Analysis Overview
Threat Level: Shows suspicious behavior
The file http://google.com was found to be: Shows suspicious behavior.
Malicious Activity Summary
Changes its process name
Reads user data of web browsers
Reads CPU attributes
Checks CPU configuration
Enumerates kernel/hardware configuration
Reads runtime system information
Writes file to tmp directory
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-04-16 17:24
Signatures
Analysis: behavioral3
Detonation Overview
Submitted
2024-04-16 17:24
Reported
2024-04-16 17:24
Platform
debian9-mipsbe-20240226-en
Command Line
Signatures
Processes
Network
Files
Analysis: behavioral4
Detonation Overview
Submitted
2024-04-16 17:24
Reported
2024-04-16 17:24
Platform
debian9-mipsel-20240226-en
Command Line
Signatures
Processes
Network
Files
Analysis: behavioral1
Detonation Overview
Submitted
2024-04-16 17:24
Reported
2024-04-16 17:42
Platform
ubuntu1804-amd64-20240226-en
Max time kernel
43s
Max time network
628s
Command Line
Signatures
Changes its process name
| Description | Indicator | Process | Target |
| Changes the process name, possibly in an attempt to hide itself | glean.dispatche | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | IPC I/O Parent | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | IPC I/O Parent | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | IPC I/O Parent | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | Backgro~Pool #1 | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | Backgro~Pool #1 | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | IPDL Background | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | IPDL Background | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | Socket Thread | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | Socket Thread | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | HTML5 Parser | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | HTML5 Parser | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | Netlink Monitor | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | Netlink Monitor | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | Timer | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | Timer | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | JS Watchdog | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | JS Watchdog | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | BGReadURLs | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | BGReadURLs | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | Cache2 I/O | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | Cookie | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | Cookie | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | StreamTrans #1 | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | StreamTrans #1 | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | TaskCon~ller #1 | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | TaskCon~ller #0 | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | BgIOThr~Pool #1 | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | BgIOThr~Pool #1 | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | QuotaManager IO | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | QuotaManager IO | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | IndexedDB #1 | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | IndexedDB #1 | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | IPC Launch | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | IPC Launch | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | SandboxReporter | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | SandboxReporter | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | Breakpad Server | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | Sandbox Forked | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | DOM Worker | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | DOM Worker | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | Chroot Helper | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | StreamTrans #5 | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | StreamTrans #5 | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | StreamTrans #4 | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | StreamTrans #4 | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | StreamTrans #3 | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | StreamTrans #3 | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | StreamTrans #2 | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | StreamTrans #2 | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | MainThread | /usr/lib/firefox/firefox | N/A |
| Changes the process name, possibly in an attempt to hide itself | IPC I/O Child | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | IPC I/O Child | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | IPC I/O Child | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | FSBroker1700 | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | FSBroker1700 | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | Socket Process | /usr/lib/firefox/firefox | N/A |
| Changes the process name, possibly in an attempt to hide itself | Socket Thread | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | Socket Thread | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | Backgro~Pool #1 | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | Backgro~Pool #1 | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | ProfilerChild | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | ProfilerChild | N/A | N/A |
| Changes the process name, possibly in an attempt to hide itself | Timer | N/A | N/A |
Reads user data of web browsers
