Resubmissions
02/05/2024, 13:21
240502-qll18ahg3s 709/04/2024, 12:32
240409-pql2caac4v 809/04/2024, 11:57
240409-n41afsed37 708/04/2024, 11:38
240408-nr43wagb76 702/04/2024, 11:55
240402-n3f57ahb3s 727/03/2024, 13:16
240327-qhx93sga5v 725/03/2024, 07:32
240325-jczgmade81 713/03/2024, 10:09
240313-l6zetsag21 7Analysis
-
max time kernel
299s -
max time network
303s -
platform
ubuntu-20.04_amd64 -
resource
ubuntu2004-amd64-20240221-en -
resource tags
-
submitted
25/03/2024, 07:32
General
-
Target
5fa7595c38e29ad36ff3ec76bf266f9c391510f773c7d8b43555db534332d763_patched_pkey_5
-
Size
8.1MB
-
MD5
e0efd46445731c6c35deffe8d9e47888
-
SHA1
219a2cc1df97fe0b51244f7238aa4114e858f1d0
-
SHA256
471c70b6764c6f719bab35b92678e323d53928a14617737a6fc994dc27d2a12e
-
SHA512
92a5438489316593f45f4afeca6e2a1654e75480f4670f58df5cb63091ec52dd8279b156a3949e2243dc350dbe31220b2ac433abb4250ddc238f70d295d1949d
-
SSDEEP
49152:az1q8M+srb/TIvO90dL3BmAFd4A64nsfJrYJaRM6CxN4+WqFottdpaCEy4SahdBV:auM2GebQyF66rNdvEoS5
Score
7/10
Malware Config
Signatures
-
Deletes itself 1 IoCs
-
Reads EFI boot settings 1 IoCs
Reads EFI boot settings from the efivars filesystem, may contain security secrets or sensitive data.
-
Attempts to change immutable files 32 IoCs
Modifies inode attributes on the filesystem to allow changing of immutable files.
-
Checks CPU configuration 1 TTPs 1 IoCs
Checks CPU information which indicate if the system is a virtual machine.
-
Enumerates running processes
Discovers information about currently running processes on the system
-
Reads CPU attributes 1 TTPs 60 IoCs
-
Enumerates kernel/hardware configuration 1 TTPs 2 IoCs
Reads contents of /sys virtual filesystem to enumerate system information.
-
Reads runtime system information 64 IoCs
Reads data from /proc virtual filesystem.
-
Writes file to tmp directory 2 IoCs
Malware often drops required files in the /tmp directory.
Processes
-
/tmp/5fa7595c38e29ad36ff3ec76bf266f9c391510f773c7d8b43555db534332d763_patched_pkey_5/tmp/5fa7595c38e29ad36ff3ec76bf266f9c391510f773c7d8b43555db534332d763_patched_pkey_51⤵
- Enumerates kernel/hardware configuration
- Reads runtime system information
- Writes file to tmp directory
-
/usr/bin/unameuname -a2⤵
-
-
/usr/bin/catcat /etc/issue2⤵
-
-
/usr/bin/catcat /proc/cpuinfo2⤵
- Checks CPU configuration
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/whoamiwhoami3⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
-
/usr/bin/uptimeuptime2⤵
- Reads CPU attributes
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/chattrchattr -ia .ssh/authorized_keys3⤵
- Attempts to change immutable files
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/chattrchattr -ia .ssh/authorized_keys3⤵
- Attempts to change immutable files
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/usr/bin/catcat "/var/log/auth*"2⤵
-
-
/usr/bin/zcatzcat "/var/log/auth*"2⤵
-
-
/usr/local/sbin/gzipgzip -cd "/var/log/auth*"2⤵
-
-
/usr/local/bin/gzipgzip -cd "/var/log/auth*"2⤵
-
-
/usr/sbin/gzipgzip -cd "/var/log/auth*"2⤵
-
-
/usr/bin/gzipgzip -cd "/var/log/auth*"2⤵
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/catcat "~/.ssh/known_hosts"3⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/grepgrep -E "(scp|ssh)"3⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 1233⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
- Reads runtime system information
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
- Reads runtime system information
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/usr/bin/freefree -h2⤵
- Reads CPU attributes
-
-
/usr/bin/uptimeuptime2⤵
- Reads CPU attributes
- Reads runtime system information
-
-
/bin/sh/bin/sh -2⤵
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/chattrchattr -ia .ssh/authorized_keys3⤵
- Attempts to change immutable files
-
-
-
/usr/bin/freefree -h2⤵
- Reads CPU attributes
-
-
/bin/sh/bin/sh -2⤵
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 1013⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
- Reads runtime system information
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
- Reads runtime system information
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 1193⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 1163⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 1163⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
- Reads runtime system information
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
- Reads runtime system information
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 1233⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
- Reads runtime system information
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 1013⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
/usr/bin/idid -n -u 03⤵
-
-
-
/bin/sh/bin/sh -2⤵
-
-
/usr/bin/freefree -h1⤵
- Reads CPU attributes
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/bin/sh/bin/sh -1⤵
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/chattrchattr +ia .ssh/authorized_keys2⤵
- Attempts to change immutable files
-
-
/usr/bin/journalctljournalctl -S "@0" -u sshd1⤵
- Reads EFI boot settings
- Enumerates kernel/hardware configuration
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 1212⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
- Reads runtime system information
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 1012⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 1192⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 1162⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 1162⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
- Reads runtime system information
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
- Reads runtime system information
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/usr/bin/uptimeuptime1⤵
- Reads CPU attributes
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/chattrchattr -ia .ssh/authorized_keys2⤵
- Attempts to change immutable files
-
-
/usr/bin/freefree -h1⤵
- Reads CPU attributes
-
/usr/bin/uptimeuptime1⤵
- Reads CPU attributes
-
/bin/sh/bin/sh -1⤵
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/chattrchattr -ia .ssh/authorized_keys2⤵
- Attempts to change immutable files
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 1232⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
- Reads runtime system information
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
-
/bin/sh/bin/sh -1⤵
-
/usr/bin/idid -n -u 02⤵
-
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
381B
MD59da18d38b6dd4c4aa84642378d63fa89
SHA1c5a976691e4b5963b5e760044f22cc9685268db6
SHA25643062900b2539d8d1f67f30fa7042c56b53541f63875b5f0de5d8fbde0e0a8bf
SHA512222b20b5b2ff8956c13dbac1f8d3f81435613b751913d65f4c4082ea9c1a7c8ae91be17a24ef4ae0c708bfe09daab552bb209615714d70acfaaed89c536c71b3