Analysis
-
max time kernel
9s -
max time network
53s -
platform
ubuntu-18.04_amd64 -
resource
ubuntu1804-amd64-20240226-en -
resource tags
-
submitted
28-03-2024 21:56
General
-
Target
http://google.com
Malware Config
Signatures
-
Changes its process name 64 IoCs
-
Reads user data of web browsers 63 IoCs
Reads stored browser data which can include saved credentials.
-
Checks CPU configuration 1 TTPs 1 IoCs
Checks CPU information which indicate if the system is a virtual machine.
-
Reads CPU attributes 1 TTPs 11 IoCs
-
Enumerates kernel/hardware configuration 1 TTPs 60 IoCs
Reads contents of /sys virtual filesystem to enumerate system information.
-
Reads runtime system information 64 IoCs
Reads data from /proc virtual filesystem.
-
Writes file to tmp directory 1 IoCs
Malware often drops required files in the /tmp directory.
Processes
-
/usr/bin/xdg-openxdg-open http://google.com1⤵
-
/usr/bin/dbus-senddbus-send --print-reply "--dest=org.freedesktop.DBus" /org/freedesktop/DBus org.freedesktop.DBus.GetNameOwner string:org.gnome.SessionManager2⤵
-
/usr/bin/dbus-launchdbus-launch --autolaunch 11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr3⤵
-
/bin/grepgrep " = \\\"xfce4\\\"\$"2⤵
-
/usr/bin/xpropxprop -root _DT_SAVE_MODE2⤵
-
/bin/grepgrep -i "^xfce_desktop_window"2⤵
-
/usr/bin/xpropxprop -root2⤵
-
/bin/grepgrep -q "^Enlightenment"2⤵
-
/bin/unameuname2⤵
-
/bin/grepgrep -q "^file://"2⤵
-
/bin/egrepegrep -q "^[[:alpha:]+\\.\\-]+:"2⤵
-
/usr/local/sbin/grepgrep -E -q "^[[:alpha:]+\\.\\-]+:"2⤵
-
/usr/local/bin/grepgrep -E -q "^[[:alpha:]+\\.\\-]+:"2⤵
-
/usr/sbin/grepgrep -E -q "^[[:alpha:]+\\.\\-]+:"2⤵
-
/usr/bin/grepgrep -E -q "^[[:alpha:]+\\.\\-]+:"2⤵
-
/sbin/grepgrep -E -q "^[[:alpha:]+\\.\\-]+:"2⤵
-
/bin/grepgrep -E -q "^[[:alpha:]+\\.\\-]+:"2⤵
-
/usr/bin/xdg-mimexdg-mime query default x-scheme-handler/http2⤵
-
/usr/bin/dbus-senddbus-send --print-reply "--dest=org.freedesktop.DBus" /org/freedesktop/DBus org.freedesktop.DBus.GetNameOwner string:org.gnome.SessionManager3⤵
-
/usr/bin/dbus-launchdbus-launch --autolaunch 11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr4⤵
-
/bin/grepgrep " = \\\"xfce4\\\"\$"3⤵
-
/usr/bin/xpropxprop -root _DT_SAVE_MODE3⤵
-
/bin/grepgrep -i "^xfce_desktop_window"3⤵
-
/usr/bin/xpropxprop -root3⤵
-
/bin/grepgrep -q "^Enlightenment"3⤵
-
/bin/unameuname3⤵
-
/usr/bin/whichwhich firefox2⤵
-
/usr/bin/firefox/usr/bin/firefox http://google.com2⤵
-
/usr/bin/whichwhich /usr/bin/firefox3⤵
-
/usr/lib/firefox/firefox/usr/lib/firefox/firefox http://google.com2⤵
- Reads user data of web browsers
- Reads CPU attributes
- Enumerates kernel/hardware configuration
- Reads runtime system information
- Writes file to tmp directory
-
