 | 4 | OBJECT | <unknown> | DEFAULT | 14 | ||
| been_there_done_that.2792 | .symtab | 0x4689e4 | 4 | OBJECT | <unknown> | DEFAULT | 14 | ||
| botkiller | .symtab | 0x407ed8 | 420 | FUNC | <unknown> | DEFAULT | 3 | ||
| brk | .symtab | 0x415b30 | 112 | FUNC | <unknown> | DEFAULT | 3 | ||
| brk.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| bsd_signal | .symtab | 0x410bb0 | 252 | FUNC | <unknown> | DEFAULT | 3 | ||
| buf.2613 | .symtab | 0x4687b0 | 16 | OBJECT | <unknown> | DEFAULT | 14 | ||
| buf.4833 | .symtab | 0x4687c0 | 460 | OBJECT | <unknown> | DEFAULT | 14 | ||
| bzero | .symtab | 0x40fed0 | 28 | FUNC | <unknown> | DEFAULT | 3 | ||
| bzero.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| c | .symtab | 0x461b54 | 4 | OBJECT | <unknown> | DEFAULT | 11 | ||
| chdir | .symtab | 0x40c530 | 88 | FUNC | <unknown> | DEFAULT | 3 | ||
| chdir.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| client1.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| close | .symtab | 0x40c590 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| close.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| completed.2296 | .symtab | 0x462750 | 1 | OBJECT | <unknown> | DEFAULT | 14 | ||
| connect | .symtab | 0x4107a0 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| connect.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| connectTimeout | .symtab | 0x403114 | 828 | FUNC | <unknown> | DEFAULT | 3 | ||
| contains_fail | .symtab | 0x402f10 | 88 | FUNC | <unknown> | DEFAULT | 3 | ||
| contains_response | .symtab | 0x402f68 | 148 | FUNC | <unknown> | DEFAULT | 3 | ||
| contains_string | .symtab | 0x402ffc | 280 | FUNC | <unknown> | DEFAULT | 3 | ||
| contains_success | .symtab | 0x402eb8 | 88 | FUNC | <unknown> | DEFAULT | 3 | ||
| creat | .symtab | 0x40caac | 28 | FUNC | <unknown> | DEFAULT | 3 | ||
| crtstuff.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| crtstuff.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| csum | .symtab | 0x404744 | 460 | FUNC | <unknown> | DEFAULT | 3 | ||
| currentServer | .symtab | 0x461b10 | 4 | OBJECT | <unknown> | DEFAULT | 11 | ||
| data_start | .symtab | 0x461b00 | 0 | OBJECT | <unknown> | DEFAULT | 11 | ||
| decodea.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| decoded.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| decodeh.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| dl-support.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| dnslookup.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| dup2 | .symtab | 0x40c5f0 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| dup2.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| encoded.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| encodeh.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| encodeq.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| environ | .symtab | 0x4689d4 | 4 | OBJECT | <unknown> | DEFAULT | 14 | ||
| errno | .symtab | 0x4689f0 | 4 | OBJECT | <unknown> | DEFAULT | 14 | ||
| errno.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| estridx | .symtab | 0x41fe90 | 126 | OBJECT | <unknown> | DEFAULT | 5 | ||
| execl | .symtab | 0x412340 | 204 | FUNC | <unknown> | DEFAULT | 3 | ||
| execl.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| execve | .symtab | 0x412dd0 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| execve.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| exit | .symtab | 0x412250 | 236 | FUNC | <unknown> | DEFAULT | 3 | ||
| exit.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| exp10_table | .symtab | 0x420e48 | 72 | OBJECT | <unknown> | DEFAULT | 5 | ||
| fails | .symtab | 0x461da0 | 32 | OBJECT | <unknown> | DEFAULT | 11 | ||
| fclose | .symtab | 0x40cec0 | 512 | FUNC | <unknown> | DEFAULT | 3 | ||
| fclose.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| fcntl | .symtab | 0x40c3e0 | 136 | FUNC | <unknown> | DEFAULT | 3 | ||
| fcntl64 | .symtab | 0x40c470 | 104 | FUNC | <unknown> | DEFAULT | 3 | ||
| fdgets | .symtab | 0x401c54 | 292 | FUNC | <unknown> | DEFAULT | 3 | ||
| fdopen_pids | .symtab | 0x46678c | 4 | OBJECT | <unknown> | DEFAULT | 14 | ||
| fdpclose | .symtab | 0x4019d8 | 636 | FUNC | <unknown> | DEFAULT | 3 | ||
| fdpopen | .symtab | 0x401564 | 1140 | FUNC | <unknown> | DEFAULT | 3 | ||
| feof | .symtab | 0x40ecc0 | 168 | FUNC | <unknown> | DEFAULT | 3 | ||
| feof.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| fflush_unlocked | .symtab | 0x40f0b0 | 628 | FUNC | <unknown> | DEFAULT | 3 | ||
| fflush_unlocked.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| fgetc_unlocked | .symtab | 0x414190 | 388 | FUNC | <unknown> | DEFAULT | 3 | ||
| fgetc_unlocked.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| fgets | .symtab | 0x40ed70 | 216 | FUNC | <unknown> | DEFAULT | 3 | ||
| fgets.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| fgets_unlocked | .symtab | 0x40f330 | 268 | FUNC | <unknown> | DEFAULT | 3 | ||
