Malware Analysis Report

2025-01-23 15:34

Sample ID 240416-vyr58ahe9x
Target http://google.com
Tags
antivm spyware stealer
score
7/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Enterprise Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral4

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
7/10

Threat Level: Shows suspicious behavior

The file http://google.com was found to be: Shows suspicious behavior.

Malicious Activity Summary

antivm spyware stealer

Changes its process name

Reads user data of web browsers

Reads CPU attributes

Checks CPU configuration

Enumerates kernel/hardware configuration

Reads runtime system information

Writes file to tmp directory

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-04-16 17:24

Signatures

N/A

Analysis: behavioral3

Detonation Overview

Submitted

2024-04-16 17:24

Reported

2024-04-16 17:24

Platform

debian9-mipsbe-20240226-en

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

N/A

Files

N/A

Analysis: behavioral4

Detonation Overview

Submitted

2024-04-16 17:24

Reported

2024-04-16 17:24

Platform

debian9-mipsel-20240226-en

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

N/A

Files

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-04-16 17:24

Reported

2024-04-16 17:42

Platform

ubuntu1804-amd64-20240226-en

Max time kernel

43s

Max time network

628s

Command Line

[xdg-open http://google.com]

Signatures

Changes its process name

Description Indicator Process Target
Changes the process name, possibly in an attempt to hide itself glean.dispatche N/A N/A
Changes the process name, possibly in an attempt to hide itself IPC I/O Parent N/A N/A
Changes the process name, possibly in an attempt to hide itself IPC I/O Parent N/A N/A
Changes the process name, possibly in an attempt to hide itself IPC I/O Parent N/A N/A
Changes the process name, possibly in an attempt to hide itself Backgro~Pool #1 N/A N/A
Changes the process name, possibly in an attempt to hide itself Backgro~Pool #1 N/A N/A
Changes the process name, possibly in an attempt to hide itself IPDL Background N/A N/A
Changes the process name, possibly in an attempt to hide itself IPDL Background N/A N/A
Changes the process name, possibly in an attempt to hide itself Socket Thread N/A N/A
Changes the process name, possibly in an attempt to hide itself Socket Thread N/A N/A
Changes the process name, possibly in an attempt to hide itself HTML5 Parser N/A N/A
Changes the process name, possibly in an attempt to hide itself HTML5 Parser N/A N/A
Changes the process name, possibly in an attempt to hide itself Netlink Monitor N/A N/A
Changes the process name, possibly in an attempt to hide itself Netlink Monitor N/A N/A
Changes the process name, possibly in an attempt to hide itself Timer N/A N/A
Changes the process name, possibly in an attempt to hide itself Timer N/A N/A
Changes the process name, possibly in an attempt to hide itself JS Watchdog N/A N/A
Changes the process name, possibly in an attempt to hide itself JS Watchdog N/A N/A
Changes the process name, possibly in an attempt to hide itself BGReadURLs N/A N/A
Changes the process name, possibly in an attempt to hide itself BGReadURLs N/A N/A
Changes the process name, possibly in an attempt to hide itself Cache2 I/O N/A N/A
Changes the process name, possibly in an attempt to hide itself Cookie N/A N/A
Changes the process name, possibly in an attempt to hide itself Cookie N/A N/A
Changes the process name, possibly in an attempt to hide itself StreamTrans #1 N/A N/A
Changes the process name, possibly in an attempt to hide itself StreamTrans #1 N/A N/A
Changes the process name, possibly in an attempt to hide itself TaskCon~ller #1 N/A N/A
Changes the process name, possibly in an attempt to hide itself TaskCon~ller #0 N/A N/A
Changes the process name, possibly in an attempt to hide itself BgIOThr~Pool #1 N/A N/A
Changes the process name, possibly in an attempt to hide itself BgIOThr~Pool #1 N/A N/A
Changes the process name, possibly in an attempt to hide itself QuotaManager IO N/A N/A
Changes the process name, possibly in an attempt to hide itself QuotaManager IO N/A N/A
Changes the process name, possibly in an attempt to hide itself IndexedDB #1 N/A N/A
Changes the process name, possibly in an attempt to hide itself IndexedDB #1 N/A N/A
Changes the process name, possibly in an attempt to hide itself IPC Launch N/A N/A
Changes the process name, possibly in an attempt to hide itself IPC Launch N/A N/A
Changes the process name, possibly in an attempt to hide itself SandboxReporter N/A N/A
Changes the process name, possibly in an attempt to hide itself SandboxReporter N/A N/A
Changes the process name, possibly in an attempt to hide itself Breakpad Server N/A N/A
Changes the process name, possibly in an attempt to hide itself Sandbox Forked N/A N/A
Changes the process name, possibly in an attempt to hide itself DOM Worker N/A N/A
Changes the process name, possibly in an attempt to hide itself DOM Worker N/A N/A
Changes the process name, possibly in an attempt to hide itself Chroot Helper N/A N/A
Changes the process name, possibly in an attempt to hide itself StreamTrans #5 N/A N/A
Changes the process name, possibly in an attempt to hide itself StreamTrans #5 N/A N/A
Changes the process name, possibly in an attempt to hide itself StreamTrans #4 N/A N/A
Changes the process name, possibly in an attempt to hide itself StreamTrans #4 N/A N/A
Changes the process name, possibly in an attempt to hide itself StreamTrans #3 N/A N/A
Changes the process name, possibly in an attempt to hide itself StreamTrans #3 N/A N/A
Changes the process name, possibly in an attempt to hide itself StreamTrans #2 N/A N/A
Changes the process name, possibly in an attempt to hide itself StreamTrans #2 N/A N/A
Changes the process name, possibly in an attempt to hide itself MainThread /usr/lib/firefox/firefox N/A
Changes the process name, possibly in an attempt to hide itself IPC I/O Child N/A N/A
Changes the process name, possibly in an attempt to hide itself IPC I/O Child N/A N/A
Changes the process name, possibly in an attempt to hide itself IPC I/O Child N/A N/A
Changes the process name, possibly in an attempt to hide itself FSBroker1700 N/A N/A
Changes the process name, possibly in an attempt to hide itself FSBroker1700 N/A N/A
Changes the process name, possibly in an attempt to hide itself Socket Process /usr/lib/firefox/firefox N/A
Changes the process name, possibly in an attempt to hide itself Socket Thread N/A N/A
Changes the process name, possibly in an attempt to hide itself Socket Thread N/A N/A
Changes the process name, possibly in an attempt to hide itself Backgro~Pool #1 N/A N/A
Changes the process name, possibly in an attempt to hide itself Backgro~Pool #1 N/A N/A
Changes the process name, possibly in an attempt to hide itself ProfilerChild N/A N/A
Changes the process name, possibly in an attempt to hide itself ProfilerChild N/A N/A
Changes the process name, possibly in an attempt to hide itself Timer N/A N/A

