chg: reprocessed all logs to include dst_port in graphs
This commit is contained in:
parent
4887494e4c
commit
4534d88f67
SSH key fingerprint:
SHA256:OQtDLu0eOg5WcidNQCaVrZiOANoA9Rp7H5aASBrNtPk
12 changed files with 4011 additions and 0 deletions
|
|
@ -0,0 +1,194 @@
|
|||
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
|
||||
<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN"
|
||||
"http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
|
||||
<!-- Generated by graphviz version 11.0.0 (0)
|
||||
-->
|
||||
<!-- Pages: 1 -->
|
||||
<svg width="802pt" height="485pt"
|
||||
viewBox="0.00 0.00 802.13 484.50" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink">
|
||||
<g id="graph0" class="graph" transform="scale(1 1) rotate(0) translate(4 480.5)">
|
||||
<polygon fill="white" stroke="none" points="-4,4 -4,-480.5 798.13,-480.5 798.13,4 -4,4"/>
|
||||
<!-- guuid=32bea02a-0b00-0000-482e-ff2759040000 pid=1113 -->
|
||||
<g id="node1" class="node">
|
||||
<title>guuid=32bea02a-0b00-0000-482e-ff2759040000 pid=1113</title>
|
||||
<path fill="white" stroke="black" d="M115.88,-440C115.88,-440 185.13,-440 185.13,-440 191.13,-440 197.13,-446 197.13,-452 197.13,-452 197.13,-464 197.13,-464 197.13,-470 191.13,-476 185.13,-476 185.13,-476 115.88,-476 115.88,-476 109.88,-476 103.88,-470 103.88,-464 103.88,-464 103.88,-452 103.88,-452 103.88,-446 109.88,-440 115.88,-440"/>
|
||||
<text text-anchor="middle" x="150.5" y="-452.57" font-family="Arial" font-size="14.00">/usr/bin/sudo</text>
|
||||
</g>
|
||||
<!-- guuid=dfa9562b-0b00-0000-482e-ff275a040000 pid=1114 -->
|
||||
<g id="node2" class="node">
|
||||
<title>guuid=dfa9562b-0b00-0000-482e-ff275a040000 pid=1114</title>
|
||||
<path fill="#ffbfbf" stroke="black" d="M106.13,-339.75C106.13,-339.75 194.88,-339.75 194.88,-339.75 200.88,-339.75 206.88,-345.75 206.88,-351.75 206.88,-351.75 206.88,-375.25 206.88,-375.25 206.88,-381.25 200.88,-387.25 194.88,-387.25 194.88,-387.25 106.13,-387.25 106.13,-387.25 100.13,-387.25 94.13,-381.25 94.13,-375.25 94.13,-375.25 94.13,-351.75 94.13,-351.75 94.13,-345.75 100.13,-339.75 106.13,-339.75"/>
|
||||
<text text-anchor="middle" x="150.5" y="-369.95" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
<polyline fill="none" stroke="black" points="94.13,-363.5 206.88,-363.5"/>
|
||||
<text text-anchor="middle" x="150.5" y="-346.2" font-family="Arial" font-size="14.00">net</text>
|
||||
</g>
|
||||
<!-- guuid=32bea02a-0b00-0000-482e-ff2759040000 pid=1113->guuid=dfa9562b-0b00-0000-482e-ff275a040000 pid=1114 -->
|
||||
<g id="edge1" class="edge">
|
||||
<title>guuid=32bea02a-0b00-0000-482e-ff2759040000 pid=1113->guuid=dfa9562b-0b00-0000-482e-ff275a040000 pid=1114</title>
|
||||
<path fill="none" stroke="black" d="M150.5,-439.6C150.5,-428.07 150.5,-412.56 150.5,-398.63"/>
|
||||
<polygon fill="black" stroke="black" points="154,-398.93 150.5,-388.93 147,-398.93 154,-398.93"/>
|
||||
<text text-anchor="middle" x="171.88" y="-408.2" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- 8b0a01dc-0728-52c1-8024-c4ba7801b8d6 -->
|
||||
<g id="node3" class="node">
|
||||
<title>8b0a01dc-0728-52c1-8024-c4ba7801b8d6</title>
|
||||
<path fill="grey" stroke="black" d="M97.5,-1.75C97.5,-1.75 149.5,-1.75 149.5,-1.75 155.5,-1.75 161.5,-7.75 161.5,-13.75 161.5,-13.75 161.5,-25.75 161.5,-25.75 161.5,-31.75 155.5,-37.75 149.5,-37.75 149.5,-37.75 97.5,-37.75 97.5,-37.75 91.5,-37.75 85.5,-31.75 85.5,-25.75 85.5,-25.75 85.5,-13.75 85.5,-13.75 85.5,-7.75 91.5,-1.75 97.5,-1.75"/>
|
||||
<text text-anchor="middle" x="123.5" y="-14.32" font-family="Arial" font-size="14.00" fill="white">8.8.8.8:53</text>
|
||||
</g>
|
||||
<!-- guuid=dfa9562b-0b00-0000-482e-ff275a040000 pid=1114->8b0a01dc-0728-52c1-8024-c4ba7801b8d6 -->
|
||||
<g id="edge2" class="edge">
|
||||
<title>guuid=dfa9562b-0b00-0000-482e-ff275a040000 pid=1114->8b0a01dc-0728-52c1-8024-c4ba7801b8d6</title>
|
||||
<path fill="none" stroke="green" stroke-dasharray="5,2" d="M93.67,-344.85C66.42,-333.2 36.34,-314.91 20.5,-287.5 2.4,-256.16 -17.34,-174.86 27.5,-91.25 38.19,-71.32 57.27,-55.56 75.61,-44.03"/>
|
||||
<polygon fill="green" stroke="green" points="77.27,-47.12 84.08,-39 73.69,-41.1 77.27,-47.12"/>
|
||||
<text text-anchor="middle" x="12.38" y="-207.7" font-family="Arial" font-size="14.00" fill="green">con</text>
|
||||
</g>
|
||||
<!-- guuid=43756c2b-0b00-0000-482e-ff275b040000 pid=1115 -->
|
||||
<g id="node4" class="node">
|
||||
<title>guuid=43756c2b-0b00-0000-482e-ff275b040000 pid=1115</title>
|
||||
<path fill="white" stroke="black" d="M41.13,-245.25C41.13,-245.25 129.88,-245.25 129.88,-245.25 135.88,-245.25 141.88,-251.25 141.88,-257.25 141.88,-257.25 141.88,-269.25 141.88,-269.25 141.88,-275.25 135.88,-281.25 129.88,-281.25 129.88,-281.25 41.13,-281.25 41.13,-281.25 35.13,-281.25 29.13,-275.25 29.13,-269.25 29.13,-269.25 29.13,-257.25 29.13,-257.25 29.13,-251.25 35.13,-245.25 41.13,-245.25"/>
|
||||
<text text-anchor="middle" x="85.5" y="-257.82" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=dfa9562b-0b00-0000-482e-ff275a040000 pid=1114->guuid=43756c2b-0b00-0000-482e-ff275b040000 pid=1115 -->
|
||||
<g id="edge3" class="edge">
|
||||
<title>guuid=dfa9562b-0b00-0000-482e-ff275a040000 pid=1114->guuid=43756c2b-0b00-0000-482e-ff275b040000 pid=1115</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M135.43,-339.71C125.83,-325.2 113.35,-306.34 103.27,-291.11"/>
|
||||
<polygon fill="black" stroke="black" points="106.32,-289.37 97.89,-282.96 100.48,-293.24 106.32,-289.37"/>
|
||||
<text text-anchor="middle" x="138.63" y="-307.95" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=365a6d2b-0b00-0000-482e-ff275c040000 pid=1116 -->
|
||||
<g id="node5" class="node">
|
||||
<title>guuid=365a6d2b-0b00-0000-482e-ff275c040000 pid=1116</title>
|
||||
<path fill="white" stroke="black" d="M172.13,-245.25C172.13,-245.25 260.88,-245.25 260.88,-245.25 266.88,-245.25 272.88,-251.25 272.88,-257.25 272.88,-257.25 272.88,-269.25 272.88,-269.25 272.88,-275.25 266.88,-281.25 260.88,-281.25 260.88,-281.25 172.13,-281.25 172.13,-281.25 166.13,-281.25 160.13,-275.25 160.13,-269.25 160.13,-269.25 160.13,-257.25 160.13,-257.25 160.13,-251.25 166.13,-245.25 172.13,-245.25"/>
|
||||
<text text-anchor="middle" x="216.5" y="-257.82" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=dfa9562b-0b00-0000-482e-ff275a040000 pid=1114->guuid=365a6d2b-0b00-0000-482e-ff275c040000 pid=1116 -->
|
||||
<g id="edge4" class="edge">
|
||||
<title>guuid=dfa9562b-0b00-0000-482e-ff275a040000 pid=1114->guuid=365a6d2b-0b00-0000-482e-ff275c040000 pid=1116</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M165.81,-339.71C175.56,-325.2 188.23,-306.34 198.46,-291.11"/>
|
||||
<polygon fill="black" stroke="black" points="201.27,-293.21 203.94,-282.96 195.46,-289.31 201.27,-293.21"/>
|
||||
<text text-anchor="middle" x="202.63" y="-307.95" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=c6da6e2b-0b00-0000-482e-ff275d040000 pid=1117 -->
|
||||
<g id="node6" class="node">
|
||||
<title>guuid=c6da6e2b-0b00-0000-482e-ff275d040000 pid=1117</title>
|
||||
<path fill="#3b5741" stroke="black" d="M303,-239.5C303,-239.5 452,-239.5 452,-239.5 458,-239.5 464,-245.5 464,-251.5 464,-251.5 464,-275 464,-275 464,-281 458,-287 452,-287 452,-287 303,-287 303,-287 297,-287 291,-281 291,-275 291,-275 291,-251.5 291,-251.5 291,-245.5 297,-239.5 303,-239.5"/>
|
||||
<text text-anchor="middle" x="347.38" y="-269.7" font-family="Arial" font-size="14.00" fill="#fff000">/tmp/sample.bin</text>
|
||||
<polyline fill="none" stroke="black" points="291,-263.25 403.75,-263.25"/>
|
||||
<text text-anchor="middle" x="347.38" y="-245.95" font-family="Arial" font-size="14.00" fill="#fff000">net</text>