| Description | Indicator | Process | Target |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/sessionstore-backups/previous.jsonlz4 | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/sessionstore-backups/previous.js | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/1657114595AmcateirvtiSty.sqlite-journal | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/favicons.sqlite-wal | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/logins.json | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/cookies.sqlite-journal | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/key4.db | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/xulstore.json | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/places.sqlite | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/favicons.sqlite-journal | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/storage/temporary | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/extensions | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/key4.db-journal | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/AlternateServices.txt | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/containers.json | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/compatibility.ini | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/storage.sqlite | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/2823318777ntouromlalnodry--naod.sqlite | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/cert_override.txt | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/extensions.json | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/storage/ls-archive.sqlite-journal | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/permissions.sqlite-journal | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/prefs.js | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/cookies.sqlite | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite-wal | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/sessionstore-backups/recovery.baklz4 | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/sessionstore-backups/recovery.js | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/places.sqlite-wal | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/1451318868ntouromlalnodry--epcr.sqlite-journal | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/sessionstore-backups/recovery.jsonlz4 | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/cert9.db | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3561288849sdhlie.sqlite-journal | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/cert9.db-journal | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/content-prefs.sqlite | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/1451318868ntouromlalnodry--epcr.sqlite-wal | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/addons.json | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3561288849sdhlie.sqlite | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/user.js | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/storage | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/cert9.db | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/favicons.sqlite | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/favicons.sqlite | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/bookmarkbackups | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/cookies.sqlite | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/system-extensions | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/key4.db | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/sessionstore-backups/recovery.bak | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/extension-preferences.json | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/handlers.json | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/SiteSecurityServiceState.txt | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/search.json.mozlz4 | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/content-prefs.sqlite-journal | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/shield-preference-experiments.json | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/places.sqlite-wal | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/thumbnails | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/pkcs11.txt | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/ClientAuthRememberList.txt | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3561288849sdhlie.sqlite-wal | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/1451318868ntouromlalnodry--epcr.sqlite | N/A | N/A |
| File opened for reading | /root/.mozilla/firefox/lcavj0x0.default-release/logins-backup.json | N/A | N/A |
Checks CPU configuration
| Description | Indicator | Process | Target |
| File opened for reading | /proc/cpuinfo | N/A | N/A |
Reads CPU attributes
| Description | Indicator | Process | Target |
| File opened for reading | /sys/devices/system/cpu/present | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/devices/system/cpu/online | N/A | N/A |
| File opened for reading | /sys/devices/system/cpu/present | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/devices/system/cpu/cpu0/cache/index2/size | N/A | N/A |
| File opened for reading | /sys/devices/system/cpu/cpu0/cache/index3/size | N/A | N/A |
| File opened for reading | /sys/devices/system/cpu/present | N/A | N/A |
| File opened for reading | /sys/devices/system/cpu/present | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/devices/system/cpu/present | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq | N/A | N/A |
| File opened for reading | /sys/devices/system/cpu/present | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/devices/system/cpu/present | /usr/lib/firefox/firefox | N/A |
Enumerates kernel/hardware configuration
| Description | Indicator | Process | Target |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.0/irq | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.0/vendor | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:06.0/irq | N/A | N/A |
| File opened for reading | /sys/devices/pci0000:00/0000:00:02.0/uevent | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:00.0/class | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:04.0/device | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:02.0/irq | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:05.0/vendor | N/A | N/A |
| File opened for reading | /sys/fs/cgroup/cpu,cpuacct/cpu.cfs_quota_us | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/devices/system/cpu | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.3/vendor | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.3/device | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:03.0/device | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:06.0/resource | N/A | N/A |
| File opened for reading | /sys/devices/pci0000:00/0000:00:02.0/device | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:00.0/irq | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:02.0/resource | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:05.0/class | N/A | N/A |
| File opened for reading | /sys/devices/pci0000:00/0000:00:02.0/subsystem_device | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.0/class | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:04.0/irq | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:00.0/vendor | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:03.0/resource | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:03.0/class | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.0/device | N/A | N/A |
| File opened for reading | /sys/devices/pci0000:00/0000:00:02.0/vendor | N/A | N/A |
