malware-dataset/linux/9e70725640c4284e2049e4b25c9cc46cca496053cebf69855ec25acc9bd63e05/analysis/sample.svg

<?xml version="1.0" encoding="UTF-8" standalone="no"?>
<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN"
 "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
<!-- Generated by graphviz version 2.43.0 (0)
 -->
<!-- Title: %3 Pages: 1 -->
<svg width="182pt" height="319pt"
 viewBox="0.00 0.00 182.00 319.00" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink">
<g id="graph0" class="graph" transform="scale(1 1) rotate(0) translate(4 315)">
<title>%3</title>
<polygon fill="white" stroke="transparent" points="-4,4 -4,-315 178,-315 178,4 -4,4"/>
<!-- guuid=7f31842b&#45;0b00&#45;0000&#45;8cf8&#45;69ff59040000 pid=1113 -->
<g id="node1" class="node">
<title>guuid=7f31842b&#45;0b00&#45;0000&#45;8cf8&#45;69ff59040000 pid=1113</title>
<path fill="white" stroke="black" d="M52,-274.5C52,-274.5 122,-274.5 122,-274.5 128,-274.5 134,-280.5 134,-286.5 134,-286.5 134,-298.5 134,-298.5 134,-304.5 128,-310.5 122,-310.5 122,-310.5 52,-310.5 52,-310.5 46,-310.5 40,-304.5 40,-298.5 40,-298.5 40,-286.5 40,-286.5 40,-280.5 46,-274.5 52,-274.5"/>
<text text-anchor="middle" x="87" y="-288.8" font-family="Arial" font-size="14.00">/usr/bin/sudo</text>
</g>
<!-- guuid=3de8402c&#45;0b00&#45;0000&#45;8cf8&#45;69ff5a040000 pid=1114 -->
<g id="node2" class="node">
<title>guuid=3de8402c&#45;0b00&#45;0000&#45;8cf8&#45;69ff5a040000 pid=1114</title>
<path fill="white" stroke="black" d="M42.5,-186.5C42.5,-186.5 131.5,-186.5 131.5,-186.5 137.5,-186.5 143.5,-192.5 143.5,-198.5 143.5,-198.5 143.5,-210.5 143.5,-210.5 143.5,-216.5 137.5,-222.5 131.5,-222.5 131.5,-222.5 42.5,-222.5 42.5,-222.5 36.5,-222.5 30.5,-216.5 30.5,-210.5 30.5,-210.5 30.5,-198.5 30.5,-198.5 30.5,-192.5 36.5,-186.5 42.5,-186.5"/>
<text text-anchor="middle" x="87" y="-200.8" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
</g>
<!-- guuid=7f31842b&#45;0b00&#45;0000&#45;8cf8&#45;69ff59040000 pid=1113&#45;&gt;guuid=3de8402c&#45;0b00&#45;0000&#45;8cf8&#45;69ff5a040000 pid=1114 -->
<g id="edge1" class="edge">
<title>guuid=7f31842b&#45;0b00&#45;0000&#45;8cf8&#45;69ff59040000 pid=1113&#45;&gt;guuid=3de8402c&#45;0b00&#45;0000&#45;8cf8&#45;69ff5a040000 pid=1114</title>
<path fill="none" stroke="black" d="M87,-274.1C87,-262.25 87,-246.32 87,-232.79"/>
<polygon fill="black" stroke="black" points="90.5,-232.58 87,-222.58 83.5,-232.58 90.5,-232.58"/>
<text text-anchor="middle" x="108.5" y="-244.8" font-family="Arial" font-size="14.00">execve</text>
</g>
<!-- guuid=b54c522c&#45;0b00&#45;0000&#45;8cf8&#45;69ff5b040000 pid=1115 -->
<g id="node3" class="node">
<title>guuid=b54c522c&#45;0b00&#45;0000&#45;8cf8&#45;69ff5b040000 pid=1115</title>
<path fill="#3b5741" stroke="black" d="M12,-88.5C12,-88.5 162,-88.5 162,-88.5 168,-88.5 174,-94.5 174,-100.5 174,-100.5 174,-122.5 174,-122.5 174,-128.5 168,-134.5 162,-134.5 162,-134.5 12,-134.5 12,-134.5 6,-134.5 0,-128.5 0,-122.5 0,-122.5 0,-100.5 0,-100.5 0,-94.5 6,-88.5 12,-88.5"/>
<text text-anchor="middle" x="56.5" y="-119.3" font-family="Arial" font-size="14.00" fill="#fff000">/tmp/sample.bin</text>
<polyline fill="none" stroke="black" points="0,-111.5 113,-111.5 "/>
<text text-anchor="middle" x="56.5" y="-96.3" font-family="Arial" font-size="14.00" fill="#fff000">net</text>
<polyline fill="none" stroke="black" points="113,-88.5 113,-134.5 "/>
<text text-anchor="middle" x="143.5" y="-107.8" font-family="Arial" font-size="14.00" fill="#fff000">zombie</text>
