Overview
overview
5Static
static
1URLScan
urlscan
1https://webminer.pag...
windows7-x64
3https://webminer.pag...
windows10-1703-x64
3https://webminer.pag...
windows10-2004-x64
5https://webminer.pag...
windows11-21h2-x64
5https://webminer.pag...
android-10-x64
1https://webminer.pag...
android-11-x64
1https://webminer.pag...
android-13-x64
1https://webminer.pag...
android-9-x86
1https://webminer.pag...
macos-10.15-amd64
4https://webminer.pag...
ubuntu-18.04-amd64
3https://webminer.pag...
ubuntu-20.04-amd64
4https://webminer.pag...
ubuntu-22.04-amd64
3https://webminer.pag...
ubuntu-24.04-amd64
4Analysis
-
max time kernel
9s -
max time network
14s -
platform
ubuntu-24.04_amd64 -
resource
ubuntu2404-amd64-20240729-en -
resource tags
arch:amd64arch:i386image:ubuntu2404-amd64-20240729-enkernel:6.8.0-31-genericlocale:en-usos:ubuntu-24.04-amd64system -
submitted
31-08-2024 14:05
Static task
static1
URLScan task
urlscan1
Behavioral task
behavioral1
Sample
https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5
Resource
win10-20240404-en
Behavioral task
behavioral3
Sample
https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5
Resource
win10v2004-20240802-en
Behavioral task
behavioral4
Sample
https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5
Resource
win11-20240802-en
Behavioral task
behavioral5
Sample
https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5
Resource
android-x64-20240624-en
Behavioral task
behavioral6
Sample
https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5
Resource
android-x64-arm64-20240624-en
Behavioral task
behavioral7
Sample
https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5
Resource
android-33-x64-arm64-20240624-en
Behavioral task
behavioral8
Sample
https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral9
Sample
https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5
Resource
macos-20240711.1-en
Behavioral task
behavioral10
Sample
https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5
Resource
ubuntu1804-amd64-20240611-en
Behavioral task
behavioral11
Sample
https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5
Resource
ubuntu2004-amd64-20240611-en
Behavioral task
behavioral12
Sample
https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5
Resource
ubuntu2204-amd64-20240729-en
Behavioral task
behavioral13
Sample
https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5
Resource
ubuntu2404-amd64-20240729-en
General
-
Target
https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5
Malware Config
Signatures
-
Changes its process name 64 IoCs
description ioc pid Changes the process name, possibly in an attempt to hide itself pool-spawner 2653 Changes the process name, possibly in an attempt to hide itself gmain 2654 Changes the process name, possibly in an attempt to hide itself dconf worker 2655 Changes the process name, possibly in an attempt to hide itself pool-spawner 2720 Changes the process name, possibly in an attempt to hide itself gmain 2721 Changes the process name, possibly in an attempt to hide itself glean.dispatche 2726 Changes the process name, possibly in an attempt to hide itself IPC I/O Parent 2730 Changes the process name, possibly in an attempt to hide itself IPC I/O Parent 2730 Changes the process name, possibly in an attempt to hide itself IPC I/O Parent 2730 Changes the process name, possibly in an attempt to hide itself Timer 2737 Changes the process name, possibly in an attempt to hide itself Timer 2737 Changes the process name, possibly in an attempt to hide itself Netlink Monitor 2738 Changes the process name, possibly in an attempt to hide itself Netlink Monitor 2738 Changes the process name, possibly in an attempt to hide itself Socket Thread 2739 Changes the process name, possibly in an attempt to hide itself Socket Thread 2739 Changes the process name, possibly in an attempt to hide itself IPDL Background 2740 Changes the process name, possibly in an attempt to hide itself IPDL Background 2740 Changes the process name, possibly in an attempt to hide itself Backgro~Pool #1 2741 Changes the process name, possibly in an attempt to hide itself Backgro~Pool #1 2741 Changes the process name, possibly in an attempt to hide itself HTML5 Parser 2742 Changes the process name, possibly in an attempt to hide itself HTML5 Parser 2742 Changes the process name, possibly in an attempt to hide itself pool-firefox 2743 Changes the process name, possibly in an attempt to hide itself pool-firefox 2744 Changes the process name, possibly in an attempt to hide itself gdbus 2746 Changes the process name, possibly in an attempt to hide itself JS Watchdog 2747 Changes the process name, possibly in an attempt to hide itself JS Watchdog 2747 Changes the process name, possibly in an attempt to hide itself BGReadURLs 2748 Changes the process name, possibly in an attempt to hide itself BGReadURLs 2748 Changes the process name, possibly in an attempt to hide itself Cache2 I/O 2749 Changes the process name, possibly in an attempt to hide itself Cookie 2750 Changes the process name, possibly in an attempt to hide itself Cookie 2750 Changes the process name, possibly in an attempt to hide itself StreamTrans #1 2751 Changes the process name, possibly in an attempt to hide itself StreamTrans #1 2751 Changes the process name, possibly in an attempt to hide itself TaskCon~ller #0 2752 Changes the process name, possibly in an attempt to hide itself TaskCon~ller #1 2753 Changes the process name, possibly in an attempt to hide itself BgIOThr~Pool #1 2754 Changes the process name, possibly in an attempt to hide itself BgIOThr~Pool #2 2755 Changes the process name, possibly in an attempt to hide itself BgIOThr~Pool #2 2755 Changes the process name, possibly in an attempt to hide itself BgIOThr~Pool #1 2754 Changes the process name, possibly in an attempt to hide itself StreamTrans #2 2756 Changes the process name, possibly in an attempt to hide itself StreamTrans #2 2756 Changes the process name, possibly in an attempt to hide itself StreamTrans #3 2757 Changes the process name, possibly in an attempt to hide itself StreamTrans #4 2758 Changes the process name, possibly in an attempt to hide itself StreamTrans #5 2759 Changes the process name, possibly in an attempt to hide itself StreamTrans #5 2759 Changes the process name, possibly in an attempt to hide itself StreamTrans #4 2758 Changes the process name, possibly in an attempt to hide itself StreamTrans #3 2757 Changes the process name, possibly in an attempt to hide itself StreamTrans #6 2760 Changes the process name, possibly in an attempt to hide itself StreamTrans #6 2760 Changes the process name, possibly in an attempt to hide itself StreamTrans #7 2761 Changes the process name, possibly in an attempt to hide itself StreamTrans #7 2761 Changes the process name, possibly in an attempt to hide itself StreamTrans #8 2762 Changes the process name, possibly in an attempt to hide itself StreamTrans #9 2763 Changes the process name, possibly in an attempt to hide itself StreamTrans #9 2763 Changes the process name, possibly in an attempt to hide itself StreamTrans #8 2762 Changes the process name, possibly in an attempt to hide itself StreamTrans #10 2764 Changes the process name, possibly in an attempt to hide itself StreamTrans #10 2764 Changes the process name, possibly in an attempt to hide itself StreamTrans #11 2765 Changes the process name, possibly in an attempt to hide itself StreamTrans #11 2765 Changes the process name, possibly in an attempt to hide itself QuotaManager IO 2766 Changes the process name, possibly in an attempt to hide itself QuotaManager IO 2766 Changes the process name, possibly in an attempt to hide itself IndexedDB IO #1 2767 Changes the process name, possibly in an attempt to hide itself IndexedDB IO #1 2767 Changes the process name, possibly in an attempt to hide itself SandboxReporter 2775 -
Checks CPU configuration 1 TTPs 1 IoCs
Checks CPU information which indicate if the system is a virtual machine.