| fgets_unlocked.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| fmt | .symtab | 0x420e30 | 20 | OBJECT | <unknown> | DEFAULT | 5 | ||
| fopen | .symtab | 0x40d0c0 | 28 | FUNC | <unknown> | DEFAULT | 3 | ||
| fopen.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| fork | .symtab | 0x40c650 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| fork.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| fputs | .symtab | 0x40ee50 | 200 | FUNC | <unknown> | DEFAULT | 3 | ||
| fputs.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| fputs_unlocked | .symtab | 0x40f440 | 128 | FUNC | <unknown> | DEFAULT | 3 | ||
| fputs_unlocked.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| frame_dummy | .symtab | 0x40021c | 0 | FUNC | <unknown> | DEFAULT | 3 | ||
| free | .symtab | 0x410f30 | 396 | FUNC | <unknown> | DEFAULT | 3 | ||
| free.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| fseek | .symtab | 0x415c00 | 68 | FUNC | <unknown> | DEFAULT | 3 | ||
| fseeko | .symtab | 0x415c00 | 68 | FUNC | <unknown> | DEFAULT | 3 | ||
| fseeko.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| fseeko64 | .symtab | 0x415c50 | 388 | FUNC | <unknown> | DEFAULT | 3 | ||
| fseeko64.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| fwrite_unlocked | .symtab | 0x40f4c0 | 280 | FUNC | <unknown> | DEFAULT | 3 | ||
| fwrite_unlocked.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| getBogos | .symtab | 0x4021fc | 772 | FUNC | <unknown> | DEFAULT | 3 | ||
| getBuild | .symtab | 0x40b0bc | 56 | FUNC | <unknown> | DEFAULT | 3 | ||
| getCores | .symtab | 0x402500 | 316 | FUNC | <unknown> | DEFAULT | 3 | ||
| getHost | .symtab | 0x4020b8 | 160 | FUNC | <unknown> | DEFAULT | 3 | ||
| getOurIP | .symtab | 0x40ad3c | 896 | FUNC | <unknown> | DEFAULT | 3 | ||
| get_hosts_byname_r.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| get_telstate_host | .symtab | 0x402ae8 | 104 | FUNC | <unknown> | DEFAULT | 3 | ||
| getc_unlocked | .symtab | 0x414190 | 388 | FUNC | <unknown> | DEFAULT | 3 | ||
| getcwd | .symtab | 0x40c6b0 | 364 | FUNC | <unknown> | DEFAULT | 3 | ||
| getcwd.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| getdtablesize | .symtab | 0x40c820 | 72 | FUNC | <unknown> | DEFAULT | 3 | ||
| getdtablesize.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| getegid | .symtab | 0x412e30 | 88 | FUNC | <unknown> | DEFAULT | 3 | ||
| getegid.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| geteuid | .symtab | 0x412e90 | 88 | FUNC | <unknown> | DEFAULT | 3 | ||
| geteuid.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| getgid | .symtab | 0x412ef0 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| getgid.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| gethostbyname | .symtab | 0x4102c0 | 116 | FUNC | <unknown> | DEFAULT | 3 | ||
| gethostbyname.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| gethostbyname_r | .symtab | 0x410340 | 1108 | FUNC | <unknown> | DEFAULT | 3 | ||
| gethostbyname_r.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| getpagesize | .symtab | 0x40c870 | 48 | FUNC | <unknown> | DEFAULT | 3 | ||
| getpagesize.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| getpid | .symtab | 0x40c8a0 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| getpid.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| getrlimit | .symtab | 0x40c900 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| getrlimit.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| getsockname | .symtab | 0x410800 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| getsockname.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| getsockopt | .symtab | 0x410860 | 120 | FUNC | <unknown> | DEFAULT | 3 | ||
| getsockopt.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| getuid | .symtab | 0x412f50 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| getuid.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| gotIP | .symtab | 0x462774 | 4 | OBJECT | <unknown> | DEFAULT | 14 | ||
| h.4832 | .symtab | 0x46898c | 20 | OBJECT | <unknown> | DEFAULT | 14 | ||
| h_errno | .symtab | 0x4689f4 | 4 | OBJECT | <unknown> | DEFAULT | 14 | ||
| heap_alloc.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| heap_alloc_at.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| heap_free.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| hextable | .symtab | 0x418064 | 1024 | OBJECT | <unknown> | DEFAULT | 5 | ||
| hlt | .symtab | 0x4002fc | 0 | NOTYPE | <unknown> | DEFAULT | 3 | ||
| htonl | .symtab | 0x410150 | 40 | FUNC | <unknown> | DEFAULT | 3 | ||
| htons | .symtab | 0x410178 | 24 | FUNC | <unknown> | DEFAULT | 3 | ||
| i.4143 | .symtab | 0x461b58 | 4 | OBJECT | <unknown> | DEFAULT | 11 | ||
| index | .symtab | 0x40f7f0 | 256 | FUNC | <unknown> | DEFAULT | 3 | ||
| inet_addr | .symtab | 0x410270 | 72 | FUNC | <unknown> | DEFAULT | 3 | ||
| inet_aton | .symtab | 0x4149d0 | 280 | FUNC | <unknown> | DEFAULT | 3 | ||