Reads user data of web browsers

spyware stealer
Description Indicator Process Target
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/sessionstore-backups/previous.jsonlz4 N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/sessionstore-backups/previous.js N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/1657114595AmcateirvtiSty.sqlite-journal N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/favicons.sqlite-wal /usr/lib/firefox/firefox N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/logins.json N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/cookies.sqlite-journal N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release /usr/lib/firefox/firefox N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/key4.db /usr/lib/firefox/firefox N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/xulstore.json /usr/lib/firefox/firefox N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/places.sqlite /usr/lib/firefox/firefox N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/favicons.sqlite-journal /usr/lib/firefox/firefox N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/storage/temporary N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/extensions /usr/lib/firefox/firefox N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/key4.db-journal /usr/lib/firefox/firefox N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/AlternateServices.txt N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/containers.json /usr/lib/firefox/firefox N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/compatibility.ini /usr/lib/firefox/firefox N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/storage.sqlite N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/2823318777ntouromlalnodry--naod.sqlite N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/cert_override.txt /usr/lib/firefox/firefox N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/extensions.json N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/storage/ls-archive.sqlite-journal N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/permissions.sqlite-journal N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/prefs.js /usr/lib/firefox/firefox N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/cookies.sqlite /usr/lib/firefox/firefox N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite-wal N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/sessionstore-backups/recovery.baklz4 N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/sessionstore-backups/recovery.js N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/places.sqlite-wal /usr/lib/firefox/firefox N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/1451318868ntouromlalnodry--epcr.sqlite-journal N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/sessionstore-backups/recovery.jsonlz4 N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/cert9.db /usr/lib/firefox/firefox N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3561288849sdhlie.sqlite-journal N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/cert9.db-journal /usr/lib/firefox/firefox N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/content-prefs.sqlite N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/1451318868ntouromlalnodry--epcr.sqlite-wal N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/addons.json N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3561288849sdhlie.sqlite N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/user.js /usr/lib/firefox/firefox N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/storage N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/cert9.db N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/favicons.sqlite /usr/lib/firefox/firefox N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/favicons.sqlite N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/bookmarkbackups N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/cookies.sqlite N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/system-extensions /usr/lib/firefox/firefox N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/key4.db N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/sessionstore-backups/recovery.bak N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/extension-preferences.json N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/handlers.json /usr/lib/firefox/firefox N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/SiteSecurityServiceState.txt N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/search.json.mozlz4 N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/content-prefs.sqlite-journal N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/shield-preference-experiments.json N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/places.sqlite-wal N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/thumbnails N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/pkcs11.txt /usr/lib/firefox/firefox N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/ClientAuthRememberList.txt N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3561288849sdhlie.sqlite-wal N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/1451318868ntouromlalnodry--epcr.sqlite N/A N/A
File opened for reading /root/.mozilla/firefox/lcavj0x0.default-release/logins-backup.json N/A N/A

Checks CPU configuration

antivm
Description Indicator Process Target
File opened for reading /proc/cpuinfo N/A N/A

Reads CPU attributes

Description Indicator Process Target
File opened for reading /sys/devices/system/cpu/present /usr/lib/firefox/firefox N/A
File opened for reading /sys/devices/system/cpu/online N/A N/A
File opened for reading /sys/devices/system/cpu/present /usr/lib/firefox/firefox N/A
File opened for reading /sys/devices/system/cpu/cpu0/cache/index2/size N/A N/A
File opened for reading /sys/devices/system/cpu/cpu0/cache/index3/size N/A N/A
File opened for reading /sys/devices/system/cpu/present N/A N/A
File opened for reading /sys/devices/system/cpu/present /usr/lib/firefox/firefox N/A
File opened for reading /sys/devices/system/cpu/present /usr/lib/firefox/firefox N/A
File opened for reading /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq N/A N/A
File opened for reading /sys/devices/system/cpu/present /usr/lib/firefox/firefox N/A
File opened for reading /sys/devices/system/cpu/present /usr/lib/firefox/firefox N/A

Enumerates kernel/hardware configuration

Description Indicator Process Target
File opened for reading /sys/bus/pci/devices/0000:00:01.0/irq N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.0/vendor N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/irq N/A N/A
File opened for reading /sys/devices/pci0000:00/0000:00:02.0/uevent N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:00.0/class N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:04.0/device N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:02.0/irq N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:05.0/vendor N/A N/A
File opened for reading /sys/fs/cgroup/cpu,cpuacct/cpu.cfs_quota_us /usr/lib/firefox/firefox N/A
File opened for reading /sys/devices/system/cpu /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.3/vendor N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.3/device N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:03.0/device N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/resource N/A N/A
File opened for reading /sys/devices/pci0000:00/0000:00:02.0/device N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:00.0/irq N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:02.0/resource N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:05.0/class N/A N/A
File opened for reading /sys/devices/pci0000:00/0000:00:02.0/subsystem_device N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.0/class N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:04.0/irq N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:00.0/vendor N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:03.0/resource N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:03.0/class N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.0/device N/A N/A
File opened for reading /sys/devices/pci0000:00/0000:00:02.0/vendor N/A N/A
File opened for reading /sys/devices/system/cpu /usr/lib/firefox/firefox N/A
File opened for reading /sys/devices/system/cpu /usr/lib/firefox/firefox N/A
File opened for reading /sys/devices/system/cpu N/A N/A
File opened for reading /sys/devices/system/cpu /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:03.0/irq N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.1/vendor N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/device N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:02.0/vendor N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:02.0/class N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:05.0/device N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:02.0/device N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:05.0/resource N/A N/A
File opened for reading /sys/bus/pci/devices N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:04.0/resource N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:00.0/resource N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.1/irq N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/vendor N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:04.0/class N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.3/irq N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:06.0/class N/A N/A
File opened for reading /sys/devices/system/cpu /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:00.0/device N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.1/device N/A N/A
File opened for reading /sys/kernel/security/apparmor/features/dbus/mask /usr/bin/dbus-daemon N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.0/resource N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.3/resource N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:03.0/vendor N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:05.0/irq N/A N/A
File opened for reading /sys/devices/pci0000:00/0000:00:02.0/subsystem_vendor N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:04.0/vendor N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.3/class N/A N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.1/class N/A N/A
File opened for reading /sys/devices/system/cpu /usr/lib/firefox/firefox N/A
File opened for reading /sys/bus/pci/devices/0000:00:01.1/resource N/A N/A

Reads runtime system information

Description Indicator Process Target
File opened for reading /proc/1724/cmdline N/A N/A
File opened for reading /proc/self/fd/6 /usr/lib/firefox/firefox N/A
File opened for reading /proc/1772/smaps N/A N/A
File opened for reading /proc/1794/smaps N/A N/A
File opened for reading /proc/self/fd/110 /usr/lib/firefox/firefox N/A
File opened for reading /proc/mounts /usr/bin/dbus-daemon N/A
File opened for reading /proc/1739/cmdline N/A N/A
File opened for reading /proc/self/stat N/A N/A
File opened for reading /proc/filesystems /usr/libexec/xdg-permission-store N/A
File opened for reading /proc/self/fd/78 /usr/lib/firefox/firefox N/A
File opened for reading /proc/1572/attr/current N/A N/A
File opened for reading /proc/self/maps /usr/lib/firefox/firefox N/A
File opened for reading /proc/self/fd/39 /usr/lib/firefox/firefox N/A
File opened for reading /proc/self/fd/50 /usr/lib/firefox/firefox N/A
File opened for reading /proc/filesystems /bin/sed N/A
File opened for reading /proc/self/task/1657/stat N/A N/A
File opened for reading /proc/self/maps /usr/lib/firefox/firefox N/A
File opened for reading /proc/filesystems /usr/libexec/xdg-document-portal N/A
File opened for reading /proc/self/fd/97 /usr/lib/firefox/firefox N/A
File opened for reading /proc/self/fd N/A N/A
File opened for reading /proc/self/fd/31 /usr/lib/firefox/firefox N/A
File opened for reading /proc/self/mountinfo N/A N/A
File opened for reading /proc/self/fd/46 /usr/lib/firefox/firefox N/A
File opened for reading /proc/self/mountinfo /usr/lib/firefox/firefox N/A
File opened for reading /proc/filesystems /bin/sed N/A
File opened for reading /proc/self/fd/41 /usr/lib/firefox/firefox N/A
File opened for reading /proc/1719/cmdline N/A N/A
File opened for reading /proc/filesystems /usr/lib/firefox/firefox N/A
File opened for reading /proc/filesystems /usr/libexec/xdg-desktop-portal-gtk N/A
File opened for reading /proc/self/maps /usr/lib/firefox/firefox N/A
File opened for reading /proc/1825/statm N/A N/A
File opened for reading /proc/1825/smaps N/A N/A
File opened for reading /proc/1588/cmdline N/A N/A
File opened for reading /proc/self/fd/45 /usr/lib/firefox/firefox N/A
File opened for reading /proc/self/task/1703/stat N/A N/A
File opened for reading /proc/filesystems /usr/lib/gvfs/gvfsd-fuse N/A
File opened for reading /proc/filesystems /usr/lib/firefox/firefox N/A
File opened for reading /proc/1748/cmdline N/A N/A
File opened for reading /proc/self/task/1778/stat N/A N/A
File opened for reading /proc/self/maps /usr/lib/firefox/firefox N/A
File opened for reading /proc/filesystems /usr/bin/dbus-daemon N/A
File opened for reading /proc/filesystems /bin/sed N/A
File opened for reading /proc/self/fd/40 /usr/lib/firefox/firefox N/A
File opened for reading /proc/self/maps /usr/lib/firefox/firefox N/A
File opened for reading /proc/1728/cmdline N/A N/A
File opened for reading /proc/1794/statm N/A N/A
File opened for reading /proc/self/task/1828/stat N/A N/A
File opened for reading /proc/self/task/1848/stat N/A N/A
File opened for reading /proc/filesystems /usr/lib/firefox/firefox N/A
File opened for reading /proc/1572/status N/A N/A
File opened for reading /proc/self/fd/42 /usr/lib/firefox/firefox N/A
File opened for reading /proc/filesystems /usr/lib/firefox/firefox N/A
File opened for reading /proc/self/fd/35 /usr/lib/firefox/firefox N/A
File opened for reading /proc/1772/statm N/A N/A
File opened for reading /proc/self/fd/87 /usr/lib/firefox/firefox N/A
File opened for reading /proc/self/fd/34 /usr/lib/firefox/firefox N/A
File opened for reading /proc/self/fd/44 /usr/lib/firefox/firefox N/A
File opened for reading /proc/self/fd/48 /usr/lib/firefox/firefox N/A
File opened for reading /proc/self/fd/76 /usr/lib/firefox/firefox N/A
File opened for reading /proc/1844/statm N/A N/A
File opened for reading /proc/filesystems /bin/sed N/A
File opened for reading /proc/filesystems /bin/sed N/A
File opened for reading /proc/self/fd/49 /usr/lib/firefox/firefox N/A
File opened for reading /proc/self/fd/79 /usr/lib/firefox/firefox N/A

