2024-06-24 12:50:22 +00:00
|
|
|
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
|
|
|
|
|
<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN"
|
|
|
|
|
"http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
|
2024-06-27 21:01:31 +00:00
|
|
|
<!-- Generated by graphviz version 11.0.0 (0)
|
2024-06-24 12:50:22 +00:00
|
|
|
-->
|
2024-06-27 21:01:31 +00:00
|
|
|
<!-- Pages: 1 -->
|
|
|
|
|
<svg width="268pt" height="370pt"
|
|
|
|
|
viewBox="0.00 0.00 268.00 370.25" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink">
|
|
|
|
|
<g id="graph0" class="graph" transform="scale(1 1) rotate(0) translate(4 366.25)">
|
|
|
|
|
<polygon fill="white" stroke="none" points="-4,4 -4,-366.25 264,-366.25 264,4 -4,4"/>
|
2024-06-24 12:50:22 +00:00
|
|
|
<!-- guuid=a0c9fb2d-0b00-0000-ba64-d1ba59040000 pid=1113 -->
|
|
|
|
|
<g id="node1" class="node">
|
|
|
|
|
<title>guuid=a0c9fb2d-0b00-0000-ba64-d1ba59040000 pid=1113</title>
|
2024-06-27 21:01:31 +00:00
|
|
|
<path fill="white" stroke="black" d="M76.12,-325.75C76.12,-325.75 145.38,-325.75 145.38,-325.75 151.38,-325.75 157.38,-331.75 157.38,-337.75 157.38,-337.75 157.38,-349.75 157.38,-349.75 157.38,-355.75 151.38,-361.75 145.38,-361.75 145.38,-361.75 76.12,-361.75 76.12,-361.75 70.12,-361.75 64.12,-355.75 64.12,-349.75 64.12,-349.75 64.12,-337.75 64.12,-337.75 64.12,-331.75 70.12,-325.75 76.12,-325.75"/>
|
|
|
|
|
<text text-anchor="middle" x="110.75" y="-338.32" font-family="Arial" font-size="14.00">/usr/bin/sudo</text>
|
2024-06-24 12:50:22 +00:00
|
|
|
</g>
|
|
|
|
|
<!-- guuid=837bc42e-0b00-0000-ba64-d1ba5a040000 pid=1114 -->
|
|
|
|
|
<g id="node2" class="node">
|
|
|
|
|
<title>guuid=837bc42e-0b00-0000-ba64-d1ba5a040000 pid=1114</title>
|
2024-06-27 21:01:31 +00:00
|
|
|
<path fill="white" stroke="black" d="M66.38,-237C66.38,-237 155.12,-237 155.12,-237 161.12,-237 167.12,-243 167.12,-249 167.12,-249 167.12,-261 167.12,-261 167.12,-267 161.12,-273 155.12,-273 155.12,-273 66.38,-273 66.38,-273 60.38,-273 54.38,-267 54.38,-261 54.38,-261 54.38,-249 54.38,-249 54.38,-243 60.38,-237 66.38,-237"/>
|
|
|
|
|
<text text-anchor="middle" x="110.75" y="-249.57" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
2024-06-24 12:50:22 +00:00
|
|
|
</g>
|
|
|
|
|
<!-- guuid=a0c9fb2d-0b00-0000-ba64-d1ba59040000 pid=1113->guuid=837bc42e-0b00-0000-ba64-d1ba5a040000 pid=1114 -->
|
|
|
|
|
<g id="edge1" class="edge">
|
|
|
|
|
<title>guuid=a0c9fb2d-0b00-0000-ba64-d1ba59040000 pid=1113->guuid=837bc42e-0b00-0000-ba64-d1ba5a040000 pid=1114</title>
|
2024-06-27 21:01:31 +00:00
|
|
|
<path fill="none" stroke="black" d="M110.75,-325.61C110.75,-313.92 110.75,-298.17 110.75,-284.6"/>
|
|
|
|
|