| inet_aton.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| inet_makeaddr.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| inet_ntoa | .symtab | 0x41024c | 32 | FUNC | <unknown> | DEFAULT | 3 | ||
| inet_ntoa.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| inet_ntoa_r | .symtab | 0x410190 | 188 | FUNC | <unknown> | DEFAULT | 3 | ||
| inet_ntop | .symtab | 0x416980 | 852 | FUNC | <unknown> | DEFAULT | 3 | ||
| inet_ntop4 | .symtab | 0x41678c | 500 | FUNC | <unknown> | DEFAULT | 3 | ||
| inet_pton | .symtab | 0x4164d0 | 700 | FUNC | <unknown> | DEFAULT | 3 | ||
| inet_pton4 | .symtab | 0x4163e0 | 240 | FUNC | <unknown> | DEFAULT | 3 | ||
| infect | .symtab | 0x461cbc | 4 | OBJECT | <unknown> | DEFAULT | 11 | ||
| initConnection | .symtab | 0x40aaec | 592 | FUNC | <unknown> | DEFAULT | 3 | ||
| init_rand | .symtab | 0x400310 | 300 | FUNC | <unknown> | DEFAULT | 3 | ||
| initfini.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| initfini.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| initial_fa | .symtab | 0x461f70 | 264 | OBJECT | <unknown> | DEFAULT | 11 | ||
| initstate | .symtab | 0x411754 | 208 | FUNC | <unknown> | DEFAULT | 3 | ||
| initstate_r | .symtab | 0x411c30 | 328 | FUNC | <unknown> | DEFAULT | 3 | ||
| ioctl | .symtab | 0x40c960 | 104 | FUNC | <unknown> | DEFAULT | 3 | ||
| ioctl.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| ipState.5242 | .symtab | 0x462788 | 4 | OBJECT | <unknown> | DEFAULT | 14 | ||
| isatty | .symtab | 0x410020 | 60 | FUNC | <unknown> | DEFAULT | 3 | ||
| isatty.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| isspace | .symtab | 0x40ce30 | 44 | FUNC | <unknown> | DEFAULT | 3 | ||
| isspace.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| kill | .symtab | 0x40c9d0 | 88 | FUNC | <unknown> | DEFAULT | 3 | ||
| kill.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| knownBots | .symtab | 0x461b60 | 344 | OBJECT | <unknown> | DEFAULT | 11 | ||
| lengthd.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| lengthq.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| libc/string/mips/memcpy.S | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| libc/string/mips/memset.S | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| libc/sysdeps/linux/mips/crt1.S | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| libc/sysdeps/linux/mips/crti.S | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| libc/sysdeps/linux/mips/crtn.S | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| libc/sysdeps/linux/mips/pipe.S | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| listFork | .symtab | 0x403450 | 632 | FUNC | <unknown> | DEFAULT | 3 | ||
| llseek.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| lseek64 | .symtab | 0x417630 | 164 | FUNC | <unknown> | DEFAULT | 3 | ||
| macAddress | .symtab | 0x462780 | 6 | OBJECT | <unknown> | DEFAULT | 14 | ||
| main | .symtab | 0x40b0f4 | 4780 | FUNC | <unknown> | DEFAULT | 3 | ||
| mainCommSock | .symtab | 0x462770 | 4 | OBJECT | <unknown> | DEFAULT | 14 | ||
| makeIPPacket | .symtab | 0x404a74 | 296 | FUNC | <unknown> | DEFAULT | 3 | ||
| makeRandomStr | .symtab | 0x40263c | 268 | FUNC | <unknown> | DEFAULT | 3 | ||
| malloc | .symtab | 0x410d40 | 492 | FUNC | <unknown> | DEFAULT | 3 | ||
| malloc.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| matchPrompt | .symtab | 0x403900 | 536 | FUNC | <unknown> | DEFAULT | 3 | ||
| memchr | .symtab | 0x414320 | 264 | FUNC | <unknown> | DEFAULT | 3 | ||
| memchr.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| memcpy | .symtab | 0x40f5e0 | 308 | FUNC | <unknown> | DEFAULT | 3 | ||
| memmove | .symtab | 0x414430 | 816 | FUNC | <unknown> | DEFAULT | 3 | ||
| memmove.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| mempcpy | .symtab | 0x414760 | 76 | FUNC | <unknown> | DEFAULT | 3 | ||
| mempcpy.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| memrchr | .symtab | 0x4147b0 | 272 | FUNC | <unknown> | DEFAULT | 3 | ||
| memrchr.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| memset | .symtab | 0x40f720 | 144 | FUNC | <unknown> | DEFAULT | 3 | ||
| mylock | .symtab | 0x462090 | 24 | OBJECT | <unknown> | DEFAULT | 11 | ||
| mylock | .symtab | 0x468a00 | 24 | OBJECT | <unknown> | DEFAULT | 14 | ||
| mylock | .symtab | 0x4621c0 | 24 | OBJECT | <unknown> | DEFAULT | 11 | ||
| nanosleep | .symtab | 0x412fb0 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| nanosleep.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| negotiate | .symtab | 0x4036c8 | 568 | FUNC | <unknown> | DEFAULT | 3 | ||
| next_start.1065 | .symtab | 0x4687a0 | 4 | OBJECT | <unknown> | DEFAULT | 14 | ||
| ntohl | .symtab | 0x410110 | 40 | FUNC | <unknown> | DEFAULT | 3 | ||
| ntohl.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| ntohs | .symtab | 0x410138 | 24 | FUNC | <unknown> | DEFAULT | 3 | ||