Writes file to tmp directory

Description Indicator Process Target
File opened for modification /tmp/firefox/.parentlock /usr/lib/firefox/firefox N/A

Processes

/usr/bin/xdg-open

[xdg-open http://google.com]

/usr/bin/dbus-send

[dbus-send --print-reply --dest=org.freedesktop.DBus /org/freedesktop/DBus org.freedesktop.DBus.GetNameOwner string:org.gnome.SessionManager]

/usr/bin/dbus-launch

[dbus-launch --autolaunch 11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr]

/usr/bin/dbus-daemon

[/usr/bin/dbus-daemon --syslog-only --fork --print-pid 5 --print-address 7 --session]

/bin/grep

[grep = \"xfce4\"$]

/usr/bin/xprop

[xprop -root _DT_SAVE_MODE]

/bin/grep

[grep -i ^xfce_desktop_window]

/usr/bin/xprop

[xprop -root]

/bin/grep

[grep -q ^Enlightenment]

/bin/uname

[uname]

/bin/grep

[grep -q ^file://]

/bin/egrep

[egrep -q ^[[:alpha:]+\.\-]+:]

/usr/local/sbin/grep

[grep -E -q ^[[:alpha:]+\.\-]+:]

/usr/local/bin/grep

[grep -E -q ^[[:alpha:]+\.\-]+:]

/usr/sbin/grep

[grep -E -q ^[[:alpha:]+\.\-]+:]

/usr/bin/grep

[grep -E -q ^[[:alpha:]+\.\-]+:]

/sbin/grep

[grep -E -q ^[[:alpha:]+\.\-]+:]

/bin/grep

[grep -E -q ^[[:alpha:]+\.\-]+:]

/bin/sed

[sed -n s/\(^[[:alnum:]+\.-]*\):.*$/\1/p]

/usr/bin/xdg-mime

[xdg-mime query default x-scheme-handler/http]

/usr/bin/dbus-send

[dbus-send --print-reply --dest=org.freedesktop.DBus /org/freedesktop/DBus org.freedesktop.DBus.GetNameOwner string:org.gnome.SessionManager]

/usr/bin/dbus-launch

[dbus-launch --autolaunch 11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr]

/bin/grep

[grep = \"xfce4\"$]

/usr/bin/xprop

[xprop -root _DT_SAVE_MODE]

/bin/grep

[grep -i ^xfce_desktop_window]

/usr/bin/xprop

[xprop -root]

/bin/grep

[grep -q ^Enlightenment]

/bin/uname

[uname]

/bin/sed

[sed s/:/ /g]

/usr/bin/cut

[cut -d ; -f 1]

/usr/bin/cut

[cut -d = -f 2]

/usr/bin/head

[head -n 1]

/bin/grep

[grep x-scheme-handler/http= /.local/share/applications/defaults.list /.local/share/applications/mimeinfo.cache]

/usr/bin/cut

[cut -d ; -f 1]

/usr/bin/cut

[cut -d = -f 2]

/usr/bin/head

[head -n 1]

/bin/grep

[grep x-scheme-handler/http= /.local/share/applications/defaults.list /.local/share/applications/mimeinfo.cache]

/usr/bin/cut

[cut -d ; -f 1]

/usr/bin/cut

[cut -d = -f 2]

/usr/bin/head

[head -n 1]

/bin/grep

[grep x-scheme-handler/http= /usr/local/share//applications/defaults.list /usr/local/share//applications/mimeinfo.cache]

/usr/bin/cut

[cut -d ; -f 1]

/usr/bin/cut

[cut -d = -f 2]

/usr/bin/head

[head -n 1]

/bin/grep

[grep x-scheme-handler/http= /usr/local/share//applications/defaults.list /usr/local/share//applications/mimeinfo.cache]

/usr/bin/cut

[cut -d ; -f 1]

/usr/bin/cut

[cut -d = -f 2]

/usr/bin/head

[head -n 1]

/bin/grep

[grep x-scheme-handler/http= /usr/share//applications/defaults.list /usr/share//applications/mimeinfo.cache]

/bin/sed

[sed s/:/ /g]

/bin/sed

[sed -e s|-|/|]

/bin/sed

[sed -e s|-|/|]

/usr/bin/cut

[cut -d= -f 2-]

/usr/bin/which

[which firefox]

/usr/bin/cut

[cut -d= -f 2-]

/usr/bin/cut

[cut -d= -f 2-]

/usr/bin/cut

[cut -d= -f 2-]

/usr/bin/firefox

[/usr/bin/firefox http://google.com]

/usr/bin/which

[which /usr/bin/firefox]

/usr/lib/firefox/firefox

[/usr/lib/firefox/firefox http://google.com]

/usr/bin/dbus-launch

[dbus-launch --autolaunch 11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr]

/usr/bin/lsb_release

[/usr/bin/lsb_release -idrc]

/usr/lib/firefox/firefox

[/usr/lib/firefox/firefox -contentproc -parentBuildID 20230522134052 -prefsLen 19257 -prefMapSize 230809 -appDir /usr/lib/firefox/browser {5905bb7e-0804-4b03-9a1d-4fb511d35e6c} 1655 true socket]

/usr/local/sbin/dbus-launch

[dbus-launch --autolaunch=11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr]

/usr/local/bin/dbus-launch

[dbus-launch --autolaunch=11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr]

/usr/sbin/dbus-launch

[dbus-launch --autolaunch=11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr]

/usr/bin/dbus-launch

[dbus-launch --autolaunch=11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr]

/usr/libexec/xdg-desktop-portal

[/usr/libexec/xdg-desktop-portal]

/usr/libexec/xdg-document-portal

[/usr/libexec/xdg-document-portal]

/usr/libexec/xdg-permission-store

[/usr/libexec/xdg-permission-store]

/usr/libexec/xdg-desktop-portal-gtk

[/usr/libexec/xdg-desktop-portal-gtk]

/usr/lib/gvfs/gvfsd

[/usr/lib/gvfs/gvfsd]

/usr/lib/gvfs/gvfsd-fuse

[/usr/lib/gvfs/gvfsd-fuse /root/.gvfs -f -o big_writes]