description ioc Process File opened for reading /proc/cpuinfo firefox -
Reads CPU attributes 1 TTPs 11 IoCs
description ioc Process File opened for reading /sys/devices/system/cpu/present firefox File opened for reading /sys/devices/system/cpu/present firefox File opened for reading /sys/devices/system/cpu/possible firefox File opened for reading /sys/devices/system/cpu/present firefox File opened for reading /sys/devices/system/cpu/cpu0/cpu_capacity glxtest File opened for reading /sys/devices/system/cpu/present firefox File opened for reading /sys/devices/system/cpu/cpu0/topology/core_cpus firefox File opened for reading /sys/devices/system/cpu/present firefox File opened for reading /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq firefox File opened for reading /sys/devices/system/cpu/cpu0/cache/index2/size firefox File opened for reading /sys/devices/system/cpu/cpu0/cache/index3/size firefox -
Enumerates kernel/hardware configuration 1 TTPs 64 IoCs
Reads contents of /sys virtual filesystem to enumerate system information.
description ioc Process File opened for reading /sys/fs/cgroup/system.slice/agent.service snap-confine File opened for reading /sys/fs/cgroup/system.slice/systemd-networkd.service snap-confine File opened for reading /sys/fs/cgroup/user.slice/user-0.slice snap-confine File opened for reading /sys/fs/cgroup/user.slice/user-0.slice/[email protected]/app.slice snap-confine File opened for reading /sys/fs/cgroup/user.slice/user-0.slice/[email protected]/session.slice/org.gnome.SettingsDaemon.Sharing.service snap-confine File opened for reading /sys/kernel/mm/transparent_hugepage/hpage_pmd_size snapctl File opened for reading /sys/bus/pci/devices/0000:00:04.0/vendor glxtest File opened for reading /sys/fs/cgroup snap-confine File opened for reading /sys/fs/cgroup/sys-fs-fuse-connections.mount snap-confine File opened for reading /sys/fs/cgroup/system.slice/boot.mount snap-confine File opened for reading /sys/fs/cgroup/system.slice/snap-core22-1380.mount snap-confine File opened for reading /sys/fs/cgroup/system.slice/snapd.service snap-confine File opened for reading /sys/fs/cgroup/system.slice/systemd-journald.service snap-confine File opened for reading /sys/fs/cgroup/user.slice/user-0.slice/[email protected]/app.slice/xdg-desktop-portal-gnome.service snap-confine File opened for reading /sys/bus/pci/devices/0000:00:01.1/vendor glxtest File opened for reading /sys/bus/pci/devices/0000:00:01.0/device glxtest File opened for reading /sys/fs/cgroup/system.slice/kerneloops.service snap-confine File opened for reading /sys/fs/cgroup/system.slice/packagekit.service snap-confine File opened for reading /sys/fs/cgroup/system.slice/system-serial\x2dgetty.slice snap-confine File opened for reading /sys/fs/cgroup/user.slice/user-0.slice/[email protected]/session.slice/gvfs-gphoto2-volume-monitor.service snap-confine File opened for reading /sys/fs/cgroup/user.slice/user-0.slice/[email protected]/session.slice/gvfs-udisks2-volume-monitor.service snap-confine File opened for reading /sys/fs/cgroup/user.slice/user-0.slice/[email protected]/session.slice/org.freedesktop.IBus.session.GNOME.service snap-confine File opened for reading /sys/bus/pci/devices/0000:00:05.0/vendor glxtest File opened for reading /sys/kernel/security/apparmor/features/namespaces snap File opened for reading /sys/module/apparmor/parameters/enabled snap-confine File opened for reading /sys/fs/cgroup/user.slice/user-0.slice/[email protected]/app.slice/dbus.socket snap-confine File opened for reading /sys/bus/pci/devices/0000:00:04.0/class glxtest File opened for reading /sys/kernel/security/apparmor/features/io_uring snap File opened for reading /sys/kernel/security/apparmor/features/ipc snap File opened for reading /sys/fs/cgroup/system.slice/systemd-timedated.service snap-confine File opened for reading /sys/fs/cgroup/user.slice/user-0.slice/[email protected]/session.slice/gvfs-goa-volume-monitor.service snap-confine File opened for reading /sys/kernel/mm/transparent_hugepage/hpage_pmd_size snap-exec File opened for reading /sys/bus/pci/devices/0000:00:01.0/vendor glxtest File opened for reading /sys/fs/cgroup/sys-kernel-tracing.mount snap-confine File opened for reading /sys/fs/cgroup/system.slice/auditd.service snap-confine File opened for reading /sys/fs/cgroup/user.slice/user-0.slice/[email protected]/session.slice/org.gnome.SettingsDaemon.Datetime.service snap-confine File opened for reading /sys/fs/cgroup/user.slice/user-0.slice/[email protected]/session.slice/org.gnome.SettingsDaemon.Smartcard.service snap-confine File opened for reading /sys/kernel/mm/transparent_hugepage/hpage_pmd_size snapctl File opened for reading /sys/kernel/security/apparmor/features/mount snap File opened for reading /sys/devices/pci0000:00/0000:00:02.0/drm/card1/uevent snap-confine File opened for reading /sys/fs/cgroup/system.slice/cups-browsed.service snap-confine File opened for reading /sys/bus/pci/devices/0000:00:01.1/device glxtest File opened for reading /sys/kernel/security/apparmor/features/domain snap File opened for reading /sys/fs/cgroup/system.slice/ModemManager.service snap-confine File opened for reading /sys/fs/cgroup/user.slice/user-0.slice/[email protected]/app.slice/evolution-source-registry.service snap-confine File opened for reading /sys/fs/cgroup/user.slice/user-0.slice/[email protected]/session.slice/dbus.service snap-confine File opened for reading /sys/bus/pci/devices/0000:00:05.0/device glxtest File opened for reading /sys/bus/pci/devices/0000:00:00.0/vendor glxtest File opened for reading /sys/devices/system/cpu firefox File opened for reading /sys/kernel/security/apparmor/features/dbus/mask dbus-daemon File opened for reading /sys/fs/cgroup/system.slice/multipathd.service snap-confine File opened for reading /sys/fs/cgroup/system.slice/snap-snapd-21759.mount snap-confine File opened for reading /sys/fs/cgroup/system.slice/ssh.socket snap-confine File opened for reading /sys/fs/cgroup/user.slice/user-0.slice/[email protected]/app.slice/gnome-keyring-daemon.service snap-confine File opened for reading /sys/fs/cgroup/user.slice/user-0.slice/[email protected]/background.slice snap-confine File opened for reading /sys/fs/cgroup/user.slice/user-0.slice/[email protected]/session.slice snap-confine File opened for reading /sys/fs/cgroup/user.slice/user-0.slice/[email protected]/app.slice/app-org.gnome.Terminal.slice/gnome-terminal-server.service snap-confine File opened for reading /sys/fs/cgroup/user.slice/user-0.slice/[email protected]/session.slice/org.gnome.SettingsDaemon.MediaKeys.service snap-confine File opened for reading /sys/fs/cgroup/user.slice/user-0.slice/[email protected]/session.slice/org.gnome.SettingsDaemon.Sound.service snap-confine File opened for reading /sys/bus/pci/devices/0000:00:06.0/class glxtest File opened for reading /sys/devices/system/cpu firefox File opened for reading /sys/kernel/security/apparmor/features/dbus snap File opened for reading /sys/fs/cgroup/system.slice/var-snap-firefox-common-host\x2dhunspell.mount snap-confine File opened for reading /sys/fs/cgroup/user.slice/user-0.slice/[email protected]/app.slice/xdg-desktop-portal-gtk.service snap-confine -
Reads runtime system information 64 IoCs
Reads data from /proc virtual filesystem.
