malware-dataset/linux/ad69790f301c6b7cebaa84a7fecd6431e87b09526d81a3c618bdf985e08edf3b/analysis/sample.svg

<?xml version="1.0" encoding="UTF-8" standalone="no"?>
<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN"
 "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
<!-- Generated by graphviz version 2.43.0 (0)
 -->
<!-- Title: %3 Pages: 1 -->
<svg width="234pt" height="440pt"
 viewBox="0.00 0.00 233.50 440.00" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink">
<g id="graph0" class="graph" transform="scale(1 1) rotate(0) translate(4 436)">
<title>%3</title>
<polygon fill="white" stroke="transparent" points="-4,4 -4,-436 229.5,-436 229.5,4 -4,4"/>
<!-- guuid=56bd9127&#45;0b00&#45;0000&#45;7c0a&#45;19cb58040000 pid=1112 -->
<g id="node1" class="node">
<title>guuid=56bd9127&#45;0b00&#45;0000&#45;7c0a&#45;19cb58040000 pid=1112</title>
<path fill="white" stroke="black" d="M21.5,-395.5C21.5,-395.5 91.5,-395.5 91.5,-395.5 97.5,-395.5 103.5,-401.5 103.5,-407.5 103.5,-407.5 103.5,-419.5 103.5,-419.5 103.5,-425.5 97.5,-431.5 91.5,-431.5 91.5,-431.5 21.5,-431.5 21.5,-431.5 15.5,-431.5 9.5,-425.5 9.5,-419.5 9.5,-419.5 9.5,-407.5 9.5,-407.5 9.5,-401.5 15.5,-395.5 21.5,-395.5"/>
<text text-anchor="middle" x="56.5" y="-409.8" font-family="Arial" font-size="14.00">/usr/bin/sudo</text>
</g>
<!-- guuid=fed9b428&#45;0b00&#45;0000&#45;7c0a&#45;19cb59040000 pid=1113 -->
<g id="node2" class="node">
<title>guuid=fed9b428&#45;0b00&#45;0000&#45;7c0a&#45;19cb59040000 pid=1113</title>
<path fill="#ffbfbf" stroke="black" d="M12,-297.5C12,-297.5 101,-297.5 101,-297.5 107,-297.5 113,-303.5 113,-309.5 113,-309.5 113,-331.5 113,-331.5 113,-337.5 107,-343.5 101,-343.5 101,-343.5 12,-343.5 12,-343.5 6,-343.5 0,-337.5 0,-331.5 0,-331.5 0,-309.5 0,-309.5 0,-303.5 6,-297.5 12,-297.5"/>
<text text-anchor="middle" x="56.5" y="-328.3" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
<polyline fill="none" stroke="black" points="0,-320.5 113,-320.5 "/>
<text text-anchor="middle" x="56.5" y="-305.3" font-family="Arial" font-size="14.00">net</text>
</g>
<!-- guuid=56bd9127&#45;0b00&#45;0000&#45;7c0a&#45;19cb58040000 pid=1112&#45;&gt;guuid=fed9b428&#45;0b00&#45;0000&#45;7c0a&#45;19cb59040000 pid=1113 -->
<g id="edge1" class="edge">
<title>guuid=56bd9127&#45;0b00&#45;0000&#45;7c0a&#45;19cb58040000 pid=1112&#45;&gt;guuid=fed9b428&#45;0b00&#45;0000&#45;7c0a&#45;19cb59040000 pid=1113</title>
<path fill="none" stroke="black" d="M56.5,-395.38C56.5,-383.73 56.5,-367.95 56.5,-353.96"/>
<polygon fill="black" stroke="black" points="60,-353.71 56.5,-343.71 53,-353.71 60,-353.71"/>
<text text-anchor="middle" x="78" y="-365.8" font-family="Arial" font-size="14.00">execve</text>