/usr/lib/firefox/firefox

[/usr/lib/firefox/firefox -contentproc -childID 1 -isForBrowser -prefsLen 21684 -prefMapSize 230809 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir /usr/lib/firefox/browser {8d6db163-d5e3-40ea-993f-e92a794710a6} 1655 true tab]

/usr/lib/firefox/firefox

[/usr/lib/firefox/firefox -contentproc -childID 2 -isForBrowser -prefsLen 21352 -prefMapSize 230809 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir /usr/lib/firefox/browser {4f108507-8f95-4280-97c9-368a9155fa5e} 1655 true tab]

/usr/lib/firefox/firefox

[/usr/lib/firefox/firefox -contentproc -childID 3 -isForBrowser -prefsLen 21701 -prefMapSize 230809 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir /usr/lib/firefox/browser {a9fb021c-8e29-49cd-adaf-46ce5cc29a0f} 1655 true tab]

/usr/lib/firefox/firefox

[/usr/lib/firefox/firefox -contentproc -childID 4 -isForBrowser -prefsLen 27758 -prefMapSize 230809 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir /usr/lib/firefox/browser {48fdec49-ac69-414a-a63a-e124b92d6656} 1655 true tab]

Network

Country Destination Domain Proto
US 151.101.194.49:443 tcp
US 151.101.129.91:443 tcp
GB 195.181.164.14:443 tcp
N/A 224.0.0.251:5353 udp
GB 185.125.188.62:443 tcp
GB 185.125.188.61:443 tcp
US 1.1.1.1:53 cdn.fwupd.org udp
US 1.1.1.1:53 cdn.fwupd.org udp
US 151.101.130.49:443 cdn.fwupd.org tcp
US 151.101.129.91:443 tcp
US 1.1.1.1:53 1527653184.rsc.cdn77.org udp
US 1.1.1.1:53 1527653184.rsc.cdn77.org udp
GB 195.181.164.21:443 1527653184.rsc.cdn77.org tcp
US 1.1.1.1:53 services.addons.mozilla.org udp
US 1.1.1.1:53 services.addons.mozilla.org udp
FR 52.222.149.126:443 services.addons.mozilla.org tcp
FR 52.222.149.126:443 services.addons.mozilla.org tcp
US 1.1.1.1:53 location.services.mozilla.com udp
US 1.1.1.1:53 location.services.mozilla.com udp
US 1.1.1.1:53 locprod2-elb-us-west-2.prod.mozaws.net udp
US 1.1.1.1:53 detectportal.firefox.com udp
US 1.1.1.1:53 detectportal.firefox.com udp
US 1.1.1.1:53 google.com udp
US 1.1.1.1:53 google.com udp
US 44.240.56.209:443 location.services.mozilla.com tcp
US 1.1.1.1:53 www.mozilla.org udp
US 1.1.1.1:53 www.mozilla.org udp
US 1.1.1.1:53 www.mozorg.moz.works udp
US 34.107.221.82:80 detectportal.firefox.com tcp
FR 18.244.30.171:443 www.mozilla.org tcp
US 1.1.1.1:53 example.org udp
US 1.1.1.1:53 example.org udp
FR 18.244.30.171:443 www.mozilla.org tcp
US 1.1.1.1:53 ipv4only.arpa udp
US 1.1.1.1:53 ipv4only.arpa udp
US 34.107.221.82:80 detectportal.firefox.com tcp
GB 172.217.169.78:80 google.com tcp
GB 172.217.169.78:80 google.com tcp
US 1.1.1.1:53 contile.services.mozilla.com udp
US 1.1.1.1:53 contile.services.mozilla.com udp
US 34.117.237.239:443 contile.services.mozilla.com tcp
US 1.1.1.1:53 firefox.settings.services.mozilla.com udp
US 1.1.1.1:53 firefox.settings.services.mozilla.com udp
US 1.1.1.1:53 prod.remote-settings.prod.webservices.mozgcp.net udp
US 34.149.100.209:443 firefox.settings.services.mozilla.com tcp
US 34.149.100.209:443 firefox.settings.services.mozilla.com tcp

Files

/root/.dbus/session-bus/11c67417355f45d397f6be11f62e85a6-0

MD5 4df9115f4588ca02a9ebf1f3cf2f61f7
SHA1 cb6c81219aa2d96f8ee2f924cfb87423ddcaa6d1
SHA256 bcd846ffaeac04e3390b55b417753e3a3b9db48027fd1b20520ab2d0bb0f6220
SHA512 7e10d5688efffc6c717b1aa242df85373935b1726a0122209e95c46cf458ef4abbb257486f98dda0863d2b1c3fc0825ccfdccbb06bc893e4ed378aaeb359cffc

/root/.mozilla/firefox/Crash Reports/InstallTime20230522134052

MD5 3542a67184b9980131f112e1c7d5801f
SHA1 da3bd69b85b54e2fd0399f45e82764ca05fe19d3
SHA256 c20d281aebbf517c873deaa4b2eaaf16b8aafa2f619df388d83a684ab50e5214
SHA512 634944f8b413dcea307e6b03a7698ba376a814afdae9ea881ccf3cebefe54ce36dd03a8b7174d3ff9a1bf69e24eaba0fb0ba5d7e7eb2fc9747681ff48325c011

/root/.mozilla/firefox/lcavj0x0.default-release/times.json

MD5 ff55f9ecdd37ea193c6c7c780f71b68a
SHA1 f9b3ac22f3cea879b91d58d36ab174d5985d2eb6
SHA256 101678ed3f7de5057225de9314af5d9a907ece5d8036b13db51c74dba413224b
SHA512 8a0d620cc47ce9f7790e4eba4f2bcf86ddd2f08c7e9e8b6fb592a45a9a1865c4ee1cbce566bf6179e40a8ea2dcf7dd2feb1e516b4f7c28525507a45f729bcdd0

/root/.mozilla/firefox/installs.ini

MD5 6a63b15b03b7921c70da07127be315db
SHA1 393ae676bd95e1aed001d40a92005964a3c4bfb9
SHA256 75818d96e046ae8d5463ec9bb7442b9a2c875f185e7fd839015be4ecfd8bdd09
SHA512 514fc089889530b4de05fb60f8742ca685446814f48d10f725e410e9175356eb4931f1e02ccf2cec5e666c13a22b475d547f080a70bbfcfb25734680400b43b3

/root/.mozilla/firefox/profiles.ini

MD5 568425ebf8cae67edf631e1455bd9522
SHA1 6540b4b748167cdba218b8f8914690ab1015eeac
SHA256 af602dbb14efeeda6b869625f601994ff5b5519b3491373025b1f9d1ae34ed5f
SHA512 b0a0787050de26b61a0b5a43ee0bd08cd7fbd1cc0ec6ad3594f6e8ee368f045942464938237ce23d6f13be4d9e1a3a46f86d006def3388b647135a58ff33a9c0

/root/.mozilla/firefox/lcavj0x0.default-release/compatibility.ini

MD5 fe452b7294d5928a9a5863b89ee0a6bd
SHA1 a5d4c245071fa96476ba48b4725bdae7f1b7940f
SHA256 d5bfb07561606a19aa96557ea109b175050dc0eb805cbef9c813503587d77900
SHA512 dc37d8507f08849e3382d2dbafd4a64555dbd57a288c95131e9aefb366630f1585811a9e1456b861bb9d2b816ed88b18ffb7580cd92b41bb9b0227ce1363843e

/root/.mozilla/firefox/lcavj0x0.default-release/prefs.js

MD5 d2f9863d60691cc60974e5daffcbb4dd
SHA1 72ff3cb91e18a24c82cbf799d263e93c1f8d50c7
SHA256 48dbe9df98f0e0a2aee6f24e670cef62465c55ca189db1344a93592f4c6e79ce
SHA512 787d26d043027f29887976c698890228dbc201df57e6ebffa9761521468e6159996c42d67aba283a6673018229fc81e1a9b49ff0ddcb722e0875c5a8b2bfcb7e