description ioc Process File opened for reading /proc/2516/attr/apparmor/current dbus-daemon File opened for reading /proc/self/fd/38 firefox File opened for reading /proc/self/fd/13 firefox File opened for reading /proc/filesystems firefox File opened for reading /proc/self/fd dbus-send File opened for reading /proc/self/mounts snap File opened for reading /proc/self/maps firefox File opened for reading /proc/self/maps grep File opened for reading /proc/mounts dbus-daemon File opened for reading /proc/self/maps grep File opened for reading /proc/2587/cmdline dbus-daemon File opened for reading /proc/self/fd/32 firefox File opened for reading /proc/self/maps firefox File opened for reading /proc/self/task/2848/stat firefox File opened for reading /proc/filesystems dbus-daemon File opened for reading /proc/self/maps grep File opened for reading /proc/self/maps grep File opened for reading /proc/filesystems gsettings File opened for reading /proc/cmdline firefox File opened for reading /proc/sys/kernel/random/uuid snap File opened for reading /proc/self/cgroup snap-confine File opened for reading /proc/self/fd/52 firefox File opened for reading /proc/filesystems firefox File opened for reading /proc/self/maps grep File opened for reading /proc/self/maps grep File opened for reading /proc/self/mountinfo firefox File opened for reading /proc/self/maps firefox File opened for reading /proc/filesystems firefox File opened for reading /proc/self/stat firefox File opened for reading /proc/self/maps grep File opened for reading /proc/self/maps grep File opened for reading /proc/filesystems glxtest File opened for reading /proc/self/fd/53 firefox File opened for reading /proc/filesystems firefox File opened for reading /proc/self/fd/34 firefox File opened for reading /proc/self/maps grep File opened for reading /proc/self/maps grep File opened for reading /proc/self/maps grep File opened for reading /proc/self/task/2907/stat firefox File opened for reading /proc/self/cgroup firefox File opened for reading /proc/self/fd/76 firefox File opened for reading /proc/self/fd dbus-send File opened for reading /proc/2510/cmdline dbus-daemon File opened for reading /proc/filesystems gsettings File opened for reading /proc/self/mountinfo snap File opened for reading /proc/self/fd/9 snap-confine File opened for reading /proc/self/fd/11 snap-confine File opened for reading /proc/self/fd dbus-send File opened for reading /proc/filesystems sed File opened for reading /proc/cgroups firefox File opened for reading /proc/cmdline snap-confine File opened for reading /proc/filesystems mkdir File opened for reading /proc/self/stat firefox File opened for reading /proc/2532/cmdline dbus-daemon File opened for reading /proc/filesystems sed File opened for reading /proc/cmdline snap File opened for reading /proc/filesystems firefox File opened for reading /proc/self/fd dbus-daemon File opened for reading /proc/filesystems sed File opened for reading /proc/self/maps grep File opened for reading /proc/self/mounts firefox File opened for reading /proc/cgroups snap File opened for reading /proc/self/maps grep File opened for reading /proc/self/fd/12 snap-confine -
Writes file to tmp directory 1 IoCs
Malware often drops required files in the /tmp directory.
description ioc Process File opened for modification /tmp/firefox/.parentlock firefox
Processes
-
/usr/bin/xdg-openxdg-open "https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5"1⤵PID:2509
-
/usr/bin/dbus-senddbus-send --print-reply "--dest=org.freedesktop.DBus" /org/freedesktop/DBus org.freedesktop.DBus.GetNameOwner string:org.gnome.SessionManager2⤵
- Reads runtime system information
PID:2510 -
/usr/bin/dbus-launchdbus-launch --autolaunch 36e6eb39a6fa405996e79cad2731865d --binary-syntax --close-stderr3⤵PID:2512
-
/usr/bin/dbus-daemon/usr/bin/dbus-daemon --syslog-only --fork --print-pid 5 --print-address 7 --session4⤵
- Enumerates kernel/hardware configuration
- Reads runtime system information
PID:2514
-
-
-
-
/usr/bin/xpropxprop -root _DT_SAVE_MODE2⤵PID:2517
-
-
/usr/bin/grepgrep " = \\\"xfce4\\\"\$"2⤵PID:2518
-
-
/usr/bin/xpropxprop -root2⤵PID:2519
-
-
/usr/bin/grepgrep -i "^xfce_desktop_window"2⤵
- Reads runtime system information
PID:2520
-
-
/usr/bin/grepgrep -q "^Enlightenment"2⤵
- Reads runtime system information
PID:2522
-
-
/usr/bin/unameuname2⤵PID:2523
-
-
/usr/bin/grepgrep -q "^file://"2⤵PID:2525
-
-
/usr/bin/egrepegrep -q "^[[:alpha:]+\\.\\-]+:"2⤵PID:2527
-
-
/usr/local/sbin/grepgrep -E -q "^[[:alpha:]+\\.\\-]+:"2⤵PID:2527
-
-
/usr/local/bin/grepgrep -E -q "^[[:alpha:]+\\.\\-]+:"2⤵PID:2527
-
-
/usr/sbin/grepgrep -E -q "^[[:alpha:]+\\.\\-]+:"2⤵PID:2527
-
-
/usr/bin/grepgrep -E -q "^[[:alpha:]+\\.\\-]+:"2⤵PID:2527
-
-
/usr/bin/sedsed -n "s/\\(^[[:alnum:]+\\.-]*\\):.*\$/\\1/p"2⤵PID:2530
-
-
/usr/bin/xdg-mimexdg-mime query default x-scheme-handler/https2⤵PID:2531
-
/usr/bin/dbus-senddbus-send --print-reply "--dest=org.freedesktop.DBus" /org/freedesktop/DBus org.freedesktop.DBus.GetNameOwner string:org.gnome.SessionManager3⤵
- Reads runtime system information
PID:2532 -
/usr/bin/dbus-launchdbus-launch --autolaunch 36e6eb39a6fa405996e79cad2731865d --binary-syntax --close-stderr4⤵PID:2533
-
-
-
/usr/bin/xpropxprop -root _DT_SAVE_MODE3⤵PID:2534
-
-
/usr/bin/grepgrep " = \\\"xfce4\\\"\$"3⤵PID:2535
-
-
/usr/bin/xpropxprop -root3⤵PID:2536
-
-
/usr/bin/grepgrep -i "^xfce_desktop_window"3⤵
- Reads runtime system information
PID:2537
-
-
/usr/bin/grepgrep -q "^Enlightenment"3⤵
- Reads runtime system information
PID:2539
-
-
/usr/bin/unameuname3⤵PID:2540
-
-
/usr/bin/sedsed "s/:/ /g"3⤵
- Reads runtime system information
PID:2543
-
-
/usr/bin/grepgrep "x-scheme-handler/https=" /.local/share/applications/defaults.list /.local/share/applications/mimeinfo.cache3⤵PID:2545
-
-
/usr/bin/headhead -n 13⤵PID:2546
-
-
/usr/bin/cutcut -d "=" -f 23⤵PID:2547
-
-
/usr/bin/cutcut -d ";" -f 13⤵PID:2548
-
-
/usr/bin/grepgrep "x-scheme-handler/https=" /.local/share/applications/defaults.list /.local/share/applications/mimeinfo.cache3⤵PID:2550
-
-
/usr/bin/headhead -n 13⤵PID:2551
-
-
/usr/bin/cutcut -d "=" -f 23⤵PID:2552
-
-
/usr/bin/cutcut -d ";" -f 13⤵PID:2553
-
-
/usr/bin/grepgrep "x-scheme-handler/https=" /usr/local/share//applications/defaults.list /usr/local/share//applications/mimeinfo.cache3⤵PID:2555
-
-
/usr/bin/headhead -n 13⤵PID:2556
-
-
/usr/bin/cutcut -d "=" -f 23⤵PID:2557
-
-
/usr/bin/cutcut -d ";" -f 13⤵PID:2558
-
-
/usr/bin/grepgrep "x-scheme-handler/https=" /usr/local/share//applications/defaults.list /usr/local/share//applications/mimeinfo.cache3⤵PID:2560
-
-