</g>
<!-- guuid=3de8402c&#45;0b00&#45;0000&#45;8cf8&#45;69ff5a040000 pid=1114&#45;&gt;guuid=b54c522c&#45;0b00&#45;0000&#45;8cf8&#45;69ff5b040000 pid=1115 -->
<g id="edge2" class="edge">
<title>guuid=3de8402c&#45;0b00&#45;0000&#45;8cf8&#45;69ff5a040000 pid=1114&#45;&gt;guuid=b54c522c&#45;0b00&#45;0000&#45;8cf8&#45;69ff5b040000 pid=1115</title>
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M87,-186.38C87,-174.73 87,-158.95 87,-144.96"/>
<polygon fill="black" stroke="black" points="90.5,-144.71 87,-134.71 83.5,-144.71 90.5,-144.71"/>
<text text-anchor="middle" x="103.5" y="-156.8" font-family="Arial" font-size="14.00">clone</text>
</g>
<!-- 110.41.14.58 -->
<g id="node4" class="node">
<title>110.41.14.58</title>
<path fill="grey" stroke="black" d="M51.5,-0.5C51.5,-0.5 122.5,-0.5 122.5,-0.5 128.5,-0.5 134.5,-6.5 134.5,-12.5 134.5,-12.5 134.5,-24.5 134.5,-24.5 134.5,-30.5 128.5,-36.5 122.5,-36.5 122.5,-36.5 51.5,-36.5 51.5,-36.5 45.5,-36.5 39.5,-30.5 39.5,-24.5 39.5,-24.5 39.5,-12.5 39.5,-12.5 39.5,-6.5 45.5,-0.5 51.5,-0.5"/>
<text text-anchor="middle" x="87" y="-14.8" font-family="Arial" font-size="14.00" fill="white">110.41.14.58</text>
</g>
<!-- guuid=b54c522c&#45;0b00&#45;0000&#45;8cf8&#45;69ff5b040000 pid=1115&#45;&gt;110.41.14.58 -->
<g id="edge3" class="edge">
<title>guuid=b54c522c&#45;0b00&#45;0000&#45;8cf8&#45;69ff5b040000 pid=1115&#45;&gt;110.41.14.58</title>
<path fill="none" stroke="red" stroke-dasharray="5,2" d="M87,-88.47C87,-75.94 87,-60.13 87,-46.81"/>
<polygon fill="red" stroke="red" points="90.5,-46.77 87,-36.77 83.5,-46.77 90.5,-46.77"/>
<text text-anchor="middle" x="98" y="-58.8" font-family="Arial" font-size="14.00" fill="red">con</text>
</g>
</g>
</svg>
New samples from malware bazaar 2024-06-24 12:50:22 +00:00			`<?xml version="1.0" encoding="UTF-8" standalone="no"?>`
			`<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN"`
			`"http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">`
			`<!-- Generated by graphviz version 2.43.0 (0)`
			`-->`
			`<!-- Title: %3 Pages: 1 -->`
			`<svg width="182pt" height="319pt"`
			`viewBox="0.00 0.00 182.00 319.00" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink">`
			`<g id="graph0" class="graph" transform="scale(1 1) rotate(0) translate(4 315)">`
			`<title>%3</title>`
			`<polygon fill="white" stroke="transparent" points="-4,4 -4,-315 178,-315 178,4 -4,4"/>`
			`<!-- guuid=7f31842b-0b00-0000-8cf8-69ff59040000 pid=1113 -->`
			`<g id="node1" class="node">`
			`<title>guuid=7f31842b-0b00-0000-8cf8-69ff59040000 pid=1113</title>`
			`<path fill="white" stroke="black" d="M52,-274.5C52,-274.5 122,-274.5 122,-274.5 128,-274.5 134,-280.5 134,-286.5 134,-286.5 134,-298.5 134,-298.5 134,-304.5 128,-310.5 122,-310.5 122,-310.5 52,-310.5 52,-310.5 46,-310.5 40,-304.5 40,-298.5 40,-298.5 40,-286.5 40,-286.5 40,-280.5 46,-274.5 52,-274.5"/>`
			`<text text-anchor="middle" x="87" y="-288.8" font-family="Arial" font-size="14.00">/usr/bin/sudo</text>`
			`</g>`
			`<!-- guuid=3de8402c-0b00-0000-8cf8-69ff5a040000 pid=1114 -->`
			`<g id="node2" class="node">`
			`<title>guuid=3de8402c-0b00-0000-8cf8-69ff5a040000 pid=1114</title>`
			`<path fill="white" stroke="black" d="M42.5,-186.5C42.5,-186.5 131.5,-186.5 131.5,-186.5 137.5,-186.5 143.5,-192.5 143.5,-198.5 143.5,-198.5 143.5,-210.5 143.5,-210.5 143.5,-216.5 137.5,-222.5 131.5,-222.5 131.5,-222.5 42.5,-222.5 42.5,-222.5 36.5,-222.5 30.5,-216.5 30.5,-210.5 30.5,-210.5 30.5,-198.5 30.5,-198.5 30.5,-192.5 36.5,-186.5 42.5,-186.5"/>`