/usr/bin/dbus-launchdbus-launch --autolaunch 11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr3⤵
-
/usr/local/sbin/dbus-launchdbus-launch "--autolaunch=11c67417355f45d397f6be11f62e85a6" --binary-syntax --close-stderr3⤵
-
/usr/local/bin/dbus-launchdbus-launch "--autolaunch=11c67417355f45d397f6be11f62e85a6" --binary-syntax --close-stderr3⤵
-
/usr/sbin/dbus-launchdbus-launch "--autolaunch=11c67417355f45d397f6be11f62e85a6" --binary-syntax --close-stderr3⤵
-
/usr/bin/dbus-launchdbus-launch "--autolaunch=11c67417355f45d397f6be11f62e85a6" --binary-syntax --close-stderr3⤵
-
/usr/bin/dbus-daemon/usr/bin/dbus-daemon --syslog-only --fork --print-pid 5 --print-address 7 --session1⤵
- Enumerates kernel/hardware configuration
- Reads runtime system information
-
/bin/sedsed -n "s/\\(^[[:alnum:]+\\.-]*\\):.*\$/\\1/p"1⤵
- Reads runtime system information
-
/bin/sedsed "s/:/ /g"1⤵
- Reads runtime system information
-
/usr/bin/cutcut -d ";" -f 11⤵
-
/usr/bin/cutcut -d "=" -f 21⤵
-
/usr/bin/headhead -n 11⤵
-
/bin/grepgrep "x-scheme-handler/http=" /.local/share/applications/defaults.list /.local/share/applications/mimeinfo.cache1⤵
-
/usr/bin/cutcut -d ";" -f 11⤵
-
/usr/bin/cutcut -d "=" -f 21⤵
-
/usr/bin/headhead -n 11⤵
-
/bin/grepgrep "x-scheme-handler/http=" /.local/share/applications/defaults.list /.local/share/applications/mimeinfo.cache1⤵
-
/usr/bin/cutcut -d ";" -f 11⤵
-
/usr/bin/cutcut -d "=" -f 21⤵
-
/usr/bin/headhead -n 11⤵
-
/bin/grepgrep "x-scheme-handler/http=" /usr/local/share//applications/defaults.list /usr/local/share//applications/mimeinfo.cache1⤵
-
/usr/bin/cutcut -d ";" -f 11⤵
-
/usr/bin/cutcut -d "=" -f 21⤵
-
/usr/bin/headhead -n 11⤵
-
/bin/grepgrep "x-scheme-handler/http=" /usr/local/share//applications/defaults.list /usr/local/share//applications/mimeinfo.cache1⤵
-
/usr/bin/cutcut -d ";" -f 11⤵
-
/usr/bin/cutcut -d "=" -f 21⤵
-
/usr/bin/headhead -n 11⤵
-
/bin/grepgrep "x-scheme-handler/http=" /usr/share//applications/defaults.list /usr/share//applications/mimeinfo.cache1⤵
-
/bin/sedsed "s/:/ /g"1⤵
- Reads runtime system information
-
/bin/sedsed -e "s|-|/|"1⤵
- Reads runtime system information
-
/bin/sedsed -e "s|-|/|"1⤵
- Reads runtime system information
-
/usr/bin/cutcut "-d=" -f 2-1⤵
-
/usr/bin/cutcut "-d=" -f 2-1⤵
-
/usr/bin/cutcut "-d=" -f 2-1⤵
-
/usr/bin/cutcut "-d=" -f 2-1⤵
-
/usr/bin/lsb_release/usr/bin/lsb_release -idrc1⤵
-
/usr/lib/firefox/firefox/usr/lib/firefox/firefox -contentproc -parentBuildID 20230522134052 -prefsLen 19257 -prefMapSize 230809 -appDir /usr/lib/firefox/browser "{5cdb1d14-7fbe-4cd6-a31c-69c41da0b785}" 1606 true socket1⤵
- Changes its process name
- Reads CPU attributes
- Enumerates kernel/hardware configuration
- Reads runtime system information
-
