Analysis
-
max time kernel
64s -
max time network
152s -
platform
debian-9_mipsel -
resource
debian9-mipsel-20230831-en -
resource tags
-
submitted
04/09/2023, 11:56
General
-
Target
linux-exploit-suggester-master/linux-exploit-suggester.sh
-
Size
88KB
-
MD5
301956d1018a1e899b0ac82fe5823e46
-
SHA1
1b02f7ee52d597e3e45ac3d5accf8b36f9eb6abc
-
SHA256
6d3d6623556a3765d54ffd51a0aaf8f0ded327246bd2994f9802c40760d4d10c
-
SHA512
242600e4f195ae9aedbc52012f53eb88d9e15b6e4b1c0612f60a507ae901d62bc7ad738ad91d44bd1b06411385fe1fb04f624e3a557e2da0d127ca7f12f7a621
-
SSDEEP
1536:Vnqk1qvmKl6wdi6nL7PXK7osEhGtGGv1pSsc2zHkdIxYNueMgOJJgNvfxFHw69RO:Vnqk1qvxldi6L7PaMsEhGtGGv1pSsc0z
Score
6/10
Malware Config
Signatures
-
Reads CPU attributes 1 TTPs 7 IoCs
-
Reads list of loaded kernel modules 1 TTPs 1 IoCs
Reads the list of currently loaded kernel modules, possibly to detect virtual environments.
-
Reads runtime system information 64 IoCs
Reads data from /proc virtual filesystem.
-
Writes file to tmp directory 64 IoCs
Malware often drops required files in the /tmp directory.
Processes
-
/tmp/linux-exploit-suggester-master/linux-exploit-suggester.sh/tmp/linux-exploit-suggester-master/linux-exploit-suggester.sh1⤵
- Writes file to tmp directory
-
/usr/bin/getoptgetopt --options hVfbsu:k:dp:g --longoptions "help,version,full,fetch-binaries,fetch-sources,uname:,kernel:,show-dos,pkglist-file:,short,kernelspace-only,userspace-only,skip-more-checks,skip-pkg-versions,cvelist-file:,checksec" --2⤵
-
-
/bin/unameuname -a2⤵
-
-
/bin/grepgrep -q -i deb2⤵
-
-
/bin/grepgrep -q -i ubuntu2⤵
-
-
/bin/grepgrep -q -i "\\-ARCH"2⤵
-
-
/bin/grepgrep -q -i "\\-deepin"2⤵
-
-
/bin/grepgrep -q -i "\\-MANJARO"2⤵
-
-
/bin/grepgrep -q -i "\\.fc"2⤵
-
-
/bin/grepgrep -q -i "\\.el"2⤵
-
-
/bin/grepgrep -q -i "\\.mga"2⤵
-
-
/bin/unameuname -r2⤵
-
-
/bin/unameuname -r2⤵
-
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/bin/catcat1⤵
-
/usr/bin/cutcut -d - -f 11⤵
-
/usr/bin/awkawk "{print \$3}"1⤵
-
/usr/bin/awkawk "{print \$3}"1⤵
-
/usr/bin/awkawk "{print \$(NF-1)}"1⤵
-
/usr/bin/cutcut "-d=" -f21⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -s -E "^DISTRIB_RELEASE=|^VERSION_ID=" /etc/os-release1⤵
-
/usr/bin/trtr -d "\""1⤵
-
/usr/bin/dpkgdpkg -l1⤵
-
/usr/bin/awkawk "{print \$2\"-\"\$3}"1⤵
-
/bin/sedsed s/:amd64//g1⤵
-
/usr/local/sbin/dpkg-querydpkg-query --list --1⤵
-
/usr/local/bin/dpkg-querydpkg-query --list --1⤵
-
/usr/sbin/dpkg-querydpkg-query --list --1⤵
-
/usr/bin/dpkg-querydpkg-query --list --1⤵
-
/bin/catcat /boot/config-4.9.0-13-4kc-malta1⤵
-
/bin/grepgrep -E -qi "CONFIG_IP_DCCP=[my]"1⤵
-
/bin/grepgrep debian1⤵
-
/usr/bin/cutcut "-d=" -f11⤵
-
/usr/bin/cutcut "-d=" -f21⤵
-
/bin/grepgrep -E "(14.04|16.04)"1⤵
-
/bin/sedsed -e "/^Name:/d" -e "/^Reqs:/d" -e "/^Tags:/d"1⤵
-
/bin/sedsed -e :a -e N -e "\$!ba" -e "s/\\n/D3L1m/g"1⤵
-
/bin/catcat /boot/config-4.9.0-13-4kc-malta1⤵
-
/bin/grepgrep -E -qi "CONFIG_USER_NS=y"1⤵
-
/bin/grepgrep -qi "!="1⤵
-
/bin/grepgrep -qi "=="1⤵
-
/usr/bin/awkawk -F "==" "{print \$2}"1⤵
-
/usr/bin/awkawk -F "==" "{print \$1}"1⤵
-
/sbin/sysctl/sbin/sysctl -a1⤵
- Reads CPU attributes
- Reads runtime system information
-
/bin/grepgrep kernel.unprivileged_userns_clone1⤵
-
/usr/bin/awkawk "-F=" "{print \$2}"1⤵
-
/bin/catcat /boot/config-4.9.0-13-4kc-malta1⤵
-
/bin/grepgrep -E -qi "CONFIG_BPF_SYSCALL=y"1⤵
-
/bin/grepgrep -qi "!="1⤵
-