</g>
<!-- 8.8.8.8 -->
<g id="node3" class="node">
<title>8.8.8.8</title>
<path fill="grey" stroke="black" d="M17.5,-209.5C17.5,-209.5 51.5,-209.5 51.5,-209.5 57.5,-209.5 63.5,-215.5 63.5,-221.5 63.5,-221.5 63.5,-233.5 63.5,-233.5 63.5,-239.5 57.5,-245.5 51.5,-245.5 51.5,-245.5 17.5,-245.5 17.5,-245.5 11.5,-245.5 5.5,-239.5 5.5,-233.5 5.5,-233.5 5.5,-221.5 5.5,-221.5 5.5,-215.5 11.5,-209.5 17.5,-209.5"/>
<text text-anchor="middle" x="34.5" y="-223.8" font-family="Arial" font-size="14.00" fill="white">8.8.8.8</text>
</g>
<!-- guuid=fed9b428&#45;0b00&#45;0000&#45;7c0a&#45;19cb59040000 pid=1113&#45;&gt;8.8.8.8 -->
<g id="edge2" class="edge">
<title>guuid=fed9b428&#45;0b00&#45;0000&#45;7c0a&#45;19cb59040000 pid=1113&#45;&gt;8.8.8.8</title>
<path fill="none" stroke="green" stroke-dasharray="5,2" d="M51.17,-297.47C48.14,-284.94 44.32,-269.13 41.1,-255.81"/>
<polygon fill="green" stroke="green" points="44.43,-254.67 38.68,-245.77 37.62,-256.32 44.43,-254.67"/>
<text text-anchor="middle" x="57.5" y="-267.8" font-family="Arial" font-size="14.00" fill="green">con</text>
</g>
<!-- guuid=7b1ec728&#45;0b00&#45;0000&#45;7c0a&#45;19cb5a040000 pid=1114 -->
<g id="node4" class="node">
<title>guuid=7b1ec728&#45;0b00&#45;0000&#45;7c0a&#45;19cb5a040000 pid=1114</title>
<path fill="white" stroke="black" d="M94,-209.5C94,-209.5 183,-209.5 183,-209.5 189,-209.5 195,-215.5 195,-221.5 195,-221.5 195,-233.5 195,-233.5 195,-239.5 189,-245.5 183,-245.5 183,-245.5 94,-245.5 94,-245.5 88,-245.5 82,-239.5 82,-233.5 82,-233.5 82,-221.5 82,-221.5 82,-215.5 88,-209.5 94,-209.5"/>
<text text-anchor="middle" x="138.5" y="-223.8" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
</g>
<!-- guuid=fed9b428&#45;0b00&#45;0000&#45;7c0a&#45;19cb59040000 pid=1113&#45;&gt;guuid=7b1ec728&#45;0b00&#45;0000&#45;7c0a&#45;19cb5a040000 pid=1114 -->
<g id="edge3" class="edge">
<title>guuid=fed9b428&#45;0b00&#45;0000&#45;7c0a&#45;19cb59040000 pid=1113&#45;&gt;guuid=7b1ec728&#45;0b00&#45;0000&#45;7c0a&#45;19cb5a040000 pid=1114</title>
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M76.35,-297.47C88.32,-284.19 103.59,-267.24 116,-253.47"/>
<polygon fill="black" stroke="black" points="118.84,-255.55 122.93,-245.77 113.64,-250.86 118.84,-255.55"/>
<text text-anchor="middle" x="121" y="-267.8" font-family="Arial" font-size="14.00">clone</text>
</g>
<!-- guuid=c24ac928&#45;0b00&#45;0000&#45;7c0a&#45;19cb5b040000 pid=1115 -->
<g id="node5" class="node">
<title>guuid=c24ac928&#45;0b00&#45;0000&#45;7c0a&#45;19cb5b040000 pid=1115</title>