/usr/bin/headhead -n 13⤵PID:2561
-
-
/usr/bin/cutcut -d "=" -f 23⤵PID:2562
-
-
/usr/bin/cutcut -d ";" -f 13⤵PID:2563
-
-
/usr/bin/grepgrep "x-scheme-handler/https=" /usr/share//applications/defaults.list /usr/share//applications/mimeinfo.cache3⤵PID:2565
-
-
/usr/bin/headhead -n 13⤵PID:2566
-
-
/usr/bin/cutcut -d "=" -f 23⤵PID:2567
-
-
/usr/bin/cutcut -d ";" -f 13⤵PID:2568
-
-
/usr/bin/grepgrep "x-scheme-handler/https=" /usr/share//applications/defaults.list /usr/share//applications/mimeinfo.cache3⤵
- Reads runtime system information
PID:2570
-
-
/usr/bin/headhead -n 13⤵PID:2571
-
-
/usr/bin/cutcut -d "=" -f 23⤵PID:2572
-
-
/usr/bin/cutcut -d ";" -f 13⤵PID:2573
-
-
/usr/bin/sedsed "s/:/ /g"3⤵
- Reads runtime system information
PID:2576
-
-
/usr/bin/grepgrep -l "x-scheme-handler/https;" "/.local/share/applications/*.desktop"3⤵PID:2578
-
-
/usr/bin/grepgrep -l "x-scheme-handler/https;" "/usr/local/share//applications/*.desktop"3⤵PID:2580
-
-
/usr/bin/grepgrep -l "x-scheme-handler/https;" /usr/share//applications/apport-gtk.desktop /usr/share//applications/bluetooth-sendto.desktop /usr/share//applications/display-im6.q16.desktop /usr/share//applications/gcr-prompter.desktop /usr/share//applications/gcr-viewer.desktop /usr/share//applications/geoclue-demo-agent.desktop /usr/share//applications/gkbd-keyboard-display.desktop /usr/share//applications/gnome-about-panel.desktop /usr/share//applications/gnome-applications-panel.desktop /usr/share//applications/gnome-background-panel.desktop /usr/share//applications/gnome-bluetooth-panel.desktop /usr/share//applications/gnome-color-panel.desktop /usr/share//applications/gnome-datetime-panel.desktop /usr/share//applications/gnome-disk-image-mounter.desktop /usr/share//applications/gnome-disk-image-writer.desktop /usr/share//applications/gnome-display-panel.desktop /usr/share//applications/gnome-initial-setup.desktop /usr/share//applications/gnome-keyboard-panel.desktop /usr/share//applications/gnome-language-selector.desktop /usr/share//applications/gnome-mouse-panel.desktop /usr/share//applications/gnome-multitasking-panel.desktop /usr/share//applications/gnome-network-panel.desktop /usr/share//applications/gnome-notifications-panel.desktop /usr/share//applications/gnome-online-accounts-panel.desktop /usr/share//applications/gnome-power-panel.desktop /usr/share//applications/gnome-printers-panel.desktop /usr/share//applications/gnome-privacy-panel.desktop /usr/share//applications/gnome-region-panel.desktop /usr/share//applications/gnome-search-panel.desktop /usr/share//applications/gnome-session-properties.desktop /usr/share//applications/gnome-sharing-panel.desktop /usr/share//applications/gnome-sound-panel.desktop /usr/share//applications/gnome-system-monitor-kde.desktop /usr/share//applications/gnome-system-panel.desktop /usr/share//applications/gnome-ubuntu-panel.desktop /usr/share//applications/gnome-universal-access-panel.desktop /usr/share//applications/gnome-users-panel.desktop /usr/share//applications/gnome-wacom-panel.desktop /usr/share//applications/gnome-wifi-panel.desktop /usr/share//applications/gnome-wwan-panel.desktop /usr/share//applications/hplj1020.desktop /usr/share//applications/ibus-setup-table.desktop /usr/share//applications/im-config.desktop /usr/share//applications/io.snapcraft.SessionAgent.desktop /usr/share//applications/libreoffice-calc.desktop /usr/share//applications/libreoffice-draw.desktop /usr/share//applications/libreoffice-impress.desktop /usr/share//applications/libreoffice-math.desktop /usr/share//applications/libreoffice-startcenter.desktop /usr/share//applications/libreoffice-writer.desktop /usr/share//applications/libreoffice-xsltfilter.desktop /usr/share//applications/nautilus-autorun-software.desktop /usr/share//applications/nm-applet.desktop /usr/share//applications/nm-connection-editor.desktop /usr/share//applications/org.freedesktop.IBus.Panel.Emojier.desktop /usr/share//applications/org.freedesktop.IBus.Panel.Extension.Gtk3.desktop /usr/share//applications/org.freedesktop.IBus.Panel.Wayland.Gtk3.desktop /usr/share//applications/org.freedesktop.IBus.Setup.desktop /usr/share//applications/org.freedesktop.Xwayland.desktop /usr/share//applications/org.gnome.Calculator.desktop /usr/share//applications/org.gnome.Calendar.desktop /usr/share//applications/org.gnome.Characters.desktop /usr/share//applications/org.gnome.DejaDup.desktop /usr/share//applications/org.gnome.DiskUtility.desktop /usr/share//applications/org.gnome.Evince-previewer.desktop /usr/share//applications/org.gnome.Evince.desktop /usr/share//applications/org.gnome.Evolution-alarm-notify.desktop /usr/share//applications/org.gnome.FileRoller.desktop /usr/share//applications/org.gnome.Logs.desktop /usr/share//applications/org.gnome.Nautilus.desktop /usr/share//applications/org.gnome.OnlineAccounts.OAuth2.desktop /usr/share//applications/org.gnome.PowerStats.desktop /usr/share//applications/org.gnome.RemoteDesktop.Handover.desktop /usr/share//applications/org.gnome.Rhythmbox3.desktop /usr/share//applications/org.gnome.Rhythmbox3.device.desktop /usr/share//applications/org.gnome.Settings.desktop /usr/share//applications/org.gnome.Shell.Extensions.desktop /usr/share//applications/org.gnome.Shell.PortalHelper.desktop /usr/share//applications/org.gnome.Shell.desktop /usr/share//applications/org.gnome.Shotwell-Viewer.desktop /usr/share//applications/org.gnome.Shotwell.Auth.desktop /usr/share//applications/org.gnome.Shotwell.desktop /usr/share//applications/org.gnome.Snapshot.desktop /usr/share//applications/org.gnome.SystemMonitor.desktop /usr/share//applications/org.gnome.Tecla.desktop /usr/share//applications/org.gnome.Terminal.Preferences.desktop /usr/share//applications/org.gnome.Terminal.desktop /usr/share//applications/org.gnome.TextEditor.desktop /usr/share//applications/org.gnome.Totem.desktop /usr/share//applications/org.gnome.Zenity.desktop /usr/share//applications/org.gnome.baobab.desktop /usr/share//applications/org.gnome.clocks.desktop /usr/share//applications/org.gnome.eog.desktop /usr/share//applications/org.gnome.evolution-data-server.OAuth2-handler.desktop /usr/share//applications/org.gnome.font-viewer.desktop /usr/share//applications/org.gnome.seahorse.Application.desktop /usr/share//applications/org.remmina.Remmina-file.desktop /usr/share//applications/org.remmina.Remmina.desktop /usr/share//applications/python3.12.desktop /usr/share//applications/remmina-gnome.desktop /usr/share//applications/rygel.desktop /usr/share//applications/simple-scan.desktop /usr/share//applications/snap-handle-link.desktop /usr/share//applications/software-properties-drivers.desktop /usr/share//applications/software-properties-gtk.desktop /usr/share//applications/software-properties-livepatch.desktop /usr/share//applications/thunderbird.desktop /usr/share//applications/transmission-gtk.desktop /usr/share//applications/update-manager.desktop /usr/share//applications/usb-creator-gtk.desktop /usr/share//applications/xdg-desktop-portal-gnome.desktop /usr/share//applications/xdg-desktop-portal-gtk.desktop /usr/share//applications/yelp.desktop3⤵