/usr/bin/awkawk -F "!=" "{print \$2}"1⤵
-
/usr/bin/awkawk -F "!=" "{print \$1}"1⤵
-
/sbin/sysctl/sbin/sysctl -a1⤵
- Reads CPU attributes
- Reads runtime system information
-
/bin/grepgrep kernel.unprivileged_bpf_disabled1⤵
-
/usr/bin/awkawk "-F=" "{print \$2}"1⤵
-
/bin/grepgrep debian1⤵
-
/usr/bin/cutcut "-d=" -f11⤵
-
/usr/bin/cutcut "-d=" -f21⤵
-
/bin/grepgrep -E 9.01⤵
-
/usr/bin/cutcut "-d=" -f11⤵
-
/usr/bin/cutcut "-d=" -f21⤵
-
/bin/grepgrep -E "25|26|27"1⤵
-
/usr/bin/cutcut "-d=" -f11⤵
-
/usr/bin/cutcut "-d=" -f21⤵
-
/bin/grepgrep -E 14.041⤵
-
/usr/bin/cutcut "-d=" -f11⤵
-
/usr/bin/cutcut "-d=" -f21⤵
-
/bin/grepgrep -E "(16.04|17.04)"1⤵
-
/bin/sedsed -e "/^Name:/d" -e "/^Reqs:/d" -e "/^Tags:/d"1⤵
-
/bin/sedsed -e :a -e N -e "\$!ba" -e "s/\\n/D3L1m/g"1⤵
-
/bin/catcat /boot/config-4.9.0-13-4kc-malta1⤵
-
/bin/grepgrep -E -qi "CONFIG_USER_NS=y"1⤵
-
/bin/grepgrep -qi "!="1⤵
-
/bin/grepgrep -qi "=="1⤵
-
/usr/bin/awkawk -F "==" "{print \$2}"1⤵
-
/usr/bin/awkawk -F "==" "{print \$1}"1⤵
-
/sbin/sysctl/sbin/sysctl -a1⤵
- Reads CPU attributes
- Reads runtime system information
-
/bin/grepgrep kernel.unprivileged_userns_clone1⤵
-
/usr/bin/awkawk "-F=" "{print \$2}"1⤵
-
/bin/grepgrep -qi rds /proc/modules1⤵
- Reads list of loaded kernel modules
-
/bin/grepgrep -qi "!="1⤵
-
/bin/grepgrep -qi "=="1⤵
-
/usr/bin/awkawk -F "==" "{print \$2}"1⤵
-
/usr/bin/awkawk -F "==" "{print \$1}"1⤵
-
/sbin/sysctl/sbin/sysctl -a1⤵
- Reads CPU attributes
- Reads runtime system information
-
/bin/grepgrep kernel.yama.ptrace_scope1⤵
-
/usr/bin/awkawk "-F=" "{print \$2}"1⤵
-
/bin/catcat /boot/config-4.9.0-13-4kc-malta1⤵
-
/bin/grepgrep -E -qi "CONFIG_USER_NS=y"1⤵
-
/bin/grepgrep -qi "!="1⤵
-
/bin/grepgrep -qi "=="1⤵
-
/usr/bin/awkawk -F "==" "{print \$2}"1⤵
-
/usr/bin/awkawk -F "==" "{print \$1}"1⤵
-
/sbin/sysctl/sbin/sysctl -a1⤵
- Reads CPU attributes
- Reads runtime system information
-
/bin/grepgrep kernel.unprivileged_userns_clone1⤵
-
/usr/bin/awkawk "-F=" "{print \$2}"1⤵
-
/bin/catcat /boot/config-4.9.0-13-4kc-malta1⤵
-
/bin/grepgrep -E -qi "CONFIG_SLAB_FREELIST_HARDENED!=y"1⤵
-
/bin/grepgrep debian1⤵
-
/usr/bin/cutcut "-d=" -f11⤵
-
/usr/bin/cutcut "-d=" -f21⤵
-
/bin/grepgrep -E 20.041⤵
-
/bin/sedsed -e "/^Name:/d" -e "/^Reqs:/d" -e "/^Tags:/d"1⤵
-
/bin/sedsed -e :a -e N -e "\$!ba" -e "s/\\n/D3L1m/g"1⤵
-
/bin/catcat /boot/config-4.9.0-13-4kc-malta1⤵
-
/bin/grepgrep -E -qi "CONFIG_USER_NS=y"1⤵
-
/bin/grepgrep -qi "!="1⤵
-
/bin/grepgrep -qi "=="1⤵
-
/usr/bin/awkawk -F "==" "{print \$2}"1⤵
-
/usr/bin/awkawk -F "==" "{print \$1}"1⤵
-
/sbin/sysctl/sbin/sysctl -a1⤵
- Reads CPU attributes
- Reads runtime system information
-
/bin/grepgrep kernel.unprivileged_userns_clone1⤵
-
/usr/bin/awkawk "-F=" "{print \$2}"1⤵
-
/bin/catcat /boot/config-4.9.0-13-4kc-malta1⤵
-
/bin/grepgrep -E -qi "CONFIG_USER_NS=y"1⤵
-
/bin/grepgrep -qi "!="1⤵
-
/bin/grepgrep -qi "=="1⤵
-
/usr/bin/awkawk -F "==" "{print \$2}"1⤵
-
/usr/bin/awkawk -F "==" "{print \$1}"1⤵
-
/sbin/sysctl/sbin/sysctl -a1⤵
- Reads CPU attributes
- Reads runtime system information
-
/bin/grepgrep kernel.unprivileged_userns_clone1⤵
-
/usr/bin/awkawk "-F=" "{print \$2}"1⤵
-
/bin/grepgrep -E -i "^samba-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^udev-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^udev-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i -o -e "-[\\.0-9\\+:p]+[-\\+]"1⤵
-
/usr/bin/cutcut -d: -f21⤵