/root/.mozilla/firefox/lcavj0x0.default-release/cookies.sqlite

MD5 9535f5fe817accc769c2c1d3354db39f
SHA1 6af62cf08717cf3bfa84eb1a7b311acf522ce560
SHA256 c53c15fcfac2bb57fdc88d23f932fc244dbaf4020f0f6eaecf0f77a37c21f8c5
SHA512 dc9c2c32eb42dda0a7a711e143aea58c603c1e9d885c3677e9fe86f525e1b0b32a46e240756263e56510b07e764ba69f2de13b90ec18210678242e10cfe17837

/root/.mozilla/firefox/lcavj0x0.default-release/cookies.sqlite

MD5 5caa766855d5613a999f71b7812d6451
SHA1 ad0d9a52a0d5cc7f11858301dbe47377ed99ee37
SHA256 3a8ce2b07e3e8678a13aa58ef5b942c4dccd8f9c84511bdeb8847ef270797e27
SHA512 17bb0f4c87ec178910795b25ce85e74cf599190c769592472c3e872f42930c93f28faf0ff3e448816a9abcc8af0459852bed52bee08cfe25d068879c6dfd8eba

/root/.mozilla/firefox/lcavj0x0.default-release/storage/ls-archive.sqlite

MD5 e0c613bfd69956a19ce2dc5e925aa223
SHA1 14accb230edcd6cb76967cdc6d4e5686db96b5df
SHA256 0d4cb11f6364c46a75f9eaddfca5c660b90dfd515df3afcd5e0baeca28a0f1ab
SHA512 01643c0131a392be92b3f281d7f633c1f502bff19090b0d716f1ac66aefecc3fcf92f393bef66b03089c9b9c6d8aaeb711b6a4f29d5a6729dd188c838f2272d1

/root/.mozilla/firefox/lcavj0x0.default-release/storage/ls-archive.sqlite

MD5 178d71e5529d637ac62f7e75fdd75896
SHA1 339f2b949cc4c207b66aea11137448ba28d36dcb
SHA256 7b0050f1bfaab85c8f9067ae7d7369056ff752c0c852ef1462a96c22169004d4
SHA512 ec0e0105fcfbbae356dd55efbcf92975f35bbe5cb93fcabf4c08443e871957635d14830b27c4e1ddefbbaff8f9b7ec3590bf417a9442e1d7ee3607d14d56f664

/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/.metadata-v2-tmp

MD5 21c74dd060d8345a40e2dfb0239108b0
SHA1 faa853881ae634d635d27436cd7c08a93456896d
SHA256 b5a1b4acb0ea4c8f59a8bc4535c34c61924d03b129cc3fe28b5e5cae853f5c84
SHA512 d456fb358b45d47256caa931c8ca0115d8671709e01d8acf3abd1255aded7ad199bbf5a86cd7bca769bad55bd9ff5a1883ae46796844af9122bc69cc60445904

/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite

MD5 07a412e08825220262ad2890757ff779
SHA1 f46c127dbc070ded87a6078b3c1c761955f96de8
SHA256 da640f8b665841b520d2262a21cc3f82aeaa881cf81a1ddae27ef501d66544e4
SHA512 0134c783bf3293848e479b478ac57a1e0f4202cddfb8b57bc6275aada7345f398cf8a627e9b1c34fd618192c2f0c9737b1da487daf33f9c557ebc1377105582b

/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite

MD5 e5c4332f608f3000ed79f45b4fecedb2
SHA1 7f107c2d89975bfbe064e4c7f535bad6992c3fbd
SHA256 caf04455bae77083d4fb7179b492808fdd4963a87e62aae180f553c416a0f23d
SHA512 2c933ba31a84f49bf7e9d77ff943d71718cced5512667e77d403e2c91940cae1c80041a9884b6ddad9530a6dca1f0f99890204b9bbaa4cc1d41a37739bfcc1e6

/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js

MD5 80a77dcb541f97663bd86510185d10f3
SHA1 8045ea6e25b4912a4b17c8a664d7124fc19c4908
SHA256 c6496e6605fbfcdd21824fe46021a538293846922d335ad780ec788746239539
SHA512 12047e9941708928ece055dd1372da6db9b8930aa0eb551516982fcfcde6b6b7dc937507151d8e2363c1af6f61a2cd9d38dfc3d85daa45b575bfab6d2919dd81

/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite

MD5 b7267c666fb3bd22333f81c88c8a549f
SHA1 8dc89de6f0cfd6ff29788de7250e40ed78192f15
SHA256 91f10cd06b03758685b7c7c9826e4a8b90297fae37d68550273db1830c681630
SHA512 bdf2ec943527edac2e6293cd1be1b822ee44ab5356c7c0fe2edb9a3911fc363cdf670b5bf701e1bdbc1d6f70a2dfa8a326e44f0fa987b3874ed244869dd3c615

/root/.cache/dconf/user

MD5 c4103f122d27677c9db144cae1394a66
SHA1 1489f923c4dca729178b3e3233458550d8dddf29
SHA256 96a296d224f285c67bee93c30f8a309157f0daa35dc5b87e410b78630a09cfc7
SHA512 5ea71dc6d0b4f57bf39aadd07c208c35f06cd2bac5fde210397f70de11d439c62ec1cdf3183758865fd387fcea0bada2f6c37a4a17851dd1d78fefe6f204ee54

/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js

MD5 9ca9bc2c001644857bdd4765ffb47c15
SHA1 14baedf0891e450360799278839e1fca8750c433
SHA256 7933d74912d9fb43045f20b736d21be9767e80d6fad3bfda309f4dc42750b840
SHA512 4cec407481649f42382efa9bfa776f209def2da0b02a57efe9756be86e48dc83903eff7aadc53ca1a80a03a1e908ab98de3f29fb2a6be65e239a236c8fef2e74

/root/.mozilla/firefox/lcavj0x0.default-release/times.json

MD5 941eeaa864dd45770acf72a154187a92
SHA1 dedf83bbd171046b3ea63b1432dca245f444fa34
SHA256 2d7301e7a49f59ab641b4d7f4e7eb1ccabd1e88b2961cf2caea58d312c48ee7c
SHA512 b6d9de67b8a7f4401963948d179965da3ee2722ba77150823ad45de8f89a127446e0b2713094d59ef588219f68d1d5872119ff83855e9fdfbe47b01d64233769

/root/.mozilla/firefox/lcavj0x0.default-release/permissions.sqlite

MD5 8482b5677f1180705812848a480ae3ba
SHA1 5ad3921c03e94e377b971f4eeb6c302737c9b7d4
SHA256 b145b47a7dd757f962ec22b41f4c14fdf1e5eca16e6680d867b0013e5754b5d8
SHA512 7586c05e3516d67a7db4b2187c1616e7cb371cca72322279cf7b3865129c3c3e1f9f82d8f8dc6b34a03cb374e8955f3e1a003a615cc9681f37516dc38eadf5d8

/root/.mozilla/firefox/lcavj0x0.default-release/cert9.db

MD5 c1e1ca10d3dcc29401d113e85d180f46
SHA1 d01f6f4232e536b111ba88887333053dfbc7cf2e
SHA256 1b34805b36294863c53e6948fdf42dd527626ea896bbf01bcb6f81b7dbc21a22
SHA512 d857566ac87367644e0eff750cbcaa6164e27b6083b910a9910e173c17acc3788219821cba29d41875329005c6c94fac541afa4f8405d1d31423352943b054f9

/root/.mozilla/firefox/lcavj0x0.default-release/key4.db

MD5 1391dd86020a0a01d3d17dbf19266fdf
SHA1 417a4478232fff9228c265492a8a9d2606f8f3b6
SHA256 89e7a71ec7b95f120f539b867983f3efcb0234d8e7221a414f7420d8fa52301b
SHA512 978eec92e70a511691e3180a0ceb4019514e4cc2f2cdc1333ac9bf2de4a6429b738b9d082de73e3434d01aba77bef1fdbb220666f7cda5095c983299ce4f054b