| ntop.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| numpids | .symtab | 0x462778 | 8 | OBJECT | <unknown> | DEFAULT | 14 | ||
| object.2349 | .symtab | 0x462754 | 24 | OBJECT | <unknown> | DEFAULT | 14 | ||
| open | .symtab | 0x40ca30 | 124 | FUNC | <unknown> | DEFAULT | 3 | ||
| open.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| opennameservers.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| ourIP | .symtab | 0x462728 | 4 | OBJECT | <unknown> | DEFAULT | 13 | ||
| ourPublicIP | .symtab | 0x46272c | 4 | OBJECT | <unknown> | DEFAULT | 13 | ||
| p.2294 | .symtab | 0x461af0 | 0 | OBJECT | <unknown> | DEFAULT | 11 | ||
| parseHex | .symtab | 0x401d78 | 176 | FUNC | <unknown> | DEFAULT | 3 | ||
| passwords | .symtab | 0x461d10 | 80 | OBJECT | <unknown> | DEFAULT | 11 | ||
| pids | .symtab | 0x462734 | 4 | OBJECT | <unknown> | DEFAULT | 13 | ||
| pipe | .symtab | 0x40c3a0 | 64 | FUNC | <unknown> | DEFAULT | 3 | ||
| poll | .symtab | 0x415ba0 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| poll.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| prctl | .symtab | 0x40cad0 | 120 | FUNC | <unknown> | DEFAULT | 3 | ||
| prctl.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| prefix.4045 | .symtab | 0x41fde0 | 12 | OBJECT | <unknown> | DEFAULT | 5 | ||
| .symtab | 0x400d6c | 1456 | FUNC | <unknown> | DEFAULT | 3 | |||
| printchar | .symtab | 0x4007e0 | 184 | FUNC | <unknown> | DEFAULT | 3 | ||
| printf | .symtab | 0x40d0e0 | 92 | FUNC | <unknown> | DEFAULT | 3 | ||
| printf.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| printi | .symtab | 0x400ad4 | 664 | FUNC | <unknown> | DEFAULT | 3 | ||
| prints | .symtab | 0x400898 | 572 | FUNC | <unknown> | DEFAULT | 3 | ||
| processCmd | .symtab | 0x408ac0 | 8236 | FUNC | <unknown> | DEFAULT | 3 | ||
| qual_chars.4050 | .symtab | 0x41fe00 | 20 | OBJECT | <unknown> | DEFAULT | 5 | ||
| raise | .symtab | 0x4175e0 | 76 | FUNC | <unknown> | DEFAULT | 3 | ||
| raise.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| rand | .symtab | 0x4115e0 | 28 | FUNC | <unknown> | DEFAULT | 3 | ||
| rand.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| rand_cmwc | .symtab | 0x40043c | 472 | FUNC | <unknown> | DEFAULT | 3 | ||
| random | .symtab | 0x411600 | 164 | FUNC | <unknown> | DEFAULT | 3 | ||
| random.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| random_poly_info | .symtab | 0x420aa0 | 40 | OBJECT | <unknown> | DEFAULT | 5 | ||
| random_r | .symtab | 0x411a0c | 176 | FUNC | <unknown> | DEFAULT | 3 | ||
| random_r.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| randtbl | .symtab | 0x4620a8 | 128 | OBJECT | <unknown> | DEFAULT | 11 | ||
| rawmemchr | .symtab | 0x416170 | 200 | FUNC | <unknown> | DEFAULT | 3 | ||
| rawmemchr.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| read | .symtab | 0x40cb50 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| read.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| readUntil | .symtab | 0x403b18 | 868 | FUNC | <unknown> | DEFAULT | 3 | ||
| read_etc_hosts_r.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| read_until_response | .symtab | 0x402b50 | 208 | FUNC | <unknown> | DEFAULT | 3 | ||
| read_with_timeout | .symtab | 0x402c20 | 360 | FUNC | <unknown> | DEFAULT | 3 | ||
| realloc | .symtab | 0x4110c0 | 472 | FUNC | <unknown> | DEFAULT | 3 | ||
| realloc.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| recv | .symtab | 0x4108e0 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| recv.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| recvLine | .symtab | 0x402748 | 928 | FUNC | <unknown> | DEFAULT | 3 | ||
| reset_telstate | .symtab | 0x402e54 | 100 | FUNC | <unknown> | DEFAULT | 3 | ||
| sbrk | .symtab | 0x413010 | 144 | FUNC | <unknown> | DEFAULT | 3 | ||
| sbrk.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| scanPid | .symtab | 0x462730 | 4 | OBJECT | <unknown> | DEFAULT | 13 | ||
| sclose | .symtab | 0x404b9c | 128 | FUNC | <unknown> | DEFAULT | 3 | ||
| select | .symtab | 0x40cbb0 | 120 | FUNC | <unknown> | DEFAULT | 3 | ||
| select.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| send | .symtab | 0x410940 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| send.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| sendCNC | .symtab | 0x408888 | 372 | FUNC | <unknown> | DEFAULT | 3 | ||
| sendHTTP | .symtab | 0x40811c | 820 | FUNC | <unknown> | DEFAULT | 3 | ||
| sendSTD | .symtab | 0x40687c | 664 | FUNC | <unknown> | DEFAULT | 3 | ||
| sendTCP | .symtab | 0x40751c | 2492 | FUNC | <unknown> | DEFAULT | 3 | ||
| sendUDP | .symtab | 0x406b14 | 2568 | FUNC | <unknown> | DEFAULT | 3 | ||
| senditbudAMP | .symtab | 0x408450 | 1080 | FUNC | <unknown> | DEFAULT | 3 | ||
| sendto | .symtab | 0x4109a0 | 128 | FUNC | <unknown> | DEFAULT | 3 | ||
| sendto.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| setsid | .symtab | 0x40cc30 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| setsid.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| setsockopt | .symtab | 0x410a20 | 120 | FUNC | <unknown> | DEFAULT | 3 | ||