-
/bin/sedsed "s/[\\+-]//g"1⤵
-
/bin/sedsed "s/p[0-9]//g"1⤵
-
/bin/grepgrep -E -i "^udev-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^udev-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i -o -e "-[\\.0-9\\+:p]+[-\\+]"1⤵
-
/usr/bin/cutcut -d: -f21⤵
-
/bin/sedsed "s/[\\+-]//g"1⤵
-
/bin/sedsed "s/p[0-9]//g"1⤵
-
/bin/grepgrep -E -i "^libpam-modules-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^systemtap-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^polkit-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^ktsuss-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^sudo-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^sudo-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i -o -e "-[\\.0-9\\+:p]+[-\\+]"1⤵
-
/usr/bin/cutcut -d: -f21⤵
-
/bin/sedsed "s/[\\+-]//g"1⤵
-
/bin/sedsed "s/p[0-9]//g"1⤵
-
/bin/grepgrep -E -i "^sudo-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i -o -e "-[\\.0-9\\+:p]+[-\\+]"1⤵
-
/usr/bin/cutcut -d: -f21⤵
-
/bin/sedsed "s/[\\+-]//g"1⤵
-
/bin/sedsed "s/p[0-9]//g"1⤵
-
/bin/grepgrep -E -i "^chkrootkit-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^glibc|libc6-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^abrt-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^abrt-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^apport-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^apport-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^fuse-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^setroubleshoot-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^libuser-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^abrt-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^openssh-server-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^openssh-server-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i -o -e "-[\\.0-9\\+:p]+[-\\+]"1⤵
-
/usr/bin/cutcut -d: -f21⤵
-
/bin/sedsed "s/[\\+-]//g"1⤵
-
/bin/sedsed "s/p[0-9]//g"1⤵
-
/bin/grepgrep -E -i "^openssh-server-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i -o -e "-[\\.0-9\\+:p]+[-\\+]"1⤵
-
/usr/bin/cutcut -d: -f21⤵
-
/bin/sedsed "s/[\\+-]//g"1⤵
-
/bin/sedsed "s/p[0-9]//g"1⤵
-
/bin/grepgrep -E -i "^blueman-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^tomcat-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^nginx|nginx-full-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^exim-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^exim-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^setroubleshoot-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^tomcat-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^mysql-server|mariadb-server-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^nagios-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^ntfs-3g-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^s-nail-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^sudo-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^sudo-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i -o -e "-[\\.0-9\\+:p]+[-\\+]"1⤵
-
/usr/bin/cutcut -d: -f21⤵
-
/bin/sedsed "s/[\\+-]//g"1⤵
-
/bin/sedsed "s/p[0-9]//g"1⤵
-
/bin/grepgrep -E -i "^sudo-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^sudo-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/usr/bin/cutcut -d: -f21⤵
-
/bin/grepgrep -E -i -o -e "-[\\.0-9\\+:p]+[-\\+]"1⤵
-
/bin/sedsed "s/[\\+-]//g"1⤵