<polygon fill="black" stroke="black" points="114.25,-284.91 110.75,-274.91 107.25,-284.91 114.25,-284.91"/>
|
|
|
|
|
<text text-anchor="middle" x="132.12" y="-293.95" font-family="Arial" font-size="14.00">execve</text>
|
2024-06-24 12:50:22 +00:00
|
|
|
</g>
|
|
|
|
|
<!-- guuid=8b77dc2e-0b00-0000-ba64-d1ba5b040000 pid=1115 -->
|
|
|
|
|
<g id="node3" class="node">
|
|
|
|
|
<title>guuid=8b77dc2e-0b00-0000-ba64-d1ba5b040000 pid=1115</title>
|
2024-06-27 21:01:31 +00:00
|
|
|
<path fill="#3b5741" stroke="black" d="M36.25,-89.25C36.25,-89.25 185.25,-89.25 185.25,-89.25 191.25,-89.25 197.25,-95.25 197.25,-101.25 197.25,-101.25 197.25,-172.25 197.25,-172.25 197.25,-178.25 191.25,-184.25 185.25,-184.25 185.25,-184.25 36.25,-184.25 36.25,-184.25 30.25,-184.25 24.25,-178.25 24.25,-172.25 24.25,-172.25 24.25,-101.25 24.25,-101.25 24.25,-95.25 30.25,-89.25 36.25,-89.25"/>
|
|
|
|
|
<text text-anchor="middle" x="80.62" y="-166.95" font-family="Arial" font-size="14.00" fill="#fff000">/tmp/sample.bin</text>
|
|
|
|
|
<polyline fill="none" stroke="black" points="24.25,-160.5 137,-160.5"/>
|
|
|
|
|
<text text-anchor="middle" x="80.62" y="-143.2" font-family="Arial" font-size="14.00" fill="#fff000">dns</text>
|
|
|
|
|
<polyline fill="none" stroke="black" points="24.25,-136.75 137,-136.75"/>
|
|
|
|
|
<text text-anchor="middle" x="80.62" y="-119.45" font-family="Arial" font-size="14.00" fill="#fff000">net</text>
|
|
|
|
|
<polyline fill="none" stroke="black" points="24.25,-113 137,-113"/>
|
|
|
|
|
<text text-anchor="middle" x="80.62" y="-95.7" font-family="Arial" font-size="14.00" fill="#fff000">send-data</text>
|
|
|
|
|
<polyline fill="none" stroke="black" points="137,-89.25 137,-184.25"/>
|
|
|
|
|
<text text-anchor="middle" x="167.12" y="-131.45" font-family="Arial" font-size="14.00" fill="#fff000">zombie</text>
|
2024-06-24 12:50:22 +00:00
|
|
|
</g>
|
|
|
|
|
<!-- guuid=837bc42e-0b00-0000-ba64-d1ba5a040000 pid=1114->guuid=8b77dc2e-0b00-0000-ba64-d1ba5b040000 pid=1115 -->
|
|
|
|
|
<g id="edge2" class="edge">
|
|
|
|
|
<title>guuid=837bc42e-0b00-0000-ba64-d1ba5a040000 pid=1114->guuid=8b77dc2e-0b00-0000-ba64-d1ba5b040000 pid=1115</title>
|
2024-06-27 21:01:31 +00:00
|
|
|
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M110.75,-236.6C110.75,-225.64 110.75,-210.81 110.75,-195.98"/>
|
|
|
|
|
<polygon fill="black" stroke="black" points="114.25,-196.2 110.75,-186.2 107.25,-196.2 114.25,-196.2"/>
|
|
|
|
|
<text text-anchor="middle" x="126.88" y="-205.2" font-family="Arial" font-size="14.00">clone</text>
|
2024-06-24 12:50:22 +00:00
|
|
|
</g>
|
2024-06-27 21:01:31 +00:00
|
|
|
<!-- 4f6baed0-9587-596c-82b3-fd721afe4cc1 -->
|
2024-06-24 12:50:22 +00:00
|
|
|
<g id="node4" class="node">
|
2024-06-27 21:01:31 +00:00
|
|
|
