malware-dataset/linux/ad69790f301c6b7cebaa84a7fecd6431e87b09526d81a3c618bdf985e08edf3b/analysis/sample.svg

92 lines
8.3 KiB
XML
Raw Normal View History

2024-06-19 14:49:36 +00:00
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN"
"http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
<!-- Generated by graphviz version 11.0.0 (0)
2024-06-19 14:49:36 +00:00
-->
<!-- Pages: 1 -->
<svg width="245pt" height="447pt"
viewBox="0.00 0.00 244.50 446.75" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink">
<g id="graph0" class="graph" transform="scale(1 1) rotate(0) translate(4 442.75)">
<polygon fill="white" stroke="none" points="-4,4 -4,-442.75 240.5,-442.75 240.5,4 -4,4"/>
2024-06-19 14:49:36 +00:00
<!-- guuid=56bd9127&#45;0b00&#45;0000&#45;7c0a&#45;19cb58040000 pid=1112 -->
<g id="node1" class="node">
<title>guuid=56bd9127&#45;0b00&#45;0000&#45;7c0a&#45;19cb58040000 pid=1112</title>
<path fill="white" stroke="black" d="M25.38,-402.25C25.38,-402.25 94.62,-402.25 94.62,-402.25 100.62,-402.25 106.62,-408.25 106.62,-414.25 106.62,-414.25 106.62,-426.25 106.62,-426.25 106.62,-432.25 100.62,-438.25 94.62,-438.25 94.62,-438.25 25.38,-438.25 25.38,-438.25 19.38,-438.25 13.38,-432.25 13.38,-426.25 13.38,-426.25 13.38,-414.25 13.38,-414.25 13.38,-408.25 19.38,-402.25 25.38,-402.25"/>
<text text-anchor="middle" x="60" y="-414.82" font-family="Arial" font-size="14.00">/usr/bin/sudo</text>
2024-06-19 14:49:36 +00:00
</g>
<!-- guuid=fed9b428&#45;0b00&#45;0000&#45;7c0a&#45;19cb59040000 pid=1113 -->
<g id="node2" class="node">
<title>guuid=fed9b428&#45;0b00&#45;0000&#45;7c0a&#45;19cb59040000 pid=1113</title>
<path fill="#ffbfbf" stroke="black" d="M15.62,-302C15.62,-302 104.38,-302 104.38,-302 110.38,-302 116.38,-308 116.38,-314 116.38,-314 116.38,-337.5 116.38,-337.5 116.38,-343.5 110.38,-349.5 104.38,-349.5 104.38,-349.5 15.62,-349.5 15.62,-349.5 9.62,-349.5 3.62,-343.5 3.62,-337.5 3.62,-337.5 3.62,-314 3.62,-314 3.62,-308 9.62,-302 15.62,-302"/>
<text text-anchor="middle" x="60" y="-332.2" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
<polyline fill="none" stroke="black" points="3.62,-325.75 116.38,-325.75"/>
<text text-anchor="middle" x="60" y="-308.45" font-family="Arial" font-size="14.00">net</text>
2024-06-19 14:49:36 +00:00
</g>
<!-- guuid=56bd9127&#45;0b00&#45;0000&#45;7c0a&#45;19cb58040000 pid=1112&#45;&gt;guuid=fed9b428&#45;0b00&#45;0000&#45;7c0a&#45;19cb59040000 pid=1113 -->
<g id="edge1" class="edge">
<title>guuid=56bd9127&#45;0b00&#45;0000&#45;7c0a&#45;19cb58040000 pid=1112&#45;&gt;guuid=fed9b428&#45;0b00&#45;0000&#45;7c0a&#45;19cb59040000 pid=1113</title>
<path fill="none" stroke="black" d="M60,-401.85C60,-390.32 60,-374.81 60,-360.88"/>
<polygon fill="black" stroke="black" points="63.5,-361.18 60,-351.18 56.5,-361.18 63.5,-361.18"/>
<text text-anchor="middle" x="81.38" y="-370.45" font-family="Arial" font-size="14.00">execve</text>
2024-06-19 14:49:36 +00:00
</g>
<!-- 8b0a01dc&#45;0728&#45;52c1&#45;8024&#45;c4ba7801b8d6 -->
2024-06-19 14:49:36 +00:00