- Reads runtime system information
PID:2582
-
-
-
/usr/bin/grepgrep -q "%s"2⤵PID:2584
-
-
/usr/bin/x-www-browserx-www-browser "https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5"2⤵PID:2585
-
/usr/bin/xdg-settingsxdg-settings get default-web-browser3⤵PID:2586
-
/usr/bin/dbus-senddbus-send --print-reply "--dest=org.freedesktop.DBus" /org/freedesktop/DBus org.freedesktop.DBus.GetNameOwner string:org.gnome.SessionManager4⤵PID:2587
-
/usr/bin/dbus-launchdbus-launch --autolaunch 36e6eb39a6fa405996e79cad2731865d --binary-syntax --close-stderr5⤵PID:2588
-
-
-
/usr/bin/xpropxprop -root _DT_SAVE_MODE4⤵PID:2589
-
-
/usr/bin/grepgrep " = \\\"xfce4\\\"\$"4⤵
- Reads runtime system information
PID:2590
-
-
/usr/bin/xpropxprop -root4⤵PID:2591
-
-
/usr/bin/grepgrep -i "^xfce_desktop_window"4⤵PID:2592
-
-
/usr/bin/grepgrep -q "^Enlightenment"4⤵PID:2595
-
-
/usr/bin/unameuname4⤵PID:2596
-
-
/usr/bin/xdg-mimexdg-mime query default x-scheme-handler/http4⤵PID:2597
-
/usr/bin/dbus-senddbus-send --print-reply "--dest=org.freedesktop.DBus" /org/freedesktop/DBus org.freedesktop.DBus.GetNameOwner string:org.gnome.SessionManager5⤵PID:2599
-
/usr/bin/dbus-launchdbus-launch --autolaunch 36e6eb39a6fa405996e79cad2731865d --binary-syntax --close-stderr6⤵PID:2602
-
-
-
/usr/bin/xpropxprop -root _DT_SAVE_MODE5⤵PID:2603
-
-
/usr/bin/grepgrep " = \\\"xfce4\\\"\$"5⤵
- Reads runtime system information
PID:2604
-
-
/usr/bin/xpropxprop -root5⤵PID:2605
-
-
/usr/bin/grepgrep -i "^xfce_desktop_window"5⤵
- Reads runtime system information
PID:2606
-
-
/usr/bin/grepgrep -q "^Enlightenment"5⤵
- Reads runtime system information
PID:2608
-
-
/usr/bin/unameuname5⤵PID:2609
-
-
/usr/bin/sedsed "s/:/ /g"5⤵
- Reads runtime system information
PID:2612
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /.local/share/applications/defaults.list /.local/share/applications/mimeinfo.cache5⤵PID:2614
-
-
/usr/bin/headhead -n 15⤵PID:2615
-
-
/usr/bin/cutcut -d "=" -f 25⤵PID:2616
-
-
/usr/bin/cutcut -d ";" -f 15⤵PID:2617
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /.local/share/applications/defaults.list /.local/share/applications/mimeinfo.cache5⤵PID:2619
-
-
/usr/bin/headhead -n 15⤵PID:2620
-
-
/usr/bin/cutcut -d "=" -f 25⤵PID:2621
-
-
/usr/bin/cutcut -d ";" -f 15⤵PID:2622
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /usr/local/share//applications/defaults.list /usr/local/share//applications/mimeinfo.cache5⤵PID:2624
-
-
/usr/bin/headhead -n 15⤵PID:2625
-
-
/usr/bin/cutcut -d "=" -f 25⤵PID:2626
-
-
/usr/bin/cutcut -d ";" -f 15⤵PID:2627
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /usr/local/share//applications/defaults.list /usr/local/share//applications/mimeinfo.cache5⤵
- Reads runtime system information
PID:2629
-
-
/usr/bin/headhead -n 15⤵PID:2630
-
-
/usr/bin/cutcut -d "=" -f 25⤵PID:2631
-
-
/usr/bin/cutcut -d ";" -f 15⤵PID:2632
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /usr/share//applications/defaults.list /usr/share//applications/mimeinfo.cache5⤵PID:2634
-
-
/usr/bin/headhead -n 15⤵PID:2635
-
-
/usr/bin/cutcut -d "=" -f 25⤵PID:2636
-
-
/usr/bin/cutcut -d ";" -f 15⤵PID:2637
-
-
/usr/bin/grepgrep "x-scheme-handler/http=" /usr/share//applications/defaults.list /usr/share//applications/mimeinfo.cache5⤵PID:2639
-
-
/usr/bin/headhead -n 15⤵PID:2640
-
-
/usr/bin/cutcut -d "=" -f 25⤵PID:2641
-
-
/usr/bin/cutcut -d ";" -f 15⤵PID:2642
-
-
/usr/bin/sedsed "s/:/ /g"5⤵PID:2645
-
-
/usr/bin/grepgrep -l "x-scheme-handler/http;" "/.local/share/applications/*.desktop"5⤵
- Reads runtime system information
PID:2647
-
-
/usr/bin/grepgrep -l "x-scheme-handler/http;" "/usr/local/share//applications/*.desktop"5⤵PID:2649
-
-
/usr/bin/grepgrep -l "x-scheme-handler/http;" /usr/share//applications/apport-gtk.desktop /usr/share//applications/bluetooth-sendto.desktop /usr/share//applications/display-im6.q16.desktop /usr/share//applications/gcr-prompter.desktop /usr/share//applications/gcr-viewer.desktop /usr/share//applications/geoclue-demo-agent.desktop /usr/share//applications/gkbd-keyboard-display.desktop /usr/share//applications/gnome-about-panel.desktop /usr/share//applications/gnome-applications-panel.desktop /usr/share//applications/gnome-background-panel.desktop /usr/share//applications/gnome-bluetooth-panel.desktop /usr/share//applications/gnome-color-panel.desktop /usr/share//applications/gnome-datetime-panel.desktop /usr/share//applications/gnome-disk-image-mounter.desktop /usr/share//applications/gnome-disk-image-writer.desktop /usr/share//applications/gnome-display-panel.desktop /usr/share//applications/gnome-initial-setup.desktop /usr/share//applications/gnome-keyboard-panel.desktop /usr/share//applications/gnome-language-selector.desktop /usr/share//applications/gnome-mouse-panel.desktop /usr/share//applications/gnome-multitasking-panel.desktop /usr/share//applications/gnome-network-panel.desktop /usr/share//applications/gnome-notifications-panel.desktop /usr/share//applications/gnome-online-accounts-panel.desktop /usr/share//applications/gnome-power-panel.desktop /usr/share//applications/gnome-printers-panel.desktop /usr/share//applications/gnome-privacy-panel.desktop /usr/share//applications/gnome-region-panel.desktop /usr/share//applications/gnome-search-panel.desktop /usr/share//applications/gnome-session-properties.desktop /usr/share//applications/gnome-sharing-panel.desktop /usr/share//applications/gnome-sound-panel.desktop /usr/share//applications/gnome-system-monitor-kde.desktop /usr/share//applications/gnome-system-panel.desktop /usr/share//applications/gnome-ubuntu-panel.desktop /usr/share//applications/gnome-universal-access-panel.desktop /usr/share//applications/gnome-users-panel.desktop /usr/share//applications/gnome-wacom-panel.desktop /usr/share//applications/gnome-wifi-panel.desktop /usr/share//applications/gnome-wwan-panel.desktop /usr/share//applications/hplj1020.desktop /usr/share//applications/ibus-setup-table.desktop /usr/share//applications/im-config.desktop /usr/share//applications/io.snapcraft.SessionAgent.desktop /usr/share//applications/libreoffice-calc.desktop /usr/share//applications/libreoffice-draw.desktop /usr/share//applications/libreoffice-impress.desktop /usr/share//applications/libreoffice-math.desktop /usr/share//applications/libreoffice-startcenter.desktop /usr/share//applications/libreoffice-writer.desktop /usr/share//applications/libreoffice-xsltfilter.desktop /usr/share//applications/nautilus-autorun-software.desktop /usr/share//applications/nm-applet.desktop /usr/share//applications/nm-connection-editor.desktop /usr/share//applications/org.freedesktop.IBus.Panel.Emojier.desktop /usr/share//applications/org.freedesktop.IBus.Panel.Extension.Gtk3.desktop /usr/share//applications/org.freedesktop.IBus.Panel.Wayland.Gtk3.desktop /usr/share//applications/org.freedesktop.IBus.Setup.desktop /usr/share//applications/org.freedesktop.Xwayland.desktop /usr/share//applications/org.gnome.Calculator.desktop /usr/share//applications/org.gnome.Calendar.desktop /usr/share//applications/org.gnome.Characters.desktop /usr/share//applications/org.gnome.DejaDup.desktop /usr/share//applications/org.gnome.DiskUtility.desktop /usr/share//applications/org.gnome.Evince-previewer.desktop /usr/share//applications/org.gnome.Evince.desktop /usr/share//applications/org.gnome.Evolution-alarm-notify.desktop /usr/share//applications/org.gnome.FileRoller.desktop /usr/share//applications/org.gnome.Logs.desktop /usr/share//applications/org.gnome.Nautilus.desktop /usr/share//applications/org.gnome.OnlineAccounts.OAuth2.desktop /usr/share//applications/org.gnome.PowerStats.desktop /usr/share//applications/org.gnome.RemoteDesktop.Handover.desktop /usr/share//applications/org.gnome.Rhythmbox3.desktop /usr/share//applications/org.gnome.Rhythmbox3.device.desktop /usr/share//applications/org.gnome.Settings.desktop /usr/share//applications/org.gnome.Shell.Extensions.desktop /usr/share//applications/org.gnome.Shell.PortalHelper.desktop /usr/share//applications/org.gnome.Shell.desktop /usr/share//applications/org.gnome.Shotwell-Viewer.desktop /usr/share//applications/org.gnome.Shotwell.Auth.desktop /usr/share//applications/org.gnome.Shotwell.desktop /usr/share//applications/org.gnome.Snapshot.desktop /usr/share//applications/org.gnome.SystemMonitor.desktop /usr/share//applications/org.gnome.Tecla.desktop /usr/share//applications/org.gnome.Terminal.Preferences.desktop /usr/share//applications/org.gnome.Terminal.desktop /usr/share//applications/org.gnome.TextEditor.desktop /usr/share//applications/org.gnome.Totem.desktop /usr/share//applications/org.gnome.Zenity.desktop /usr/share//applications/org.gnome.baobab.desktop /usr/share//applications/org.gnome.clocks.desktop /usr/share//applications/org.gnome.eog.desktop /usr/share//applications/org.gnome.evolution-data-server.OAuth2-handler.desktop /usr/share//applications/org.gnome.font-viewer.desktop /usr/share//applications/org.gnome.seahorse.Application.desktop /usr/share//applications/org.remmina.Remmina-file.desktop /usr/share//applications/org.remmina.Remmina.desktop /usr/share//applications/python3.12.desktop /usr/share//applications/remmina-gnome.desktop /usr/share//applications/rygel.desktop /usr/share//applications/simple-scan.desktop /usr/share//applications/snap-handle-link.desktop /usr/share//applications/software-properties-drivers.desktop /usr/share//applications/software-properties-gtk.desktop /usr/share//applications/software-properties-livepatch.desktop /usr/share//applications/thunderbird.desktop /usr/share//applications/transmission-gtk.desktop /usr/share//applications/update-manager.desktop /usr/share//applications/usb-creator-gtk.desktop /usr/share//applications/xdg-desktop-portal-gnome.desktop /usr/share//applications/xdg-desktop-portal-gtk.desktop /usr/share//applications/yelp.desktop5⤵PID:2651
-
-
-
-
/usr/bin/gsettingsgsettings get org.gnome.shell favorite-apps3⤵
- Reads runtime system information
PID:2652
-
-
/usr/bin/grepgrep -q "'firefox.desktop'"3⤵PID:2657
-
-
/usr/bin/gsettingsgsettings get com.canonical.Unity.Launcher favorites3⤵
- Reads runtime system information
PID:2658
-
-
/usr/bin/grepgrep -q "'application://firefox.desktop'"3⤵
- Reads runtime system information
PID:2660
-
-
/usr/bin/gsettingsgsettings get org.mate.panel object-id-list3⤵PID:2661
-
-
/usr/bin/whichwhich qdbus3⤵PID:2662
-
-
-
/snap/bin/firefox/snap/bin/firefox "https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5"2⤵
- Reads runtime system information
PID:2585
-
-
/snap/snapd/current/usr/bin/snap/snap/bin/firefox "https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5"2⤵
- Enumerates kernel/hardware configuration
- Reads runtime system information
PID:2585 -
/snap/snapd/21759/usr/lib/snapd/snap-seccomp/snap/snapd/21759/usr/lib/snapd/snap-seccomp version-info3⤵PID:2670
-
-
-
/snap/snapd/21759/usr/lib/snapd/snap-confine/snap/snapd/21759/usr/lib/snapd/snap-confine --base core22 snap.firefox.firefox /usr/lib/snapd/snap-exec firefox "https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5"2⤵
- Enumerates kernel/hardware configuration
- Reads runtime system information
PID:2585
-
-
/usr/lib/snapd/snap-exec/usr/lib/snapd/snap-exec firefox "https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5"2⤵
- Enumerates kernel/hardware configuration
PID:2585
-
-
/snap/firefox/4650/snap/command-chain/desktop-launch/snap/firefox/4650/snap/command-chain/desktop-launch /snap/firefox/4650/firefox.launcher "https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5"2⤵PID:2585
-
/usr/bin/datedate "+%s.%N"3⤵PID:2685
-
-
/usr/bin/chmodchmod 700 /root/snap/firefox/4650/.config3⤵PID:2686
-
-
/usr/bin/md5summd5sum3⤵PID:2688
-
-
/usr/bin/catcat /root/snap/firefox/4650/.config/user-dirs.dirs.md5sum3⤵PID:2689
-
-
/usr/bin/md5summd5sum3⤵PID:2691
-
-
/usr/bin/catcat /root/snap/firefox/4650/.config/user-dirs.locale.md5sum3⤵PID:2692
-
-
/usr/bin/grepgrep -qs "^\\s*confinement:\\s*classic\\s*" /snap/firefox/4650/meta/snap.yaml3⤵PID:2693
-
-
/usr/bin/snapctlsnapctl is-connected gnome-42-22043⤵PID:2694
-
-
/usr/bin/snapctlsnapctl is-connected gsettings3⤵
- Enumerates kernel/hardware configuration
PID:2698
-
-
/usr/bin/mkdirmkdir -p /run/user/0/snap.firefox -m 7003⤵
- Reads runtime system information
PID:2702
-
-
/usr/bin/realpathrealpath /root/snap/firefox/4650/.config3⤵PID:2703
-
-
/usr/bin/realpathrealpath /root/snap/firefox/common3⤵PID:2704
-
-
/usr/bin/mkdirmkdir -p /run/user/0/snap.firefox/dconf3⤵PID:2705
-
-
/usr/bin/lnln -sf ../../dconf/user /run/user/0/snap.firefox/dconf/user3⤵PID:2706
-
-
/usr/bin/rmrm -rf /root/snap/firefox/4650/.config/ibus/bus3⤵PID:2707
-
-
/usr/bin/lnln -sfn /root/.config/ibus/bus /root/snap/firefox/4650/.config/ibus3⤵PID:2708
-
-