/usr/libexec/xdg-desktop-portal/usr/libexec/xdg-desktop-portal1⤵
- Reads runtime system information
-
/usr/libexec/xdg-document-portal/usr/libexec/xdg-document-portal1⤵
- Reads runtime system information
-
/usr/libexec/xdg-permission-store/usr/libexec/xdg-permission-store1⤵
- Reads runtime system information
-
/usr/libexec/xdg-desktop-portal-gtk/usr/libexec/xdg-desktop-portal-gtk1⤵
- Reads runtime system information
-
/usr/lib/gvfs/gvfsd/usr/lib/gvfs/gvfsd1⤵
- Reads runtime system information
-
/usr/lib/gvfs/gvfsd-fuse/usr/lib/gvfs/gvfsd-fuse /root/.gvfs -f -o big_writes1⤵
- Reads runtime system information
-
/usr/lib/firefox/firefox/usr/lib/firefox/firefox -contentproc -childID 1 -isForBrowser -prefsLen 21807 -prefMapSize 230809 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir /usr/lib/firefox/browser "{d2d016d5-14f4-4bf8-80f8-8ac683b83238}" 1606 true tab1⤵
- Reads CPU attributes
- Enumerates kernel/hardware configuration
- Reads runtime system information
-
/usr/lib/firefox/firefox/usr/lib/firefox/firefox -contentproc -childID 2 -isForBrowser -prefsLen 21475 -prefMapSize 230809 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir /usr/lib/firefox/browser "{5c0b98d3-6e81-4504-8ddd-5d2a8950f995}" 1606 true tab1⤵
- Reads CPU attributes
- Enumerates kernel/hardware configuration
- Reads runtime system information
-
/usr/lib/firefox/firefox/usr/lib/firefox/firefox -contentproc -childID 3 -isForBrowser -prefsLen 21824 -prefMapSize 230809 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir /usr/lib/firefox/browser "{764b4a70-d116-4772-99fc-8b80c2e6aae1}" 1606 true tab1⤵
- Reads CPU attributes
- Enumerates kernel/hardware configuration
- Reads runtime system information
-
/usr/lib/firefox/firefox/usr/lib/firefox/firefox -contentproc -childID 4 -isForBrowser -prefsLen 27881 -prefMapSize 230809 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir /usr/lib/firefox/browser "{f2095005-3ba3-468e-8808-c04bccb36611}" 1606 true tab1⤵
- Reads CPU attributes
- Enumerates kernel/hardware configuration
- Reads runtime system information
Network
MITRE ATT&CK Matrix ATT&CK v13
Replay Monitor
Loading Replay Monitor...
Downloads
-
/root/.cache/dconf/userFilesize
2B
MD5f0ab60f88e117ae57457ff9cb88b5ab6
SHA140e26bcbbb92642884fc43a5668eadecf379a713
SHA2562334318565750d1aa1d02f22dd12ab5dff3b9c3fbc7a4935bb51d0fa05745ac0
SHA5124e53483621db07b66f32a71644a2f705a5b66b5e5ddeb598523881082b2066b3d6298bbc699d4fea446e8dfd0c560def5e3b7d714934ae74c2e99dc2bbcf3f1a
-
/root/.cache/mozilla/firefox/aimtzv8e.default-release/cache2/entries/3D1E19D09F398691ABF62061591970855193B42FFilesize
13KB
MD573eb4e8b6bf15634ee1b3512515a3580
SHA1197c8003739f4789ba96bdde138302603773b9ca
SHA2562c17a3e1cb6798a0b7d9c515b5fdd6d4aabf8450cc0a54811576ec26c9828cf9