-
/bin/sedsed "s/p[0-9]//g"1⤵
-
/bin/grepgrep -E -i "^glibc|libc6-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^glibc|libc6-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^glibc|libc6-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^glibc|libc6-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^glibc|libc6-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^networkmanager-vpnc|network-manager-vpnc-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^xorg-x11-server-Xorg-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^snapd-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^exim|exim4-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^sudo-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^sudo-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i -o -e "-[\\.0-9\\+:p]+[-\\+]"1⤵
-
/usr/bin/cutcut -d: -f21⤵
-
/bin/sedsed "s/[\\+-]//g"1⤵
-
/bin/sedsed "s/p[0-9]//g"1⤵
-
/bin/grepgrep debian1⤵
-
/usr/bin/cutcut "-d=" -f11⤵
-
/usr/bin/cutcut "-d=" -f21⤵
-
/bin/grepgrep -E 191⤵
-
/bin/sedsed -e "/^Name:/d" -e "/^Reqs:/d" -e "/^Tags:/d"1⤵
-
/bin/sedsed -e :a -e N -e "\$!ba" -e "s/\\n/D3L1m/g"1⤵
-
/bin/grepgrep -E -i "^sudo-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^sudo-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i -o -e "-[\\.0-9\\+:p]+[-\\+]"1⤵
-
/usr/bin/cutcut -d: -f21⤵
-
/bin/sedsed "s/[\\+-]//g"1⤵
-
/bin/sedsed "s/p[0-9]//g"1⤵
-
/bin/grepgrep debian1⤵
-
/usr/bin/cutcut "-d=" -f11⤵
-
/usr/bin/cutcut "-d=" -f21⤵
-
/bin/grepgrep -E 191⤵
-
/usr/bin/cutcut "-d=" -f11⤵
-
/usr/bin/cutcut "-d=" -f21⤵
-
/bin/grepgrep -E "18|20"1⤵
-
/usr/bin/cutcut "-d=" -f11⤵
-
/usr/bin/cutcut "-d=" -f21⤵
-
/bin/grepgrep -E 101⤵
-
/bin/sedsed -e "/^Name:/d" -e "/^Reqs:/d" -e "/^Tags:/d"1⤵
-
/bin/sedsed -e :a -e N -e "\$!ba" -e "s/\\n/D3L1m/g"1⤵
-
/bin/grepgrep -E -i "^sudo-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^sudo-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i -o -e "-[\\.0-9\\+:p]+[-\\+]"1⤵
-
/usr/bin/cutcut -d: -f21⤵
-
/bin/sedsed "s/[\\+-]//g"1⤵
-
/bin/sedsed "s/p[0-9]//g"1⤵
-
/bin/grepgrep debian1⤵
-
/usr/bin/cutcut "-d=" -f11⤵
-
/usr/bin/cutcut "-d=" -f21⤵
-
/bin/grepgrep -E "6|7|8"1⤵
-
/usr/bin/cutcut "-d=" -f11⤵
-
/usr/bin/cutcut "-d=" -f21⤵
-
/bin/grepgrep -E "14|16|17|18|19|20"1⤵
-
/usr/bin/cutcut "-d=" -f11⤵
-
/usr/bin/cutcut "-d=" -f21⤵
-
/bin/grepgrep -E "9|10"1⤵
-
/bin/sedsed -e "/^Name:/d" -e "/^Reqs:/d" -e "/^Tags:/d"1⤵
-
/bin/sedsed -e :a -e N -e "\$!ba" -e "s/\\n/D3L1m/g"1⤵
-
/bin/grepgrep -E -i "^screen-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/bin/grepgrep -E -i "^polkit|policykit-1-[0-9]+"1⤵
-
/usr/bin/headhead -11⤵
-
/usr/bin/sortsort -r1⤵
-
/usr/bin/awkawk -FName: "{print \$1}"1⤵
-
/bin/sedsed "s/^[0-9]//g"1⤵
-
/bin/sedsed "s/D3L1m/\\n/g"1⤵
-
/bin/grepgrep "exploit-db: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "analysis-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "ext-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "Comments: "1⤵
-
/usr/bin/cutcut "-d " -f 2-1⤵
-
/bin/grepgrep "Reqs: "1⤵
-
/usr/bin/cutcut "-d " -f 21⤵
-
/usr/bin/cutcut "-d " -f 2-1⤵
-
/usr/bin/trtr -d " ()/"1⤵
-
/bin/grepgrep "bin-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "src-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep -o -i "(dos"1⤵
-
/usr/bin/awkawk -FName: "{print \$1}"1⤵
-
/bin/sedsed "s/^[0-9]//g"1⤵
-