|
||||
<polyline fill="none" stroke="black" points="403.75,-239.5 403.75,-287"/>
|
||||
<text text-anchor="middle" x="433.88" y="-258.2" font-family="Arial" font-size="14.00" fill="#fff000">zombie</text>
|
||||
</g>
|
||||
<!-- guuid=dfa9562b-0b00-0000-482e-ff275a040000 pid=1114->guuid=c6da6e2b-0b00-0000-482e-ff275d040000 pid=1117 -->
|
||||
<g id="edge5" class="edge">
|
||||
<title>guuid=dfa9562b-0b00-0000-482e-ff275a040000 pid=1114->guuid=c6da6e2b-0b00-0000-482e-ff275d040000 pid=1117</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M204.01,-339.34C236.8,-325.15 278.96,-306.9 313.5,-291.95"/>
|
||||
<polygon fill="black" stroke="black" points="314.79,-295.21 322.57,-288.03 312.01,-288.79 314.79,-295.21"/>
|
||||
<text text-anchor="middle" x="293.63" y="-307.95" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- 452ae934-d259-567c-a6c7-e4a159d8492d -->
|
||||
<g id="node7" class="node">
|
||||
<title>452ae934-d259-567c-a6c7-e4a159d8492d</title>
|
||||
<path fill="grey" stroke="black" d="M48.5,-121.25C48.5,-121.25 160.5,-121.25 160.5,-121.25 166.5,-121.25 172.5,-127.25 172.5,-133.25 172.5,-133.25 172.5,-145.25 172.5,-145.25 172.5,-151.25 166.5,-157.25 160.5,-157.25 160.5,-157.25 48.5,-157.25 48.5,-157.25 42.5,-157.25 36.5,-151.25 36.5,-145.25 36.5,-145.25 36.5,-133.25 36.5,-133.25 36.5,-127.25 42.5,-121.25 48.5,-121.25"/>
|
||||
<text text-anchor="middle" x="104.5" y="-133.82" font-family="Arial" font-size="14.00" fill="white">66.23.233.179:9375</text>
|
||||
</g>
|
||||
<!-- guuid=c6da6e2b-0b00-0000-482e-ff275d040000 pid=1117->452ae934-d259-567c-a6c7-e4a159d8492d -->
|
||||
<g id="edge6" class="edge">
|
||||
<title>guuid=c6da6e2b-0b00-0000-482e-ff275d040000 pid=1117->452ae934-d259-567c-a6c7-e4a159d8492d</title>
|
||||
<path fill="none" stroke="green" stroke-dasharray="5,2" d="M307.71,-239.05C269.68,-225.54 222.21,-207.26 181.5,-187.25 167.39,-180.31 152.5,-171.59 139.62,-163.55"/>
|
||||
<polygon fill="green" stroke="green" points="141.8,-160.78 131.48,-158.38 138.05,-166.69 141.8,-160.78"/>
|
||||
<text text-anchor="middle" x="265.38" y="-207.7" font-family="Arial" font-size="14.00" fill="green">con</text>
|
||||
</g>
|
||||
<!-- guuid=ef4bc12b-0b00-0000-482e-ff275e040000 pid=1118 -->
|
||||
<g id="node8" class="node">
|
||||
<title>guuid=ef4bc12b-0b00-0000-482e-ff275e040000 pid=1118</title>
|
||||
<path fill="white" stroke="black" d="M202.13,-121.25C202.13,-121.25 290.88,-121.25 290.88,-121.25 296.88,-121.25 302.88,-127.25 302.88,-133.25 302.88,-133.25 302.88,-145.25 302.88,-145.25 302.88,-151.25 296.88,-157.25 290.88,-157.25 290.88,-157.25 202.13,-157.25 202.13,-157.25 196.13,-157.25 190.13,-151.25 190.13,-145.25 190.13,-145.25 190.13,-133.25 190.13,-133.25 190.13,-127.25 196.13,-121.25 202.13,-121.25"/>
|
||||
<text text-anchor="middle" x="246.5" y="-133.82" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=c6da6e2b-0b00-0000-482e-ff275d040000 pid=1117->guuid=ef4bc12b-0b00-0000-482e-ff275e040000 pid=1118 -->
|
||||
<g id="edge7" class="edge">
|
||||
<title>guuid=c6da6e2b-0b00-0000-482e-ff275d040000 pid=1117->guuid=ef4bc12b-0b00-0000-482e-ff275e040000 pid=1118</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M352.56,-239.02C329.91,-217.93 296.61,-186.91 273.38,-165.28"/>
|
||||
<polygon fill="black" stroke="black" points="275.83,-162.78 266.12,-158.52 271.06,-167.9 275.83,-162.78"/>
|
||||
<text text-anchor="middle" x="346.63" y="-207.7" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=6cc4cd2b-0b00-0000-482e-ff275f040000 pid=1119 -->
|
||||
<g id="node9" class="node">
|
||||
<title>guuid=6cc4cd2b-0b00-0000-482e-ff275f040000 pid=1119</title>
|
||||
<path fill="white" stroke="black" d="M333.13,-121.25C333.13,-121.25 421.88,-121.25 421.88,-121.25 427.88,-121.25 433.88,-127.25 433.88,-133.25 433.88,-133.25 433.88,-145.25 433.88,-145.25 433.88,-151.25 427.88,-157.25 421.88,-157.25 421.88,-157.25 333.13,-157.25 333.13,-157.25 327.13,-157.25 321.13,-151.25 321.13,-145.25 321.13,-145.25 321.13,-133.25 321.13,-133.25 321.13,-127.25 327.13,-121.25 333.13,-121.25"/>
|
||||
<text text-anchor="middle" x="377.5" y="-133.82" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=c6da6e2b-0b00-0000-482e-ff275d040000 pid=1117->guuid=6cc4cd2b-0b00-0000-482e-ff275f040000 pid=1119 -->
|
||||
<g id="edge8" class="edge">
|
||||
<title>guuid=c6da6e2b-0b00-0000-482e-ff275d040000 pid=1117->guuid=6cc4cd2b-0b00-0000-482e-ff275f040000 pid=1119</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M377.5,-239.02C377.5,-219.04 377.5,-190.16 377.5,-168.79"/>
|
||||
<polygon fill="black" stroke="black" points="381,-169 377.5,-159 374,-169 381,-169"/>
|
||||
<text text-anchor="middle" x="393.63" y="-207.7" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=0ea3ce2b-0b00-0000-482e-ff2760040000 pid=1120 -->
|
||||
<g id="node10" class="node">
|
||||
<title>guuid=0ea3ce2b-0b00-0000-482e-ff2760040000 pid=1120</title>
|
||||
<path fill="#ff3f3f" stroke="black" d="M464.13,-91.75C464.13,-91.75 552.88,-91.75 552.88,-91.75 558.88,-91.75 564.88,-97.75 564.88,-103.75 564.88,-103.75 564.88,-174.75 564.88,-174.75 564.88,-180.75 558.88,-186.75 552.88,-186.75 552.88,-186.75 464.13,-186.75 464.13,-186.75 458.13,-186.75 452.13,-180.75 452.13,-174.75 452.13,-174.75 452.13,-103.75 452.13,-103.75 452.13,-97.75 458.13,-91.75 464.13,-91.75"/>
|
||||
<text text-anchor="middle" x="508.5" y="-169.45" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
<polyline fill="none" stroke="black" points="452.13,-163 564.88,-163"/>
|
||||
<text text-anchor="middle" x="508.5" y="-145.7" font-family="Arial" font-size="14.00">net</text>
|
||||
<polyline fill="none" stroke="black" points="452.13,-139.25 564.88,-139.25"/>
|
||||
<text text-anchor="middle" x="508.5" y="-121.95" font-family="Arial" font-size="14.00">net-scan</text>
|
||||
<polyline fill="none" stroke="black" points="452.13,-115.5 564.88,-115.5"/>
|
||||
<text text-anchor="middle" x="508.5" y="-98.2" font-family="Arial" font-size="14.00">send-data</text>
|
||||
</g>
|
||||
<!-- guuid=c6da6e2b-0b00-0000-482e-ff275d040000 pid=1117->guuid=0ea3ce2b-0b00-0000-482e-ff2760040000 pid=1120 -->
|
||||
<g id="edge9" class="edge">
|
||||
<title>guuid=c6da6e2b-0b00-0000-482e-ff275d040000 pid=1117->guuid=0ea3ce2b-0b00-0000-482e-ff2760040000 pid=1120</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M402.45,-239.02C415.98,-226.42 433.31,-210.28 450.02,-194.72"/>
|
||||
<polygon fill="black" stroke="black" points="452.11,-197.55 457.04,-188.17 447.34,-192.43 452.11,-197.55"/>
|
||||
<text text-anchor="middle" x="450.63" y="-207.7" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=0ea3ce2b-0b00-0000-482e-ff2760040000 pid=1120->8b0a01dc-0728-52c1-8024-c4ba7801b8d6 -->
|
||||
<g id="edge10" class="edge">
|
||||
<title>guuid=0ea3ce2b-0b00-0000-482e-ff2760040000 pid=1120->8b0a01dc-0728-52c1-8024-c4ba7801b8d6</title>
|
||||
<path fill="none" stroke="green" stroke-dasharray="5,2" d="M451.74,-95.79C448.68,-94.15 445.59,-92.62 442.5,-91.25 418.06,-80.39 256.45,-47.26 173.08,-30.57"/>
|
||||
<polygon fill="green" stroke="green" points="173.83,-27.15 163.34,-28.63 172.46,-34.02 173.83,-27.15"/>
|
||||
<text text-anchor="middle" x="385.38" y="-59.95" font-family="Arial" font-size="14.00" fill="green">con</text>
|
||||
</g>
|
||||
<!-- 5178d45c-7590-548d-9c04-99c6db55a830 -->
|
||||
<g id="node11" class="node">
|
||||
<title>5178d45c-7590-548d-9c04-99c6db55a830</title>
|
||||
<path fill="grey" stroke="black" d="M313.25,-1.75C313.25,-1.75 417.75,-1.75 417.75,-1.75 423.75,-1.75 429.75,-7.75 429.75,-13.75 429.75,-13.75 429.75,-25.75 429.75,-25.75 429.75,-31.75 423.75,-37.75 417.75,-37.75 417.75,-37.75 313.25,-37.75 313.25,-37.75 307.25,-37.75 301.25,-31.75 301.25,-25.75 301.25,-25.75 301.25,-13.75 301.25,-13.75 301.25,-7.75 307.25,-1.75 313.25,-1.75"/>