/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3561288849sdhlie.sqlite

MD5 759544297aaa61f5fef8ee42d0ae4393
SHA1 fc2d66f6e60409e3e8d38623ce5f817fc7f571e0
SHA256 1bd2000cd972e80cefaec6e982ba261d224a818f367de0fdf8c51fa5a05d7ab5
SHA512 8aaa2ce66f10d46f7c9200af841ac7bd9f5b55c30308a14f0deda44ac62581c45daae45154487c0073a0d5847d5926cbb4072ca64a702ac6b834ad0bb482804f

/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js

MD5 5d9da7a9a65dff7f3908c45cc5e7f8f2
SHA1 6da275ae58b8f269449b68d4e0d7add3c9f0728d
SHA256 f8ef60445dc57ac88be9c45df0a3eb270a2ffe0b7adf386e7bdaf52fca885f28
SHA512 8c87188d4b7ce8a9c1c46a5b0c3baa3b0ec9141c20bf993f690993c71e48db6ebfeb30267c4a523874d99feae0c68382b61253058dac8ceb69ea86a39355e1cc

/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js

MD5 4a457c325cb12175796485c4b84a9c2b
SHA1 554e58de784826705876d64534411cb1b5d51565
SHA256 935598b25d2030f6df69d4cc744d281b8929defe42078caffaba01a865a19a87
SHA512 b7d64f2f3ddcb3e05648fca3f83b629a8dc211df67458834c21e5bdeebe7f40b7c46351e18170a93a235e5695375f34d6c8d84620adeb78b83bb0a9da556d21c

/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js

MD5 005b0048a391ae69bdcd9c59da9b0fe3
SHA1 3465d5c7da20f9f43dca708fab01ccc94be4055d
SHA256 f98017a9117d56e85f9a5ee8ed0abb00db8057dc0330b61ce9b0f5418601f647
SHA512 33715ba220a56c329b565c1947ce4ac9519d943cf2318e572c8979f0657202e351b84442ff99d9a36829770fe4f67a2514cb48ab15edbbb835645e226db587e2

/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3561288849sdhlie.sqlite

MD5 2fc396f5a46d1be681adaf6325db703d
SHA1 8f16b537ed27c2a9ae4ff1ce33a514b4c7398f67
SHA256 447c9d7f1a98692b37d52807442565779543ba8671927333034d063b0cd44e65
SHA512 9edaa5c00a0f6c5464cd09f034ffdfbe2cbab6769757850543ae13d7c37b176bd622ded0cb2b58a59e4025a97b769707018273c93b2da55856ccc61d64fc5483

/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js

MD5 47fc3a5eefa1b36e72502d2fc53d9ff6
SHA1 c265c48c25c3b551373c74873c35edc9f694d02d
SHA256 b7f8e5b0c0e254d3029517117b2db34a2824abd4e0e06a0096fa475b8ad7b5fa
SHA512 48d45e9e397d439131bd0bd26080af8e92760a7b201ff2bc458ba87b020b6bf2ff8fde327e22ecdf4559a32a6717a4f7360e764010f04f5da689ae9da4b57e2a

/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/3D1E19D09F398691ABF62061591970855193B42F

MD5 57e43f2c2da6856ce9671e2182e5eda6
SHA1 b4a02b5dadad5ad116781badf84a7e8816d6bdd4
SHA256 9286d72077965c293143d11219ff77fb7f615097a09b5dc234dc2040eacd648a
SHA512 ea80781584b86645d3ab47c727ee64f75152560cd919459b08c6467b8fab9aa865eb4cb46cf1397c475e6df9dda70cd2fb3dfad90bff3e7026e74943283d18ad

/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/1657114595AmcateirvtiSty.sqlite

MD5 7352c8848e88edc39b7fb5e663888187
SHA1 8c3dffe25cc56c7aec1b782292d6fceed81e6304
SHA256 7a462086a26978809c719e57a7ea6a25568767fb7532014e8531fda94b660e0a
SHA512 f2a0dbbab5c2c1702b03bce15a47739481f523e127d1372b40534db9a20b2bc99fb53710ee0e5d44176188817cac704cf4f98cdf087e7e89d244281fcfc3b280

/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/1657114595AmcateirvtiSty.sqlite

MD5 e8d00d99949febbcfac4b968f377df68
SHA1 d9128a7478162f511c15c3186a96fc9ff5ee336c
SHA256 0e2101babab6acd6cf1c56e14cb1a057db8697ea8d1c110e3a8d70f7b0456917
SHA512 5c762ace42121dbc4c4c1e6bb607cb767afa105f82c169fe6f8b0d989aa4bf2c58a5b41ee94f2c2ff07f0af5e4811055f15bf93916689b474e8309a0b9aa791b

/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js

MD5 244e511825120a616ae10728583a9936
SHA1 c3a40116b4bf201ea2a4b3a5d05bd0ca7291f6a0
SHA256 50d0c765369ff8c0a2ba95403e4557b3361f79160a30e86e13339191401db065
SHA512 be85c4edfb2449225839d1e4509abe11122d3e4a3410036e25bc90b6720e23f960f41552df0bac22853d4bd355de116335763232ce9c9cb2ca85e8abfc2246e6

/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/A59CD5522356C9141BA2A8B4056E63097ED8529A

MD5 3c63b236f398562c7feca180282b89df
SHA1 2f2951eaf868c5cef9171a3a586d83bce71347aa
SHA256 51aa7959676b5a0f730db494da47a3efe6644f004be78947d28f3bbb6b146fd5
SHA512 7197b7b05e0c97586298b1125424bb1d47046dced63dddf392cb07243f2d3b1c5230a817ec3539fe2effc15f5ff5f034a0a004a8fa0dce358ce4f75f40a41dd8

/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/039090029E64BC91E87E77199A6A6BE11FC39B6F

MD5 b5fb411ba5131b5d47c5a900eeac6586
SHA1 52179df48f2bebbf39734d22a21083bfdfeabe00
SHA256 2c32528aaa1f557c46d65ecf722a3d3ee25dee0d1112f99dc880414f1456ab9e
SHA512 a3dc8248dab7ef6bf0b51ebf795c667a96a954ba779474d5483b2ca70890690de2567d2cb5aad069a3b607a7e98ba96ffd9bef3be9e82d51387e9b3107727ec1

/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/EE1AAB872F378C4FA66FBCD193AF217BF20A4E27

MD5 eb08e0142912f973744e1e651888eec5
SHA1 5ea5287c8ee172b0bfe357fd9fa469e31250c9a4
SHA256 ef1efa155bd3042d07c2ef601d96015024012d726f9833504d5f9f9cee4bd334
SHA512 8fa7d858e79dba62a75733dc3a8c215c3d181d2781d583de64e22238563bbd7285383e881e9b332df2345b0d09aa8e70f4c9f03d4c7182d7a1294af4a0c1cf43

/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/B41C7329F660E92624C61816BED9D62A49D8FB2B

MD5 ec83119d425eb7f19fde5dc6449163bd
SHA1 c37f6a9b3a54b98f47972ee70e3d6559121ff30d
SHA256 c6814266d38eac2a77acc1847d042b41971b9ce0f2a9f4f4bb3183b66486b9b7
SHA512 4ee23132a704631189d6b6d21c69fe64c14d6f97f991f886a6d5de485306bcf858c699e0825040e03a98be46787736d8cb2aef53409bc9102e610bf41e8ee3f5

/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/0EDDF8C091E2FED62E44BEDDDC1723F5BF38FE4F

MD5 bdf198aa252667bebc8ec789cd63e5a7
SHA1 fe680384aee5ba51168a4244d0e23d1f5ca7b440
SHA256 1d6911af25b1983e1f72e0aa30c07513f9345efa1dc360025e823ed49f74707b
SHA512 676ed3cde5f1e9e4547e549c9e669d42db714db870c0a77d98ac1b83abeeb5a626ffbee238d01caec8912bea4b52d66039bcbea1206ac76476ed3103783b4398

