Edit tour
Linux
Analysis Report
SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf
Overview
General Information
Detection
Mirai
Score: | 68 |
Range: | 0 - 100 |
Whitelisted: | false |
Signatures
Malicious sample detected (through community Yara rule)
Multi AV Scanner detection for submitted file
Yara detected Mirai
Sample is packed with UPX
Detected TCP or UDP traffic on non-standard ports
ELF contains segments with high entropy indicating compressed/encrypted content
Enumerates processes within the "proc" file system
Sample contains only a LOAD segment without any section mappings
Uses the "uname" system call to query kernel version information (possible evasion)
Yara signature match
Classification
Joe Sandbox version: | 40.0.0 Tourmaline |
Analysis ID: | 1502373 |
Start date and time: | 2024-09-01 01:50:14 +02:00 |
Joe Sandbox product: | CloudBasic |
Overall analysis duration: | 0h 4m 49s |
Hypervisor based Inspection enabled: | false |
Report type: | full |
Cookbook file name: | defaultlinuxfilecookbook.jbs |
Analysis system description: | Ubuntu Linux 20.04 x64 (Kernel 5.4.0-72, Firefox 91.0, Evince Document Viewer 3.36.10, LibreOffice 6.4.7.2, OpenJDK 11.0.11) |
Analysis Mode: | default |
Sample name: | SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Detection: | MAL |
Classification: | mal68.troj.evad.linELF@0/0@2/0 |
Command: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
PID: | 5515 |
Exit Code: | 0 |
Exit Code Info: | |
Killed: | False |
Standard Output: | lzrd cock fest"/proc/"/exe |
Standard Error: |
- system is lnxubuntu20
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5517, Parent: 5515)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5520, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5534, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5540, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5544, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5567, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5571, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5575, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5580, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5584, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5588, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5594, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5598, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5602, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5607, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5611, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5615, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5619, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5623, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5627, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5632, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5636, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5640, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5646, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5650, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5654, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5659, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5663, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5667, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5671, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5675, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5681, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5686, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5690, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5701, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5707, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5711, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5715, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5720, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5724, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5728, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5732, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5736, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5740, Parent: 5517)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5519, Parent: 5515)
- SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf New Fork (PID: 5521, Parent: 5515)
- cleanup
Name | Description | Attribution | Blogpost URLs | Link |
---|---|---|---|---|
Mirai | Mirai is one of the first significant botnets targeting exposed networking devices running Linux. Found in August 2016 by MalwareMustDie, its name means "future" in Japanese. Nowadays it targets a wide range of networked embedded devices such as IP cameras, home routers (many vendors involved), and other IoT devices. Since the source code was published on "Hack Forums" many variants of the Mirai family appeared, infecting mostly home networks all around the world. | No Attribution |
Source | Rule | Description | Author | Strings |
---|---|---|---|---|
JoeSecurity_Mirai_8 | Yara detected Mirai | Joe Security | ||
Linux_Trojan_Gafgyt_28a2fe0c | unknown | unknown |
| |
Linux_Trojan_Gafgyt_ea92cca8 | unknown | unknown |
| |
JoeSecurity_Mirai_8 | Yara detected Mirai | Joe Security | ||
Linux_Trojan_Gafgyt_28a2fe0c | unknown | unknown |
| |
Click to see the 7 entries |
⊘No Suricata rule has matched
Click to jump to signature section
Show All Signature Results
AV Detection |
---|
Source: | ReversingLabs: | |||
Source: | Virustotal: | Perma Link |
Source: | TCP traffic: |
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: | ||
Source: | TCP traffic detected without corresponding DNS query: |
Source: | DNS traffic detected: |
Source: | String found in binary or memory: |
System Summary |
---|
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: |
Source: | Program segment: |
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: | ||
Source: | Matched rule: |
Source: | Classification label: |
Data Obfuscation |
---|
Source: | String containing UPX found: | ||
Source: | String containing UPX found: | ||
Source: | String containing UPX found: |
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior | ||