-
/snap/firefox/4650/firefox.launcher/snap/firefox/4650/firefox.launcher "https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5"2⤵PID:2585
-
-
/snap/firefox/4650/usr/lib/firefox/firefox/snap/firefox/4650/usr/lib/firefox/firefox "https://webminer.pages.dev?algorithm=yespowerurx&host=yespowerURX.sea.mine.zpool.ca&port=6236&worker=DSvLZDmch7n5X3RwfgXs6pncT2BEToPQxv&password=c%3DDOGE%2Czap%3DURX&workers=1.5"2⤵
- Checks CPU configuration
- Reads CPU attributes
- Enumerates kernel/hardware configuration
- Reads runtime system information
- Writes file to tmp directory
PID:2585 -
/usr/bin/snapctl/usr/bin/snapctl is-connected3⤵
- Enumerates kernel/hardware configuration
PID:2712
-
-
/usr/bin/snapctl/usr/bin/snapctl is-connected gsettings3⤵PID:2716
-
-
/snap/firefox/4650/usr/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2722
-
-
/snap/firefox/4650/usr/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2722
-
-
/snap/firefox/4650/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2722
-
-
/snap/firefox/4650/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2722
-
-
/usr/local/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2722
-
-
/usr/local/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2722
-
-
/usr/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2722
-
-
/usr/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2722
-
-
/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2722
-
-
/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2722
-
-
/usr/games/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2722
-
-
/usr/local/games/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2722
-
-
/snap/firefox/4650/gnome-platform/usr/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2722
-
-
/snap/firefox/4650/usr/lib/firefox/glxtest/snap/firefox/4650/usr/lib/firefox/glxtest -f 143⤵
- Reads CPU attributes
- Enumerates kernel/hardware configuration
- Reads runtime system information
PID:2727
-
-
/snap/firefox/4650/usr/lib/firefox/firefox/snap/firefox/4650/usr/lib/firefox/firefox -contentproc -parentBuildID 20240725233834 -prefsLen 21054 -prefMapSize 245122 -appDir /snap/firefox/4650/usr/lib/firefox/browser "{8052a7d1-1119-4adb-b90b-1d0da897568a}" 2585 true socket3⤵
- Reads CPU attributes
- Enumerates kernel/hardware configuration
- Reads runtime system information
PID:2777
-
-
/snap/firefox/4650/usr/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2788
-
-
/snap/firefox/4650/usr/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2788
-
-
/snap/firefox/4650/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2788
-
-
/snap/firefox/4650/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2788
-
-
/usr/local/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2788
-
-
/usr/local/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2788
-
-
/usr/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2788
-
-
/usr/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2788
-
-
/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2788
-
-
/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2788
-
-
/usr/games/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2788
-
-
/usr/local/games/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2788
-
-
/snap/firefox/4650/gnome-platform/usr/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2788
-
-
/snap/firefox/4650/usr/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2795
-
-
/snap/firefox/4650/usr/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2795
-
-
/snap/firefox/4650/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2795
-
-
/snap/firefox/4650/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2795
-
-
/usr/local/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2795
-
-
/usr/local/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2795
-
-
/usr/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2795
-
-
/usr/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2795
-
-
/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2795
-
-
/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2795
-
-
/usr/games/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2795
-
-
/usr/local/games/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2795
-
-
/snap/firefox/4650/gnome-platform/usr/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2795
-
-
/snap/firefox/4650/usr/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2806
-
-
/snap/firefox/4650/usr/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2806
-
-
/snap/firefox/4650/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2806
-
-
/snap/firefox/4650/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2806
-
-
/usr/local/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2806
-
-
/usr/local/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2806
-
-
/usr/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2806
-
-
/usr/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2806
-
-
/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2806
-
-
/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2806
-
-
/usr/games/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2806
-
-
/usr/local/games/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2806
-
-
/snap/firefox/4650/gnome-platform/usr/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2806
-
-
/snap/firefox/4650/usr/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2807
-
-
/snap/firefox/4650/usr/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2807
-
-
/snap/firefox/4650/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2807
-
-
/snap/firefox/4650/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2807
-
-
/usr/local/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2807
-
-
/usr/local/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2807
-
-
/usr/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2807
-
-
/usr/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2807
-
-
/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2807
-
-
/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2807
-
-
/usr/games/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2807
-
-
/usr/local/games/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2807
-
-
/snap/firefox/4650/gnome-platform/usr/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2807
-
-
/snap/firefox/4650/usr/lib/firefox/firefox/snap/firefox/4650/usr/lib/firefox/firefox -contentproc -childID 1 -isForBrowser -prefsLen 24469 -prefMapSize 245122 -jsInitLen 234780 -parentBuildID 20240725233834 -greomni /snap/firefox/4650/usr/lib/firefox/omni.ja -appomni /snap/firefox/4650/usr/lib/firefox/browser/omni.ja -appDir /snap/firefox/4650/usr/lib/firefox/browser "{91869f55-346f-47c0-bb2e-1669baeb56fd}" 2585 true tab3⤵