/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/3D1E19D09F398691ABF62061591970855193B42F

MD5 855e6856cbfd61520564edc2e0f170f9
SHA1 9362966da4b1e8c4d177c2b61cae4e3e3d4c12f4
SHA256 e838289304683020d4baa58ea694e93f6f6d2d6a3aa4eee661c68d0ca26f03d4
SHA512 cd68c036fb61aeafe7840171193f8363420313d1c084eccc6453b0f1c54a9df6cf1eec75222798d06d952fc05490eeed57d73406129b6d42ba10a2b72eabc147

/root/.mozilla/firefox/lcavj0x0.default-release/cert9.db

MD5 86cfd8d67345913f415a67cf7ea0ac8a
SHA1 38923c003ed76cf26735d4f705c2e1fbce8d2cfd
SHA256 2607ea7c61ae0eef979238bfced63b3f3579a06a2cd3aedb43249ded12ba7a8e
SHA512 51609c2c9858bc572379a7121b849b81c7951b426c2e9cd5ecac1d718cbcee7b1835793e71a38923b13e9d7baf83a684c528bfb6f73e93f182bb909c5ed804d1

/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite

MD5 dd3f6ba37c670af5953593535e435d04
SHA1 ecfe4e650a050bce77e8ff7468de04c1b8acc9a4
SHA256 5cc6fa137a1f3a7d0b615b178877f12c460b22f95702eb7534d5732ee6599561
SHA512 86e0482543faae6fb279ca71e1e6d6461d32317e74baebb3973e0fde9800107faeb9c2347be6cf8a47556ae43c8e6c224a595e952f621e40ad2c5eba920df2b3

/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite

MD5 db2cd94eae4866f3bb2551f425727068
SHA1 c80a9a98ff9a6afaf8ef4ed5fe8e4fd87f2cd86e
SHA256 e4cfb3878ee505497af4366668fdb90758de72ca66f6e4a409756ff9318d56fb
SHA512 6310df6b14b5ffe7d039780c814bedd42adf21fad6a47e98e5aa1c2817a5cebe6cccbadafdbd5810137766772bf5a3ffce842492b59f334f762b44709f527299

/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js

MD5 e7c9d2657b8f484750b6a3556dfaa57e
SHA1 b8a5eab16bff99ad53dbcc18383a853dae033699
SHA256 484b549cb608b897fe3b72e54fea8862d6dcb240b3bceff5e933f84d19d60c03
SHA512 0f336e42773cb4a56341dfbeb244f7c715be13bd7982d6e871b3178c324303802cd76951bb4835c7e65cff7309992f9590b93bb2138b152f98ec4b9cd70ef5d8

/root/.mozilla/firefox/lcavj0x0.default-release/places.sqlite

MD5 bddc62628816e5a378748a068963356c
SHA1 37c7edafb25659dde85d4e484940149473128f80
SHA256 3c7d76b47d9b73d29d4fc09bddaaec788e8287a103eb0a41e88a36d76a3454e4
SHA512 fa4e01f5d85cd7896d0ba22c7f307eba95589689ec4e1164e89bc59266dda44bbf7091e3bc4dcf971cef052c55e7037972010ad429af6af019db9fc744fdd10c

/root/.mozilla/firefox/lcavj0x0.default-release/favicons.sqlite

MD5 3c0a1ec298284608bfa51081ea539be3
SHA1 e51b58f6fe89d45fd8a1d935b51da172d5f6f32e
SHA256 34c4fe7ab2d3e44f193b489ebe84c17d67b336546af9ef231897ec09d7ff16f2
SHA512 8550f530377f7a98c46a6989bec2c43ed644274509a5b987e8e0d034bf867b3315dcc75a2c851a5ac43a45b40bf51c789d828a9a69c02157b3e900467341a28f

/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js

MD5 62040b081fd558ef5675566cd42275d9
SHA1 00dcb9642690132eb6e2c32415c3207a9b71a313
SHA256 04e73be27dc9dce74ccef4cef8630929fc44821fdb84ce11cb0ea7cf6ab69ff9
SHA512 965671ebc9cc4c74b6116dce9d07d7d4a9c86986c4dbb5ace0260b624b3b3ba9d81d89b0f3aca9529a6b1c143f03b3276a4460786187689d899d1f395c67049b

/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/1451318868ntouromlalnodry--epcr.sqlite

MD5 a8dd7ebaad5528b23f82ccb1534cea18
SHA1 600daceacfb5cf9df0b66ba7dce4516b2ac4df70
SHA256 e5b0d02c18ae36c4a220f41fd97c66060c17aaafcbb324a57ccdc2707c44c4ec
SHA512 67f867a8e2b37fb6bececd5ebc570ca594ea329142badd63d1281d5e735f515a5e329abc6eb9a9d3465aab0a08541b4888018d859964f160a52345ab93532bff

/root/.mozilla/firefox/lcavj0x0.default-release/cert9.db

MD5 1e106ab54325e31343c224d1ef5b3dff
SHA1 5d36014686c3561d2157a7e7009e6272e8be85ac
SHA256 7d9d2e4312c23f6fc46d12d915f3d42a79c83fc07994788dc9302372eace27de
SHA512 060a8ffc88999983f761dbaaad5787eaf9660aac73690f12b857502461bc2427d0c67d8e0f2994c0cf6141b8d14161817ae32498796858a82d542186de441be3

/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js

MD5 1c7432f5298b63d42a730a188b80af71
SHA1 c1b0f309633408704c9af35ae67005a4a48a16a3
SHA256 3e7bee571341f2330e1c3048123809381014d16c158835667b4aa77b8343ec2c
SHA512 0c5b68e273fbbc4e6641ec192922c5df50596070c07f43074eed733ccf80372e741834a2cbe8204c26284147890e0f2bffa64b0d5f1f9fbc959f1c450881c2ae

/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/1451318868ntouromlalnodry--epcr.sqlite

MD5 1e3b48846858130a775e388cf1f80d4b
SHA1 ce68a0a0c735658eafb6a6b0b90b9ac068ec055a
SHA256 d7caabb1fbe28cef104ace6d682f97fcb9cda7814b0f8f261fe22c6c6ca426aa
SHA512 4495f45a93319806220ed804a62f689b736aa642160d9bbdad51ef1438dece8370335cac7494b820986dba4adca7590970fad4c30974eb4891a61b8e4fddfa67

/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite

MD5 02dab7dd59ab6ccf75cd73d0d4ca7cc0
SHA1 28c0b9bd95f09a1674260e501e9ec9cdcb0eb6c4
SHA256 92c0cfde3837ce37353c3c54839c7f7a067622c886131a99b9b74eed837df00e
SHA512 9da3abe0c6fad322aaf28dca0ef5964006f435a7b1505c474762c98bd6ac71f07ee83df881aa97f3991c17b528f45e3a27f3a7060977e1f76ae9a5afaaa01a5e

/root/.mozilla/firefox/lcavj0x0.default-release/content-prefs.sqlite

MD5 1fc2e7b7fe2c5be305dfa9a2bbb60771
SHA1 4967389dea050001cb1af3ec799edb7805c3abb8
SHA256 1953edcac737d1ad3de6fbf69671163882fdc0be5bd21d00378d8d8c753c757a
SHA512 fba536378ab9b5f04d92f1029b92d255c7da445a29e2527647bc16e57d02c179de1e78a2de11db1b00cc54c24d3715980c84c0cde103f47c6150f2e7bb8f93d5

/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/6D89348819C8881868053197CA0754F36784BF5F

MD5 8022d9aa97c82b33e71406380a5718f6
SHA1 3f1b19458f6cbf8ebde5c4067e9515ee692193e4
SHA256 6845f05728ef5ef14b642f700bd5b60b241f78002c90492f38558ddd52935e36
SHA512 57836f1187dbb507e1882746fa99bd6eff8182eab8b232a4195621b29b424bf943aeff939aa2564fe5ac50d9f853dde58a2a4a98f87b017cfe6845a8ef890543