| File opened for reading | /sys/devices/system/cpu | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/devices/system/cpu | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/devices/system/cpu | N/A | N/A |
| File opened for reading | /sys/devices/system/cpu | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:03.0/irq | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.1/vendor | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:06.0/device | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:02.0/vendor | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:02.0/class | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:05.0/device | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:02.0/device | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:05.0/resource | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:04.0/resource | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:00.0/resource | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.1/irq | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:06.0/vendor | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:04.0/class | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.3/irq | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:06.0/class | N/A | N/A |
| File opened for reading | /sys/devices/system/cpu | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:00.0/device | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.1/device | N/A | N/A |
| File opened for reading | /sys/kernel/security/apparmor/features/dbus/mask | /usr/bin/dbus-daemon | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.0/resource | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.3/resource | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:03.0/vendor | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:05.0/irq | N/A | N/A |
| File opened for reading | /sys/devices/pci0000:00/0000:00:02.0/subsystem_vendor | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:04.0/vendor | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.3/class | N/A | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.1/class | N/A | N/A |
| File opened for reading | /sys/devices/system/cpu | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /sys/bus/pci/devices/0000:00:01.1/resource | N/A | N/A |
Reads runtime system information
| Description | Indicator | Process | Target |
| File opened for reading | /proc/1724/cmdline | N/A | N/A |
| File opened for reading | /proc/self/fd/6 | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/1772/smaps | N/A | N/A |
| File opened for reading | /proc/1794/smaps | N/A | N/A |
| File opened for reading | /proc/self/fd/110 | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/mounts | /usr/bin/dbus-daemon | N/A |
| File opened for reading | /proc/1739/cmdline | N/A | N/A |
| File opened for reading | /proc/self/stat | N/A | N/A |
| File opened for reading | /proc/filesystems | /usr/libexec/xdg-permission-store | N/A |
| File opened for reading | /proc/self/fd/78 | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/1572/attr/current | N/A | N/A |
| File opened for reading | /proc/self/maps | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/self/fd/39 | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/self/fd/50 | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/filesystems | /bin/sed | N/A |
| File opened for reading | /proc/self/task/1657/stat | N/A | N/A |
| File opened for reading | /proc/self/maps | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/filesystems | /usr/libexec/xdg-document-portal | N/A |
| File opened for reading | /proc/self/fd/97 | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/self/fd | N/A | N/A |
| File opened for reading | /proc/self/fd/31 | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/self/mountinfo | N/A | N/A |
| File opened for reading | /proc/self/fd/46 | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/self/mountinfo | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/filesystems | /bin/sed | N/A |
| File opened for reading | /proc/self/fd/41 | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/1719/cmdline | N/A | N/A |
| File opened for reading | /proc/filesystems | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/filesystems | /usr/libexec/xdg-desktop-portal-gtk | N/A |
| File opened for reading | /proc/self/maps | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/1825/statm | N/A | N/A |
| File opened for reading | /proc/1825/smaps | N/A | N/A |
| File opened for reading | /proc/1588/cmdline | N/A | N/A |
| File opened for reading | /proc/self/fd/45 | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/self/task/1703/stat | N/A | N/A |
| File opened for reading | /proc/filesystems | /usr/lib/gvfs/gvfsd-fuse | N/A |
| File opened for reading | /proc/filesystems | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/1748/cmdline | N/A | N/A |
| File opened for reading | /proc/self/task/1778/stat | N/A | N/A |
| File opened for reading | /proc/self/maps | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/filesystems | /usr/bin/dbus-daemon | N/A |
| File opened for reading | /proc/filesystems | /bin/sed | N/A |
| File opened for reading | /proc/self/fd/40 | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/self/maps | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/1728/cmdline | N/A | N/A |
| File opened for reading | /proc/1794/statm | N/A | N/A |
| File opened for reading | /proc/self/task/1828/stat | N/A | N/A |
| File opened for reading | /proc/self/task/1848/stat | N/A | N/A |
| File opened for reading | /proc/filesystems | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/1572/status | N/A | N/A |
| File opened for reading | /proc/self/fd/42 | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/filesystems | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/self/fd/35 | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/1772/statm | N/A | N/A |
| File opened for reading | /proc/self/fd/87 | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/self/fd/34 | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/self/fd/44 | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/self/fd/48 | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/self/fd/76 | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/1844/statm | N/A | N/A |
| File opened for reading | /proc/filesystems | /bin/sed | N/A |
| File opened for reading | /proc/filesystems | /bin/sed | N/A |
| File opened for reading | /proc/self/fd/49 | /usr/lib/firefox/firefox | N/A |
| File opened for reading | /proc/self/fd/79 | /usr/lib/firefox/firefox | N/A |