|
||||
<text text-anchor="middle" x="365.5" y="-14.32" font-family="Arial" font-size="14.00" fill="white">66.242.136.229:23</text>
|
||||
</g>
|
||||
<!-- guuid=0ea3ce2b-0b00-0000-482e-ff2760040000 pid=1120->5178d45c-7590-548d-9c04-99c6db55a830 -->
|
||||
<g id="edge11" class="edge">
|
||||
<title>guuid=0ea3ce2b-0b00-0000-482e-ff2760040000 pid=1120->5178d45c-7590-548d-9c04-99c6db55a830</title>
|
||||
<path fill="none" stroke="blue" stroke-dasharray="5,2" d="M451.99,-91.81C432.62,-75.9 411.72,-58.72 395.32,-45.25"/>
|
||||
<polygon fill="blue" stroke="blue" points="397.82,-42.78 387.87,-39.13 393.38,-48.18 397.82,-42.78"/>
|
||||
<text text-anchor="middle" x="457.88" y="-59.95" font-family="Arial" font-size="14.00" fill="blue">send: 40B</text>
|
||||
</g>
|
||||
<!-- 15f8a3ed-3e29-524b-b1c0-f2df4dfa504d -->
|
||||
<g id="node12" class="node">
|
||||
<title>15f8a3ed-3e29-524b-b1c0-f2df4dfa504d</title>
|
||||
<path fill="grey" stroke="black" d="M460,-1.75C460,-1.75 557,-1.75 557,-1.75 563,-1.75 569,-7.75 569,-13.75 569,-13.75 569,-25.75 569,-25.75 569,-31.75 563,-37.75 557,-37.75 557,-37.75 460,-37.75 460,-37.75 454,-37.75 448,-31.75 448,-25.75 448,-25.75 448,-13.75 448,-13.75 448,-7.75 454,-1.75 460,-1.75"/>
|
||||
<text text-anchor="middle" x="508.5" y="-14.32" font-family="Arial" font-size="14.00" fill="white">197.158.12.78:23</text>
|
||||
</g>
|
||||
<!-- guuid=0ea3ce2b-0b00-0000-482e-ff2760040000 pid=1120->15f8a3ed-3e29-524b-b1c0-f2df4dfa504d -->
|
||||
<g id="edge12" class="edge">
|
||||
<title>guuid=0ea3ce2b-0b00-0000-482e-ff2760040000 pid=1120->15f8a3ed-3e29-524b-b1c0-f2df4dfa504d</title>
|
||||
<path fill="none" stroke="blue" stroke-dasharray="5,2" d="M508.5,-91.47C508.5,-77.21 508.5,-61.97 508.5,-49.3"/>
|
||||
<polygon fill="blue" stroke="blue" points="512,-49.58 508.5,-39.58 505,-49.58 512,-49.58"/>
|
||||
<text text-anchor="middle" x="538.88" y="-59.95" font-family="Arial" font-size="14.00" fill="blue">send: 40B</text>
|
||||
</g>
|
||||
<!-- guuid=0ea3ce2b-0b00-0000-482e-ff2760040000 pid=1120|send-data -->
|
||||
<g id="node13" class="node">
|
||||
<title>guuid=0ea3ce2b-0b00-0000-482e-ff2760040000 pid=1120|send-data</title>
|
||||
<path fill="grey" stroke="black" d="M782.13,-39.5C782.13,-39.5 598.88,-39.5 598.88,-39.5 592.88,-39.5 586.88,-33.5 586.88,-27.5 586.88,-27.5 586.88,-12 586.88,-12 586.88,-6 592.88,0 598.88,0 598.88,0 782.13,0 782.13,0 788.13,0 794.13,-6 794.13,-12 794.13,-12 794.13,-27.5 794.13,-27.5 794.13,-33.5 788.13,-39.5 782.13,-39.5"/>
|
||||
<text text-anchor="middle" x="690.5" y="-22.2" font-family="Arial" font-size="14.00" fill="white">send-data to 9280 IP addresses</text>
|
||||
<text text-anchor="middle" x="690.5" y="-6.45" font-family="Arial" font-size="14.00" fill="white">review logs to see them all</text>
|
||||
</g>
|
||||
<!-- guuid=0ea3ce2b-0b00-0000-482e-ff2760040000 pid=1120->guuid=0ea3ce2b-0b00-0000-482e-ff2760040000 pid=1120|send-data -->
|
||||
<g id="edge13" class="edge">
|
||||
<title>guuid=0ea3ce2b-0b00-0000-482e-ff2760040000 pid=1120->guuid=0ea3ce2b-0b00-0000-482e-ff2760040000 pid=1120|send-data</title>
|
||||
<path fill="none" stroke="blue" stroke-dasharray="5,2" d="M565.09,-101.72C593.1,-83.64 626.2,-62.26 651.36,-46.02"/>
|
||||
<polygon fill="blue" stroke="blue" points="653.16,-49.03 659.66,-40.66 649.36,-43.15 653.16,-49.03"/>
|
||||
<text text-anchor="middle" x="646.13" y="-59.95" font-family="Arial" font-size="14.00" fill="blue">send</text>
|
||||
</g>
|
||||
</g>
|
||||
</svg>
|
||||
|
After Width: | Height: | Size: 19 KiB |
|
|
@ -0,0 +1,530 @@
|
|||
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
|
||||
<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN"
|
||||
"http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
|
||||
<!-- Generated by graphviz version 11.0.0 (0)
|
||||
-->
|
||||
<!-- Pages: 1 -->
|
||||
<svg width="2298pt" height="760pt"
|
||||
viewBox="0.00 0.00 2298.38 759.75" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink">
|
||||
<g id="graph0" class="graph" transform="scale(1 1) rotate(0) translate(4 755.75)">
|
||||
<polygon fill="white" stroke="none" points="-4,4 -4,-755.75 2294.38,-755.75 2294.38,4 -4,4"/>
|
||||
<!-- guuid=1b8c051f-0b00-0000-2b3c-d78659040000 pid=1113 -->
|
||||
<g id="node1" class="node">
|
||||
<title>guuid=1b8c051f-0b00-0000-2b3c-d78659040000 pid=1113</title>
|
||||
<path fill="white" stroke="black" d="M1031,-715.25C1031,-715.25 1100.25,-715.25 1100.25,-715.25 1106.25,-715.25 1112.25,-721.25 1112.25,-727.25 1112.25,-727.25 1112.25,-739.25 1112.25,-739.25 1112.25,-745.25 1106.25,-751.25 1100.25,-751.25 1100.25,-751.25 1031,-751.25 1031,-751.25 1025,-751.25 1019,-745.25 1019,-739.25 1019,-739.25 1019,-727.25 1019,-727.25 1019,-721.25 1025,-715.25 1031,-715.25"/>
|
||||
<text text-anchor="middle" x="1065.62" y="-727.83" font-family="Arial" font-size="14.00">/usr/bin/sudo</text>
|
||||
</g>
|
||||
<!-- guuid=c84cc31f-0b00-0000-2b3c-d7865a040000 pid=1114 -->
|
||||
<g id="node2" class="node">
|
||||
<title>guuid=c84cc31f-0b00-0000-2b3c-d7865a040000 pid=1114</title>
|
||||
<path fill="white" stroke="black" d="M1021.25,-626.5C1021.25,-626.5 1110,-626.5 1110,-626.5 1116,-626.5 1122,-632.5 1122,-638.5 1122,-638.5 1122,-650.5 1122,-650.5 1122,-656.5 1116,-662.5 1110,-662.5 1110,-662.5 1021.25,-662.5 1021.25,-662.5 1015.25,-662.5 1009.25,-656.5 1009.25,-650.5 1009.25,-650.5 1009.25,-638.5 1009.25,-638.5 1009.25,-632.5 1015.25,-626.5 1021.25,-626.5"/>
|
||||
<text text-anchor="middle" x="1065.62" y="-639.08" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=1b8c051f-0b00-0000-2b3c-d78659040000 pid=1113->guuid=c84cc31f-0b00-0000-2b3c-d7865a040000 pid=1114 -->
|
||||
<g id="edge1" class="edge">
|
||||
<title>guuid=1b8c051f-0b00-0000-2b3c-d78659040000 pid=1113->guuid=c84cc31f-0b00-0000-2b3c-d7865a040000 pid=1114</title>
|
||||
<path fill="none" stroke="black" d="M1065.62,-715.11C1065.62,-703.42 1065.62,-687.67 1065.62,-674.1"/>
|
||||
<polygon fill="black" stroke="black" points="1069.13,-674.41 1065.63,-664.41 1062.13,-674.41 1069.13,-674.41"/>
|
||||
<text text-anchor="middle" x="1087" y="-683.45" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115 -->
|
||||
<g id="node3" class="node">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115</title>
|
||||
<path fill="#3b5741" stroke="black" d="M991.12,-502.5C991.12,-502.5 1140.12,-502.5 1140.12,-502.5 1146.12,-502.5 1152.12,-508.5 1152.12,-514.5 1152.12,-514.5 1152.12,-561.75 1152.12,-561.75 1152.12,-567.75 1146.12,-573.75 1140.12,-573.75 1140.12,-573.75 991.12,-573.75 991.12,-573.75 985.12,-573.75 979.12,-567.75 979.12,-561.75 979.12,-561.75 979.12,-514.5 979.12,-514.5 979.12,-508.5 985.12,-502.5 991.12,-502.5"/>
|
||||
<text text-anchor="middle" x="1035.5" y="-556.45" font-family="Arial" font-size="14.00" fill="#fff000">/tmp/sample.bin</text>
|
||||
<polyline fill="none" stroke="black" points="979.12,-550 1091.88,-550"/>
|
||||
<text text-anchor="middle" x="1035.5" y="-532.7" font-family="Arial" font-size="14.00" fill="#fff000">write-config</text>
|
||||
<polyline fill="none" stroke="black" points="979.12,-526.25 1091.88,-526.25"/>
|
||||
<text text-anchor="middle" x="1035.5" y="-508.95" font-family="Arial" font-size="14.00" fill="#fff000">write-file</text>
|
||||
<polyline fill="none" stroke="black" points="1091.88,-502.5 1091.88,-573.75"/>
|
||||
<text text-anchor="middle" x="1122" y="-532.95" font-family="Arial" font-size="14.00" fill="#fff000">zombie</text>
|
||||
</g>
|
||||