			`<text text-anchor="middle" x="87" y="-200.8" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>`
			`</g>`
			`<!-- guuid=7f31842b-0b00-0000-8cf8-69ff59040000 pid=1113->guuid=3de8402c-0b00-0000-8cf8-69ff5a040000 pid=1114 -->`
			`<g id="edge1" class="edge">`
			`<title>guuid=7f31842b-0b00-0000-8cf8-69ff59040000 pid=1113->guuid=3de8402c-0b00-0000-8cf8-69ff5a040000 pid=1114</title>`
			`<path fill="none" stroke="black" d="M87,-274.1C87,-262.25 87,-246.32 87,-232.79"/>`
			`<polygon fill="black" stroke="black" points="90.5,-232.58 87,-222.58 83.5,-232.58 90.5,-232.58"/>`
			`<text text-anchor="middle" x="108.5" y="-244.8" font-family="Arial" font-size="14.00">execve</text>`
			`</g>`
			`<!-- guuid=b54c522c-0b00-0000-8cf8-69ff5b040000 pid=1115 -->`
			`<g id="node3" class="node">`
			`<title>guuid=b54c522c-0b00-0000-8cf8-69ff5b040000 pid=1115</title>`
			`<path fill="#3b5741" stroke="black" d="M12,-88.5C12,-88.5 162,-88.5 162,-88.5 168,-88.5 174,-94.5 174,-100.5 174,-100.5 174,-122.5 174,-122.5 174,-128.5 168,-134.5 162,-134.5 162,-134.5 12,-134.5 12,-134.5 6,-134.5 0,-128.5 0,-122.5 0,-122.5 0,-100.5 0,-100.5 0,-94.5 6,-88.5 12,-88.5"/>`
			`<text text-anchor="middle" x="56.5" y="-119.3" font-family="Arial" font-size="14.00" fill="#fff000">/tmp/sample.bin</text>`
			`<polyline fill="none" stroke="black" points="0,-111.5 113,-111.5 "/>`
			`<text text-anchor="middle" x="56.5" y="-96.3" font-family="Arial" font-size="14.00" fill="#fff000">net</text>`
			`<polyline fill="none" stroke="black" points="113,-88.5 113,-134.5 "/>`
			`<text text-anchor="middle" x="143.5" y="-107.8" font-family="Arial" font-size="14.00" fill="#fff000">zombie</text>`
			`</g>`
			`<!-- guuid=3de8402c-0b00-0000-8cf8-69ff5a040000 pid=1114->guuid=b54c522c-0b00-0000-8cf8-69ff5b040000 pid=1115 -->`
			`<g id="edge2" class="edge">`
			`<title>guuid=3de8402c-0b00-0000-8cf8-69ff5a040000 pid=1114->guuid=b54c522c-0b00-0000-8cf8-69ff5b040000 pid=1115</title>`
			`<path fill="none" stroke="black" stroke-dasharray="1,5" d="M87,-186.38C87,-174.73 87,-158.95 87,-144.96"/>`
			`<polygon fill="black" stroke="black" points="90.5,-144.71 87,-134.71 83.5,-144.71 90.5,-144.71"/>`
			`<text text-anchor="middle" x="103.5" y="-156.8" font-family="Arial" font-size="14.00">clone</text>`
			`</g>`
			`<!-- 110.41.14.58 -->`
			`<g id="node4" class="node">`
			`<title>110.41.14.58</title>`
			`<path fill="grey" stroke="black" d="M51.5,-0.5C51.5,-0.5 122.5,-0.5 122.5,-0.5 128.5,-0.5 134.5,-6.5 134.5,-12.5 134.5,-12.5 134.5,-24.5 134.5,-24.5 134.5,-30.5 128.5,-36.5 122.5,-36.5 122.5,-36.5 51.5,-36.5 51.5,-36.5 45.5,-36.5 39.5,-30.5 39.5,-24.5 39.5,-24.5 39.5,-12.5 39.5,-12.5 39.5,-6.5 45.5,-0.5 51.5,-0.5"/>`
			`<text text-anchor="middle" x="87" y="-14.8" font-family="Arial" font-size="14.00" fill="white">110.41.14.58</text>`
			`</g>`
			`<!-- guuid=b54c522c-0b00-0000-8cf8-69ff5b040000 pid=1115->110.41.14.58 -->`
			`<g id="edge3" class="edge">`
			`<title>guuid=b54c522c-0b00-0000-8cf8-69ff5b040000 pid=1115->110.41.14.58</title>`
			`<path fill="none" stroke="red" stroke-dasharray="5,2" d="M87,-88.47C87,-75.94 87,-60.13 87,-46.81"/>`
			`<polygon fill="red" stroke="red" points="90.5,-46.77 87,-36.77 83.5,-46.77 90.5,-46.77"/>`
			`<text text-anchor="middle" x="98" y="-58.8" font-family="Arial" font-size="14.00" fill="red">con</text>`
			`</g>`
			`</g>`
			`</svg>`