Writes file to tmp directory
| Description | Indicator | Process | Target |
| File opened for modification | /tmp/firefox/.parentlock | /usr/lib/firefox/firefox | N/A |
Processes
/usr/bin/xdg-open
[xdg-open http://google.com]
/usr/bin/dbus-send
[dbus-send --print-reply --dest=org.freedesktop.DBus /org/freedesktop/DBus org.freedesktop.DBus.GetNameOwner string:org.gnome.SessionManager]
/usr/bin/dbus-launch
[dbus-launch --autolaunch 11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr]
/usr/bin/dbus-daemon
[/usr/bin/dbus-daemon --syslog-only --fork --print-pid 5 --print-address 7 --session]
/bin/grep
[grep = \"xfce4\"$]
/usr/bin/xprop
[xprop -root _DT_SAVE_MODE]
/bin/grep
[grep -i ^xfce_desktop_window]
/usr/bin/xprop
[xprop -root]
/bin/grep
[grep -q ^Enlightenment]
/bin/uname
[uname]
/bin/grep
[grep -q ^file://]
/bin/egrep
[egrep -q ^[[:alpha:]+\.\-]+:]
/usr/local/sbin/grep
[grep -E -q ^[[:alpha:]+\.\-]+:]
/usr/local/bin/grep
[grep -E -q ^[[:alpha:]+\.\-]+:]
/usr/sbin/grep
[grep -E -q ^[[:alpha:]+\.\-]+:]
/usr/bin/grep
[grep -E -q ^[[:alpha:]+\.\-]+:]
/sbin/grep
[grep -E -q ^[[:alpha:]+\.\-]+:]
/bin/grep
[grep -E -q ^[[:alpha:]+\.\-]+:]
/bin/sed
[sed -n s/\(^[[:alnum:]+\.-]*\):.*$/\1/p]
/usr/bin/xdg-mime
[xdg-mime query default x-scheme-handler/http]
/usr/bin/dbus-send
[dbus-send --print-reply --dest=org.freedesktop.DBus /org/freedesktop/DBus org.freedesktop.DBus.GetNameOwner string:org.gnome.SessionManager]
/usr/bin/dbus-launch
[dbus-launch --autolaunch 11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr]
/bin/grep
[grep = \"xfce4\"$]
/usr/bin/xprop
[xprop -root _DT_SAVE_MODE]
/bin/grep
[grep -i ^xfce_desktop_window]
/usr/bin/xprop
[xprop -root]
/bin/grep
[grep -q ^Enlightenment]
/bin/uname
[uname]
/bin/sed
[sed s/:/ /g]
/usr/bin/cut
[cut -d ; -f 1]
/usr/bin/cut
[cut -d = -f 2]
/usr/bin/head
[head -n 1]
/bin/grep
[grep x-scheme-handler/http= /.local/share/applications/defaults.list /.local/share/applications/mimeinfo.cache]
/usr/bin/cut
[cut -d ; -f 1]
/usr/bin/cut
[cut -d = -f 2]
/usr/bin/head
[head -n 1]
/bin/grep
[grep x-scheme-handler/http= /.local/share/applications/defaults.list /.local/share/applications/mimeinfo.cache]
/usr/bin/cut
[cut -d ; -f 1]
/usr/bin/cut
[cut -d = -f 2]
/usr/bin/head
[head -n 1]
/bin/grep
[grep x-scheme-handler/http= /usr/local/share//applications/defaults.list /usr/local/share//applications/mimeinfo.cache]
/usr/bin/cut
[cut -d ; -f 1]
/usr/bin/cut
[cut -d = -f 2]
/usr/bin/head
[head -n 1]
/bin/grep
[grep x-scheme-handler/http= /usr/local/share//applications/defaults.list /usr/local/share//applications/mimeinfo.cache]
/usr/bin/cut
[cut -d ; -f 1]
/usr/bin/cut
[cut -d = -f 2]
/usr/bin/head
[head -n 1]
/bin/grep
[grep x-scheme-handler/http= /usr/share//applications/defaults.list /usr/share//applications/mimeinfo.cache]
/bin/sed
[sed s/:/ /g]
/bin/sed
[sed -e s|-|/|]
/bin/sed
[sed -e s|-|/|]
/usr/bin/cut
[cut -d= -f 2-]
/usr/bin/which
[which firefox]
/usr/bin/cut
[cut -d= -f 2-]
/usr/bin/cut
[cut -d= -f 2-]
/usr/bin/cut
[cut -d= -f 2-]
/usr/bin/firefox
[/usr/bin/firefox http://google.com]
/usr/bin/which
[which /usr/bin/firefox]
/usr/lib/firefox/firefox
[/usr/lib/firefox/firefox http://google.com]
/usr/bin/dbus-launch
[dbus-launch --autolaunch 11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr]
/usr/bin/lsb_release
[/usr/bin/lsb_release -idrc]
/usr/lib/firefox/firefox
[/usr/lib/firefox/firefox -contentproc -parentBuildID 20230522134052 -prefsLen 19257 -prefMapSize 230809 -appDir /usr/lib/firefox/browser {5905bb7e-0804-4b03-9a1d-4fb511d35e6c} 1655 true socket]
/usr/local/sbin/dbus-launch
[dbus-launch --autolaunch=11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr]
/usr/local/bin/dbus-launch
[dbus-launch --autolaunch=11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr]
/usr/sbin/dbus-launch
[dbus-launch --autolaunch=11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr]
/usr/bin/dbus-launch
[dbus-launch --autolaunch=11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr]
/usr/libexec/xdg-desktop-portal
[/usr/libexec/xdg-desktop-portal]
/usr/libexec/xdg-document-portal
[/usr/libexec/xdg-document-portal]
/usr/libexec/xdg-permission-store
[/usr/libexec/xdg-permission-store]
/usr/libexec/xdg-desktop-portal-gtk
[/usr/libexec/xdg-desktop-portal-gtk]
/usr/lib/gvfs/gvfsd
[/usr/lib/gvfs/gvfsd]
/usr/lib/gvfs/gvfsd-fuse
[/usr/lib/gvfs/gvfsd-fuse /root/.gvfs -f -o big_writes]
/usr/lib/firefox/firefox
[/usr/lib/firefox/firefox -contentproc -childID 1 -isForBrowser -prefsLen 21684 -prefMapSize 230809 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir /usr/lib/firefox/browser {8d6db163-d5e3-40ea-993f-e92a794710a6} 1655 true tab]
/usr/lib/firefox/firefox
[/usr/lib/firefox/firefox -contentproc -childID 2 -isForBrowser -prefsLen 21352 -prefMapSize 230809 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir /usr/lib/firefox/browser {4f108507-8f95-4280-97c9-368a9155fa5e} 1655 true tab]
/usr/lib/firefox/firefox
[/usr/lib/firefox/firefox -contentproc -childID 3 -isForBrowser -prefsLen 21701 -prefMapSize 230809 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir /usr/lib/firefox/browser {a9fb021c-8e29-49cd-adaf-46ce5cc29a0f} 1655 true tab]
/usr/lib/firefox/firefox
[/usr/lib/firefox/firefox -contentproc -childID 4 -isForBrowser -prefsLen 27758 -prefMapSize 230809 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir /usr/lib/firefox/browser {48fdec49-ac69-414a-a63a-e124b92d6656} 1655 true tab]
Network
| Country | Destination | Domain | Proto |
| US | 151.101.194.49:443 | tcp | |
| US | 151.101.129.91:443 | tcp | |
| GB | 195.181.164.14:443 | tcp | |
| N/A | 224.0.0.251:5353 | udp | |
| GB | 185.125.188.62:443 | tcp | |
| GB | 185.125.188.61:443 | tcp | |
| US | 1.1.1.1:53 | cdn.fwupd.org | udp |
| US | 1.1.1.1:53 | cdn.fwupd.org | udp |
| US | 151.101.130.49:443 | cdn.fwupd.org | tcp |
| US | 151.101.129.91:443 | tcp | |
| US | 1.1.1.1:53 | 1527653184.rsc.cdn77.org | udp |
| US | 1.1.1.1:53 | 1527653184.rsc.cdn77.org | udp |
| GB | 195.181.164.21:443 | 1527653184.rsc.cdn77.org | tcp |
| US | 1.1.1.1:53 | services.addons.mozilla.org | udp |
| US | 1.1.1.1:53 | services.addons.mozilla.org | udp |
| FR | 52.222.149.126:443 | services.addons.mozilla.org | tcp |
| FR | 52.222.149.126:443 | services.addons.mozilla.org | tcp |
| US | 1.1.1.1:53 | location.services.mozilla.com | udp |
| US | 1.1.1.1:53 | location.services.mozilla.com | udp |
| US | 1.1.1.1:53 | locprod2-elb-us-west-2.prod.mozaws.net | udp |
| US | 1.1.1.1:53 | detectportal.firefox.com | udp |
| US | 1.1.1.1:53 | detectportal.firefox.com | udp |
| US | 1.1.1.1:53 | google.com | udp |
| US | 1.1.1.1:53 | google.com | udp |
| US | 44.240.56.209:443 | location.services.mozilla.com | tcp |