<!-- guuid=c84cc31f-0b00-0000-2b3c-d7865a040000 pid=1114->guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115 -->
|
||||
<g id="edge2" class="edge">
|
||||
<title>guuid=c84cc31f-0b00-0000-2b3c-d7865a040000 pid=1114->guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M1065.62,-626.26C1065.62,-615.12 1065.62,-600.03 1065.62,-585.55"/>
|
||||
<polygon fill="black" stroke="black" points="1069.13,-585.66 1065.63,-575.66 1062.13,-585.66 1069.13,-585.66"/>
|
||||
<text text-anchor="middle" x="1081.75" y="-594.7" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=87e09cd9-0b00-0000-2b3c-d7865d040000 pid=1117 -->
|
||||
<g id="node4" class="node">
|
||||
<title>guuid=87e09cd9-0b00-0000-2b3c-d7865d040000 pid=1117</title>
|
||||
<path fill="white" stroke="black" d="M12,-408C12,-408 81.25,-408 81.25,-408 87.25,-408 93.25,-414 93.25,-420 93.25,-420 93.25,-432 93.25,-432 93.25,-438 87.25,-444 81.25,-444 81.25,-444 12,-444 12,-444 6,-444 0,-438 0,-432 0,-432 0,-420 0,-420 0,-414 6,-408 12,-408"/>
|
||||
<text text-anchor="middle" x="46.62" y="-420.57" font-family="Arial" font-size="14.00">/usr/bin/dash</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=87e09cd9-0b00-0000-2b3c-d7865d040000 pid=1117 -->
|
||||
<g id="edge3" class="edge">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=87e09cd9-0b00-0000-2b3c-d7865d040000 pid=1117</title>
|
||||
<path fill="none" stroke="black" d="M978.73,-537.45C825.42,-536.74 497.35,-529.43 224.88,-484 168.85,-474.66 155.29,-468.85 101.62,-450.25 99.87,-449.64 98.1,-449.01 96.31,-448.35"/>
|
||||
<polygon fill="black" stroke="black" points="98.04,-445.26 87.45,-444.94 95.53,-451.8 98.04,-445.26"/>
|
||||
<text text-anchor="middle" x="247" y="-470.7" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=d438d0d9-0b00-0000-2b3c-d7865f040000 pid=1119 -->
|
||||
<g id="node6" class="node">
|
||||
<title>guuid=d438d0d9-0b00-0000-2b3c-d7865f040000 pid=1119</title>
|
||||
<path fill="white" stroke="black" d="M123,-408C123,-408 192.25,-408 192.25,-408 198.25,-408 204.25,-414 204.25,-420 204.25,-420 204.25,-432 204.25,-432 204.25,-438 198.25,-444 192.25,-444 192.25,-444 123,-444 123,-444 117,-444 111,-438 111,-432 111,-432 111,-420 111,-420 111,-414 117,-408 123,-408"/>
|
||||
<text text-anchor="middle" x="157.62" y="-420.57" font-family="Arial" font-size="14.00">/usr/bin/dash</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=d438d0d9-0b00-0000-2b3c-d7865f040000 pid=1119 -->
|
||||
<g id="edge5" class="edge">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=d438d0d9-0b00-0000-2b3c-d7865f040000 pid=1119</title>
|
||||
<path fill="none" stroke="black" d="M978.87,-535.35C843.69,-531.54 574.92,-519.76 349.88,-484 287.84,-474.14 272.24,-470.04 212.62,-450.25 210.83,-449.65 209.02,-449.03 207.19,-448.37"/>
|
||||
<polygon fill="black" stroke="black" points="208.7,-445.2 198.11,-444.94 206.23,-451.75 208.7,-445.2"/>
|
||||
<text text-anchor="middle" x="372" y="-470.7" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=4b9423da-0b00-0000-2b3c-d78661040000 pid=1121 -->
|
||||
<g id="node8" class="node">
|
||||
<title>guuid=4b9423da-0b00-0000-2b3c-d78661040000 pid=1121</title>
|
||||
<path fill="white" stroke="black" d="M234,-408C234,-408 303.25,-408 303.25,-408 309.25,-408 315.25,-414 315.25,-420 315.25,-420 315.25,-432 315.25,-432 315.25,-438 309.25,-444 303.25,-444 303.25,-444 234,-444 234,-444 228,-444 222,-438 222,-432 222,-432 222,-420 222,-420 222,-414 228,-408 234,-408"/>
|
||||
<text text-anchor="middle" x="268.62" y="-420.57" font-family="Arial" font-size="14.00">/usr/bin/dash</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=4b9423da-0b00-0000-2b3c-d78661040000 pid=1121 -->
|
||||
<g id="edge7" class="edge">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=4b9423da-0b00-0000-2b3c-d78661040000 pid=1121</title>
|
||||
<path fill="none" stroke="black" d="M978.73,-531.23C868.61,-523.21 673.11,-507.17 506.88,-484 424.85,-472.57 402.96,-474.01 323.62,-450.25 321.66,-449.66 319.67,-449.03 317.68,-448.35"/>
|
||||
<polygon fill="black" stroke="black" points="319.01,-445.12 308.42,-444.98 316.62,-451.69 319.01,-445.12"/>
|
||||
<text text-anchor="middle" x="529" y="-470.7" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=1e3463da-0b00-0000-2b3c-d78663040000 pid=1123 -->
|
||||
<g id="node10" class="node">
|
||||
<title>guuid=1e3463da-0b00-0000-2b3c-d78663040000 pid=1123</title>
|
||||
<path fill="white" stroke="black" d="M345,-408C345,-408 414.25,-408 414.25,-408 420.25,-408 426.25,-414 426.25,-420 426.25,-420 426.25,-432 426.25,-432 426.25,-438 420.25,-444 414.25,-444 414.25,-444 345,-444 345,-444 339,-444 333,-438 333,-432 333,-432 333,-420 333,-420 333,-414 339,-408 345,-408"/>
|
||||
<text text-anchor="middle" x="379.62" y="-420.57" font-family="Arial" font-size="14.00">/usr/bin/dash</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=1e3463da-0b00-0000-2b3c-d78663040000 pid=1123 -->
|
||||
<g id="edge9" class="edge">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=1e3463da-0b00-0000-2b3c-d78663040000 pid=1123</title>
|
||||
<path fill="none" stroke="black" d="M978.71,-528.96C889.95,-520.08 748.33,-504.37 626.88,-484 594.03,-478.49 586.38,-474.24 553.62,-468.25 501.01,-458.62 486.11,-464.78 434.62,-450.25 432.49,-449.65 430.33,-448.98 428.16,-448.27"/>
|
||||
<polygon fill="black" stroke="black" points="429.37,-444.99 418.77,-444.91 427.01,-451.58 429.37,-444.99"/>
|
||||
<text text-anchor="middle" x="649" y="-470.7" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=296496da-0b00-0000-2b3c-d78665040000 pid=1125 -->
|
||||
<g id="node12" class="node">
|
||||
<title>guuid=296496da-0b00-0000-2b3c-d78665040000 pid=1125</title>
|
||||
<path fill="white" stroke="black" d="M456,-408C456,-408 525.25,-408 525.25,-408 531.25,-408 537.25,-414 537.25,-420 537.25,-420 537.25,-432 537.25,-432 537.25,-438 531.25,-444 525.25,-444 525.25,-444 456,-444 456,-444 450,-444 444,-438 444,-432 444,-432 444,-420 444,-420 444,-414 450,-408 456,-408"/>
|
||||
<text text-anchor="middle" x="490.62" y="-420.57" font-family="Arial" font-size="14.00">/usr/bin/dash</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=296496da-0b00-0000-2b3c-d78665040000 pid=1125 -->
|
||||
<g id="edge11" class="edge">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=296496da-0b00-0000-2b3c-d78665040000 pid=1125</title>
|
||||
<path fill="none" stroke="black" d="M978.83,-528.08C908.4,-519.71 806.88,-505.32 719.88,-484 698.78,-478.83 694.75,-473.28 673.62,-468.25 617.74,-454.93 600.99,-465.56 545.62,-450.25 543.49,-449.66 541.33,-449.01 539.16,-448.3"/>
|
||||
<polygon fill="black" stroke="black" points="540.36,-445.01 529.76,-444.96 538.01,-451.61 540.36,-445.01"/>
|
||||
<text text-anchor="middle" x="742" y="-470.7" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=70b90e52-0c00-0000-2b3c-d78667040000 pid=1127 -->
|
||||
<g id="node14" class="node">
|
||||
<title>guuid=70b90e52-0c00-0000-2b3c-d78667040000 pid=1127</title>
|
||||
<path fill="white" stroke="black" d="M567,-408C567,-408 636.25,-408 636.25,-408 642.25,-408 648.25,-414 648.25,-420 648.25,-420 648.25,-432 648.25,-432 648.25,-438 642.25,-444 636.25,-444 636.25,-444 567,-444 567,-444 561,-444 555,-438 555,-432 555,-432 555,-420 555,-420 555,-414 561,-408 567,-408"/>
|
||||
<text text-anchor="middle" x="601.62" y="-420.57" font-family="Arial" font-size="14.00">/usr/bin/dash</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=70b90e52-0c00-0000-2b3c-d78667040000 pid=1127 -->
|
||||
<g id="edge13" class="edge">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=70b90e52-0c00-0000-2b3c-d78667040000 pid=1127</title>
|
||||