<title>4f6baed0-9587-596c-82b3-fd721afe4cc1</title>
|
|
|
|
|
<path fill="grey" stroke="black" d="M12,-0.5C12,-0.5 71.5,-0.5 71.5,-0.5 77.5,-0.5 83.5,-6.5 83.5,-12.5 83.5,-12.5 83.5,-24.5 83.5,-24.5 83.5,-30.5 77.5,-36.5 71.5,-36.5 71.5,-36.5 12,-36.5 12,-36.5 6,-36.5 0,-30.5 0,-24.5 0,-24.5 0,-12.5 0,-12.5 0,-6.5 6,-0.5 12,-0.5"/>
|
|
|
|
|
<text text-anchor="middle" x="41.75" y="-13.07" font-family="Arial" font-size="14.00" fill="white">10.0.2.3:53</text>
|
2024-06-24 12:50:22 +00:00
|
|
|
</g>
|
2024-06-27 21:01:31 +00:00
|
|
|
<!-- guuid=8b77dc2e-0b00-0000-ba64-d1ba5b040000 pid=1115->4f6baed0-9587-596c-82b3-fd721afe4cc1 -->
|
2024-06-24 12:50:22 +00:00
|
|
|
<g id="edge3" class="edge">
|
2024-06-27 21:01:31 +00:00
|
|
|
<title>guuid=8b77dc2e-0b00-0000-ba64-d1ba5b040000 pid=1115->4f6baed0-9587-596c-82b3-fd721afe4cc1</title>
|
|
|
|
|
<path fill="none" stroke="blue" stroke-dasharray="5,2" d="M82.88,-88.8C74.41,-74.52 65.38,-59.31 57.95,-46.79"/>
|
|
|
|
|
<polygon fill="blue" stroke="blue" points="61.01,-45.1 52.9,-38.28 54.99,-48.67 61.01,-45.1"/>
|
|
|
|
|
<text text-anchor="middle" x="103.12" y="-57.45" font-family="Arial" font-size="14.00" fill="blue">send: 66B</text>
|
2024-06-24 12:50:22 +00:00
|
|
|
</g>
|
2024-06-27 21:01:31 +00:00
|
|
|
<!-- 82e82d60-8006-5759-85fe-7ad37ac115b6 -->
|
2024-06-24 12:50:22 +00:00
|
|
|
<g id="node5" class="node">
|
2024-06-27 21:01:31 +00:00
|
|
|
<title>82e82d60-8006-5759-85fe-7ad37ac115b6</title>
|
|
|
|
|
<path fill="grey" stroke="black" d="M113.5,-0.5C113.5,-0.5 248,-0.5 248,-0.5 254,-0.5 260,-6.5 260,-12.5 260,-12.5 260,-24.5 260,-24.5 260,-30.5 254,-36.5 248,-36.5 248,-36.5 113.5,-36.5 113.5,-36.5 107.5,-36.5 101.5,-30.5 101.5,-24.5 101.5,-24.5 101.5,-12.5 101.5,-12.5 101.5,-6.5 107.5,-0.5 113.5,-0.5"/>
|
|
|
|
|
<text text-anchor="middle" x="180.75" y="-13.07" font-family="Arial" font-size="14.00" fill="white">108.181.160.104:54337</text>
|
2024-06-24 12:50:22 +00:00
|
|
|
</g>
|
2024-06-27 21:01:31 +00:00
|
|
|
<!-- guuid=8b77dc2e-0b00-0000-ba64-d1ba5b040000 pid=1115->82e82d60-8006-5759-85fe-7ad37ac115b6 -->
|
2024-06-24 12:50:22 +00:00
|
|
|
<g id="edge4" class="edge">
|
2024-06-27 21:01:31 +00:00
|
|
|
<title>guuid=8b77dc2e-0b00-0000-ba64-d1ba5b040000 pid=1115->82e82d60-8006-5759-85fe-7ad37ac115b6</title>
|
|
|
|
|
<path fill="none" stroke="green" stroke-dasharray="5,2" d="M139.02,-88.8C147.62,-74.52 156.78,-59.31 164.32,-46.79"/>
|
|
|
|
|
<polygon fill="green" stroke="green" points="167.28,-48.65 169.44,-38.28 161.29,-45.04 167.28,-48.65"/>
|
|
|
|
|
<text text-anchor="middle" x="168.62" y="-57.45" font-family="Arial" font-size="14.00" fill="green">con</text>
|
2024-06-24 12:50:22 +00:00
|
|
|
</g>
|
|
|
|
|
</g>
|
|
|
|
|
</svg>
|