| US | 1.1.1.1:53 | www.mozilla.org | udp |
| US | 1.1.1.1:53 | www.mozilla.org | udp |
| US | 1.1.1.1:53 | www.mozorg.moz.works | udp |
| US | 34.107.221.82:80 | detectportal.firefox.com | tcp |
| FR | 18.244.30.171:443 | www.mozilla.org | tcp |
| US | 1.1.1.1:53 | example.org | udp |
| US | 1.1.1.1:53 | example.org | udp |
| FR | 18.244.30.171:443 | www.mozilla.org | tcp |
| US | 1.1.1.1:53 | ipv4only.arpa | udp |
| US | 1.1.1.1:53 | ipv4only.arpa | udp |
| US | 34.107.221.82:80 | detectportal.firefox.com | tcp |
| GB | 172.217.169.78:80 | google.com | tcp |
| GB | 172.217.169.78:80 | google.com | tcp |
| US | 1.1.1.1:53 | contile.services.mozilla.com | udp |
| US | 1.1.1.1:53 | contile.services.mozilla.com | udp |
| US | 34.117.237.239:443 | contile.services.mozilla.com | tcp |
| US | 1.1.1.1:53 | firefox.settings.services.mozilla.com | udp |
| US | 1.1.1.1:53 | firefox.settings.services.mozilla.com | udp |
| US | 1.1.1.1:53 | prod.remote-settings.prod.webservices.mozgcp.net | udp |
| US | 34.149.100.209:443 | firefox.settings.services.mozilla.com | tcp |
| US | 34.149.100.209:443 | firefox.settings.services.mozilla.com | tcp |
Files
/root/.dbus/session-bus/11c67417355f45d397f6be11f62e85a6-0
| MD5 | 4df9115f4588ca02a9ebf1f3cf2f61f7 |
| SHA1 | cb6c81219aa2d96f8ee2f924cfb87423ddcaa6d1 |
| SHA256 | bcd846ffaeac04e3390b55b417753e3a3b9db48027fd1b20520ab2d0bb0f6220 |
| SHA512 | 7e10d5688efffc6c717b1aa242df85373935b1726a0122209e95c46cf458ef4abbb257486f98dda0863d2b1c3fc0825ccfdccbb06bc893e4ed378aaeb359cffc |
/root/.mozilla/firefox/Crash Reports/InstallTime20230522134052
| MD5 | 3542a67184b9980131f112e1c7d5801f |
| SHA1 | da3bd69b85b54e2fd0399f45e82764ca05fe19d3 |
| SHA256 | c20d281aebbf517c873deaa4b2eaaf16b8aafa2f619df388d83a684ab50e5214 |
| SHA512 | 634944f8b413dcea307e6b03a7698ba376a814afdae9ea881ccf3cebefe54ce36dd03a8b7174d3ff9a1bf69e24eaba0fb0ba5d7e7eb2fc9747681ff48325c011 |
/root/.mozilla/firefox/lcavj0x0.default-release/times.json
| MD5 | ff55f9ecdd37ea193c6c7c780f71b68a |
| SHA1 | f9b3ac22f3cea879b91d58d36ab174d5985d2eb6 |
| SHA256 | 101678ed3f7de5057225de9314af5d9a907ece5d8036b13db51c74dba413224b |
| SHA512 | 8a0d620cc47ce9f7790e4eba4f2bcf86ddd2f08c7e9e8b6fb592a45a9a1865c4ee1cbce566bf6179e40a8ea2dcf7dd2feb1e516b4f7c28525507a45f729bcdd0 |
/root/.mozilla/firefox/installs.ini
| MD5 | 6a63b15b03b7921c70da07127be315db |
| SHA1 | 393ae676bd95e1aed001d40a92005964a3c4bfb9 |
| SHA256 | 75818d96e046ae8d5463ec9bb7442b9a2c875f185e7fd839015be4ecfd8bdd09 |
| SHA512 | 514fc089889530b4de05fb60f8742ca685446814f48d10f725e410e9175356eb4931f1e02ccf2cec5e666c13a22b475d547f080a70bbfcfb25734680400b43b3 |
/root/.mozilla/firefox/profiles.ini
| MD5 | 568425ebf8cae67edf631e1455bd9522 |
| SHA1 | 6540b4b748167cdba218b8f8914690ab1015eeac |
| SHA256 | af602dbb14efeeda6b869625f601994ff5b5519b3491373025b1f9d1ae34ed5f |
| SHA512 | b0a0787050de26b61a0b5a43ee0bd08cd7fbd1cc0ec6ad3594f6e8ee368f045942464938237ce23d6f13be4d9e1a3a46f86d006def3388b647135a58ff33a9c0 |
/root/.mozilla/firefox/lcavj0x0.default-release/compatibility.ini
| MD5 | fe452b7294d5928a9a5863b89ee0a6bd |
| SHA1 | a5d4c245071fa96476ba48b4725bdae7f1b7940f |
| SHA256 | d5bfb07561606a19aa96557ea109b175050dc0eb805cbef9c813503587d77900 |
| SHA512 | dc37d8507f08849e3382d2dbafd4a64555dbd57a288c95131e9aefb366630f1585811a9e1456b861bb9d2b816ed88b18ffb7580cd92b41bb9b0227ce1363843e |
/root/.mozilla/firefox/lcavj0x0.default-release/prefs.js
| MD5 | d2f9863d60691cc60974e5daffcbb4dd |
| SHA1 | 72ff3cb91e18a24c82cbf799d263e93c1f8d50c7 |
| SHA256 | 48dbe9df98f0e0a2aee6f24e670cef62465c55ca189db1344a93592f4c6e79ce |
| SHA512 | 787d26d043027f29887976c698890228dbc201df57e6ebffa9761521468e6159996c42d67aba283a6673018229fc81e1a9b49ff0ddcb722e0875c5a8b2bfcb7e |
/root/.mozilla/firefox/lcavj0x0.default-release/cookies.sqlite
| MD5 | 9535f5fe817accc769c2c1d3354db39f |
| SHA1 | 6af62cf08717cf3bfa84eb1a7b311acf522ce560 |
| SHA256 | c53c15fcfac2bb57fdc88d23f932fc244dbaf4020f0f6eaecf0f77a37c21f8c5 |
| SHA512 | dc9c2c32eb42dda0a7a711e143aea58c603c1e9d885c3677e9fe86f525e1b0b32a46e240756263e56510b07e764ba69f2de13b90ec18210678242e10cfe17837 |
/root/.mozilla/firefox/lcavj0x0.default-release/cookies.sqlite
| MD5 | 5caa766855d5613a999f71b7812d6451 |
| SHA1 | ad0d9a52a0d5cc7f11858301dbe47377ed99ee37 |
| SHA256 | 3a8ce2b07e3e8678a13aa58ef5b942c4dccd8f9c84511bdeb8847ef270797e27 |
| SHA512 | 17bb0f4c87ec178910795b25ce85e74cf599190c769592472c3e872f42930c93f28faf0ff3e448816a9abcc8af0459852bed52bee08cfe25d068879c6dfd8eba |
/root/.mozilla/firefox/lcavj0x0.default-release/storage/ls-archive.sqlite
| MD5 | e0c613bfd69956a19ce2dc5e925aa223 |
| SHA1 | 14accb230edcd6cb76967cdc6d4e5686db96b5df |
| SHA256 | 0d4cb11f6364c46a75f9eaddfca5c660b90dfd515df3afcd5e0baeca28a0f1ab |
| SHA512 | 01643c0131a392be92b3f281d7f633c1f502bff19090b0d716f1ac66aefecc3fcf92f393bef66b03089c9b9c6d8aaeb711b6a4f29d5a6729dd188c838f2272d1 |
/root/.mozilla/firefox/lcavj0x0.default-release/storage/ls-archive.sqlite
| MD5 | 178d71e5529d637ac62f7e75fdd75896 |
| SHA1 | 339f2b949cc4c207b66aea11137448ba28d36dcb |
| SHA256 | 7b0050f1bfaab85c8f9067ae7d7369056ff752c0c852ef1462a96c22169004d4 |
| SHA512 | ec0e0105fcfbbae356dd55efbcf92975f35bbe5cb93fcabf4c08443e871957635d14830b27c4e1ddefbbaff8f9b7ec3590bf417a9442e1d7ee3607d14d56f664 |
/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/.metadata-v2-tmp
| MD5 | 21c74dd060d8345a40e2dfb0239108b0 |
| SHA1 | faa853881ae634d635d27436cd7c08a93456896d |
| SHA256 | b5a1b4acb0ea4c8f59a8bc4535c34c61924d03b129cc3fe28b5e5cae853f5c84 |
| SHA512 | d456fb358b45d47256caa931c8ca0115d8671709e01d8acf3abd1255aded7ad199bbf5a86cd7bca769bad55bd9ff5a1883ae46796844af9122bc69cc60445904 |
/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite
| MD5 | 07a412e08825220262ad2890757ff779 |
| SHA1 | f46c127dbc070ded87a6078b3c1c761955f96de8 |
| SHA256 | da640f8b665841b520d2262a21cc3f82aeaa881cf81a1ddae27ef501d66544e4 |
| SHA512 | 0134c783bf3293848e479b478ac57a1e0f4202cddfb8b57bc6275aada7345f398cf8a627e9b1c34fd618192c2f0c9737b1da487daf33f9c557ebc1377105582b |
/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite
| MD5 | e5c4332f608f3000ed79f45b4fecedb2 |
| SHA1 | 7f107c2d89975bfbe064e4c7f535bad6992c3fbd |
| SHA256 | caf04455bae77083d4fb7179b492808fdd4963a87e62aae180f553c416a0f23d |
| SHA512 | 2c933ba31a84f49bf7e9d77ff943d71718cced5512667e77d403e2c91940cae1c80041a9884b6ddad9530a6dca1f0f99890204b9bbaa4cc1d41a37739bfcc1e6 |
/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js
| MD5 | 80a77dcb541f97663bd86510185d10f3 |
| SHA1 | 8045ea6e25b4912a4b17c8a664d7124fc19c4908 |
| SHA256 | c6496e6605fbfcdd21824fe46021a538293846922d335ad780ec788746239539 |