Source: | File opened: | Jump to behavior |
Source: | Submission file: |
Source: | Queries kernel information via 'uname': | Jump to behavior |
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: | ||
Source: | Binary or memory string: |
Stealing of Sensitive Information |
---|
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: |
Remote Access Functionality |
---|
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: | ||
Source: | File source: |
Reconnaissance | Resource Development | Initial Access | Execution | Persistence | Privilege Escalation | Defense Evasion | Credential Access | Discovery | Lateral Movement | Collection | Command and Control | Exfiltration | Impact |
---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Gather Victim Identity Information | Acquire Infrastructure | Valid Accounts | Windows Management Instrumentation | Path Interception | Path Interception | 11 Obfuscated Files or Information | 1 OS Credential Dumping | 11 Security Software Discovery | Remote Services | Data from Local System | 1 Non-Standard Port | Exfiltration Over Other Network Medium | Abuse Accessibility Features |
Credentials | Domains | Default Accounts | Scheduled Task/Job | Boot or Logon Initialization Scripts | Boot or Logon Initialization Scripts | Rootkit | LSASS Memory | Application Window Discovery | Remote Desktop Protocol | Data from Removable Media | 1 Non-Application Layer Protocol | Exfiltration Over Bluetooth | Network Denial of Service |
Email Addresses | DNS Server | Domain Accounts | At | Logon Script (Windows) | Logon Script (Windows) | Obfuscated Files or Information | Security Account Manager | Query Registry | SMB/Windows Admin Shares | Data from Network Shared Drive | 1 Application Layer Protocol | Automated Exfiltration | Data Encrypted for Impact |
⊘No configs have been found
This section contains all screenshots as thumbnails, including those not shown in the slideshow.
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
39% | ReversingLabs | Linux.Trojan.Mirai | ||
35% | Virustotal | Browse |
⊘No Antivirus matches
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | Virustotal | Browse |
Source | Detection | Scanner | Label | Link |
---|---|---|---|---|
0% | URL Reputation | safe | ||
0% | URL Reputation | safe |
Name | IP | Active | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|---|
daisy.ubuntu.com | 162.213.35.25 | true | false |
| unknown |
Name | Source | Malicious | Antivirus Detection | Reputation |
---|---|---|---|---|
true |
| unknown |
- No. of IPs < 25%
- 25% < No. of IPs < 50%
- 50% < No. of IPs < 75%
- 75% < No. of IPs
IP | Domain | Country | Flag | ASN | ASN Name | Malicious |
---|---|---|---|---|---|---|
94.156.71.225 | unknown | Bulgaria | 31420 | TERASYST-ASBG | false |
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
94.156.71.225 | Get hash | malicious | Mirai | Browse |
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
daisy.ubuntu.com | Get hash | malicious | Mirai, Okiru | Browse |
| |
Get hash | malicious | Mirai | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Mirai | Browse |
| ||
Get hash | malicious | Mirai | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Mirai | Browse |
| ||
Get hash | malicious | Mirai | Browse |
| ||
Get hash | malicious | Mirai | Browse |
| ||
Get hash | malicious | Gafgyt, Mirai | Browse |
|
Match | Associated Sample Name / URL | SHA 256 | Detection | Threat Name | Link | Context |
---|---|---|---|---|---|---|
TERASYST-ASBG | Get hash | malicious | Mirai | Browse |
| |
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | SmokeLoader | Browse |
| ||
Get hash | malicious | RedLine | Browse |
| ||
Get hash | malicious | Unknown | Browse |
| ||
Get hash | malicious | Remcos | Browse |
| ||
Get hash | malicious | Remcos | Browse |
| ||
Get hash | malicious | AsyncRAT | Browse |
| ||
Get hash | malicious | Go Injector, Stealc, Vidar | Browse |
| ||
Get hash | malicious | XWorm | Browse |
|
⊘No context
⊘No context
⊘No created / dropped files found
File type: | |
Entropy (8bit): | 7.982371885731075 |
TrID: |
|
File name: | SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
File size: | 59'944 bytes |
MD5: | 3efb56c252e6525982ecb951ebb6af4d |
SHA1: | 8ef390adc551bbe18dc76ee99ec46a66c765920a |
SHA256: | 95744e6b54e8b61938c8cf5b28c7e379176a06b4ec402154ef9bb34d686f0230 |
SHA512: | d61d6e854db5605fb1c6590ff92007ae775bf45de99e0b37438f286d7b05daed23a29d014d51a130bcb6bff6e11f8e925711aa5552195245fe9cf8329ca2afd2 |
SSDEEP: | 1536:yar6NBV/PvMeoTc16k67Qoa3k5BtYpdqufSPLrhnGluqzwKISXb:yo6vhXVd16knoaitYpdqPPLrVswKI+ |
TLSH: | 47430272B572D126D2676F30A71C02CB7B2813FE869A82335B21D16064C78CA77F25E7 |
File Content Preview: | .ELF..............(.........4...........4. ...(.....................m...m................=..........................Q.td............................>. NUPX!.........{...{......l..........?.E.h;....#..$...o....$.HY.....;G%H.....:.n...bm........d!]Yy.....K. |
ELF header | |
---|---|
Class: | |
Data: | |
Version: | |
Machine: | |
Version Number: | |
Type: | |
OS/ABI: | |
ABI Version: | 0 |
Entry Point Address: | |
Flags: | |
ELF Header Size: | 52 |
Program Header Offset: | 52 |
Program Header Size: | 32 |
Number of Program Headers: | 3 |
Section Header Offset: | 0 |
Section Header Size: | 40 |
Number of Section Headers: | 0 |
Header String Table Index: | 0 |
Type | Offset | Virtual Address | Physical Address | File Size | Memory Size | Entropy | Flags | Flags Description | Align | Prog Interpreter | Section Mappings |
---|---|---|---|---|---|---|---|---|---|---|---|
LOAD | 0x0 | 0x8000 | 0x8000 | 0xa66d | 0xa66d | 7.9694 | 0x5 | R E | 0x8000 | ||
LOAD | 0x3dc4 | 0x2bdc4 | 0x2bdc4 | 0x0 | 0x0 | 0.0000 | 0x6 | RW | 0x8000 | ||