| setsockopt.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| setstate | .symtab | 0x4116a4 | 176 | FUNC | <unknown> | DEFAULT | 3 | ||
| setstate_r | .symtab | 0x4118d0 | 316 | FUNC | <unknown> | DEFAULT | 3 | ||
| sigaction | .symtab | 0x412c80 | 232 | FUNC | <unknown> | DEFAULT | 3 | ||
| sigaction.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| sigaddset | .symtab | 0x410b00 | 104 | FUNC | <unknown> | DEFAULT | 3 | ||
| sigaddset.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| sigempty.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| sigemptyset | .symtab | 0x410b70 | 60 | FUNC | <unknown> | DEFAULT | 3 | ||
| signal | .symtab | 0x410bb0 | 252 | FUNC | <unknown> | DEFAULT | 3 | ||
| signal.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| sigprocmask | .symtab | 0x40cc90 | 148 | FUNC | <unknown> | DEFAULT | 3 | ||
| sigprocmask.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| sigsetops.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| sleep | .symtab | 0x412410 | 564 | FUNC | <unknown> | DEFAULT | 3 | ||
| sleep.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| snprintf | .symtab | 0x40d140 | 68 | FUNC | <unknown> | DEFAULT | 3 | ||
| snprintf.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| socket | .symtab | 0x410aa0 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| socket.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| socket_connect | .symtab | 0x404c1c | 444 | FUNC | <unknown> | DEFAULT | 3 | ||
| sockprintf | .symtab | 0x40140c | 344 | FUNC | <unknown> | DEFAULT | 3 | ||
| spec_and_mask.4049 | .symtab | 0x41fe14 | 16 | OBJECT | <unknown> | DEFAULT | 5 | ||
| spec_base.4044 | .symtab | 0x41fdec | 7 | OBJECT | <unknown> | DEFAULT | 5 | ||
| spec_chars.4046 | .symtab | 0x41fe40 | 21 | OBJECT | <unknown> | DEFAULT | 5 | ||
| spec_flags.4045 | .symtab | 0x41fe58 | 8 | OBJECT | <unknown> | DEFAULT | 5 | ||
| spec_or_mask.4048 | .symtab | 0x41fe24 | 16 | OBJECT | <unknown> | DEFAULT | 5 | ||
| spec_ranges.4047 | .symtab | 0x41fe34 | 9 | OBJECT | <unknown> | DEFAULT | 5 | ||
| sprintf | .symtab | 0x40d190 | 80 | FUNC | <unknown> | DEFAULT | 3 | ||
| sprintf.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| srand | .symtab | 0x411824 | 172 | FUNC | <unknown> | DEFAULT | 3 | ||
| srandom | .symtab | 0x411824 | 172 | FUNC | <unknown> | DEFAULT | 3 | ||
| srandom_r | .symtab | 0x411abc | 372 | FUNC | <unknown> | DEFAULT | 3 | ||
| static_id | .symtab | 0x462190 | 2 | OBJECT | <unknown> | DEFAULT | 11 | ||
| static_ns | .symtab | 0x468a18 | 4 | OBJECT | <unknown> | DEFAULT | 14 | ||
| stderr | .symtab | 0x461e68 | 4 | OBJECT | <unknown> | DEFAULT | 11 | ||
| stdin | .symtab | 0x461e60 | 4 | OBJECT | <unknown> | DEFAULT | 11 | ||
| stdout | .symtab | 0x461e64 | 4 | OBJECT | <unknown> | DEFAULT | 11 | ||
| strcasecmp | .symtab | 0x40fef0 | 108 | FUNC | <unknown> | DEFAULT | 3 | ||
| strcasecmp.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| strcasestr | .symtab | 0x40ff60 | 152 | FUNC | <unknown> | DEFAULT | 3 | ||
| strcasestr.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| strcat | .symtab | 0x40f7b0 | 52 | FUNC | <unknown> | DEFAULT | 3 | ||
| strcat.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| strchr | .symtab | 0x40f7f0 | 256 | FUNC | <unknown> | DEFAULT | 3 | ||
| strchr.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| strcmp | .symtab | 0x40f8f0 | 44 | FUNC | <unknown> | DEFAULT | 3 | ||
| strcmp.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| strcoll | .symtab | 0x40f8f0 | 44 | FUNC | <unknown> | DEFAULT | 3 | ||
| strcpy | .symtab | 0x40f920 | 36 | FUNC | <unknown> | DEFAULT | 3 | ||
| strcpy.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| strdup | .symtab | 0x416350 | 144 | FUNC | <unknown> | DEFAULT | 3 | ||
| strdup.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| strerror_r | .symtab | 0x40fd20 | 392 | FUNC | <unknown> | DEFAULT | 3 | ||
| strlen | .symtab | 0x40f950 | 184 | FUNC | <unknown> | DEFAULT | 3 | ||
| strlen.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| strncat | .symtab | 0x416240 | 180 | FUNC | <unknown> | DEFAULT | 3 | ||
| strncat.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| strncpy | .symtab | 0x40fa10 | 188 | FUNC | <unknown> | DEFAULT | 3 | ||
| strncpy.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| strnlen | .symtab | 0x40fad0 | 256 | FUNC | <unknown> | DEFAULT | 3 | ||
| strnlen.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| strpbrk | .symtab | 0x414990 | 64 | FUNC | <unknown> | DEFAULT | 3 | ||
| strpbrk.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| strspn | .symtab | 0x416300 | 76 | FUNC | <unknown> | DEFAULT | 3 | ||
| strspn.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| strstr | .symtab | 0x40fbd0 | 256 | FUNC | <unknown> | DEFAULT | 3 | ||