| SHA512 | 12047e9941708928ece055dd1372da6db9b8930aa0eb551516982fcfcde6b6b7dc937507151d8e2363c1af6f61a2cd9d38dfc3d85daa45b575bfab6d2919dd81 |
/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite
| MD5 | b7267c666fb3bd22333f81c88c8a549f |
| SHA1 | 8dc89de6f0cfd6ff29788de7250e40ed78192f15 |
| SHA256 | 91f10cd06b03758685b7c7c9826e4a8b90297fae37d68550273db1830c681630 |
| SHA512 | bdf2ec943527edac2e6293cd1be1b822ee44ab5356c7c0fe2edb9a3911fc363cdf670b5bf701e1bdbc1d6f70a2dfa8a326e44f0fa987b3874ed244869dd3c615 |
/root/.cache/dconf/user
| MD5 | c4103f122d27677c9db144cae1394a66 |
| SHA1 | 1489f923c4dca729178b3e3233458550d8dddf29 |
| SHA256 | 96a296d224f285c67bee93c30f8a309157f0daa35dc5b87e410b78630a09cfc7 |
| SHA512 | 5ea71dc6d0b4f57bf39aadd07c208c35f06cd2bac5fde210397f70de11d439c62ec1cdf3183758865fd387fcea0bada2f6c37a4a17851dd1d78fefe6f204ee54 |
/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js
| MD5 | 9ca9bc2c001644857bdd4765ffb47c15 |
| SHA1 | 14baedf0891e450360799278839e1fca8750c433 |
| SHA256 | 7933d74912d9fb43045f20b736d21be9767e80d6fad3bfda309f4dc42750b840 |
| SHA512 | 4cec407481649f42382efa9bfa776f209def2da0b02a57efe9756be86e48dc83903eff7aadc53ca1a80a03a1e908ab98de3f29fb2a6be65e239a236c8fef2e74 |
/root/.mozilla/firefox/lcavj0x0.default-release/times.json
| MD5 | 941eeaa864dd45770acf72a154187a92 |
| SHA1 | dedf83bbd171046b3ea63b1432dca245f444fa34 |
| SHA256 | 2d7301e7a49f59ab641b4d7f4e7eb1ccabd1e88b2961cf2caea58d312c48ee7c |
| SHA512 | b6d9de67b8a7f4401963948d179965da3ee2722ba77150823ad45de8f89a127446e0b2713094d59ef588219f68d1d5872119ff83855e9fdfbe47b01d64233769 |
/root/.mozilla/firefox/lcavj0x0.default-release/permissions.sqlite
| MD5 | 8482b5677f1180705812848a480ae3ba |
| SHA1 | 5ad3921c03e94e377b971f4eeb6c302737c9b7d4 |
| SHA256 | b145b47a7dd757f962ec22b41f4c14fdf1e5eca16e6680d867b0013e5754b5d8 |
| SHA512 | 7586c05e3516d67a7db4b2187c1616e7cb371cca72322279cf7b3865129c3c3e1f9f82d8f8dc6b34a03cb374e8955f3e1a003a615cc9681f37516dc38eadf5d8 |
/root/.mozilla/firefox/lcavj0x0.default-release/cert9.db
| MD5 | c1e1ca10d3dcc29401d113e85d180f46 |
| SHA1 | d01f6f4232e536b111ba88887333053dfbc7cf2e |
| SHA256 | 1b34805b36294863c53e6948fdf42dd527626ea896bbf01bcb6f81b7dbc21a22 |
| SHA512 | d857566ac87367644e0eff750cbcaa6164e27b6083b910a9910e173c17acc3788219821cba29d41875329005c6c94fac541afa4f8405d1d31423352943b054f9 |
/root/.mozilla/firefox/lcavj0x0.default-release/key4.db
| MD5 | 1391dd86020a0a01d3d17dbf19266fdf |
| SHA1 | 417a4478232fff9228c265492a8a9d2606f8f3b6 |
| SHA256 | 89e7a71ec7b95f120f539b867983f3efcb0234d8e7221a414f7420d8fa52301b |
| SHA512 | 978eec92e70a511691e3180a0ceb4019514e4cc2f2cdc1333ac9bf2de4a6429b738b9d082de73e3434d01aba77bef1fdbb220666f7cda5095c983299ce4f054b |
/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3561288849sdhlie.sqlite
| MD5 | 759544297aaa61f5fef8ee42d0ae4393 |
| SHA1 | fc2d66f6e60409e3e8d38623ce5f817fc7f571e0 |
| SHA256 | 1bd2000cd972e80cefaec6e982ba261d224a818f367de0fdf8c51fa5a05d7ab5 |
| SHA512 | 8aaa2ce66f10d46f7c9200af841ac7bd9f5b55c30308a14f0deda44ac62581c45daae45154487c0073a0d5847d5926cbb4072ca64a702ac6b834ad0bb482804f |
/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js
| MD5 | 5d9da7a9a65dff7f3908c45cc5e7f8f2 |
| SHA1 | 6da275ae58b8f269449b68d4e0d7add3c9f0728d |
| SHA256 | f8ef60445dc57ac88be9c45df0a3eb270a2ffe0b7adf386e7bdaf52fca885f28 |
| SHA512 | 8c87188d4b7ce8a9c1c46a5b0c3baa3b0ec9141c20bf993f690993c71e48db6ebfeb30267c4a523874d99feae0c68382b61253058dac8ceb69ea86a39355e1cc |
/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js
| MD5 | 4a457c325cb12175796485c4b84a9c2b |
| SHA1 | 554e58de784826705876d64534411cb1b5d51565 |
| SHA256 | 935598b25d2030f6df69d4cc744d281b8929defe42078caffaba01a865a19a87 |
| SHA512 | b7d64f2f3ddcb3e05648fca3f83b629a8dc211df67458834c21e5bdeebe7f40b7c46351e18170a93a235e5695375f34d6c8d84620adeb78b83bb0a9da556d21c |
/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js
| MD5 | 005b0048a391ae69bdcd9c59da9b0fe3 |
| SHA1 | 3465d5c7da20f9f43dca708fab01ccc94be4055d |
| SHA256 | f98017a9117d56e85f9a5ee8ed0abb00db8057dc0330b61ce9b0f5418601f647 |
| SHA512 | 33715ba220a56c329b565c1947ce4ac9519d943cf2318e572c8979f0657202e351b84442ff99d9a36829770fe4f67a2514cb48ab15edbbb835645e226db587e2 |
/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3561288849sdhlie.sqlite
| MD5 | 2fc396f5a46d1be681adaf6325db703d |
| SHA1 | 8f16b537ed27c2a9ae4ff1ce33a514b4c7398f67 |
| SHA256 | 447c9d7f1a98692b37d52807442565779543ba8671927333034d063b0cd44e65 |
| SHA512 | 9edaa5c00a0f6c5464cd09f034ffdfbe2cbab6769757850543ae13d7c37b176bd622ded0cb2b58a59e4025a97b769707018273c93b2da55856ccc61d64fc5483 |
/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js
| MD5 | 47fc3a5eefa1b36e72502d2fc53d9ff6 |
| SHA1 | c265c48c25c3b551373c74873c35edc9f694d02d |
| SHA256 | b7f8e5b0c0e254d3029517117b2db34a2824abd4e0e06a0096fa475b8ad7b5fa |
| SHA512 | 48d45e9e397d439131bd0bd26080af8e92760a7b201ff2bc458ba87b020b6bf2ff8fde327e22ecdf4559a32a6717a4f7360e764010f04f5da689ae9da4b57e2a |
/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/3D1E19D09F398691ABF62061591970855193B42F
| MD5 | 57e43f2c2da6856ce9671e2182e5eda6 |
| SHA1 | b4a02b5dadad5ad116781badf84a7e8816d6bdd4 |
| SHA256 | 9286d72077965c293143d11219ff77fb7f615097a09b5dc234dc2040eacd648a |
| SHA512 | ea80781584b86645d3ab47c727ee64f75152560cd919459b08c6467b8fab9aa865eb4cb46cf1397c475e6df9dda70cd2fb3dfad90bff3e7026e74943283d18ad |
/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/1657114595AmcateirvtiSty.sqlite
| MD5 | 7352c8848e88edc39b7fb5e663888187 |
| SHA1 | 8c3dffe25cc56c7aec1b782292d6fceed81e6304 |
| SHA256 | 7a462086a26978809c719e57a7ea6a25568767fb7532014e8531fda94b660e0a |
| SHA512 | f2a0dbbab5c2c1702b03bce15a47739481f523e127d1372b40534db9a20b2bc99fb53710ee0e5d44176188817cac704cf4f98cdf087e7e89d244281fcfc3b280 |
/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/1657114595AmcateirvtiSty.sqlite
| MD5 | e8d00d99949febbcfac4b968f377df68 |
| SHA1 | d9128a7478162f511c15c3186a96fc9ff5ee336c |
| SHA256 | 0e2101babab6acd6cf1c56e14cb1a057db8697ea8d1c110e3a8d70f7b0456917 |
| SHA512 | 5c762ace42121dbc4c4c1e6bb607cb767afa105f82c169fe6f8b0d989aa4bf2c58a5b41ee94f2c2ff07f0af5e4811055f15bf93916689b474e8309a0b9aa791b |
/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js
| MD5 | 244e511825120a616ae10728583a9936 |
| SHA1 | c3a40116b4bf201ea2a4b3a5d05bd0ca7291f6a0 |
| SHA256 | 50d0c765369ff8c0a2ba95403e4557b3361f79160a30e86e13339191401db065 |
| SHA512 | be85c4edfb2449225839d1e4509abe11122d3e4a3410036e25bc90b6720e23f960f41552df0bac22853d4bd355de116335763232ce9c9cb2ca85e8abfc2246e6 |
/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/A59CD5522356C9141BA2A8B4056E63097ED8529A