<path fill="none" stroke="black" d="M978.67,-525.26C926.08,-516.73 858.16,-503.31 799.88,-484 784.35,-478.86 782.24,-473.12 766.62,-468.25 719.33,-453.5 704.22,-463.99 656.62,-450.25 654.53,-449.65 652.41,-448.98 650.29,-448.28"/>
|
||||
<polygon fill="black" stroke="black" points="651.69,-445.06 641.09,-444.96 649.31,-451.65 651.69,-445.06"/>
|
||||
<text text-anchor="middle" x="822" y="-470.7" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=01208c52-0c00-0000-2b3c-d78669040000 pid=1129 -->
|
||||
<g id="node16" class="node">
|
||||
<title>guuid=01208c52-0c00-0000-2b3c-d78669040000 pid=1129</title>
|
||||
<path fill="white" stroke="black" d="M678,-408C678,-408 747.25,-408 747.25,-408 753.25,-408 759.25,-414 759.25,-420 759.25,-420 759.25,-432 759.25,-432 759.25,-438 753.25,-444 747.25,-444 747.25,-444 678,-444 678,-444 672,-444 666,-438 666,-432 666,-432 666,-420 666,-420 666,-414 672,-408 678,-408"/>
|
||||
<text text-anchor="middle" x="712.62" y="-420.57" font-family="Arial" font-size="14.00">/usr/bin/dash</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=01208c52-0c00-0000-2b3c-d78669040000 pid=1129 -->
|
||||
<g id="edge15" class="edge">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=01208c52-0c00-0000-2b3c-d78669040000 pid=1129</title>
|
||||
<path fill="none" stroke="black" d="M978.8,-517.13C946.01,-508.47 908.71,-497.25 875.88,-484 862.18,-478.48 860.44,-473.46 846.62,-468.25 813.33,-455.7 802.51,-461.11 768.62,-450.25 766.8,-449.66 764.95,-449.04 763.09,-448.4"/>
|
||||
<polygon fill="black" stroke="black" points="764.41,-445.16 753.82,-444.98 761.99,-451.72 764.41,-445.16"/>
|
||||
<text text-anchor="middle" x="898" y="-470.7" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=4838b08e-0c00-0000-2b3c-d7866b040000 pid=1131 -->
|
||||
<g id="node18" class="node">
|
||||
<title>guuid=4838b08e-0c00-0000-2b3c-d7866b040000 pid=1131</title>
|
||||
<path fill="white" stroke="black" d="M789.25,-408C789.25,-408 878,-408 878,-408 884,-408 890,-414 890,-420 890,-420 890,-432 890,-432 890,-438 884,-444 878,-444 878,-444 789.25,-444 789.25,-444 783.25,-444 777.25,-438 777.25,-432 777.25,-432 777.25,-420 777.25,-420 777.25,-414 783.25,-408 789.25,-408"/>
|
||||
<text text-anchor="middle" x="833.62" y="-420.57" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=4838b08e-0c00-0000-2b3c-d7866b040000 pid=1131 -->
|
||||
<g id="edge17" class="edge">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=4838b08e-0c00-0000-2b3c-d7866b040000 pid=1131</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M991.9,-502.13C955.54,-484.87 912.77,-464.57 880.85,-449.42"/>
|
||||
<polygon fill="black" stroke="black" points="882.38,-446.27 871.84,-445.14 879.38,-452.59 882.38,-446.27"/>
|
||||
<text text-anchor="middle" x="965.75" y="-470.7" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=52f85d8f-0c00-0000-2b3c-d7866e040000 pid=1134 -->
|
||||
<g id="node21" class="node">
|
||||
<title>guuid=52f85d8f-0c00-0000-2b3c-d7866e040000 pid=1134</title>
|
||||
<path fill="white" stroke="black" d="M920,-408C920,-408 989.25,-408 989.25,-408 995.25,-408 1001.25,-414 1001.25,-420 1001.25,-420 1001.25,-432 1001.25,-432 1001.25,-438 995.25,-444 989.25,-444 989.25,-444 920,-444 920,-444 914,-444 908,-438 908,-432 908,-432 908,-420 908,-420 908,-414 914,-408 920,-408"/>
|
||||
<text text-anchor="middle" x="954.62" y="-420.57" font-family="Arial" font-size="14.00">/usr/bin/dash</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=52f85d8f-0c00-0000-2b3c-d7866e040000 pid=1134 -->
|
||||
<g id="edge20" class="edge">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=52f85d8f-0c00-0000-2b3c-d7866e040000 pid=1134</title>
|
||||
<path fill="none" stroke="black" d="M1030.5,-502.28C1014.11,-486.01 994.95,-467.01 979.99,-452.16"/>
|
||||
<polygon fill="black" stroke="black" points="982.79,-450.01 973.23,-445.45 977.86,-454.98 982.79,-450.01"/>
|
||||
<text text-anchor="middle" x="1032" y="-470.7" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=eb8f0390-0c00-0000-2b3c-d78670040000 pid=1136 -->
|
||||
<g id="node23" class="node">
|
||||
<title>guuid=eb8f0390-0c00-0000-2b3c-d78670040000 pid=1136</title>
|
||||
<path fill="white" stroke="black" d="M1031,-408C1031,-408 1100.25,-408 1100.25,-408 1106.25,-408 1112.25,-414 1112.25,-420 1112.25,-420 1112.25,-432 1112.25,-432 1112.25,-438 1106.25,-444 1100.25,-444 1100.25,-444 1031,-444 1031,-444 1025,-444 1019,-438 1019,-432 1019,-432 1019,-420 1019,-420 1019,-414 1025,-408 1031,-408"/>
|
||||
<text text-anchor="middle" x="1065.62" y="-420.57" font-family="Arial" font-size="14.00">/usr/bin/dash</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=eb8f0390-0c00-0000-2b3c-d78670040000 pid=1136 -->
|
||||
<g id="edge22" class="edge">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=eb8f0390-0c00-0000-2b3c-d78670040000 pid=1136</title>
|
||||
<path fill="none" stroke="black" d="M1065.62,-502.28C1065.62,-487.22 1065.62,-469.81 1065.62,-455.53"/>
|
||||
<polygon fill="black" stroke="black" points="1069.13,-455.9 1065.63,-445.9 1062.13,-455.9 1069.13,-455.9"/>
|
||||
<text text-anchor="middle" x="1087" y="-470.7" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=31bb38cc-0c00-0000-2b3c-d78672040000 pid=1138 -->
|
||||
<g id="node25" class="node">
|
||||
<title>guuid=31bb38cc-0c00-0000-2b3c-d78672040000 pid=1138</title>
|
||||
<path fill="white" stroke="black" d="M1142.25,-408C1142.25,-408 1231,-408 1231,-408 1237,-408 1243,-414 1243,-420 1243,-420 1243,-432 1243,-432 1243,-438 1237,-444 1231,-444 1231,-444 1142.25,-444 1142.25,-444 1136.25,-444 1130.25,-438 1130.25,-432 1130.25,-432 1130.25,-420 1130.25,-420 1130.25,-414 1136.25,-408 1142.25,-408"/>
|
||||
<text text-anchor="middle" x="1186.62" y="-420.57" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=31bb38cc-0c00-0000-2b3c-d78672040000 pid=1138 -->
|
||||
<g id="edge24" class="edge">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=31bb38cc-0c00-0000-2b3c-d78672040000 pid=1138</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M1103.91,-502.28C1121.95,-485.86 1143.05,-466.65 1159.43,-451.75"/>
|
||||
<polygon fill="black" stroke="black" points="1161.36,-454.73 1166.4,-445.41 1156.65,-449.55 1161.36,-454.73"/>
|
||||
<text text-anchor="middle" x="1156.75" y="-470.7" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=c9df14cd-0c00-0000-2b3c-d78676040000 pid=1142 -->
|
||||
<g id="node29" class="node">
|
||||
<title>guuid=c9df14cd-0c00-0000-2b3c-d78676040000 pid=1142</title>
|
||||
<path fill="white" stroke="black" d="M1273,-408C1273,-408 1342.25,-408 1342.25,-408 1348.25,-408 1354.25,-414 1354.25,-420 1354.25,-420 1354.25,-432 1354.25,-432 1354.25,-438 1348.25,-444 1342.25,-444 1342.25,-444 1273,-444 1273,-444 1267,-444 1261,-438 1261,-432 1261,-432 1261,-420 1261,-420 1261,-414 1267,-408 1273,-408"/>
|
||||
<text text-anchor="middle" x="1307.62" y="-420.57" font-family="Arial" font-size="14.00">/usr/bin/dash</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=c9df14cd-0c00-0000-2b3c-d78676040000 pid=1142 -->
|
||||
<g id="edge28" class="edge">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=c9df14cd-0c00-0000-2b3c-d78676040000 pid=1142</title>
|
||||
<path fill="none" stroke="black" d="M1142.53,-502.13C1180.62,-484.8 1225.46,-464.39 1258.79,-449.22"/>
|
||||
<polygon fill="black" stroke="black" points="1260.16,-452.45 1267.81,-445.12 1257.26,-446.07 1260.16,-452.45"/>
|
||||
<text text-anchor="middle" x="1237" y="-470.7" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1144 -->
|
||||
<g id="node31" class="node">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1144</title>
|
||||