| strstr.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| strtok | .symtab | 0x410000 | 32 | FUNC | <unknown> | DEFAULT | 3 | ||
| strtok.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| strtok_r | .symtab | 0x4148c0 | 204 | FUNC | <unknown> | DEFAULT | 3 | ||
| strtok_r.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| strtol | .symtab | 0x411fe0 | 28 | FUNC | <unknown> | DEFAULT | 3 | ||
| strtol.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| successes | .symtab | 0x461dc0 | 16 | OBJECT | <unknown> | DEFAULT | 11 | ||
| system | .symtab | 0x411d80 | 568 | FUNC | <unknown> | DEFAULT | 3 | ||
| system.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| szprintf | .symtab | 0x401394 | 120 | FUNC | <unknown> | DEFAULT | 3 | ||
| tcgetattr | .symtab | 0x410060 | 176 | FUNC | <unknown> | DEFAULT | 3 | ||
| tcgetattr.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| tcpcsum | .symtab | 0x404910 | 356 | FUNC | <unknown> | DEFAULT | 3 | ||
| time | .symtab | 0x40cd30 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| time.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| tmpdirs | .symtab | 0x461d60 | 44 | OBJECT | <unknown> | DEFAULT | 11 | ||
| tolower | .symtab | 0x4176e0 | 60 | FUNC | <unknown> | DEFAULT | 3 | ||
| tolower.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| toupper | .symtab | 0x40ce60 | 60 | FUNC | <unknown> | DEFAULT | 3 | ||
| toupper.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| trim | .symtab | 0x400614 | 460 | FUNC | <unknown> | DEFAULT | 3 | ||
| type_codes | .symtab | 0x41fe60 | 24 | OBJECT | <unknown> | DEFAULT | 5 | ||
| type_sizes | .symtab | 0x41fe78 | 12 | OBJECT | <unknown> | DEFAULT | 5 | ||
| unknown.1088 | .symtab | 0x41ff10 | 14 | OBJECT | <unknown> | DEFAULT | 5 | ||
| unsafe_state | .symtab | 0x462130 | 28 | OBJECT | <unknown> | DEFAULT | 11 | ||
| uppercase | .symtab | 0x402158 | 164 | FUNC | <unknown> | DEFAULT | 3 | ||
| usernames | .symtab | 0x461cc0 | 80 | OBJECT | <unknown> | DEFAULT | 11 | ||
| usleep | .symtab | 0x412650 | 144 | FUNC | <unknown> | DEFAULT | 3 | ||
| usleep.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| vfork | .symtab | 0x40cd90 | 28 | FUNC | <unknown> | DEFAULT | 3 | ||
| vfork.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| vfprintf | .symtab | 0x40d8d0 | 260 | FUNC | <unknown> | DEFAULT | 3 | ||
| vfprintf.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| vsnprintf | .symtab | 0x40d1e0 | 260 | FUNC | <unknown> | DEFAULT | 3 | ||
| vsnprintf.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| wait4 | .symtab | 0x4130a0 | 88 | FUNC | <unknown> | DEFAULT | 3 | ||
| wait4.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| waitpid | .symtab | 0x40cdb0 | 28 | FUNC | <unknown> | DEFAULT | 3 | ||
| waitpid.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| wcrtomb | .symtab | 0x413120 | 112 | FUNC | <unknown> | DEFAULT | 3 | ||
| wcrtomb.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| wcsnrtombs | .symtab | 0x4131d0 | 228 | FUNC | <unknown> | DEFAULT | 3 | ||
| wcsnrtombs.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| wcsrtombs | .symtab | 0x413190 | 64 | FUNC | <unknown> | DEFAULT | 3 | ||
| wcsrtombs.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| wildString | .symtab | 0x401e28 | 656 | FUNC | <unknown> | DEFAULT | 3 | ||
| write | .symtab | 0x40cdd0 | 84 | FUNC | <unknown> | DEFAULT | 3 | ||
| write.c | .symtab | 0x0 | 0 | FILE | <unknown> | DEFAULT | SHN_ABS | ||
| xdigits.3043 | .symtab | 0x420f14 | 17 | OBJECT | <unknown> | DEFAULT | 5 | ||
| zprintf | .symtab | 0x40131c | 120 | FUNC | <unknown> | DEFAULT | 3 |
Download Network PCAP: filtered – full
- Total Packets: 27
| Timestamp | Source Port | Dest Port | Source IP | Dest IP |
|---|---|---|---|---|
| Mar 27, 2025 22:05:07.186683893 CET | 54636 | 443 | 192.168.2.13 | 34.254.182.186 |
| Mar 27, 2025 22:05:07.730658054 CET | 54636 | 443 | 192.168.2.13 | 34.254.182.186 |
| Mar 27, 2025 22:05:08.786596060 CET | 54636 | 443 | 192.168.2.13 | 34.254.182.186 |
| Mar 27, 2025 22:05:08.955184937 CET | 443 | 54636 | 34.254.182.186 | 192.168.2.13 |
| Mar 27, 2025 22:05:09.140789986 CET | 443 | 54636 | 34.254.182.186 | 192.168.2.13 |
| Mar 27, 2025 22:05:09.140803099 CET | 443 | 54636 | 34.254.182.186 | 192.168.2.13 |
| Mar 27, 2025 22:05:09.140814066 CET | 443 | 54636 | 34.254.182.186 | 192.168.2.13 |
| Mar 27, 2025 22:05:09.140830040 CET | 54636 | 443 | 192.168.2.13 | 34.254.182.186 |
| Mar 27, 2025 22:05:09.140834093 CET | 443 | 54636 | 34.254.182.186 | 192.168.2.13 |
| Mar 27, 2025 22:05:09.140846014 CET | 443 | 54636 | 34.254.182.186 | 192.168.2.13 |
| Mar 27, 2025 22:05:09.140850067 CET | 54636 | 443 | 192.168.2.13 | 34.254.182.186 |
| Mar 27, 2025 22:05:09.140850067 CET | 54636 | 443 | 192.168.2.13 | 34.254.182.186 |
| Mar 27, 2025 22:05:09.140861988 CET | 54636 | 443 | 192.168.2.13 | 34.254.182.186 |
| Mar 27, 2025 22:05:09.140871048 CET | 54636 | 443 | 192.168.2.13 | 34.254.182.186 |