SHA5121e33555beff4486b1f71eb6d7d76d2bd2f8cce32a4dd2bc85bf2c37eed4bd6f28d235a67b5c84482b8fa4de299657d355b4535cb7c6e172c6ad9c411bc370214
-
/root/.dbus/session-bus/11c67417355f45d397f6be11f62e85a6-0Filesize
466B
MD54357c1cdd5743e7a5eeed88179e29c2c
SHA121ca61bcfbf5546375692f26466f0178c23a6a3b
SHA2566c6ced0787f7aa494351ebfd4e3bbcd96d250358654489fa7a578cfb58cbc4ea
SHA51218b4cccccc6f1326f1bd980051bbbe1c30c2ab750416c612a444136ddbd4e4168e7b61a81f27e555405da4beb9c648bd516a724258c97cb41589697c1c7cfd0e
-
/root/.mozilla/firefox/1xzlp451.default/times.jsonFilesize
47B
MD575c6085b307d6e3e8cbbd782fda78606
SHA12489c0ca402bad93295095f02dfb79d5aa03b24e
SHA256439766d4279ac7cb7569d8e7b5955849ce3aa933ac0b0f514825e17700f617f6
SHA51274c92489a5ee9403b300ca9377fa23b4c8c0702e976a5da61bfa103567c6099cfbf0877d607d106ab39a221489676a1a4bf679304a7595be1ef3a777f49d0e75
-
/root/.mozilla/firefox/Crash Reports/InstallTime20230522134052Filesize
10B
MD5260da0affd052af9cce0648488b3d6ad
SHA11eab5850a973d14ae9cf8820ce5a2b4344443a9e
SHA256ff2c834709d8ce821f84a8e02614aa8d02a7b3f90584f5556f0e18440cae0fd3
SHA512e216bf2dba9f83302094bb0b1df705cc1b5f90c131dfcc7c2d6800eb26040f7269444438bb282268b296199b543d32ca611c7dedd11acb347463c7be8c6566dd
-
/root/.mozilla/firefox/aimtzv8e.default-release/cert9.dbFilesize
224KB
MD5e180aa109826d2825631b2dc45e4b021
SHA1cc7403a5a3eb5d13e9e65c817cca7a1dc27634c4
SHA2561d3b909a13beb91213093e6b32a1d12f210695d28022d5b89a5540a930b36cf5
SHA5123c904d130edc1bd04355774de613752c94c613f252c4fc90d366d9a1db06aa8eebcc27457a81c59156e54322e547e8f81eee7a08d161b49c8c750463509541cb
-
/root/.mozilla/firefox/aimtzv8e.default-release/cert9.dbFilesize
224KB
MD54e8ce5510d96951089f59ced820dfdbe
SHA1a2776b8bce63076ec9e21b3989dc2f85f323228a
SHA256c1391e1d57d826a93524ac8abb43e415026a687059e27e5985cb905eebcd692b
SHA512ce7761aa66eb65a9642960baef772178bfe4225cad3532266a80b73fd3c53f6f2199439bbf65a3b6ecc85c4e95763aad33af525331fbada5d3a3fb8f69da9fbf
-
/root/.mozilla/firefox/aimtzv8e.default-release/cert9.dbFilesize
224KB
MD557d58426bb8b41e3adc06ad129bf95f2
SHA1e9b193c1740b398b061cd41401b4abf4ffc7b264
SHA256815d1e20229415350453b43a7cb7bdc03ae0adc753b35a2cc61e798b9caf010c
SHA512c388998810ddb8c65a24dd6f5ca97cc68d2870ad8efeced9cbd2439110b5aecb1a09ab18593ec72e8e6f08129cb1d2d76ab3e1dce4b4b415b125642fc358197d
-
/root/.mozilla/firefox/aimtzv8e.default-release/compatibility.iniFilesize
163B
MD5fe452b7294d5928a9a5863b89ee0a6bd
SHA1a5d4c245071fa96476ba48b4725bdae7f1b7940f
SHA256d5bfb07561606a19aa96557ea109b175050dc0eb805cbef9c813503587d77900
SHA512dc37d8507f08849e3382d2dbafd4a64555dbd57a288c95131e9aefb366630f1585811a9e1456b861bb9d2b816ed88b18ffb7580cd92b41bb9b0227ce1363843e
-
/root/.mozilla/firefox/aimtzv8e.default-release/cookies.sqliteFilesize