<path fill="white" stroke="black" d="M1384.25,-408C1384.25,-408 1473,-408 1473,-408 1479,-408 1485,-414 1485,-420 1485,-420 1485,-432 1485,-432 1485,-438 1479,-444 1473,-444 1473,-444 1384.25,-444 1384.25,-444 1378.25,-444 1372.25,-438 1372.25,-432 1372.25,-432 1372.25,-420 1372.25,-420 1372.25,-414 1378.25,-408 1384.25,-408"/>
|
||||
<text text-anchor="middle" x="1428.62" y="-420.57" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1144 -->
|
||||
<g id="edge30" class="edge">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1144</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M1152.24,-514.95C1186.72,-505.81 1226.68,-494.84 1262.62,-484 1307.94,-470.33 1318.9,-465.72 1363.62,-450.25 1365.58,-449.57 1367.56,-448.88 1369.57,-448.18"/>
|
||||
<polygon fill="black" stroke="black" points="1370.69,-451.5 1378.96,-444.88 1368.37,-444.9 1370.69,-451.5"/>
|
||||
<text text-anchor="middle" x="1328.75" y="-470.7" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1145 -->
|
||||
<g id="node32" class="node">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1145</title>
|
||||
<path fill="white" stroke="black" d="M1515.25,-408C1515.25,-408 1604,-408 1604,-408 1610,-408 1616,-414 1616,-420 1616,-420 1616,-432 1616,-432 1616,-438 1610,-444 1604,-444 1604,-444 1515.25,-444 1515.25,-444 1509.25,-444 1503.25,-438 1503.25,-432 1503.25,-432 1503.25,-420 1503.25,-420 1503.25,-414 1509.25,-408 1515.25,-408"/>
|
||||
<text text-anchor="middle" x="1559.62" y="-420.57" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1145 -->
|
||||
<g id="edge31" class="edge">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1145</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M1152.32,-523.9C1239.52,-509.57 1377.34,-484.15 1493.62,-450.25 1496.18,-449.5 1498.79,-448.72 1501.41,-447.9"/>
|
||||
<polygon fill="black" stroke="black" points="1502.36,-451.27 1510.8,-444.86 1500.21,-444.61 1502.36,-451.27"/>
|
||||
<text text-anchor="middle" x="1440.75" y="-470.7" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1146 -->
|
||||
<g id="node33" class="node">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1146</title>
|
||||
<path fill="white" stroke="black" d="M1646.25,-408C1646.25,-408 1735,-408 1735,-408 1741,-408 1747,-414 1747,-420 1747,-420 1747,-432 1747,-432 1747,-438 1741,-444 1735,-444 1735,-444 1646.25,-444 1646.25,-444 1640.25,-444 1634.25,-438 1634.25,-432 1634.25,-432 1634.25,-420 1634.25,-420 1634.25,-414 1640.25,-408 1646.25,-408"/>
|
||||
<text text-anchor="middle" x="1690.62" y="-420.57" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1146 -->
|
||||
<g id="edge32" class="edge">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1146</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M1152.18,-529.98C1263.18,-519.4 1460.91,-495.71 1624.62,-450.25 1627.34,-449.5 1630.1,-448.69 1632.89,-447.84"/>
|
||||
<polygon fill="black" stroke="black" points="1633.73,-451.25 1642.2,-444.88 1631.61,-444.58 1633.73,-451.25"/>
|
||||
<text text-anchor="middle" x="1565.75" y="-470.7" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1147 -->
|
||||
<g id="node34" class="node">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1147</title>
|
||||
<path fill="white" stroke="black" d="M1777.25,-408C1777.25,-408 1866,-408 1866,-408 1872,-408 1878,-414 1878,-420 1878,-420 1878,-432 1878,-432 1878,-438 1872,-444 1866,-444 1866,-444 1777.25,-444 1777.25,-444 1771.25,-444 1765.25,-438 1765.25,-432 1765.25,-432 1765.25,-420 1765.25,-420 1765.25,-414 1771.25,-408 1777.25,-408"/>
|
||||
<text text-anchor="middle" x="1821.62" y="-420.57" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1147 -->
|
||||
<g id="edge33" class="edge">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1147</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M1152.43,-530.77C1255.92,-522.62 1433.96,-506.75 1585.62,-484 1661.8,-472.57 1681.33,-470.6 1755.62,-450.25 1758.34,-449.51 1761.11,-448.71 1763.89,-447.87"/>
|
||||
<polygon fill="black" stroke="black" points="1764.73,-451.27 1773.21,-444.92 1762.62,-444.6 1764.73,-451.27"/>
|
||||
<text text-anchor="middle" x="1695.75" y="-470.7" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1148 -->
|
||||
<g id="node35" class="node">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1148</title>
|
||||
<path fill="white" stroke="black" d="M1908.25,-408C1908.25,-408 1997,-408 1997,-408 2003,-408 2009,-414 2009,-420 2009,-420 2009,-432 2009,-432 2009,-438 2003,-444 1997,-444 1997,-444 1908.25,-444 1908.25,-444 1902.25,-444 1896.25,-438 1896.25,-432 1896.25,-432 1896.25,-420 1896.25,-420 1896.25,-414 1902.25,-408 1908.25,-408"/>
|
||||
<text text-anchor="middle" x="1952.62" y="-420.57" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1148 -->
|
||||
<g id="edge34" class="edge">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1148</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M1152.45,-533.16C1277.41,-526.75 1515.03,-511.9 1715.62,-484 1792.35,-473.33 1811.9,-470.67 1886.62,-450.25 1889.34,-449.51 1892.11,-448.71 1894.89,-447.87"/>
|
||||
<polygon fill="black" stroke="black" points="1895.73,-451.28 1904.21,-444.93 1893.62,-444.6 1895.73,-451.28"/>
|
||||
<text text-anchor="middle" x="1828.75" y="-470.7" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1149 -->
|
||||
<g id="node36" class="node">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1149</title>
|
||||
<path fill="white" stroke="black" d="M2039.25,-408C2039.25,-408 2128,-408 2128,-408 2134,-408 2140,-414 2140,-420 2140,-420 2140,-432 2140,-432 2140,-438 2134,-444 2128,-444 2128,-444 2039.25,-444 2039.25,-444 2033.25,-444 2027.25,-438 2027.25,-432 2027.25,-432 2027.25,-420 2027.25,-420 2027.25,-414 2033.25,-408 2039.25,-408"/>
|
||||
<text text-anchor="middle" x="2083.62" y="-420.57" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1149 -->
|
||||
<g id="edge35" class="edge">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1149</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M1152.6,-534.9C1297.5,-530.36 1597.25,-517.48 1848.62,-484 1924.55,-473.89 1943.76,-470.53 2017.62,-450.25 2020.34,-449.5 2023.11,-448.7 2025.89,-447.86"/>
|
||||
<polygon fill="black" stroke="black" points="2026.73,-451.27 2035.21,-444.91 2024.62,-444.59 2026.73,-451.27"/>
|
||||
<text text-anchor="middle" x="1960.75" y="-470.7" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1150 -->
|
||||
<g id="node37" class="node">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1150</title>
|
||||
<path fill="#ffbfbf" stroke="black" d="M2170.25,-402.25C2170.25,-402.25 2259,-402.25 2259,-402.25 2265,-402.25 2271,-408.25 2271,-414.25 2271,-414.25 2271,-437.75 2271,-437.75 2271,-443.75 2265,-449.75 2259,-449.75 2259,-449.75 2170.25,-449.75 2170.25,-449.75 2164.25,-449.75 2158.25,-443.75 2158.25,-437.75 2158.25,-437.75 2158.25,-414.25 2158.25,-414.25 2158.25,-408.25 2164.25,-402.25 2170.25,-402.25"/>
|
||||
<text text-anchor="middle" x="2214.62" y="-432.45" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
<polyline fill="none" stroke="black" points="2158.25,-426 2271,-426"/>
|
||||
<text text-anchor="middle" x="2214.62" y="-408.7" font-family="Arial" font-size="14.00">send-data</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1150 -->
|
||||
<g id="edge36" class="edge">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1115->guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1150</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M1152.42,-536.13C1315.38,-533.37 1678.01,-522.99 1980.62,-484 2052.77,-474.71 2073.37,-470.81 2147.13,-450.52"/>
|
||||
<polygon fill="black" stroke="black" points="2147.74,-453.99 2156.44,-447.95 2145.87,-447.24 2147.74,-453.99"/>
|
||||