<path fill="#3b5741" stroke="black" d="M63.5,-88.5C63.5,-88.5 213.5,-88.5 213.5,-88.5 219.5,-88.5 225.5,-94.5 225.5,-100.5 225.5,-100.5 225.5,-145.5 225.5,-145.5 225.5,-151.5 219.5,-157.5 213.5,-157.5 213.5,-157.5 63.5,-157.5 63.5,-157.5 57.5,-157.5 51.5,-151.5 51.5,-145.5 51.5,-145.5 51.5,-100.5 51.5,-100.5 51.5,-94.5 57.5,-88.5 63.5,-88.5"/>
<text text-anchor="middle" x="108" y="-142.3" font-family="Arial" font-size="14.00" fill="#fff000">/tmp/sample.bin</text>
<polyline fill="none" stroke="black" points="51.5,-134.5 164.5,-134.5 "/>
<text text-anchor="middle" x="108" y="-119.3" font-family="Arial" font-size="14.00" fill="#fff000">net</text>
<polyline fill="none" stroke="black" points="51.5,-111.5 164.5,-111.5 "/>
<text text-anchor="middle" x="108" y="-96.3" font-family="Arial" font-size="14.00" fill="#fff000">send&#45;data</text>
<polyline fill="none" stroke="black" points="164.5,-88.5 164.5,-157.5 "/>
<text text-anchor="middle" x="195" y="-119.3" font-family="Arial" font-size="14.00" fill="#fff000">zombie</text>
</g>
<!-- guuid=7b1ec728&#45;0b00&#45;0000&#45;7c0a&#45;19cb5a040000 pid=1114&#45;&gt;guuid=c24ac928&#45;0b00&#45;0000&#45;7c0a&#45;19cb5b040000 pid=1115 -->
<g id="edge4" class="edge">
<title>guuid=7b1ec728&#45;0b00&#45;0000&#45;7c0a&#45;19cb5a040000 pid=1114&#45;&gt;guuid=c24ac928&#45;0b00&#45;0000&#45;7c0a&#45;19cb5b040000 pid=1115</title>
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M138.5,-209.11C138.5,-197.81 138.5,-182.52 138.5,-168.02"/>
<polygon fill="black" stroke="black" points="142,-167.67 138.5,-157.67 135,-167.67 142,-167.67"/>
<text text-anchor="middle" x="155" y="-179.8" font-family="Arial" font-size="14.00">clone</text>
</g>
<!-- 45.95.169.138 -->
<g id="node6" class="node">
<title>45.95.169.138</title>
<path fill="grey" stroke="black" d="M99,-0.5C99,-0.5 178,-0.5 178,-0.5 184,-0.5 190,-6.5 190,-12.5 190,-12.5 190,-24.5 190,-24.5 190,-30.5 184,-36.5 178,-36.5 178,-36.5 99,-36.5 99,-36.5 93,-36.5 87,-30.5 87,-24.5 87,-24.5 87,-12.5 87,-12.5 87,-6.5 93,-0.5 99,-0.5"/>
<text text-anchor="middle" x="138.5" y="-14.8" font-family="Arial" font-size="14.00" fill="white">45.95.169.138</text>
</g>
<!-- guuid=c24ac928&#45;0b00&#45;0000&#45;7c0a&#45;19cb5b040000 pid=1115&#45;&gt;45.95.169.138 -->
<g id="edge5" class="edge">
<title>guuid=c24ac928&#45;0b00&#45;0000&#45;7c0a&#45;19cb5b040000 pid=1115&#45;&gt;45.95.169.138</title>
<path fill="none" stroke="blue" stroke-dasharray="5,2" d="M138.5,-88.44C138.5,-74.94 138.5,-59.57 138.5,-46.77"/>
<polygon fill="blue" stroke="blue" points="142,-46.73 138.5,-36.73 135,-46.73 142,-46.73"/>
<text text-anchor="middle" x="169" y="-58.8" font-family="Arial" font-size="14.00" fill="blue">send: 96B</text>
</g>