96KB
MD59535f5fe817accc769c2c1d3354db39f
SHA16af62cf08717cf3bfa84eb1a7b311acf522ce560
SHA256c53c15fcfac2bb57fdc88d23f932fc244dbaf4020f0f6eaecf0f77a37c21f8c5
SHA512dc9c2c32eb42dda0a7a711e143aea58c603c1e9d885c3677e9fe86f525e1b0b32a46e240756263e56510b07e764ba69f2de13b90ec18210678242e10cfe17837
-
/root/.mozilla/firefox/aimtzv8e.default-release/cookies.sqliteFilesize
96KB
MD55caa766855d5613a999f71b7812d6451
SHA1ad0d9a52a0d5cc7f11858301dbe47377ed99ee37
SHA2563a8ce2b07e3e8678a13aa58ef5b942c4dccd8f9c84511bdeb8847ef270797e27
SHA51217bb0f4c87ec178910795b25ce85e74cf599190c769592472c3e872f42930c93f28faf0ff3e448816a9abcc8af0459852bed52bee08cfe25d068879c6dfd8eba
-
/root/.mozilla/firefox/aimtzv8e.default-release/key4.dbFilesize
288KB
MD531bb714bead66d86d0d9d7ab83fc24ad
SHA1f3b2feae2418b1921835ef2c0bae413ab34d5272
SHA25663e27eec02fa2d204fd4f89caab20f0a6901920be54b57e2719144b49d2cab2c
SHA512c395f8ac288b87817a80334003361d028a09544e978918f9f244608a2448072508a02d5f6dd5883c75fc37378f2d12eb34e62769955c5507d30079b6c5e0b26c
-
/root/.mozilla/firefox/aimtzv8e.default-release/permissions.sqliteFilesize
96KB
MD5232fbc22dd03a8ec41edde02bdbea61c
SHA16ab4b39bca95418c52f7f861fd39e5fddb9cc7b6
SHA256d88bf367aaf79efbb2e8fbdb1dc5bde1c1c3a53e0f4d8188027a63ec55d5f5f0
SHA512055f1595f4a327347671db53cec8d89a310109d3f871c567e3d5b654b956fc0369d12437f7dc6d9327b973008f1327ee0dfdb5504f1b3cbe00da29941b1e5892
-
/root/.mozilla/firefox/aimtzv8e.default-release/prefs-1.jsFilesize
1KB
MD5c20f18b04f19add5f554cfc82fd977d9
SHA1ecea89ac4ef77085df07cbf7c993b5609ac09f99
SHA25620dde714099377f99e2423a09b4194ea1bec0a2239dd499587c235cce8092756
SHA512e61367482a7356f876c12a5a2099881be5ad32524cd61104d6a19f0d371b3a34636aebd8cff11815929d3cbba35c1ef7d5d70873d02e338eafc1d8d72c221114
-
/root/.mozilla/firefox/aimtzv8e.default-release/prefs-1.jsFilesize
1KB
MD5ade7bedf7edec85161180cb890e62ac1
SHA132bef72a6590dced7f83b679531255c89c8f0047
SHA256b5391fd87e89939e84995445a05d872f5e7431597421bda5466c8b09f1e2a89e
SHA51287647d1367c3b358d897cfad493ecf1dbc9d20922e6a6af7bba7a18300c8109176cc52d476174b5983e786fb41e05cac13b71a7a4d78f8816f69d207a34c58a9
-
/root/.mozilla/firefox/aimtzv8e.default-release/prefs-1.jsFilesize
2KB
MD5eea218ffaa08f96204f2d9ad1828842f
SHA12f522c42191df3f4cfdfd0d796e43cb936bfb332
SHA25608351f5e0e0fe5165ac08a2b0a3a10107dcb345a21cd0f8930d3b1da0a242307
SHA51234258aa1b6779a2a5d1a357c44cf44e2442a39e2e447b6472c621672adaf91d2a93c17ace4af2875193ce2ebf99e3f9b927bd3a2d55e65d4a3e99cab74804966
-
/root/.mozilla/firefox/aimtzv8e.default-release/prefs-1.jsFilesize
2KB
MD57513e3bcb7b1cb34b872a8ffbc8b6780
SHA1e8f779e8425806dcdbb758195cbfc2f0f6a0050c
SHA25620a5bf95c82e7e4f28e52ff678d5db6a4d9e57c7759eff123cde2c515b7505c1