<g id="node3" class="node">
<title>8b0a01dc&#45;0728&#45;52c1&#45;8024&#45;c4ba7801b8d6</title>
<path fill="grey" stroke="black" d="M12,-213.25C12,-213.25 64,-213.25 64,-213.25 70,-213.25 76,-219.25 76,-225.25 76,-225.25 76,-237.25 76,-237.25 76,-243.25 70,-249.25 64,-249.25 64,-249.25 12,-249.25 12,-249.25 6,-249.25 0,-243.25 0,-237.25 0,-237.25 0,-225.25 0,-225.25 0,-219.25 6,-213.25 12,-213.25"/>
<text text-anchor="middle" x="38" y="-225.82" font-family="Arial" font-size="14.00" fill="white">8.8.8.8:53</text>
2024-06-19 14:49:36 +00:00
</g>
<!-- guuid=fed9b428&#45;0b00&#45;0000&#45;7c0a&#45;19cb59040000 pid=1113&#45;&gt;8b0a01dc&#45;0728&#45;52c1&#45;8024&#45;c4ba7801b8d6 -->
2024-06-19 14:49:36 +00:00
<g id="edge2" class="edge">
<title>guuid=fed9b428&#45;0b00&#45;0000&#45;7c0a&#45;19cb59040000 pid=1113&#45;&gt;8b0a01dc&#45;0728&#45;52c1&#45;8024&#45;c4ba7801b8d6</title>
<path fill="none" stroke="green" stroke-dasharray="5,2" d="M54.56,-301.88C51.59,-289.39 47.88,-273.8 44.73,-260.54"/>
<polygon fill="green" stroke="green" points="48.2,-260.02 42.48,-251.1 41.39,-261.64 48.2,-260.02"/>
<text text-anchor="middle" x="59.88" y="-270.2" font-family="Arial" font-size="14.00" fill="green">con</text>
2024-06-19 14:49:36 +00:00
</g>
<!-- guuid=7b1ec728&#45;0b00&#45;0000&#45;7c0a&#45;19cb5a040000 pid=1114 -->
<g id="node4" class="node">
<title>guuid=7b1ec728&#45;0b00&#45;0000&#45;7c0a&#45;19cb5a040000 pid=1114</title>
<path fill="white" stroke="black" d="M105.62,-213.25C105.62,-213.25 194.38,-213.25 194.38,-213.25 200.38,-213.25 206.38,-219.25 206.38,-225.25 206.38,-225.25 206.38,-237.25 206.38,-237.25 206.38,-243.25 200.38,-249.25 194.38,-249.25 194.38,-249.25 105.62,-249.25 105.62,-249.25 99.62,-249.25 93.62,-243.25 93.62,-237.25 93.62,-237.25 93.62,-225.25 93.62,-225.25 93.62,-219.25 99.62,-213.25 105.62,-213.25"/>
<text text-anchor="middle" x="150" y="-225.82" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
2024-06-19 14:49:36 +00:00
</g>
<!-- guuid=fed9b428&#45;0b00&#45;0000&#45;7c0a&#45;19cb59040000 pid=1113&#45;&gt;guuid=7b1ec728&#45;0b00&#45;0000&#45;7c0a&#45;19cb5a040000 pid=1114 -->
<g id="edge3" class="edge">
<title>guuid=fed9b428&#45;0b00&#45;0000&#45;7c0a&#45;19cb59040000 pid=1113&#45;&gt;guuid=7b1ec728&#45;0b00&#45;0000&#45;7c0a&#45;19cb5a040000 pid=1114</title>
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M82.25,-301.88C95.27,-288.5 111.73,-271.58 125.17,-257.77"/>
<polygon fill="black" stroke="black" points="127.57,-260.32 132.03,-250.71 122.55,-255.44 127.57,-260.32"/>
<text text-anchor="middle" x="129.12" y="-270.2" font-family="Arial" font-size="14.00">clone</text>
2024-06-19 14:49:36 +00:00
</g>
<!-- guuid=c24ac928&#45;0b00&#45;0000&#45;7c0a&#45;19cb5b040000 pid=1115 -->
<g id="node5" class="node">
<title>guuid=c24ac928&#45;0b00&#45;0000&#45;7c0a&#45;19cb5b040000 pid=1115</title>