GNU_STACK | 0x0 | 0x0 | 0x0 | 0x0 | 0x0 | 0.0000 | 0x7 | RWE | 0x4 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Sep 1, 2024 01:50:53.258268118 CEST | 52372 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:53.263164997 CEST | 3778 | 52372 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:53.263222933 CEST | 52372 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:53.286875010 CEST | 52372 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:53.291810036 CEST | 3778 | 52372 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:53.291848898 CEST | 52372 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:53.296646118 CEST | 3778 | 52372 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:53.859541893 CEST | 3778 | 52372 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:53.859597921 CEST | 52372 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:53.859776974 CEST | 52372 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:53.860429049 CEST | 52374 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:53.865204096 CEST | 3778 | 52374 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:53.865250111 CEST | 52374 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:53.866575003 CEST | 52374 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:53.871361971 CEST | 3778 | 52374 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:53.871407986 CEST | 52374 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:53.876157045 CEST | 3778 | 52374 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:54.476710081 CEST | 3778 | 52374 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:54.476900101 CEST | 52374 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:54.476949930 CEST | 52374 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:54.477430105 CEST | 52376 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:54.482225895 CEST | 3778 | 52376 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:54.482297897 CEST | 52376 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:54.483048916 CEST | 52376 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:54.487807035 CEST | 3778 | 52376 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:54.487854958 CEST | 52376 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:54.493437052 CEST | 3778 | 52376 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:55.071790934 CEST | 3778 | 52376 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:55.071892977 CEST | 52376 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:55.071924925 CEST | 52376 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:55.072364092 CEST | 52378 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:55.077145100 CEST | 3778 | 52378 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:55.077203035 CEST | 52378 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:55.077784061 CEST | 52378 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:55.082950115 CEST | 3778 | 52378 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:55.083010912 CEST | 52378 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:55.088257074 CEST | 3778 | 52378 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:55.683372974 CEST | 3778 | 52378 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:55.683582067 CEST | 52378 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:55.683625937 CEST | 52378 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:55.684058905 CEST | 52380 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:55.688805103 CEST | 3778 | 52380 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:55.688853025 CEST | 52380 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:55.689434052 CEST | 52380 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:55.694221020 CEST | 3778 | 52380 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:55.694262981 CEST | 52380 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:55.699013948 CEST | 3778 | 52380 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:56.293842077 CEST | 3778 | 52380 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:56.294034958 CEST | 52380 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:56.294071913 CEST | 52380 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:56.294508934 CEST | 52382 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:56.299276114 CEST | 3778 | 52382 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:56.299319983 CEST | 52382 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:56.299932957 CEST | 52382 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:56.304702044 CEST | 3778 | 52382 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:56.304745913 CEST | 52382 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:56.309546947 CEST | 3778 | 52382 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:56.898401022 CEST | 3778 | 52382 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:56.898572922 CEST | 52382 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:56.898598909 CEST | 52382 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:56.898986101 CEST | 52384 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:56.903709888 CEST | 3778 | 52384 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:56.903754950 CEST | 52384 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:56.904337883 CEST | 52384 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:56.909116030 CEST | 3778 | 52384 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:56.909149885 CEST | 52384 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:56.913887024 CEST | 3778 | 52384 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:57.592950106 CEST | 3778 | 52384 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:57.593163013 CEST | 52384 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:57.593163013 CEST | 52384 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:57.593655109 CEST | 52386 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:57.598464012 CEST | 3778 | 52386 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:57.598530054 CEST | 52386 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:57.599144936 CEST | 52386 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:57.603934050 CEST | 3778 | 52386 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:57.604038954 CEST | 52386 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:57.608880043 CEST | 3778 | 52386 