SHA51266d71ca5c8be5605427d1468b8304409a028815502f4527790c13108d0bf09b30aa4108103a0357cdc4cf34c402c984f99ed0c23961a9ab154a1a0f428677d44
-
/root/.mozilla/firefox/aimtzv8e.default-release/prefs-1.jsFilesize
3KB
MD5c005c1876238743db7524c2f8364031a
SHA1992dda9e923205bca2373fc72ca3984ce7a5a942
SHA256c8c13c9d810d6834de4a49cc3ecbc6162cf2d1c9eea57e2bab1b3e8e408c97f7
SHA512331ee290aa05275b1c8ce070d1efafd9aef3e90f2f1746d8fe09222bb9c89d4435163f0cd312b104a3c4f0bff42d621762212d064aac622b47f76e52dafd1c30
-
/root/.mozilla/firefox/aimtzv8e.default-release/prefs-1.jsFilesize
4KB
MD51552174d35abf4a20555a9bf11712e19
SHA1577bcf7cd9d03a9438c1a0a2dff28e554509f39b
SHA256e6898a90494c55ee4404c763a6822b8aa0ea1412d24814ba0ada432c26c58426
SHA5125a31cb938223e5128e66435cdffc8c03e0300fe2a7f495225a17790e2612ced5b036ba586a19042a6f6c8b8136c74d4ce8bb78103b87366b3379631d9d88d451
-
/root/.mozilla/firefox/aimtzv8e.default-release/prefs.jsFilesize
995B
MD548e4510aad5b76be21e33f30bf6dfcee
SHA1723dece2ba799c2f41003c7dd5eb44779cff85bc
SHA25672945b1911e47edd49457ea391175d5590e14be135bedc03ca07a89b333a1e31
SHA51292f0d34eddbe885d350cc7e5c5bfd18b5c3ed9e662d27b8d33b2e544626fbc62283b987f0bbd943eb6f9422474b20f151d0a105de4e43a38867af1de006fa719
-
/root/.mozilla/firefox/aimtzv8e.default-release/storage/ls-archive.sqliteFilesize
96KB
MD5e0c613bfd69956a19ce2dc5e925aa223
SHA114accb230edcd6cb76967cdc6d4e5686db96b5df
SHA2560d4cb11f6364c46a75f9eaddfca5c660b90dfd515df3afcd5e0baeca28a0f1ab
SHA51201643c0131a392be92b3f281d7f633c1f502bff19090b0d716f1ac66aefecc3fcf92f393bef66b03089c9b9c6d8aaeb711b6a4f29d5a6729dd188c838f2272d1
-
/root/.mozilla/firefox/aimtzv8e.default-release/storage/ls-archive.sqliteFilesize
128KB
MD5178d71e5529d637ac62f7e75fdd75896
SHA1339f2b949cc4c207b66aea11137448ba28d36dcb
SHA2567b0050f1bfaab85c8f9067ae7d7369056ff752c0c852ef1462a96c22169004d4
SHA512ec0e0105fcfbbae356dd55efbcf92975f35bbe5cb93fcabf4c08443e871957635d14830b27c4e1ddefbbaff8f9b7ec3590bf417a9442e1d7ee3607d14d56f664
-
/root/.mozilla/firefox/aimtzv8e.default-release/storage/permanent/chrome/.metadata-v2-tmpFilesize
42B
MD53d89cfa9ff3d85069e544effa8ef315f
SHA15ccebad7245f09f02e44a444f23c6ad042fc174b
SHA2565f014040de2f2fdfe946ede62c13a1c7f0f397041efbf81767bb576f4f36e2a1
SHA512c148c7e60503cc4becc995dcc5481a3e96e71dfa49ef7c74e59a5dcb1bf92c11c6f6469d90360218e8c851bbbd1df81c3961c1e9c0130a5238ba99a336615502
-
/root/.mozilla/firefox/aimtzv8e.default-release/storage/permanent/chrome/idb/1451318868ntouromlalnodry--epcr.sqliteFilesize
44KB
MD5a8dd7ebaad5528b23f82ccb1534cea18
SHA1600daceacfb5cf9df0b66ba7dce4516b2ac4df70
SHA256e5b0d02c18ae36c4a220f41fd97c66060c17aaafcbb324a57ccdc2707c44c4ec
SHA51267f867a8e2b37fb6bececd5ebc570ca594ea329142badd63d1281d5e735f515a5e329abc6eb9a9d3465aab0a08541b4888018d859964f160a52345ab93532bff