</g>
</svg>
repository re-org + sample analysis 2024-06-19 14:49:36 +00:00			`<?xml version="1.0" encoding="UTF-8" standalone="no"?>`
			`<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN"`
			`"http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">`
			`<!-- Generated by graphviz version 2.43.0 (0)`
			`-->`
			`<!-- Title: %3 Pages: 1 -->`
			`<svg width="234pt" height="440pt"`
			`viewBox="0.00 0.00 233.50 440.00" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink">`
			`<g id="graph0" class="graph" transform="scale(1 1) rotate(0) translate(4 436)">`
			`<title>%3</title>`
			`<polygon fill="white" stroke="transparent" points="-4,4 -4,-436 229.5,-436 229.5,4 -4,4"/>`
			`<!-- guuid=56bd9127-0b00-0000-7c0a-19cb58040000 pid=1112 -->`
			`<g id="node1" class="node">`
			`<title>guuid=56bd9127-0b00-0000-7c0a-19cb58040000 pid=1112</title>`
			`<path fill="white" stroke="black" d="M21.5,-395.5C21.5,-395.5 91.5,-395.5 91.5,-395.5 97.5,-395.5 103.5,-401.5 103.5,-407.5 103.5,-407.5 103.5,-419.5 103.5,-419.5 103.5,-425.5 97.5,-431.5 91.5,-431.5 91.5,-431.5 21.5,-431.5 21.5,-431.5 15.5,-431.5 9.5,-425.5 9.5,-419.5 9.5,-419.5 9.5,-407.5 9.5,-407.5 9.5,-401.5 15.5,-395.5 21.5,-395.5"/>`
			`<text text-anchor="middle" x="56.5" y="-409.8" font-family="Arial" font-size="14.00">/usr/bin/sudo</text>`
			`</g>`
			`<!-- guuid=fed9b428-0b00-0000-7c0a-19cb59040000 pid=1113 -->`
			`<g id="node2" class="node">`
			`<title>guuid=fed9b428-0b00-0000-7c0a-19cb59040000 pid=1113</title>`
			`<path fill="#ffbfbf" stroke="black" d="M12,-297.5C12,-297.5 101,-297.5 101,-297.5 107,-297.5 113,-303.5 113,-309.5 113,-309.5 113,-331.5 113,-331.5 113,-337.5 107,-343.5 101,-343.5 101,-343.5 12,-343.5 12,-343.5 6,-343.5 0,-337.5 0,-331.5 0,-331.5 0,-309.5 0,-309.5 0,-303.5 6,-297.5 12,-297.5"/>`
			`<text text-anchor="middle" x="56.5" y="-328.3" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>`
			`<polyline fill="none" stroke="black" points="0,-320.5 113,-320.5 "/>`
			`<text text-anchor="middle" x="56.5" y="-305.3" font-family="Arial" font-size="14.00">net</text>`
			`</g>`
			`<!-- guuid=56bd9127-0b00-0000-7c0a-19cb58040000 pid=1112->guuid=fed9b428-0b00-0000-7c0a-19cb59040000 pid=1113 -->`
			`<g id="edge1" class="edge">`
			`<title>guuid=56bd9127-0b00-0000-7c0a-19cb58040000 pid=1112->guuid=fed9b428-0b00-0000-7c0a-19cb59040000 pid=1113</title>`
			`<path fill="none" stroke="black" d="M56.5,-395.38C56.5,-383.73 56.5,-367.95 56.5,-353.96"/>`
			`<polygon fill="black" stroke="black" points="60,-353.71 56.5,-343.71 53,-353.71 60,-353.71"/>`
			`<text text-anchor="middle" x="78" y="-365.8" font-family="Arial" font-size="14.00">execve</text>`