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:58.222326994 CEST | 3778 | 52386 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:58.222533941 CEST | 52386 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:58.222533941 CEST | 52386 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:58.222929955 CEST | 52388 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:58.227654934 CEST | 3778 | 52388 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:58.227725983 CEST | 52388 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:58.228283882 CEST | 52388 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:58.233252048 CEST | 3778 | 52388 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:58.233294964 CEST | 52388 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:58.238303900 CEST | 3778 | 52388 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:58.832472086 CEST | 3778 | 52388 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:58.832581997 CEST | 52388 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:58.832597017 CEST | 52388 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:58.832931995 CEST | 52390 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:58.837681055 CEST | 3778 | 52390 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:58.837732077 CEST | 52390 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:58.838304043 CEST | 52390 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:58.843072891 CEST | 3778 | 52390 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:58.843116999 CEST | 52390 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:58.847920895 CEST | 3778 | 52390 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:59.434220076 CEST | 3778 | 52390 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:59.434271097 CEST | 52390 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:59.434309006 CEST | 52390 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:59.434725046 CEST | 52392 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:59.439501047 CEST | 3778 | 52392 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:59.439553976 CEST | 52392 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:59.440110922 CEST | 52392 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:59.444817066 CEST | 3778 | 52392 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:50:59.444874048 CEST | 52392 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:50:59.449604988 CEST | 3778 | 52392 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:00.039479971 CEST | 3778 | 52392 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:00.039594889 CEST | 52392 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:00.039729118 CEST | 52392 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:00.040139914 CEST | 52394 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:00.044872999 CEST | 3778 | 52394 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:00.044938087 CEST | 52394 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:00.045576096 CEST | 52394 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:00.050358057 CEST | 3778 | 52394 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:00.050414085 CEST | 52394 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:00.055217028 CEST | 3778 | 52394 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:00.638377905 CEST | 3778 | 52394 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:00.638638973 CEST | 52394 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:00.638638973 CEST | 52394 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:00.639065981 CEST | 52396 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:00.643831968 CEST | 3778 | 52396 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:00.643903017 CEST | 52396 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:00.644546986 CEST | 52396 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:00.649265051 CEST | 3778 | 52396 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:00.649322987 CEST | 52396 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:00.654047012 CEST | 3778 | 52396 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:01.254823923 CEST | 3778 | 52396 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:01.254910946 CEST | 52396 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:01.254964113 CEST | 52396 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:01.255393028 CEST | 52398 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:01.260255098 CEST | 3778 | 52398 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:01.260302067 CEST | 52398 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:01.260890007 CEST | 52398 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:01.265710115 CEST | 3778 | 52398 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:01.265758991 CEST | 52398 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:01.270577908 CEST | 3778 | 52398 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:01.851746082 CEST | 3778 | 52398 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:01.851841927 CEST | 52398 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:01.851864100 CEST | 52398 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:01.852261066 CEST | 52400 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:01.857038975 CEST | 3778 | 52400 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:01.857084036 CEST | 52400 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:01.857657909 CEST | 52400 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:01.862440109 CEST | 3778 | 52400 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:01.862476110 CEST | 52400 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:01.867243052 CEST | 3778 | 52400 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:02.474262953 CEST | 3778 | 52400 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:02.474373102 CEST | 52400 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:02.474400997 CEST | 52400 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:02.474809885 CEST | 52402 