<text text-anchor="middle" x="2092.75" y="-470.7" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=6dddb3d9-0b00-0000-2b3c-d7865e040000 pid=1118 -->
|
||||
<g id="node5" class="node">
|
||||
<title>guuid=6dddb3d9-0b00-0000-2b3c-d7865e040000 pid=1118</title>
|
||||
<path fill="white" stroke="black" d="M21.38,-307.75C21.38,-307.75 71.88,-307.75 71.88,-307.75 77.88,-307.75 83.88,-313.75 83.88,-319.75 83.88,-319.75 83.88,-331.75 83.88,-331.75 83.88,-337.75 77.88,-343.75 71.88,-343.75 71.88,-343.75 21.38,-343.75 21.38,-343.75 15.38,-343.75 9.38,-337.75 9.38,-331.75 9.38,-331.75 9.38,-319.75 9.38,-319.75 9.38,-313.75 15.38,-307.75 21.38,-307.75"/>
|
||||
<text text-anchor="middle" x="46.62" y="-320.32" font-family="Arial" font-size="14.00">/usr/bin/ln</text>
|
||||
</g>
|
||||
<!-- guuid=87e09cd9-0b00-0000-2b3c-d7865d040000 pid=1117->guuid=6dddb3d9-0b00-0000-2b3c-d7865e040000 pid=1118 -->
|
||||
<g id="edge4" class="edge">
|
||||
<title>guuid=87e09cd9-0b00-0000-2b3c-d7865d040000 pid=1117->guuid=6dddb3d9-0b00-0000-2b3c-d7865e040000 pid=1118</title>
|
||||
<path fill="none" stroke="black" d="M46.62,-407.89C46.62,-393.32 46.62,-372.11 46.62,-355.03"/>
|
||||
<polygon fill="black" stroke="black" points="50.13,-355.51 46.63,-345.51 43.13,-355.51 50.13,-355.51"/>
|
||||
<text text-anchor="middle" x="68" y="-370.45" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=17c205da-0b00-0000-2b3c-d78660040000 pid=1120 -->
|
||||
<g id="node7" class="node">
|
||||
<title>guuid=17c205da-0b00-0000-2b3c-d78660040000 pid=1120</title>
|
||||
<path fill="white" stroke="black" d="M132.38,-307.75C132.38,-307.75 182.88,-307.75 182.88,-307.75 188.88,-307.75 194.88,-313.75 194.88,-319.75 194.88,-319.75 194.88,-331.75 194.88,-331.75 194.88,-337.75 188.88,-343.75 182.88,-343.75 182.88,-343.75 132.38,-343.75 132.38,-343.75 126.38,-343.75 120.38,-337.75 120.38,-331.75 120.38,-331.75 120.38,-319.75 120.38,-319.75 120.38,-313.75 126.38,-307.75 132.38,-307.75"/>
|
||||
<text text-anchor="middle" x="157.62" y="-320.32" font-family="Arial" font-size="14.00">/usr/bin/ln</text>
|
||||
</g>
|
||||
<!-- guuid=d438d0d9-0b00-0000-2b3c-d7865f040000 pid=1119->guuid=17c205da-0b00-0000-2b3c-d78660040000 pid=1120 -->
|
||||
<g id="edge6" class="edge">
|
||||
<title>guuid=d438d0d9-0b00-0000-2b3c-d7865f040000 pid=1119->guuid=17c205da-0b00-0000-2b3c-d78660040000 pid=1120</title>
|
||||
<path fill="none" stroke="black" d="M157.62,-407.89C157.62,-393.32 157.62,-372.11 157.62,-355.03"/>
|
||||
<polygon fill="black" stroke="black" points="161.13,-355.51 157.63,-345.51 154.13,-355.51 161.13,-355.51"/>
|
||||
<text text-anchor="middle" x="179" y="-370.45" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=1c573bda-0b00-0000-2b3c-d78662040000 pid=1122 -->
|
||||
<g id="node9" class="node">
|
||||
<title>guuid=1c573bda-0b00-0000-2b3c-d78662040000 pid=1122</title>
|
||||
<path fill="white" stroke="black" d="M243.38,-307.75C243.38,-307.75 293.88,-307.75 293.88,-307.75 299.88,-307.75 305.88,-313.75 305.88,-319.75 305.88,-319.75 305.88,-331.75 305.88,-331.75 305.88,-337.75 299.88,-343.75 293.88,-343.75 293.88,-343.75 243.38,-343.75 243.38,-343.75 237.38,-343.75 231.38,-337.75 231.38,-331.75 231.38,-331.75 231.38,-319.75 231.38,-319.75 231.38,-313.75 237.38,-307.75 243.38,-307.75"/>
|
||||
<text text-anchor="middle" x="268.62" y="-320.32" font-family="Arial" font-size="14.00">/usr/bin/ln</text>
|
||||
</g>
|
||||
<!-- guuid=4b9423da-0b00-0000-2b3c-d78661040000 pid=1121->guuid=1c573bda-0b00-0000-2b3c-d78662040000 pid=1122 -->
|
||||
<g id="edge8" class="edge">
|
||||
<title>guuid=4b9423da-0b00-0000-2b3c-d78661040000 pid=1121->guuid=1c573bda-0b00-0000-2b3c-d78662040000 pid=1122</title>
|
||||
<path fill="none" stroke="black" d="M268.62,-407.89C268.62,-393.32 268.62,-372.11 268.62,-355.03"/>
|
||||
<polygon fill="black" stroke="black" points="272.13,-355.51 268.63,-345.51 265.13,-355.51 272.13,-355.51"/>
|
||||
<text text-anchor="middle" x="290" y="-370.45" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=29a876da-0b00-0000-2b3c-d78664040000 pid=1124 -->
|
||||
<g id="node11" class="node">
|
||||
<title>guuid=29a876da-0b00-0000-2b3c-d78664040000 pid=1124</title>
|
||||
<path fill="white" stroke="black" d="M354.38,-307.75C354.38,-307.75 404.88,-307.75 404.88,-307.75 410.88,-307.75 416.88,-313.75 416.88,-319.75 416.88,-319.75 416.88,-331.75 416.88,-331.75 416.88,-337.75 410.88,-343.75 404.88,-343.75 404.88,-343.75 354.38,-343.75 354.38,-343.75 348.38,-343.75 342.38,-337.75 342.38,-331.75 342.38,-331.75 342.38,-319.75 342.38,-319.75 342.38,-313.75 348.38,-307.75 354.38,-307.75"/>
|
||||
<text text-anchor="middle" x="379.62" y="-320.32" font-family="Arial" font-size="14.00">/usr/bin/ln</text>
|
||||
</g>
|
||||
<!-- guuid=1e3463da-0b00-0000-2b3c-d78663040000 pid=1123->guuid=29a876da-0b00-0000-2b3c-d78664040000 pid=1124 -->
|
||||
<g id="edge10" class="edge">
|
||||
<title>guuid=1e3463da-0b00-0000-2b3c-d78663040000 pid=1123->guuid=29a876da-0b00-0000-2b3c-d78664040000 pid=1124</title>
|
||||
<path fill="none" stroke="black" d="M379.62,-407.89C379.62,-393.32 379.62,-372.11 379.62,-355.03"/>
|
||||
<polygon fill="black" stroke="black" points="383.13,-355.51 379.63,-345.51 376.13,-355.51 383.13,-355.51"/>
|
||||
<text text-anchor="middle" x="401" y="-370.45" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=66aeacda-0b00-0000-2b3c-d78666040000 pid=1126 -->
|
||||
<g id="node13" class="node">
|
||||
<title>guuid=66aeacda-0b00-0000-2b3c-d78666040000 pid=1126</title>
|
||||
<path fill="white" stroke="black" d="M465.38,-307.75C465.38,-307.75 515.88,-307.75 515.88,-307.75 521.88,-307.75 527.88,-313.75 527.88,-319.75 527.88,-319.75 527.88,-331.75 527.88,-331.75 527.88,-337.75 521.88,-343.75 515.88,-343.75 515.88,-343.75 465.38,-343.75 465.38,-343.75 459.38,-343.75 453.38,-337.75 453.38,-331.75 453.38,-331.75 453.38,-319.75 453.38,-319.75 453.38,-313.75 459.38,-307.75 465.38,-307.75"/>
|
||||
<text text-anchor="middle" x="490.62" y="-320.32" font-family="Arial" font-size="14.00">/usr/bin/ln</text>
|
||||
</g>
|
||||
<!-- guuid=296496da-0b00-0000-2b3c-d78665040000 pid=1125->guuid=66aeacda-0b00-0000-2b3c-d78666040000 pid=1126 -->
|
||||
<g id="edge12" class="edge">
|
||||
<title>guuid=296496da-0b00-0000-2b3c-d78665040000 pid=1125->guuid=66aeacda-0b00-0000-2b3c-d78666040000 pid=1126</title>
|
||||
<path fill="none" stroke="black" d="M490.62,-407.89C490.62,-393.32 490.62,-372.11 490.62,-355.03"/>
|
||||
<polygon fill="black" stroke="black" points="494.13,-355.51 490.63,-345.51 487.13,-355.51 494.13,-355.51"/>
|
||||
<text text-anchor="middle" x="512" y="-370.45" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=44c93052-0c00-0000-2b3c-d78668040000 pid=1128 -->
|
||||
<g id="node15" class="node">
|
||||
<title>guuid=44c93052-0c00-0000-2b3c-d78668040000 pid=1128</title>
|
||||
<path fill="white" stroke="black" d="M564.75,-307.75C564.75,-307.75 638.5,-307.75 638.5,-307.75 644.5,-307.75 650.5,-313.75 650.5,-319.75 650.5,-319.75 650.5,-331.75 650.5,-331.75 650.5,-337.75 644.5,-343.75 638.5,-343.75 638.5,-343.75 564.75,-343.75 564.75,-343.75 558.75,-343.75 552.75,-337.75 552.75,-331.75 552.75,-331.75 552.75,-319.75 552.75,-319.75 552.75,-313.75 558.75,-307.75 564.75,-307.75"/>
|
||||
<text text-anchor="middle" x="601.62" y="-320.32" font-family="Arial" font-size="14.00">/usr/bin/mkdir</text>
|
||||
</g>
|
||||
<!-- guuid=70b90e52-0c00-0000-2b3c-d78667040000 pid=1127->guuid=44c93052-0c00-0000-2b3c-d78668040000 pid=1128 -->
|
||||
<g id="edge14" class="edge">
|
||||
<title>guuid=70b90e52-0c00-0000-2b3c-d78667040000 pid=1127->guuid=44c93052-0c00-0000-2b3c-d78668040000 pid=1128</title>
|
||||