			`</g>`
			`<!-- 8.8.8.8 -->`
			`<g id="node3" class="node">`
			`<title>8.8.8.8</title>`
			`<path fill="grey" stroke="black" d="M17.5,-209.5C17.5,-209.5 51.5,-209.5 51.5,-209.5 57.5,-209.5 63.5,-215.5 63.5,-221.5 63.5,-221.5 63.5,-233.5 63.5,-233.5 63.5,-239.5 57.5,-245.5 51.5,-245.5 51.5,-245.5 17.5,-245.5 17.5,-245.5 11.5,-245.5 5.5,-239.5 5.5,-233.5 5.5,-233.5 5.5,-221.5 5.5,-221.5 5.5,-215.5 11.5,-209.5 17.5,-209.5"/>`
			`<text text-anchor="middle" x="34.5" y="-223.8" font-family="Arial" font-size="14.00" fill="white">8.8.8.8</text>`
			`</g>`
			`<!-- guuid=fed9b428-0b00-0000-7c0a-19cb59040000 pid=1113->8.8.8.8 -->`
			`<g id="edge2" class="edge">`
			`<title>guuid=fed9b428-0b00-0000-7c0a-19cb59040000 pid=1113->8.8.8.8</title>`
			`<path fill="none" stroke="green" stroke-dasharray="5,2" d="M51.17,-297.47C48.14,-284.94 44.32,-269.13 41.1,-255.81"/>`
			`<polygon fill="green" stroke="green" points="44.43,-254.67 38.68,-245.77 37.62,-256.32 44.43,-254.67"/>`
			`<text text-anchor="middle" x="57.5" y="-267.8" font-family="Arial" font-size="14.00" fill="green">con</text>`
			`</g>`
			`<!-- guuid=7b1ec728-0b00-0000-7c0a-19cb5a040000 pid=1114 -->`
			`<g id="node4" class="node">`
			`<title>guuid=7b1ec728-0b00-0000-7c0a-19cb5a040000 pid=1114</title>`
			`<path fill="white" stroke="black" d="M94,-209.5C94,-209.5 183,-209.5 183,-209.5 189,-209.5 195,-215.5 195,-221.5 195,-221.5 195,-233.5 195,-233.5 195,-239.5 189,-245.5 183,-245.5 183,-245.5 94,-245.5 94,-245.5 88,-245.5 82,-239.5 82,-233.5 82,-233.5 82,-221.5 82,-221.5 82,-215.5 88,-209.5 94,-209.5"/>`
			`<text text-anchor="middle" x="138.5" y="-223.8" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>`
			`</g>`
			`<!-- guuid=fed9b428-0b00-0000-7c0a-19cb59040000 pid=1113->guuid=7b1ec728-0b00-0000-7c0a-19cb5a040000 pid=1114 -->`
			`<g id="edge3" class="edge">`
			`<title>guuid=fed9b428-0b00-0000-7c0a-19cb59040000 pid=1113->guuid=7b1ec728-0b00-0000-7c0a-19cb5a040000 pid=1114</title>`
			`<path fill="none" stroke="black" stroke-dasharray="1,5" d="M76.35,-297.47C88.32,-284.19 103.59,-267.24 116,-253.47"/>`
			`<polygon fill="black" stroke="black" points="118.84,-255.55 122.93,-245.77 113.64,-250.86 118.84,-255.55"/>`
			`<text text-anchor="middle" x="121" y="-267.8" font-family="Arial" font-size="14.00">clone</text>`
			`</g>`
			`<!-- guuid=c24ac928-0b00-0000-7c0a-19cb5b040000 pid=1115 -->`
			`<g id="node5" class="node">`
			`<title>guuid=c24ac928-0b00-0000-7c0a-19cb5b040000 pid=1115</title>`