| Mar 27, 2025 22:05:09.140872002 CET | 443 | 54636 | 34.254.182.186 | 192.168.2.13 |
| Mar 27, 2025 22:05:09.140908003 CET | 54636 | 443 | 192.168.2.13 | 34.254.182.186 |
| Mar 27, 2025 22:05:09.141520977 CET | 54636 | 443 | 192.168.2.13 | 34.254.182.186 |
| Mar 27, 2025 22:05:09.311841965 CET | 443 | 54636 | 34.254.182.186 | 192.168.2.13 |
| Mar 27, 2025 22:05:09.311904907 CET | 443 | 54636 | 34.254.182.186 | 192.168.2.13 |
| Mar 27, 2025 22:05:09.311940908 CET | 54636 | 443 | 192.168.2.13 | 34.254.182.186 |
| Mar 27, 2025 22:05:09.312069893 CET | 54636 | 443 | 192.168.2.13 | 34.254.182.186 |
| Mar 27, 2025 22:05:09.368798971 CET | 60886 | 6667 | 192.168.2.13 | 93.115.172.234 |
| Mar 27, 2025 22:05:09.481386900 CET | 443 | 54636 | 34.254.182.186 | 192.168.2.13 |
| Mar 27, 2025 22:05:09.481406927 CET | 443 | 54636 | 34.254.182.186 | 192.168.2.13 |
| Mar 27, 2025 22:05:09.481441975 CET | 54636 | 443 | 192.168.2.13 | 34.254.182.186 |
| Mar 27, 2025 22:05:09.481441975 CET | 54636 | 443 | 192.168.2.13 | 34.254.182.186 |
| Mar 27, 2025 22:05:09.482144117 CET | 54636 | 443 | 192.168.2.13 | 34.254.182.186 |
| Mar 27, 2025 22:05:09.530489922 CET | 6667 | 60886 | 93.115.172.234 | 192.168.2.13 |
| Mar 27, 2025 22:05:09.650909901 CET | 443 | 54636 | 34.254.182.186 | 192.168.2.13 |
| Mar 27, 2025 22:05:09.650966883 CET | 54636 | 443 | 192.168.2.13 | 34.254.182.186 |
| Mar 27, 2025 22:05:09.650984049 CET | 443 | 54636 | 34.254.182.186 | 192.168.2.13 |
| Mar 27, 2025 22:05:09.651019096 CET | 54636 | 443 | 192.168.2.13 | 34.254.182.186 |
| Mar 27, 2025 22:05:39.544842958 CET | 60888 | 6667 | 192.168.2.13 | 93.115.172.234 |
| Mar 27, 2025 22:05:39.701714993 CET | 6667 | 60888 | 93.115.172.234 | 192.168.2.13 |
| Mar 27, 2025 22:06:09.706001997 CET | 60890 | 6667 | 192.168.2.13 | 93.115.172.234 |
| Mar 27, 2025 22:06:09.872813940 CET | 6667 | 60890 | 93.115.172.234 | 192.168.2.13 |
| Mar 27, 2025 22:06:39.876701117 CET | 60892 | 6667 | 192.168.2.13 | 93.115.172.234 |
| Mar 27, 2025 22:06:40.043756008 CET | 6667 | 60892 | 93.115.172.234 | 192.168.2.13 |
| Mar 27, 2025 22:07:10.047889948 CET | 60894 | 6667 | 192.168.2.13 | 93.115.172.234 |
| Mar 27, 2025 22:07:10.212137938 CET | 6667 | 60894 | 93.115.172.234 | 192.168.2.13 |
| Mar 27, 2025 22:07:40.216602087 CET | 60896 | 6667 | 192.168.2.13 | 93.115.172.234 |
| Mar 27, 2025 22:07:40.373713970 CET | 6667 | 60896 | 93.115.172.234 | 192.168.2.13 |
| Mar 27, 2025 22:08:10.377856016 CET | 60898 | 6667 | 192.168.2.13 | 93.115.172.234 |
| Mar 27, 2025 22:08:10.544955969 CET | 6667 | 60898 | 93.115.172.234 | 192.168.2.13 |
| Mar 27, 2025 22:08:40.548624992 CET | 60900 | 6667 | 192.168.2.13 | 93.115.172.234 |
| Mar 27, 2025 22:08:40.713628054 CET | 6667 | 60900 | 93.115.172.234 | 192.168.2.13 |
| Timestamp | Source Port | Dest Port | Source IP | Dest IP |
|---|---|---|---|---|
| Mar 27, 2025 22:07:52.391927958 CET | 38280 | 53 | 192.168.2.13 | 1.1.1.1 |
| Mar 27, 2025 22:07:52.392003059 CET | 35053 | 53 | 192.168.2.13 | 1.1.1.1 |
| Mar 27, 2025 22:07:52.474850893 CET | 53 | 35053 | 1.1.1.1 | 192.168.2.13 |
| Mar 27, 2025 22:07:52.474880934 CET | 53 | 38280 | 1.1.1.1 | 192.168.2.13 |
| Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
|---|---|---|---|---|---|---|---|---|
| Mar 27, 2025 22:07:52.391927958 CET | 192.168.2.13 | 1.1.1.1 | 0xc773 | Standard query (0) | A (IP address) | IN (0x0001) | false | |
| Mar 27, 2025 22:07:52.392003059 CET | 192.168.2.13 | 1.1.1.1 | 0x9f66 | Standard query (0) | 28 | IN (0x0001) | false |
| Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
|---|---|---|---|---|---|---|---|---|---|---|
| Mar 27, 2025 22:07:52.474880934 CET | 1.1.1.1 | 192.168.2.13 | 0xc773 | No error (0) | 162.213.35.25 | A (IP address) | IN (0x0001) | false | ||
| Mar 27, 2025 22:07:52.474880934 CET | 1.1.1.1 | 192.168.2.13 | 0xc773 | No error (0) | 162.213.35.24 | A (IP address) | IN (0x0001) | false |
| Timestamp | Source IP | Source Port | Dest IP | Dest Port | Subject | Issuer | Not Before | Not After | JA3 SSL Client Fingerprint | JA3 SSL Client Digest |
|---|---|---|---|---|---|---|---|---|---|---|
| Mar 27, 2025 22:05:09.140872002 CET | 34.254.182.186 | 443 | 192.168.2.13 | 54636 | CN=motd.ubuntu.com CN=R10, O=Let's Encrypt, C=US | CN=R10, O=Let's Encrypt, C=US CN=ISRG Root X1, O=Internet Security Research Group, C=US | Sat Mar 22 09:18:05 CET 2025 Wed Mar 13 01:00:00 CET 2024 | Fri Jun 20 10:18:04 CEST 2025 Sat Mar 13 00:59:59 CET 2027 | 771,4866-4867-4865-49196-49200-163-159-52393-52392-52394-49327-49325-49315-49311-49245-49249-49239-49235-49195-49199-162-158-49326-49324-49314-49310-49244-49248-49238-49234-49188-49192-107-106-49267-49271-196-195-49187-49191-103-64-49266-49270-190-189-49162-49172-57-56-136-135-49161-49171-51-50-69-68-157-49313-49309-49233-156-49312-49308-49232-61-192-60-186-53-132-47-65-255,0-11-10-35-22-23-13-43-45-51,29-23-30-25-24,0-1-2 | fb4726d465c5f28b84cd6d14cedd13a7 |