/bin/sedsed "s/D3L1m/\\n/g"1⤵
-
/bin/grepgrep "exploit-db: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "analysis-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "ext-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "Comments: "1⤵
-
/usr/bin/cutcut "-d " -f 2-1⤵
-
/bin/grepgrep "Reqs: "1⤵
-
/usr/bin/cutcut "-d " -f 21⤵
-
/usr/bin/cutcut "-d " -f 2-1⤵
-
/usr/bin/trtr -d " ()/"1⤵
-
/bin/grepgrep "bin-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "src-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep -o -i "(dos"1⤵
-
/usr/bin/awkawk -FName: "{print \$1}"1⤵
-
/bin/sedsed "s/^[0-9]//g"1⤵
-
/bin/sedsed "s/D3L1m/\\n/g"1⤵
-
/bin/grepgrep "exploit-db: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "analysis-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "ext-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "Comments: "1⤵
-
/usr/bin/cutcut "-d " -f 2-1⤵
-
/bin/grepgrep "Reqs: "1⤵
-
/usr/bin/cutcut "-d " -f 21⤵
-
/usr/bin/cutcut "-d " -f 2-1⤵
-
/usr/bin/trtr -d " ()/"1⤵
-
/bin/grepgrep "bin-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "src-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep -o -i "(dos"1⤵
-
/usr/bin/awkawk -FName: "{print \$1}"1⤵
-
/bin/sedsed "s/^[0-9]//g"1⤵
-
/bin/sedsed "s/D3L1m/\\n/g"1⤵
-
/bin/grepgrep "exploit-db: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "analysis-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "ext-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "Comments: "1⤵
-
/usr/bin/cutcut "-d " -f 2-1⤵
-
/bin/grepgrep "Reqs: "1⤵
-
/usr/bin/cutcut "-d " -f 21⤵
-
/usr/bin/cutcut "-d " -f 2-1⤵
-
/usr/bin/trtr -d " ()/"1⤵
-
/bin/grepgrep "bin-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "src-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep -o -i "(dos"1⤵
-
/usr/bin/awkawk -FName: "{print \$1}"1⤵
-
/bin/sedsed "s/^[0-9]//g"1⤵
-
/bin/sedsed "s/D3L1m/\\n/g"1⤵
-
/bin/grepgrep "exploit-db: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "analysis-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "ext-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "Comments: "1⤵
-
/usr/bin/cutcut "-d " -f 2-1⤵
-
/bin/grepgrep "Reqs: "1⤵
-
/usr/bin/cutcut "-d " -f 21⤵
-
/usr/bin/cutcut "-d " -f 2-1⤵
-
/usr/bin/trtr -d " ()/"1⤵
-
/bin/grepgrep "bin-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "src-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep -o -i "(dos"1⤵
-
/usr/bin/awkawk -FName: "{print \$1}"1⤵
-
/bin/sedsed "s/^[0-9]//g"1⤵
-
/bin/sedsed "s/D3L1m/\\n/g"1⤵
-
/bin/grepgrep "exploit-db: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "analysis-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "ext-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "Comments: "1⤵
-
/usr/bin/cutcut "-d " -f 2-1⤵
-
/bin/grepgrep "Reqs: "1⤵
-
/usr/bin/cutcut "-d " -f 21⤵
-
/usr/bin/cutcut "-d " -f 2-1⤵
-
/usr/bin/trtr -d " ()/"1⤵
-
/bin/grepgrep "bin-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep "src-url: "1⤵
-
/usr/bin/awkawk "{print \$2}"1⤵
-
/bin/grepgrep -o -i "(dos"1⤵
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
270B
MD5ee10762d37537e1887f4a35f45c0adaf
SHA10938fcc9929f63038efbb55fa0bb1cf3eccd758e
SHA256211ec73c1e0d03f0f75e457962a94ddade882ca4f5b0085205b38ab2b14eaa00
SHA512fdb212c8f4ab247c885fb0dde28b6c3342259c4f652d0e076eec27052fa3bf7a1bb56b412edccd89f8efcb827e78affa8c7dad9ba2ea52a0d976f5e9f1417af7