			`<path fill="#3b5741" stroke="black" d="M63.5,-88.5C63.5,-88.5 213.5,-88.5 213.5,-88.5 219.5,-88.5 225.5,-94.5 225.5,-100.5 225.5,-100.5 225.5,-145.5 225.5,-145.5 225.5,-151.5 219.5,-157.5 213.5,-157.5 213.5,-157.5 63.5,-157.5 63.5,-157.5 57.5,-157.5 51.5,-151.5 51.5,-145.5 51.5,-145.5 51.5,-100.5 51.5,-100.5 51.5,-94.5 57.5,-88.5 63.5,-88.5"/>`
			`<text text-anchor="middle" x="108" y="-142.3" font-family="Arial" font-size="14.00" fill="#fff000">/tmp/sample.bin</text>`
			`<polyline fill="none" stroke="black" points="51.5,-134.5 164.5,-134.5 "/>`
			`<text text-anchor="middle" x="108" y="-119.3" font-family="Arial" font-size="14.00" fill="#fff000">net</text>`
			`<polyline fill="none" stroke="black" points="51.5,-111.5 164.5,-111.5 "/>`
			`<text text-anchor="middle" x="108" y="-96.3" font-family="Arial" font-size="14.00" fill="#fff000">send-data</text>`
			`<polyline fill="none" stroke="black" points="164.5,-88.5 164.5,-157.5 "/>`
			`<text text-anchor="middle" x="195" y="-119.3" font-family="Arial" font-size="14.00" fill="#fff000">zombie</text>`
			`</g>`
			`<!-- guuid=7b1ec728-0b00-0000-7c0a-19cb5a040000 pid=1114->guuid=c24ac928-0b00-0000-7c0a-19cb5b040000 pid=1115 -->`
			`<g id="edge4" class="edge">`
			`<title>guuid=7b1ec728-0b00-0000-7c0a-19cb5a040000 pid=1114->guuid=c24ac928-0b00-0000-7c0a-19cb5b040000 pid=1115</title>`
			`<path fill="none" stroke="black" stroke-dasharray="1,5" d="M138.5,-209.11C138.5,-197.81 138.5,-182.52 138.5,-168.02"/>`
			`<polygon fill="black" stroke="black" points="142,-167.67 138.5,-157.67 135,-167.67 142,-167.67"/>`
			`<text text-anchor="middle" x="155" y="-179.8" font-family="Arial" font-size="14.00">clone</text>`
			`</g>`
			`<!-- 45.95.169.138 -->`
			`<g id="node6" class="node">`
			`<title>45.95.169.138</title>`
			`<path fill="grey" stroke="black" d="M99,-0.5C99,-0.5 178,-0.5 178,-0.5 184,-0.5 190,-6.5 190,-12.5 190,-12.5 190,-24.5 190,-24.5 190,-30.5 184,-36.5 178,-36.5 178,-36.5 99,-36.5 99,-36.5 93,-36.5 87,-30.5 87,-24.5 87,-24.5 87,-12.5 87,-12.5 87,-6.5 93,-0.5 99,-0.5"/>`
			`<text text-anchor="middle" x="138.5" y="-14.8" font-family="Arial" font-size="14.00" fill="white">45.95.169.138</text>`
			`</g>`
			`<!-- guuid=c24ac928-0b00-0000-7c0a-19cb5b040000 pid=1115->45.95.169.138 -->`
			`<g id="edge5" class="edge">`
			`<title>guuid=c24ac928-0b00-0000-7c0a-19cb5b040000 pid=1115->45.95.169.138</title>`
			`<path fill="none" stroke="blue" stroke-dasharray="5,2" d="M138.5,-88.44C138.5,-74.94 138.5,-59.57 138.5,-46.77"/>`
			`<polygon fill="blue" stroke="blue" points="142,-46.73 138.5,-36.73 135,-46.73 142,-46.73"/>`
			`<text text-anchor="middle" x="169" y="-58.8" font-family="Arial" font-size="14.00" fill="blue">send: 96B</text>`
			`</g>`
			`</g>`
			`</svg>`