<path fill="#3b5741" stroke="black" d="M75.5,-89.25C75.5,-89.25 224.5,-89.25 224.5,-89.25 230.5,-89.25 236.5,-95.25 236.5,-101.25 236.5,-101.25 236.5,-148.5 236.5,-148.5 236.5,-154.5 230.5,-160.5 224.5,-160.5 224.5,-160.5 75.5,-160.5 75.5,-160.5 69.5,-160.5 63.5,-154.5 63.5,-148.5 63.5,-148.5 63.5,-101.25 63.5,-101.25 63.5,-95.25 69.5,-89.25 75.5,-89.25"/>
<text text-anchor="middle" x="119.88" y="-143.2" font-family="Arial" font-size="14.00" fill="#fff000">/tmp/sample.bin</text>
<polyline fill="none" stroke="black" points="63.5,-136.75 176.25,-136.75"/>
<text text-anchor="middle" x="119.88" y="-119.45" font-family="Arial" font-size="14.00" fill="#fff000">net</text>
<polyline fill="none" stroke="black" points="63.5,-113 176.25,-113"/>
<text text-anchor="middle" x="119.88" y="-95.7" font-family="Arial" font-size="14.00" fill="#fff000">send&#45;data</text>
<polyline fill="none" stroke="black" points="176.25,-89.25 176.25,-160.5"/>
<text text-anchor="middle" x="206.38" y="-119.7" font-family="Arial" font-size="14.00" fill="#fff000">zombie</text>
2024-06-19 14:49:36 +00:00
</g>
<!-- guuid=7b1ec728&#45;0b00&#45;0000&#45;7c0a&#45;19cb5a040000 pid=1114&#45;&gt;guuid=c24ac928&#45;0b00&#45;0000&#45;7c0a&#45;19cb5b040000 pid=1115 -->
<g id="edge4" class="edge">
<title>guuid=7b1ec728&#45;0b00&#45;0000&#45;7c0a&#45;19cb5a040000 pid=1114&#45;&gt;guuid=c24ac928&#45;0b00&#45;0000&#45;7c0a&#45;19cb5b040000 pid=1115</title>
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M150,-213.01C150,-201.87 150,-186.78 150,-172.3"/>
<polygon fill="black" stroke="black" points="153.5,-172.41 150,-162.41 146.5,-172.41 153.5,-172.41"/>
<text text-anchor="middle" x="166.12" y="-181.45" font-family="Arial" font-size="14.00">clone</text>
2024-06-19 14:49:36 +00:00
</g>
<!-- a30f3d7c&#45;8730&#45;52b5&#45;a823&#45;356212651cfb -->
2024-06-19 14:49:36 +00:00
<g id="node6" class="node">
<title>a30f3d7c&#45;8730&#45;52b5&#45;a823&#45;356212651cfb</title>
<path fill="grey" stroke="black" d="M97.75,-0.5C97.75,-0.5 202.25,-0.5 202.25,-0.5 208.25,-0.5 214.25,-6.5 214.25,-12.5 214.25,-12.5 214.25,-24.5 214.25,-24.5 214.25,-30.5 208.25,-36.5 202.25,-36.5 202.25,-36.5 97.75,-36.5 97.75,-36.5 91.75,-36.5 85.75,-30.5 85.75,-24.5 85.75,-24.5 85.75,-12.5 85.75,-12.5 85.75,-6.5 91.75,-0.5 97.75,-0.5"/>
<text text-anchor="middle" x="150" y="-13.07" font-family="Arial" font-size="14.00" fill="white">45.95.169.138:322</text>
2024-06-19 14:49:36 +00:00
</g>
<!-- guuid=c24ac928&#45;0b00&#45;0000&#45;7c0a&#45;19cb5b040000 pid=1115&#45;&gt;a30f3d7c&#45;8730&#45;52b5&#45;a823&#45;356212651cfb -->
2024-06-19 14:49:36 +00:00
<g id="edge5" class="edge">
<title>guuid=c24ac928&#45;0b00&#45;0000&#45;7c0a&#45;19cb5b040000 pid=1115&#45;&gt;a30f3d7c&#45;8730&#45;52b5&#45;a823&#45;356212651cfb</title>
<path fill="none" stroke="blue" stroke-dasharray="5,2" d="M150,-88.83C150,-75.54 150,-60.59 150,-47.99"/>
<polygon fill="blue" stroke="blue" points="153.5,-48.26 150,-38.26 146.5,-48.26 153.5,-48.26"/>
<text text-anchor="middle" x="180.38" y="-57.45" font-family="Arial" font-size="14.00" fill="blue">send: 96B</text>
2024-06-19 14:49:36 +00:00
</g>
</g>
</svg>