| MD5 | 3c63b236f398562c7feca180282b89df |
| SHA1 | 2f2951eaf868c5cef9171a3a586d83bce71347aa |
| SHA256 | 51aa7959676b5a0f730db494da47a3efe6644f004be78947d28f3bbb6b146fd5 |
| SHA512 | 7197b7b05e0c97586298b1125424bb1d47046dced63dddf392cb07243f2d3b1c5230a817ec3539fe2effc15f5ff5f034a0a004a8fa0dce358ce4f75f40a41dd8 |
/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/039090029E64BC91E87E77199A6A6BE11FC39B6F
| MD5 | b5fb411ba5131b5d47c5a900eeac6586 |
| SHA1 | 52179df48f2bebbf39734d22a21083bfdfeabe00 |
| SHA256 | 2c32528aaa1f557c46d65ecf722a3d3ee25dee0d1112f99dc880414f1456ab9e |
| SHA512 | a3dc8248dab7ef6bf0b51ebf795c667a96a954ba779474d5483b2ca70890690de2567d2cb5aad069a3b607a7e98ba96ffd9bef3be9e82d51387e9b3107727ec1 |
/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/EE1AAB872F378C4FA66FBCD193AF217BF20A4E27
| MD5 | eb08e0142912f973744e1e651888eec5 |
| SHA1 | 5ea5287c8ee172b0bfe357fd9fa469e31250c9a4 |
| SHA256 | ef1efa155bd3042d07c2ef601d96015024012d726f9833504d5f9f9cee4bd334 |
| SHA512 | 8fa7d858e79dba62a75733dc3a8c215c3d181d2781d583de64e22238563bbd7285383e881e9b332df2345b0d09aa8e70f4c9f03d4c7182d7a1294af4a0c1cf43 |
/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/B41C7329F660E92624C61816BED9D62A49D8FB2B
| MD5 | ec83119d425eb7f19fde5dc6449163bd |
| SHA1 | c37f6a9b3a54b98f47972ee70e3d6559121ff30d |
| SHA256 | c6814266d38eac2a77acc1847d042b41971b9ce0f2a9f4f4bb3183b66486b9b7 |
| SHA512 | 4ee23132a704631189d6b6d21c69fe64c14d6f97f991f886a6d5de485306bcf858c699e0825040e03a98be46787736d8cb2aef53409bc9102e610bf41e8ee3f5 |
/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/0EDDF8C091E2FED62E44BEDDDC1723F5BF38FE4F
| MD5 | bdf198aa252667bebc8ec789cd63e5a7 |
| SHA1 | fe680384aee5ba51168a4244d0e23d1f5ca7b440 |
| SHA256 | 1d6911af25b1983e1f72e0aa30c07513f9345efa1dc360025e823ed49f74707b |
| SHA512 | 676ed3cde5f1e9e4547e549c9e669d42db714db870c0a77d98ac1b83abeeb5a626ffbee238d01caec8912bea4b52d66039bcbea1206ac76476ed3103783b4398 |
/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/3D1E19D09F398691ABF62061591970855193B42F
| MD5 | 855e6856cbfd61520564edc2e0f170f9 |
| SHA1 | 9362966da4b1e8c4d177c2b61cae4e3e3d4c12f4 |
| SHA256 | e838289304683020d4baa58ea694e93f6f6d2d6a3aa4eee661c68d0ca26f03d4 |
| SHA512 | cd68c036fb61aeafe7840171193f8363420313d1c084eccc6453b0f1c54a9df6cf1eec75222798d06d952fc05490eeed57d73406129b6d42ba10a2b72eabc147 |
/root/.mozilla/firefox/lcavj0x0.default-release/cert9.db
| MD5 | 86cfd8d67345913f415a67cf7ea0ac8a |
| SHA1 | 38923c003ed76cf26735d4f705c2e1fbce8d2cfd |
| SHA256 | 2607ea7c61ae0eef979238bfced63b3f3579a06a2cd3aedb43249ded12ba7a8e |
| SHA512 | 51609c2c9858bc572379a7121b849b81c7951b426c2e9cd5ecac1d718cbcee7b1835793e71a38923b13e9d7baf83a684c528bfb6f73e93f182bb909c5ed804d1 |
/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite
| MD5 | dd3f6ba37c670af5953593535e435d04 |
| SHA1 | ecfe4e650a050bce77e8ff7468de04c1b8acc9a4 |
| SHA256 | 5cc6fa137a1f3a7d0b615b178877f12c460b22f95702eb7534d5732ee6599561 |
| SHA512 | 86e0482543faae6fb279ca71e1e6d6461d32317e74baebb3973e0fde9800107faeb9c2347be6cf8a47556ae43c8e6c224a595e952f621e40ad2c5eba920df2b3 |
/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite
| MD5 | db2cd94eae4866f3bb2551f425727068 |
| SHA1 | c80a9a98ff9a6afaf8ef4ed5fe8e4fd87f2cd86e |
| SHA256 | e4cfb3878ee505497af4366668fdb90758de72ca66f6e4a409756ff9318d56fb |
| SHA512 | 6310df6b14b5ffe7d039780c814bedd42adf21fad6a47e98e5aa1c2817a5cebe6cccbadafdbd5810137766772bf5a3ffce842492b59f334f762b44709f527299 |
/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js
| MD5 | e7c9d2657b8f484750b6a3556dfaa57e |
| SHA1 | b8a5eab16bff99ad53dbcc18383a853dae033699 |
| SHA256 | 484b549cb608b897fe3b72e54fea8862d6dcb240b3bceff5e933f84d19d60c03 |
| SHA512 | 0f336e42773cb4a56341dfbeb244f7c715be13bd7982d6e871b3178c324303802cd76951bb4835c7e65cff7309992f9590b93bb2138b152f98ec4b9cd70ef5d8 |
/root/.mozilla/firefox/lcavj0x0.default-release/places.sqlite
| MD5 | bddc62628816e5a378748a068963356c |
| SHA1 | 37c7edafb25659dde85d4e484940149473128f80 |
| SHA256 | 3c7d76b47d9b73d29d4fc09bddaaec788e8287a103eb0a41e88a36d76a3454e4 |
| SHA512 | fa4e01f5d85cd7896d0ba22c7f307eba95589689ec4e1164e89bc59266dda44bbf7091e3bc4dcf971cef052c55e7037972010ad429af6af019db9fc744fdd10c |
/root/.mozilla/firefox/lcavj0x0.default-release/favicons.sqlite
| MD5 | 3c0a1ec298284608bfa51081ea539be3 |
| SHA1 | e51b58f6fe89d45fd8a1d935b51da172d5f6f32e |
| SHA256 | 34c4fe7ab2d3e44f193b489ebe84c17d67b336546af9ef231897ec09d7ff16f2 |
| SHA512 | 8550f530377f7a98c46a6989bec2c43ed644274509a5b987e8e0d034bf867b3315dcc75a2c851a5ac43a45b40bf51c789d828a9a69c02157b3e900467341a28f |
/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js
| MD5 | 62040b081fd558ef5675566cd42275d9 |
| SHA1 | 00dcb9642690132eb6e2c32415c3207a9b71a313 |
| SHA256 | 04e73be27dc9dce74ccef4cef8630929fc44821fdb84ce11cb0ea7cf6ab69ff9 |
| SHA512 | 965671ebc9cc4c74b6116dce9d07d7d4a9c86986c4dbb5ace0260b624b3b3ba9d81d89b0f3aca9529a6b1c143f03b3276a4460786187689d899d1f395c67049b |
/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/1451318868ntouromlalnodry--epcr.sqlite
| MD5 | a8dd7ebaad5528b23f82ccb1534cea18 |
| SHA1 | 600daceacfb5cf9df0b66ba7dce4516b2ac4df70 |
| SHA256 | e5b0d02c18ae36c4a220f41fd97c66060c17aaafcbb324a57ccdc2707c44c4ec |
| SHA512 | 67f867a8e2b37fb6bececd5ebc570ca594ea329142badd63d1281d5e735f515a5e329abc6eb9a9d3465aab0a08541b4888018d859964f160a52345ab93532bff |
/root/.mozilla/firefox/lcavj0x0.default-release/cert9.db
| MD5 | 1e106ab54325e31343c224d1ef5b3dff |
| SHA1 | 5d36014686c3561d2157a7e7009e6272e8be85ac |
| SHA256 | 7d9d2e4312c23f6fc46d12d915f3d42a79c83fc07994788dc9302372eace27de |
| SHA512 | 060a8ffc88999983f761dbaaad5787eaf9660aac73690f12b857502461bc2427d0c67d8e0f2994c0cf6141b8d14161817ae32498796858a82d542186de441be3 |
/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js
| MD5 | 1c7432f5298b63d42a730a188b80af71 |
| SHA1 | c1b0f309633408704c9af35ae67005a4a48a16a3 |
| SHA256 | 3e7bee571341f2330e1c3048123809381014d16c158835667b4aa77b8343ec2c |
| SHA512 | 0c5b68e273fbbc4e6641ec192922c5df50596070c07f43074eed733ccf80372e741834a2cbe8204c26284147890e0f2bffa64b0d5f1f9fbc959f1c450881c2ae |
/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/1451318868ntouromlalnodry--epcr.sqlite
| MD5 | 1e3b48846858130a775e388cf1f80d4b |
| SHA1 | ce68a0a0c735658eafb6a6b0b90b9ac068ec055a |
| SHA256 | d7caabb1fbe28cef104ace6d682f97fcb9cda7814b0f8f261fe22c6c6ca426aa |
| SHA512 | 4495f45a93319806220ed804a62f689b736aa642160d9bbdad51ef1438dece8370335cac7494b820986dba4adca7590970fad4c30974eb4891a61b8e4fddfa67 |
/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite
| MD5 | 02dab7dd59ab6ccf75cd73d0d4ca7cc0 |
| SHA1 | 28c0b9bd95f09a1674260e501e9ec9cdcb0eb6c4 |