/root/.cache/mozilla/firefox/lcavj0x0.default-release/startupCache/startupCache.8.little

MD5 c57d45e0c43061e03ff926d01d0b0da9
SHA1 1cacfbd33bf9cb84c405ab2149dace524fd3bdc3
SHA256 32a13150892d181e9eadf2692f5257e274bf7fde88fd93d699f484855caa6f81
SHA512 84f323fb893e6fbaf28be9b7552b83a8a7b547b1739f6aeefd57f6364e6e606e1ba99e2181857909bdf12bedf3afc8f27d6de283e7aedff7c11eb3d288494f35

/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/44230749A38B6989F56217B435A03E84CCADE62D

MD5 f2863a86209bffdd933bc40b0fb56886
SHA1 e6e8e6d60372469acc5372bdc0be003d29e8ccdb
SHA256 a115c3e1660e17bc04038175af19a682ff9948b7961504c8e02ccb7492b07fa7
SHA512 3eed8a5f84c92afe42f2bca107a0759c1b8c57e0c7ff83349fbeb6a8526d6df123160db6c62b0448475766e36d2a195ebbd07d33f114f5d02e5be05200bb686f

/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3561288849sdhlie.sqlite

MD5 7a4411d2e0b79375c1cc15be0580c37b
SHA1 ba681f9d6931896ecd7db38929c6b238abf1db12
SHA256 47cc9c7e2c663700e03902a26e356f1e77a7889d7635982bacb5c40741ffcc2c
SHA512 16f9af6782a0ce6aa9cc23304e5ea560bb9291dc3410dfe858ded6e53ba2c73e647244b6937b2371370774b1d4f328488ece335caab9e96510b15a51bf621407

/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js

MD5 ea9c7559905914749a031c595623b2f1
SHA1 9c8d725b34c596a1468c8346e22a3aebe65df1ac
SHA256 44d7356402e868ae33777b0ba4439f4e0d1e2d949b4e8680d3adce142150f184
SHA512 9783c2af89ef2a1ce3d8f54c2d6fa7d05e816863170240c713e0c6d37990d32f840c1e134e87fc2e68902ee7e408ddc9210ed66651ffa309b107c514540668e8

/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/D23F7952044A1A6016B80DED46FC563716A295DF

MD5 1d24d1abf3032e7a9a89b4a953b4d4ca
SHA1 814c594230c4071018ab50ed7a327ccc743e34ff
SHA256 373fca0da2958cfd4148c8556edd3d54fbec1c069311f59b467d83c100d90ee8
SHA512 893ad05f68753760750458b0de23c8a20afbca3ab677095850ceab43aa70de24851262dc140dbb01930f212034c47e185ed21961a441a4873c65fb0901efdd50

/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/D6B0ADD0DAEA00708CBB4290B85CCA0E0FA79061

MD5 5383ef4f836bee7adc5d7ad1e73bce9e
SHA1 6d280c0ca57d3658efab848348442ed377f8617e
SHA256 fef6b5e2442e2379a0a338aed6b5386429ecea424d1fd5dc893ce6dcc75261cd
SHA512 0dbd52538b140f12ca813216f7833dcb7b2d5bee611cad56d83d686e8637da9cdf24034b8ab47738aee220d7fa21e55cc6e649f481dcbdf89b22b99c2a908f31

/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite

MD5 54ceab89632ebe4077bbbfa42ae36c49
SHA1 462aa637a3623662ca31b189aee140c9b8faf8e5
SHA256 efb093220d84a5e8546a800c2ccfe2ce8624fa5fa022cd73abf92dfde37560bd
SHA512 d2ebd6327df4df2d46b4cac68206dd1011f58341a4acbc26650c0e68827715cbdb0f1b8e3b7188bd1f3331678513176290eacf102606fc48b826cdf5ba407b10

/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js

MD5 9f62dfa5da2f686220543dac86aac905
SHA1 8d5a86ffcc13e8381ec428b8ee6e7c2dd26befe0
SHA256 f8e21236ddd1da2e44fe463a733a58f2d436d656c808be7a6f7c1e190cdc671e
SHA512 e834a0082307958aa50bfc863af2496012a642cfcb701a40bd2ba54abd63e05e9191d98697e84421e708210aa4433035815c4f412d70f282a08f9d63851b4050

/root/.mozilla/firefox/lcavj0x0.default-release/places.sqlite

MD5 751b211489709f487850f8ad34ce1b1b
SHA1 f9b28bc92bfb5230c9a4ef7c7d7f84cd495b3542
SHA256 4a3545d1d98e94acab70a4dcd18d628f4229c9658d6a1787cd5e8561556677d5
SHA512 a76bc02db2094eb9ac4f4e34aada80f2da1ebe8d822bfa40073c1d643b1c85bef7e921cbd9f0ac8c9d418480af659115e685aaf08aec78daccc5a9e732c36616

/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/89C9B59023C6004C5FCA8E641B2BD533BAA7F06E

MD5 9eacb142b30bcba9668761faf0cb9e07
SHA1 3e2ab2c6b8794dd90a20746b2f078dbede7fbcb9
SHA256 ee10ae1e50a9c5febdd275dec1a4711c49ad9f77158b51a1d357a6e08c5a853b
SHA512 bcc0daa171b5303c14f1d3db13c8e7185edd3b93f7987ec3eab9025ccc52afc33463ed9b45844146822fade053a474b42dca2d0b70f4ea1791b6572af340c0d1

/root/.cache/mozilla/firefox/lcavj0x0.default-release/cache2/entries/D6B0ADD0DAEA00708CBB4290B85CCA0E0FA79061

MD5 498884f8b9d959117412288f1e126bbd
SHA1 9fdd3f6dfd8c0b06554a6e80e6cc1c3a495b128a
SHA256 b35504a785eb0a62c53d96c04751c2f7db4fdfd8e71b1f874631214bed29ddb9
SHA512 b0571d5c287657b0c1d7ca7276d73bcc5bd8f6660350f35aaed1983ee26c8557b851e9ce8e1cb595aefe3183d1abb7443350607c7ee2092f1b850b2701d4b5df

/root/.mozilla/firefox/lcavj0x0.default-release/prefs-1.js

MD5 58915b8dc3d2ea1503fb62c6cf27fdfe
SHA1 9c014df06e3ba09500127dfe0f17708053f388b8
SHA256 e487d058d2f7e5065ba5a68f75e8ecb14cb8255bec7cb75fedef6c6f760e31bb
SHA512 4a14b3233c38f89bdd86d709f9e6065643f0403fa9c90485873c2b1c98927b93cf2cb038b2c1fc8bb863fa3074a2825425b9bcf7d6b8327e2cd05b1fba235292

/root/.mozilla/firefox/lcavj0x0.default-release/SiteSecurityServiceState.txt

MD5 774e8ea1c1a4f3337881ea9ccebc647a
SHA1 c2ee9e5aa5f5590b8fa34ee10fe4712db4cfb525
SHA256 64aa5a71fbdfa728315c783529a621acd8348cc06df2ddad1daded3699a8f140
SHA512 1193bab281124b8594853f148949a2559a4ec46b709db2a09a46f9440efe23920346e02468dee8d7e386045a7427c535d4438a0522fb00e6685d8fe097e7359c

/root/.mozilla/firefox/lcavj0x0.default-release/storage/permanent/chrome/idb/2823318777ntouromlalnodry--naod.sqlite

MD5 14396a8e683727274478325da363346d
SHA1 27e61597c8460701b44000a872934eac6b10ba9d
SHA256 5addc54dd84c61f7a0823946170835da184434bcbe19e87c249e8c6dd0560128
SHA512 c178f6eaca7ffa1f2f45a08cbe9326c0816eae5a41cb39970933464fd6b449337a25d985df1758e14c98a9c219882d66676416820276ed83ee20064ac5f4578e

Analysis: behavioral2

Detonation Overview

Submitted

2024-04-16 17:24

Reported

2024-04-16 17:24

Platform

debian9-armhf-20240226-en

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

N/A

Files

N/A