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:02.479960918 CEST | 3778 | 52402 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:02.480015039 CEST | 52402 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:02.480612993 CEST | 52402 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:02.485374928 CEST | 3778 | 52402 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:02.485438108 CEST | 52402 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:02.490267038 CEST | 3778 | 52402 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:12.490508080 CEST | 52402 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:51:12.497107983 CEST | 3778 | 52402 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:12.664408922 CEST | 3778 | 52402 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:51:12.664501905 CEST | 52402 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:52:12.714418888 CEST | 52402 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:52:12.719471931 CEST | 3778 | 52402 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:52:12.887310028 CEST | 3778 | 52402 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:52:12.887398958 CEST | 52402 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:53:12.946244955 CEST | 52402 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:53:12.953108072 CEST | 3778 | 52402 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:53:13.171701908 CEST | 3778 | 52402 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:53:13.171781063 CEST | 52402 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:54:13.228795052 CEST | 52402 | 3778 | 192.168.2.15 | 94.156.71.225 |
Sep 1, 2024 01:54:13.233727932 CEST | 3778 | 52402 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:54:13.402275085 CEST | 3778 | 52402 | 94.156.71.225 | 192.168.2.15 |
Sep 1, 2024 01:54:13.402368069 CEST | 52402 | 3778 | 192.168.2.15 | 94.156.71.225 |
Timestamp | Source Port | Dest Port | Source IP | Dest IP |
---|---|---|---|---|
Sep 1, 2024 01:53:40.115180969 CEST | 34024 | 53 | 192.168.2.15 | 1.1.1.1 |
Sep 1, 2024 01:53:40.115226984 CEST | 45279 | 53 | 192.168.2.15 | 1.1.1.1 |
Sep 1, 2024 01:53:40.121880054 CEST | 53 | 45279 | 1.1.1.1 | 192.168.2.15 |
Sep 1, 2024 01:53:40.122122049 CEST | 53 | 34024 | 1.1.1.1 | 192.168.2.15 |
Timestamp | Source IP | Dest IP | Trans ID | OP Code | Name | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|
Sep 1, 2024 01:53:40.115180969 CEST | 192.168.2.15 | 1.1.1.1 | 0xf09b | Standard query (0) | A (IP address) | IN (0x0001) | false | |
Sep 1, 2024 01:53:40.115226984 CEST | 192.168.2.15 | 1.1.1.1 | 0x2a58 | Standard query (0) | 28 | IN (0x0001) | false |
Timestamp | Source IP | Dest IP | Trans ID | Reply Code | Name | CName | Address | Type | Class | DNS over HTTPS |
---|---|---|---|---|---|---|---|---|---|---|
Sep 1, 2024 01:53:40.122122049 CEST | 1.1.1.1 | 192.168.2.15 | 0xf09b | No error (0) | 162.213.35.25 | A (IP address) | IN (0x0001) | false | ||
Sep 1, 2024 01:53:40.122122049 CEST | 1.1.1.1 | 192.168.2.15 | 0xf09b | No error (0) | 162.213.35.24 | A (IP address) | IN (0x0001) | false |
System Behavior
Start time (UTC): | 23:50:51 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:50:51 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:50:51 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:50:57 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:51:03 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:51:08 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:51:14 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:51:19 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:51:25 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:51:30 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:51:35 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:51:40 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:51:45 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:51:50 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:51:55 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:52:00 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:52:05 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:52:10 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:52:15 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:52:20 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:52:25 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:52:30 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:52:35 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:52:40 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:52:45 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:52:50 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:52:55 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:53:00 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:53:05 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:53:11 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:53:16 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:53:21 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:53:26 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:53:31 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:53:36 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:53:41 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:53:46 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:53:51 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:53:56 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:54:01 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:54:06 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:54:11 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:54:16 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:54:21 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:54:26 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:50:51 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |
Start time (UTC): | 23:50:51 |
Start date (UTC): | 31/08/2024 |
Path: | /tmp/SecuriteInfo.com.Linux.Siggen.9999.127.12108.elf |
Arguments: | - |
File size: | 4956856 bytes |
MD5 hash: | 5ebfcae4fe2471fcc5695c2394773ff1 |