-
/root/.mozilla/firefox/aimtzv8e.default-release/storage/permanent/chrome/idb/1451318868ntouromlalnodry--epcr.sqliteFilesize
12KB
MD5ba758177a2c6e94234d948892cd73ad9
SHA12811a6380536a52ede6759f8421dc1042b80caf2
SHA256b270769e04dd1a5b969a961526e4be527b9084fb47e32a05e36124f596b29daf
SHA512a3cdef87384db00fe76d1c650dc14b89128b81dfa63b73c23fdec9fb38f767bd77b5af1f39fb4d5ed1e50ec44dc4e417baded57deda8e7c83c428aeff5397caf
-
/root/.mozilla/firefox/aimtzv8e.default-release/storage/permanent/chrome/idb/1657114595AmcateirvtiSty.sqliteFilesize
44KB
MD57352c8848e88edc39b7fb5e663888187
SHA18c3dffe25cc56c7aec1b782292d6fceed81e6304
SHA2567a462086a26978809c719e57a7ea6a25568767fb7532014e8531fda94b660e0a
SHA512f2a0dbbab5c2c1702b03bce15a47739481f523e127d1372b40534db9a20b2bc99fb53710ee0e5d44176188817cac704cf4f98cdf087e7e89d244281fcfc3b280
-
/root/.mozilla/firefox/aimtzv8e.default-release/storage/permanent/chrome/idb/1657114595AmcateirvtiSty.sqliteFilesize
12KB
MD5cc1767b859e52a91018e1c960409672e
SHA1f5e74d13f9c679f67f067cc0f190b06c529c18f1
SHA256d120cdded1733bc5f592c9a36c34fb42c2e6c11efcb1f2648110d50aeef58e1d
SHA512906dd72bb4711b135f575cdd8d891c364706391b93a04fd347feb149cd5b3dc9ddd70a1f5989b51a9d87502173d14da763d711c9a2880560660ab7660facfed5
-
/root/.mozilla/firefox/aimtzv8e.default-release/storage/permanent/chrome/idb/3561288849sdhlie.sqliteFilesize
44KB
MD5759544297aaa61f5fef8ee42d0ae4393
SHA1fc2d66f6e60409e3e8d38623ce5f817fc7f571e0
SHA2561bd2000cd972e80cefaec6e982ba261d224a818f367de0fdf8c51fa5a05d7ab5
SHA5128aaa2ce66f10d46f7c9200af841ac7bd9f5b55c30308a14f0deda44ac62581c45daae45154487c0073a0d5847d5926cbb4072ca64a702ac6b834ad0bb482804f
-
/root/.mozilla/firefox/aimtzv8e.default-release/storage/permanent/chrome/idb/3561288849sdhlie.sqliteFilesize
12KB
MD55b70d9e5c81aefebab75d32181d9e749
SHA1422e89c5189840d4ca60f4423b575f09db7650dd
SHA256807ad28587d6076e127516d47ed1496c7ac63fc52e2d48009bdb3876694929dd
SHA5128eea5ff9f37184b961a5151cfcf5b8892372c04885d9486ef46250753abac2c638b700bd6f0a0934ce8f353cc17351b0bffabcef6be65032cf34e176a411a746
-
/root/.mozilla/firefox/aimtzv8e.default-release/storage/permanent/chrome/idb/3561288849sdhlie.sqliteFilesize
16KB
MD50cd31f317069a5b7e38eef98aca618cc
SHA1956b96bd41dd526f2aec0cde4de12aebdf5de58b
SHA2568a40c8f80d87e95be30adab8dd4cc85e950ddb59cd0cde2d84e5ae1a2a2d3e66
SHA512eff6416d1c79bfc6e1e0d21d0aa663c0c38a0b24ffb0e0845008ecb435d7fe48e9b7113f36b2577cd79a2b5cbe09fe4ff47ec5d4359941fc1b16b2fdee2465ef
-
/root/.mozilla/firefox/aimtzv8e.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqliteFilesize
44KB
MD507a412e08825220262ad2890757ff779
SHA1f46c127dbc070ded87a6078b3c1c761955f96de8
SHA256da640f8b665841b520d2262a21cc3f82aeaa881cf81a1ddae27ef501d66544e4