- Reads CPU attributes
- Reads runtime system information
PID:2817
-
-
/snap/firefox/4650/usr/lib/firefox/firefox/snap/firefox/4650/usr/lib/firefox/firefox -contentproc -childID 2 -isForBrowser -prefsLen 23987 -prefMapSize 245122 -jsInitLen 234780 -parentBuildID 20240725233834 -greomni /snap/firefox/4650/usr/lib/firefox/omni.ja -appomni /snap/firefox/4650/usr/lib/firefox/browser/omni.ja -appDir /snap/firefox/4650/usr/lib/firefox/browser "{ec048e74-964a-4df8-bb7f-cf537b84e523}" 2585 true tab3⤵
- Reads CPU attributes
- Reads runtime system information
PID:2840
-
-
/snap/firefox/4650/usr/sbin/xdg-settingsxdg-settings3⤵PID:2878
-
-
/snap/firefox/4650/usr/bin/xdg-settingsxdg-settings3⤵PID:2878
-
-
/snap/firefox/4650/sbin/xdg-settingsxdg-settings3⤵PID:2878
-
-
/snap/firefox/4650/bin/xdg-settingsxdg-settings3⤵PID:2878
-
-
/usr/local/sbin/xdg-settingsxdg-settings3⤵PID:2878
-
-
/usr/local/bin/xdg-settingsxdg-settings3⤵PID:2878
-
-
/usr/sbin/xdg-settingsxdg-settings3⤵PID:2878
-
-
/usr/bin/xdg-settingsxdg-settings check default-web-browser firefox.desktop3⤵PID:2878
-
/usr/bin/dbus-senddbus-send "--print-reply=literal" --session "--dest=io.snapcraft.Settings" /io/snapcraft/Settings io.snapcraft.Settings.Check string:default-web-browser string:firefox.desktop4⤵
- Reads runtime system information
PID:2879 -
/usr/bin/dbus-launchdbus-launch --autolaunch 36e6eb39a6fa405996e79cad2731865d --binary-syntax --close-stderr5⤵PID:2881
-
-
/snap/firefox/4650/usr/sbin/dbus-launchdbus-launch --autolaunch 36e6eb39a6fa405996e79cad2731865d --binary-syntax --close-stderr5⤵PID:2881
-
-
/snap/firefox/4650/usr/bin/dbus-launchdbus-launch --autolaunch 36e6eb39a6fa405996e79cad2731865d --binary-syntax --close-stderr5⤵PID:2881
-
-
/snap/firefox/4650/sbin/dbus-launchdbus-launch --autolaunch 36e6eb39a6fa405996e79cad2731865d --binary-syntax --close-stderr5⤵PID:2881
-
-
/snap/firefox/4650/bin/dbus-launchdbus-launch --autolaunch 36e6eb39a6fa405996e79cad2731865d --binary-syntax --close-stderr5⤵PID:2881
-
-
/usr/local/sbin/dbus-launchdbus-launch --autolaunch 36e6eb39a6fa405996e79cad2731865d --binary-syntax --close-stderr5⤵PID:2881
-
-
/usr/local/bin/dbus-launchdbus-launch --autolaunch 36e6eb39a6fa405996e79cad2731865d --binary-syntax --close-stderr5⤵PID:2881
-
-
/usr/sbin/dbus-launchdbus-launch --autolaunch 36e6eb39a6fa405996e79cad2731865d --binary-syntax --close-stderr5⤵PID:2881
-
-
/usr/bin/dbus-launchdbus-launch --autolaunch 36e6eb39a6fa405996e79cad2731865d --binary-syntax --close-stderr5⤵PID:2881
-
-
/sbin/dbus-launchdbus-launch --autolaunch 36e6eb39a6fa405996e79cad2731865d --binary-syntax --close-stderr5⤵PID:2881
-
-
/bin/dbus-launchdbus-launch --autolaunch 36e6eb39a6fa405996e79cad2731865d --binary-syntax --close-stderr5⤵PID:2881
-
-
/usr/games/dbus-launchdbus-launch --autolaunch 36e6eb39a6fa405996e79cad2731865d --binary-syntax --close-stderr5⤵PID:2881
-
-
/usr/local/games/dbus-launchdbus-launch --autolaunch 36e6eb39a6fa405996e79cad2731865d --binary-syntax --close-stderr5⤵PID:2881
-
-
/snap/firefox/4650/gnome-platform/usr/bin/dbus-launchdbus-launch --autolaunch 36e6eb39a6fa405996e79cad2731865d --binary-syntax --close-stderr5⤵PID:2881
-
-
-
/usr/bin/cutcut -b4-4⤵PID:2880
-
-
-
/snap/firefox/4650/usr/lib/firefox/firefox/snap/firefox/4650/usr/lib/firefox/firefox -contentproc -childID 3 -isForBrowser -prefsLen 24527 -prefMapSize 245122 -jsInitLen 234780 -parentBuildID 20240725233834 -greomni /snap/firefox/4650/usr/lib/firefox/omni.ja -appomni /snap/firefox/4650/usr/lib/firefox/browser/omni.ja -appDir /snap/firefox/4650/usr/lib/firefox/browser "{094b2541-45ff-4e4d-8c4a-6ce4e8c45573}" 2585 true tab3⤵
- Reads CPU attributes
- Reads runtime system information
PID:2882
-
-
/snap/firefox/4650/usr/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2885
-
-
/snap/firefox/4650/usr/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2885
-
-
/snap/firefox/4650/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2885
-
-
/snap/firefox/4650/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2885
-
-
/usr/local/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2885
-
-
/usr/local/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2885
-
-
/usr/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2885
-
-
/usr/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2885
-
-
/sbin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2885
-
-
/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2885
-
-
/usr/games/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2885
-
-
/usr/local/games/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2885
-
-
/snap/firefox/4650/gnome-platform/usr/bin/dbus-launchdbus-launch "--autolaunch=36e6eb39a6fa405996e79cad2731865d" --binary-syntax --close-stderr3⤵PID:2885
-
-
/snap/firefox/4650/usr/lib/firefox/firefox/snap/firefox/4650/usr/lib/firefox/firefox -contentproc -childID 4 -isForBrowser -prefsLen 30899 -prefMapSize 245122 -jsInitLen 234780 -parentBuildID 20240725233834 -greomni /snap/firefox/4650/usr/lib/firefox/omni.ja -appomni /snap/firefox/4650/usr/lib/firefox/browser/omni.ja -appDir /snap/firefox/4650/usr/lib/firefox/browser "{8455907d-7497-47bc-adb8-b79c9928b243}" 2585 true tab3⤵
- Reads runtime system information
PID:2901
-
-
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
5B
MD56f1387f1357856293e2b2d91e8c4e4c8
SHA130e62933d22d8c8c1f08acf3db5ae8ddd789fded
SHA25637af89f42afa547315d4d8348423e333a947c44db5da2be46683efbff33ac4a8
SHA512743ffc7b6594d090dd3b38fc484cdb9822a1443f64423e66b8d5d0ac42aca5b2c41f6da5a3641234672a4638ed4f15a3619aef56288ce939c5335daf153b6086
-
Filesize
40B
MD565408163d77c5bbcc5b17dc2e313c93e
SHA1b8891c89ce55f6c1bbe476fd4912a7af296ce79a
SHA256d86e32b299b19c1c03a025d8d5ed026cdf923fc9a1015439cde134b3d13d1fff
SHA512394e2394e44e38210817f5f02779f7b8253c3ff1b4aa816bce7a0b95e40f47094d01cb43ec5e7ec593404f5ddf6fc49bb4175eece231a3cee7c5295e0d9349a7
-
Filesize
53KB
MD5fc4157cde5611de9449b660be7c425f9
SHA1508d5b69add1fd846347f5297d6a3c205659bc94
SHA256b715a1e05f602a12616647d2e6763d4079b67aa6159ffe52682bc5246a8fd906
SHA5124dbe577264f4946104d79bdef2c3bae0b941266e44488b38f040e1b09b4315d41a29742d366076b3fa3a3d91334a739a7aa5e21224aec4073dcf92e8b23c9646
-
Filesize
22B
MD5c8a656e0f7f0ab827ac5660e607ebf5c
SHA16e9e07995163d959573ce09500bd81ba768e16a5
SHA25633bef3e80216bc82b2a8c8cd5c4b3f1f8aba46829cd0b9870b224b4b30e5dc47
SHA512817d7a1eca70645a70328fe8eaa1c2dc48c82bb996e343e4359747ddf04a8fc19ef698057e9fd3af9e333cfb8b724f8a664b1777a55929b1ebf2dc6ccda60556