| CN=R10, O=Let's Encrypt, C=US | CN=ISRG Root X1, O=Internet Security Research Group, C=US | Wed Mar 13 01:00:00 CET 2024 | Sat Mar 13 00:59:59 CET 2027 |
System Behavior
| Start time (UTC): | 21:05:07 |
| Start date (UTC): | 27/03/2025 |
| Path: | /tmp/sshd.elf |
| Arguments: | /tmp/sshd.elf |
| File size: | 5773336 bytes |
| MD5 hash: | 0d6f61f82cf2f781c6eb0661071d42d9 |
| Start time (UTC): | 21:05:08 |
| Start date (UTC): | 27/03/2025 |
| Path: | /tmp/sshd.elf |
| Arguments: | - |
| File size: | 5773336 bytes |
| MD5 hash: | 0d6f61f82cf2f781c6eb0661071d42d9 |
| Start time (UTC): | 21:05:08 |
| Start date (UTC): | 27/03/2025 |
| Path: | /tmp/sshd.elf |
| Arguments: | - |
| File size: | 5773336 bytes |
| MD5 hash: | 0d6f61f82cf2f781c6eb0661071d42d9 |
| Start time (UTC): | 21:05:08 |
| Start date (UTC): | 27/03/2025 |
| Path: | /usr/bin/dash |
| Arguments: | - |
| File size: | 129816 bytes |
| MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
| Start time (UTC): | 21:05:08 |
| Start date (UTC): | 27/03/2025 |
| Path: | /usr/bin/rm |
| Arguments: | rm -f /tmp/tmp.n2YaaptlPb /tmp/tmp.dwf0pdHIMv /tmp/tmp.peWuOPTNhV |
| File size: | 72056 bytes |
| MD5 hash: | aa2b5496fdbfd88e38791ab81f90b95b |
| Start time (UTC): | 21:05:08 |
| Start date (UTC): | 27/03/2025 |
| Path: | /usr/bin/dash |
| Arguments: | - |
| File size: | 129816 bytes |
| MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
| Start time (UTC): | 21:05:08 |
| Start date (UTC): | 27/03/2025 |
| Path: | /usr/bin/cat |
| Arguments: | cat /tmp/tmp.n2YaaptlPb |
| File size: | 43416 bytes |
| MD5 hash: | 7e9d213e404ad3bb82e4ebb2e1f2c1b3 |
| Start time (UTC): | 21:05:08 |
| Start date (UTC): | 27/03/2025 |
| Path: | /usr/bin/dash |
| Arguments: | - |
| File size: | 129816 bytes |
| MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
| Start time (UTC): | 21:05:08 |
| Start date (UTC): | 27/03/2025 |
| Path: | /usr/bin/head |
| Arguments: | head -n 10 |
| File size: | 47480 bytes |
| MD5 hash: | fd96a67145172477dd57131396fc9608 |
| Start time (UTC): | 21:05:08 |
| Start date (UTC): | 27/03/2025 |
| Path: | /usr/bin/dash |
| Arguments: | - |
| File size: | 129816 bytes |
| MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
| Start time (UTC): | 21:05:08 |
| Start date (UTC): | 27/03/2025 |
| Path: | /usr/bin/tr |
| Arguments: | tr -d \\000-\\011\\013\\014\\016-\\037 |
| File size: | 51544 bytes |
| MD5 hash: | fbd1402dd9f72d8ebfff00ce7c3a7bb5 |
| Start time (UTC): | 21:05:08 |
| Start date (UTC): | 27/03/2025 |
| Path: | /usr/bin/dash |
| Arguments: | - |
| File size: | 129816 bytes |
| MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
| Start time (UTC): | 21:05:08 |
| Start date (UTC): | 27/03/2025 |
| Path: | /usr/bin/cut |
| Arguments: | cut -c -80 |
| File size: | 47480 bytes |
| MD5 hash: | d8ed0ea8f22c0de0f8692d4d9f1759d3 |
| Start time (UTC): | 21:05:08 |
| Start date (UTC): | 27/03/2025 |
| Path: | /usr/bin/dash |
| Arguments: | - |
| File size: | 129816 bytes |
| MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
| Start time (UTC): | 21:05:08 |
| Start date (UTC): | 27/03/2025 |
| Path: | /usr/bin/cat |
| Arguments: | cat /tmp/tmp.n2YaaptlPb |
| File size: | 43416 bytes |
| MD5 hash: | 7e9d213e404ad3bb82e4ebb2e1f2c1b3 |
| Start time (UTC): | 21:05:08 |
| Start date (UTC): | 27/03/2025 |
| Path: | /usr/bin/dash |
| Arguments: | - |
| File size: | 129816 bytes |
| MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
| Start time (UTC): | 21:05:08 |
| Start date (UTC): | 27/03/2025 |
| Path: | /usr/bin/head |
| Arguments: | head -n 10 |
| File size: | 47480 bytes |
| MD5 hash: | fd96a67145172477dd57131396fc9608 |
| Start time (UTC): | 21:05:08 |
| Start date (UTC): | 27/03/2025 |
| Path: | /usr/bin/dash |
| Arguments: | - |
| File size: | 129816 bytes |
| MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
| Start time (UTC): | 21:05:08 |
| Start date (UTC): | 27/03/2025 |
| Path: | /usr/bin/tr |
| Arguments: | tr -d \\000-\\011\\013\\014\\016-\\037 |
| File size: | 51544 bytes |
| MD5 hash: | fbd1402dd9f72d8ebfff00ce7c3a7bb5 |
| Start time (UTC): | 21:05:08 |
| Start date (UTC): | 27/03/2025 |
| Path: | /usr/bin/dash |
| Arguments: | - |
| File size: | 129816 bytes |
| MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
| Start time (UTC): | 21:05:08 |
| Start date (UTC): | 27/03/2025 |
| Path: | /usr/bin/cut |
| Arguments: | cut -c -80 |
| File size: | 47480 bytes |
| MD5 hash: | d8ed0ea8f22c0de0f8692d4d9f1759d3 |
| Start time (UTC): | 21:05:08 |
| Start date (UTC): | 27/03/2025 |
| Path: | /usr/bin/dash |
| Arguments: | - |
| File size: | 129816 bytes |
| MD5 hash: | 1e6b1c887c59a315edb7eb9a315fc84c |
| Start time (UTC): | 21:05:08 |
| Start date (UTC): | 27/03/2025 |
| Path: | /usr/bin/rm |
| Arguments: | rm -f /tmp/tmp.n2YaaptlPb /tmp/tmp.dwf0pdHIMv /tmp/tmp.peWuOPTNhV |
| File size: | 72056 bytes |
| MD5 hash: | aa2b5496fdbfd88e38791ab81f90b95b |