SHA5120134c783bf3293848e479b478ac57a1e0f4202cddfb8b57bc6275aada7345f398cf8a627e9b1c34fd618192c2f0c9737b1da487daf33f9c557ebc1377105582b
-
/root/.mozilla/firefox/aimtzv8e.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqliteFilesize
12KB
MD59ba06316cdaa4224adcd626aa09f4da6
SHA1f3b1678b9f970f9ba3e592cbd644ea5076f4a6c0
SHA256ba7cca6d44a60785288d62d33b5bb07a407565bd9d5f490535efd5f65ee36326
SHA51210f18a5615e5f5082b7a9c2edf8826b165e627f36add2164cc98c4c58f5949b705c231e7b7b1f3bb19ad846193ea39f56107990669117009becb9ecca2df955f
-
/root/.mozilla/firefox/aimtzv8e.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqliteFilesize
164KB
MD5f378275b9ed0bf07a117b3f608af87a3
SHA12a8f67db607bdbdbba13f85741f6a1c9bb6cbfd4
SHA256cf6a448c422de807bb0a63abed80b97f90c5fe8631a1bdf430c764a061a35568
SHA5120dfac565711a7ad96e8113308a269e330b6e6516b50567fe045f7d2d9b72889b25b77d8091fafbecf7888b5804e07e9dfb7ab890c830e797d452dbd933b148b3
-
/root/.mozilla/firefox/aimtzv8e.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqliteFilesize
148KB
MD5dd3f6ba37c670af5953593535e435d04
SHA1ecfe4e650a050bce77e8ff7468de04c1b8acc9a4
SHA2565cc6fa137a1f3a7d0b615b178877f12c460b22f95702eb7534d5732ee6599561
SHA51286e0482543faae6fb279ca71e1e6d6461d32317e74baebb3973e0fde9800107faeb9c2347be6cf8a47556ae43c8e6c224a595e952f621e40ad2c5eba920df2b3
-
/root/.mozilla/firefox/aimtzv8e.default-release/times.jsonFilesize
50B
MD5638b743e322dfa01c2bdfe0007545c82
SHA115d999c09d90793b7456a37037312731ce36a2e1
SHA256711a944c3e13cd9bf653c2150790bc77d48e1bb82b7daac607051ab60340f329
SHA512e91fefe71762643b3cfddc02fc7310521f1ca54c0780a13cbe116f536f52d61da3d21458147729b1fa5a90a53041788e48c6bc5e54f9100ef27f7a0698c76e66
-
/root/.mozilla/firefox/aimtzv8e.default-release/times.jsonFilesize
47B
MD51fdfd4b173f28db5b17e2f08f89da20c
SHA1e20c4af5676e255281da77150ed630f14fa21f9c
SHA256d6f0be3bb132364fd3d4fa0b120ebee99af12d1c2860f216d77a6661e2f39849
SHA5123158b3278549fbf86eb242cb48f2b809f2dc9446b638301a6755b86815fc98681f6dc7f78c1a3b7564b2e494fd96ada30fc721e35ab875f1038b4054fd6fdcab
-
/root/.mozilla/firefox/installs.iniFilesize
62B
MD5429fd1ec03f97eab5db1d555afab7e7c
SHA1d28c24f7a4a086be92bc107e19ffbc611639a38e
SHA2565c9b906f91516eff5acff826cafd2bbbc77a18c8c33ace36b3903093a60069f4
SHA5126fada23b7ee399b40267065c480e1f00893be91d9d6ad6f00446e6430a41842a359303847d70994082ab4833dfe45374e2e4b2f3dd57754cc90d11bc1395d0c5
-
/root/.mozilla/firefox/profiles.iniFilesize
259B
MD5db50529e1bc44fcf9ac63e15c4823b15
SHA11789a097c1ba949fe03b48639e24a98a0e2425d8
SHA256559f1300ddc9a40a101e8305c3c059756080fd93b88f10b85820999252d7cb90
SHA5124cd2f2aab5196c0ff7510b57fb33b73a2bb31a10f7910d54a853e5185285983b6db8903e2f9f344c9ceea8607c0aaeff360a4a9daa69e0f400fa816627b1c00e