| SHA256 | 92c0cfde3837ce37353c3c54839c7f7a067622c886131a99b9b74eed837df00e |
| SHA512 | 9da3abe0c6fad322aaf28dca0ef5964006f435a7b1505c474762c98bd6ac71f07ee83df881aa97f3991c17b528f45e3a27f3a7060977e1f76ae9a5afaaa01a5e |
/root/.mozilla/firefox/lcavj0x0.default-release/content-prefs.sqlite
| MD5 | 1fc2e7b7fe2c5be305dfa9a2bbb60771 |
| SHA1 | 4967389dea050001cb1af3ec799edb7805c3abb8 |
| SHA256 | 1953edcac737d1ad3de6fbf69671163882fdc0be5bd21d00378d8d8c753c757a |
| SHA512 | fba536378ab9b5f04d92f1029b92d255c7da445a29e2527647bc16e57d02c179de1e78a2de11db1b00cc54c24d3715980c84c0cde103f47c6150f2e7bb8f93d5 |
/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/6D89348819C8881868053197CA0754F36784BF5F
| MD5 | 8022d9aa97c82b33e71406380a5718f6 |
| SHA1 | 3f1b19458f6cbf8ebde5c4067e9515ee692193e4 |
| SHA256 | 6845f05728ef5ef14b642f700bd5b60b241f78002c90492f38558ddd52935e36 |
| SHA512 | 57836f1187dbb507e1882746fa99bd6eff8182eab8b232a4195621b29b424bf943aeff939aa2564fe5ac50d9f853dde58a2a4a98f87b017cfe6845a8ef890543 |
/root/.cache/mozilla/firefox/lcavj0x0.default-release/startupCache/startupCache.8.little
| MD5 | c57d45e0c43061e03ff926d01d0b0da9 |
| SHA1 | 1cacfbd33bf9cb84c405ab2149dace524fd3bdc3 |
| SHA256 | 32a13150892d181e9eadf2692f5257e274bf7fde88fd93d699f484855caa6f81 |
| SHA512 | 84f323fb893e6fbaf28be9b7552b83a8a7b547b1739f6aeefd57f6364e6e606e1ba99e2181857909bdf12bedf3afc8f27d6de283e7aedff7c11eb3d288494f35 |
/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/44230749A38B6989F56217B435A03E84CCADE62D
| MD5 | f2863a86209bffdd933bc40b0fb56886 |
| SHA1 | e6e8e6d60372469acc5372bdc0be003d29e8ccdb |
| SHA256 | a115c3e1660e17bc04038175af19a682ff9948b7961504c8e02ccb7492b07fa7 |
| SHA512 | 3eed8a5f84c92afe42f2bca107a0759c1b8c57e0c7ff83349fbeb6a8526d6df123160db6c62b0448475766e36d2a195ebbd07d33f114f5d02e5be05200bb686f |
/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3561288849sdhlie.sqlite
| MD5 | 7a4411d2e0b79375c1cc15be0580c37b |
| SHA1 | ba681f9d6931896ecd7db38929c6b238abf1db12 |
| SHA256 | 47cc9c7e2c663700e03902a26e356f1e77a7889d7635982bacb5c40741ffcc2c |
| SHA512 | 16f9af6782a0ce6aa9cc23304e5ea560bb9291dc3410dfe858ded6e53ba2c73e647244b6937b2371370774b1d4f328488ece335caab9e96510b15a51bf621407 |
/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js
| MD5 | ea9c7559905914749a031c595623b2f1 |
| SHA1 | 9c8d725b34c596a1468c8346e22a3aebe65df1ac |
| SHA256 | 44d7356402e868ae33777b0ba4439f4e0d1e2d949b4e8680d3adce142150f184 |
| SHA512 | 9783c2af89ef2a1ce3d8f54c2d6fa7d05e816863170240c713e0c6d37990d32f840c1e134e87fc2e68902ee7e408ddc9210ed66651ffa309b107c514540668e8 |
/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/D23F7952044A1A6016B80DED46FC563716A295DF
| MD5 | 1d24d1abf3032e7a9a89b4a953b4d4ca |
| SHA1 | 814c594230c4071018ab50ed7a327ccc743e34ff |
| SHA256 | 373fca0da2958cfd4148c8556edd3d54fbec1c069311f59b467d83c100d90ee8 |
| SHA512 | 893ad05f68753760750458b0de23c8a20afbca3ab677095850ceab43aa70de24851262dc140dbb01930f212034c47e185ed21961a441a4873c65fb0901efdd50 |
/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/D6B0ADD0DAEA00708CBB4290B85CCA0E0FA79061
| MD5 | 5383ef4f836bee7adc5d7ad1e73bce9e |
| SHA1 | 6d280c0ca57d3658efab848348442ed377f8617e |
| SHA256 | fef6b5e2442e2379a0a338aed6b5386429ecea424d1fd5dc893ce6dcc75261cd |
| SHA512 | 0dbd52538b140f12ca813216f7833dcb7b2d5bee611cad56d83d686e8637da9cdf24034b8ab47738aee220d7fa21e55cc6e649f481dcbdf89b22b99c2a908f31 |
/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite
| MD5 | 54ceab89632ebe4077bbbfa42ae36c49 |
| SHA1 | 462aa637a3623662ca31b189aee140c9b8faf8e5 |
| SHA256 | efb093220d84a5e8546a800c2ccfe2ce8624fa5fa022cd73abf92dfde37560bd |
| SHA512 | d2ebd6327df4df2d46b4cac68206dd1011f58341a4acbc26650c0e68827715cbdb0f1b8e3b7188bd1f3331678513176290eacf102606fc48b826cdf5ba407b10 |
/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js
| MD5 | 9f62dfa5da2f686220543dac86aac905 |
| SHA1 | 8d5a86ffcc13e8381ec428b8ee6e7c2dd26befe0 |
| SHA256 | f8e21236ddd1da2e44fe463a733a58f2d436d656c808be7a6f7c1e190cdc671e |
| SHA512 | e834a0082307958aa50bfc863af2496012a642cfcb701a40bd2ba54abd63e05e9191d98697e84421e708210aa4433035815c4f412d70f282a08f9d63851b4050 |
/root/.mozilla/firefox/lcavj0x0.default-release/places.sqlite
| MD5 | 751b211489709f487850f8ad34ce1b1b |
| SHA1 | f9b28bc92bfb5230c9a4ef7c7d7f84cd495b3542 |
| SHA256 | 4a3545d1d98e94acab70a4dcd18d628f4229c9658d6a1787cd5e8561556677d5 |
| SHA512 | a76bc02db2094eb9ac4f4e34aada80f2da1ebe8d822bfa40073c1d643b1c85bef7e921cbd9f0ac8c9d418480af659115e685aaf08aec78daccc5a9e732c36616 |
/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/89C9B59023C6004C5FCA8E641B2BD533BAA7F06E
| MD5 | 9eacb142b30bcba9668761faf0cb9e07 |
| SHA1 | 3e2ab2c6b8794dd90a20746b2f078dbede7fbcb9 |
| SHA256 | ee10ae1e50a9c5febdd275dec1a4711c49ad9f77158b51a1d357a6e08c5a853b |
| SHA512 | bcc0daa171b5303c14f1d3db13c8e7185edd3b93f7987ec3eab9025ccc52afc33463ed9b45844146822fade053a474b42dca2d0b70f4ea1791b6572af340c0d1 |
/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/D6B0ADD0DAEA00708CBB4290B85CCA0E0FA79061
| MD5 | 498884f8b9d959117412288f1e126bbd |
| SHA1 | 9fdd3f6dfd8c0b06554a6e80e6cc1c3a495b128a |
| SHA256 | b35504a785eb0a62c53d96c04751c2f7db4fdfd8e71b1f874631214bed29ddb9 |
| SHA512 | b0571d5c287657b0c1d7ca7276d73bcc5bd8f6660350f35aaed1983ee26c8557b851e9ce8e1cb595aefe3183d1abb7443350607c7ee2092f1b850b2701d4b5df |
/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js
| MD5 | 58915b8dc3d2ea1503fb62c6cf27fdfe |
| SHA1 | 9c014df06e3ba09500127dfe0f17708053f388b8 |
| SHA256 | e487d058d2f7e5065ba5a68f75e8ecb14cb8255bec7cb75fedef6c6f760e31bb |
| SHA512 | 4a14b3233c38f89bdd86d709f9e6065643f0403fa9c90485873c2b1c98927b93cf2cb038b2c1fc8bb863fa3074a2825425b9bcf7d6b8327e2cd05b1fba235292 |
/root/.mozilla/firefox/lcavj0x0.default-release/SiteSecurityServiceState.txt
| MD5 | 774e8ea1c1a4f3337881ea9ccebc647a |
| SHA1 | c2ee9e5aa5f5590b8fa34ee10fe4712db4cfb525 |
| SHA256 | 64aa5a71fbdfa728315c783529a621acd8348cc06df2ddad1daded3699a8f140 |
| SHA512 | 1193bab281124b8594853f148949a2559a4ec46b709db2a09a46f9440efe23920346e02468dee8d7e386045a7427c535d4438a0522fb00e6685d8fe097e7359c |
/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/2823318777ntouromlalnodry--naod.sqlite
| MD5 | 14396a8e683727274478325da363346d |
| SHA1 | 27e61597c8460701b44000a872934eac6b10ba9d |
| SHA256 | 5addc54dd84c61f7a0823946170835da184434bcbe19e87c249e8c6dd0560128 |
| SHA512 | c178f6eaca7ffa1f2f45a08cbe9326c0816eae5a41cb39970933464fd6b449337a25d985df1758e14c98a9c219882d66676416820276ed83ee20064ac5f4578e |
Analysis: behavioral2
Detonation Overview
Submitted
2024-04-16 17:24
Reported
2024-04-16 17:24
Platform
debian9-armhf-20240226-en