<path fill="none" stroke="black" d="M601.62,-407.89C601.62,-393.32 601.62,-372.11 601.62,-355.03"/>
|
||||
<polygon fill="black" stroke="black" points="605.13,-355.51 601.63,-345.51 598.13,-355.51 605.13,-355.51"/>
|
||||
<text text-anchor="middle" x="623" y="-370.45" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=9842b152-0c00-0000-2b3c-d7866a040000 pid=1130 -->
|
||||
<g id="node17" class="node">
|
||||
<title>guuid=9842b152-0c00-0000-2b3c-d7866a040000 pid=1130</title>
|
||||
<path fill="#ffbfbf" stroke="black" d="M685.5,-302C685.5,-302 739.75,-302 739.75,-302 745.75,-302 751.75,-308 751.75,-314 751.75,-314 751.75,-337.5 751.75,-337.5 751.75,-343.5 745.75,-349.5 739.75,-349.5 739.75,-349.5 685.5,-349.5 685.5,-349.5 679.5,-349.5 673.5,-343.5 673.5,-337.5 673.5,-337.5 673.5,-314 673.5,-314 673.5,-308 679.5,-302 685.5,-302"/>
|
||||
<text text-anchor="middle" x="712.62" y="-332.2" font-family="Arial" font-size="14.00">/usr/bin/cp</text>
|
||||
<polyline fill="none" stroke="black" points="673.5,-325.75 751.75,-325.75"/>
|
||||
<text text-anchor="middle" x="712.62" y="-308.45" font-family="Arial" font-size="14.00">write-file</text>
|
||||
</g>
|
||||
<!-- guuid=01208c52-0c00-0000-2b3c-d78669040000 pid=1129->guuid=9842b152-0c00-0000-2b3c-d7866a040000 pid=1130 -->
|
||||
<g id="edge16" class="edge">
|
||||
<title>guuid=01208c52-0c00-0000-2b3c-d78669040000 pid=1129->guuid=9842b152-0c00-0000-2b3c-d7866a040000 pid=1130</title>
|
||||
<path fill="none" stroke="black" d="M712.62,-407.89C712.62,-395.09 712.62,-377.17 712.62,-361.42"/>
|
||||
<polygon fill="black" stroke="black" points="716.13,-361.44 712.63,-351.44 709.13,-361.44 716.13,-361.44"/>
|
||||
<text text-anchor="middle" x="734" y="-370.45" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=e280bd8e-0c00-0000-2b3c-d7866c040000 pid=1132 -->
|
||||
<g id="node19" class="node">
|
||||
<title>guuid=e280bd8e-0c00-0000-2b3c-d7866c040000 pid=1132</title>
|
||||
<path fill="white" stroke="black" d="M799,-307.75C799,-307.75 868.25,-307.75 868.25,-307.75 874.25,-307.75 880.25,-313.75 880.25,-319.75 880.25,-319.75 880.25,-331.75 880.25,-331.75 880.25,-337.75 874.25,-343.75 868.25,-343.75 868.25,-343.75 799,-343.75 799,-343.75 793,-343.75 787,-337.75 787,-331.75 787,-331.75 787,-319.75 787,-319.75 787,-313.75 793,-307.75 799,-307.75"/>
|
||||
<text text-anchor="middle" x="833.62" y="-320.32" font-family="Arial" font-size="14.00">/usr/bin/dash</text>
|
||||
</g>
|
||||
<!-- guuid=4838b08e-0c00-0000-2b3c-d7866b040000 pid=1131->guuid=e280bd8e-0c00-0000-2b3c-d7866c040000 pid=1132 -->
|
||||
<g id="edge18" class="edge">
|
||||
<title>guuid=4838b08e-0c00-0000-2b3c-d7866b040000 pid=1131->guuid=e280bd8e-0c00-0000-2b3c-d7866c040000 pid=1132</title>
|
||||
<path fill="none" stroke="black" d="M833.62,-407.89C833.62,-393.32 833.62,-372.11 833.62,-355.03"/>
|
||||
<polygon fill="black" stroke="black" points="837.13,-355.51 833.63,-345.51 830.13,-355.51 837.13,-355.51"/>
|
||||
<text text-anchor="middle" x="855" y="-370.45" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=1be4308f-0c00-0000-2b3c-d7866d040000 pid=1133 -->
|
||||
<g id="node20" class="node">
|
||||
<title>guuid=1be4308f-0c00-0000-2b3c-d7866d040000 pid=1133</title>
|
||||
<path fill="white" stroke="black" d="M799,-213.25C799,-213.25 868.25,-213.25 868.25,-213.25 874.25,-213.25 880.25,-219.25 880.25,-225.25 880.25,-225.25 880.25,-237.25 880.25,-237.25 880.25,-243.25 874.25,-249.25 868.25,-249.25 868.25,-249.25 799,-249.25 799,-249.25 793,-249.25 787,-243.25 787,-237.25 787,-237.25 787,-225.25 787,-225.25 787,-219.25 793,-213.25 799,-213.25"/>
|
||||
<text text-anchor="middle" x="833.62" y="-225.82" font-family="Arial" font-size="14.00">/usr/bin/dash</text>
|
||||
</g>
|
||||
<!-- guuid=e280bd8e-0c00-0000-2b3c-d7866c040000 pid=1132->guuid=1be4308f-0c00-0000-2b3c-d7866d040000 pid=1133 -->
|
||||
<g id="edge19" class="edge">
|
||||
<title>guuid=e280bd8e-0c00-0000-2b3c-d7866c040000 pid=1132->guuid=1be4308f-0c00-0000-2b3c-d7866d040000 pid=1133</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M833.62,-307.35C833.62,-294.3 833.62,-276.15 833.62,-260.96"/>
|
||||
<polygon fill="black" stroke="black" points="837.13,-261.08 833.63,-251.08 830.13,-261.08 837.13,-261.08"/>
|
||||
<text text-anchor="middle" x="849.75" y="-270.2" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=ce4f9f8f-0c00-0000-2b3c-d7866f040000 pid=1135 -->
|
||||
<g id="node22" class="node">
|
||||
<title>guuid=ce4f9f8f-0c00-0000-2b3c-d7866f040000 pid=1135</title>
|
||||
<path fill="white" stroke="black" d="M917.75,-307.75C917.75,-307.75 991.5,-307.75 991.5,-307.75 997.5,-307.75 1003.5,-313.75 1003.5,-319.75 1003.5,-319.75 1003.5,-331.75 1003.5,-331.75 1003.5,-337.75 997.5,-343.75 991.5,-343.75 991.5,-343.75 917.75,-343.75 917.75,-343.75 911.75,-343.75 905.75,-337.75 905.75,-331.75 905.75,-331.75 905.75,-319.75 905.75,-319.75 905.75,-313.75 911.75,-307.75 917.75,-307.75"/>
|
||||
<text text-anchor="middle" x="954.62" y="-320.32" font-family="Arial" font-size="14.00">/usr/bin/mkdir</text>
|
||||
</g>
|
||||
<!-- guuid=52f85d8f-0c00-0000-2b3c-d7866e040000 pid=1134->guuid=ce4f9f8f-0c00-0000-2b3c-d7866f040000 pid=1135 -->
|
||||
<g id="edge21" class="edge">
|
||||
<title>guuid=52f85d8f-0c00-0000-2b3c-d7866e040000 pid=1134->guuid=ce4f9f8f-0c00-0000-2b3c-d7866f040000 pid=1135</title>
|
||||
<path fill="none" stroke="black" d="M954.62,-407.89C954.62,-393.32 954.62,-372.11 954.62,-355.03"/>
|
||||
<polygon fill="black" stroke="black" points="958.13,-355.51 954.63,-345.51 951.13,-355.51 958.13,-355.51"/>
|
||||
<text text-anchor="middle" x="976" y="-370.45" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=2bdb2c90-0c00-0000-2b3c-d78671040000 pid=1137 -->
|
||||
<g id="node24" class="node">
|
||||
<title>guuid=2bdb2c90-0c00-0000-2b3c-d78671040000 pid=1137</title>
|
||||
<path fill="#ffbfbf" stroke="black" d="M1038.5,-302C1038.5,-302 1092.75,-302 1092.75,-302 1098.75,-302 1104.75,-308 1104.75,-314 1104.75,-314 1104.75,-337.5 1104.75,-337.5 1104.75,-343.5 1098.75,-349.5 1092.75,-349.5 1092.75,-349.5 1038.5,-349.5 1038.5,-349.5 1032.5,-349.5 1026.5,-343.5 1026.5,-337.5 1026.5,-337.5 1026.5,-314 1026.5,-314 1026.5,-308 1032.5,-302 1038.5,-302"/>
|
||||
<text text-anchor="middle" x="1065.62" y="-332.2" font-family="Arial" font-size="14.00">/usr/bin/cp</text>
|
||||
<polyline fill="none" stroke="black" points="1026.5,-325.75 1104.75,-325.75"/>
|
||||
<text text-anchor="middle" x="1065.62" y="-308.45" font-family="Arial" font-size="14.00">write-file</text>
|
||||
</g>
|
||||
<!-- guuid=eb8f0390-0c00-0000-2b3c-d78670040000 pid=1136->guuid=2bdb2c90-0c00-0000-2b3c-d78671040000 pid=1137 -->
|
||||
<g id="edge23" class="edge">
|
||||
<title>guuid=eb8f0390-0c00-0000-2b3c-d78670040000 pid=1136->guuid=2bdb2c90-0c00-0000-2b3c-d78671040000 pid=1137</title>
|
||||
<path fill="none" stroke="black" d="M1065.62,-407.89C1065.62,-395.09 1065.62,-377.17 1065.62,-361.42"/>
|
||||
<polygon fill="black" stroke="black" points="1069.13,-361.44 1065.63,-351.44 1062.13,-361.44 1069.13,-361.44"/>
|
||||
<text text-anchor="middle" x="1087" y="-370.45" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=71ab3bcc-0c00-0000-2b3c-d78673040000 pid=1139 -->
|
||||
<g id="node26" class="node">
|
||||
<title>guuid=71ab3bcc-0c00-0000-2b3c-d78673040000 pid=1139</title>
|
||||
<path fill="white" stroke="black" d="M1152,-307.75C1152,-307.75 1221.25,-307.75 1221.25,-307.75 1227.25,-307.75 1233.25,-313.75 1233.25,-319.75 1233.25,-319.75 1233.25,-331.75 1233.25,-331.75 1233.25,-337.75 1227.25,-343.75 1221.25,-343.75 1221.25,-343.75 1152,-343.75 1152,-343.75 1146,-343.75 1140,-337.75 1140,-331.75 1140,-331.75 1140,-319.75 1140,-319.75 1140,-313.75 1146,-307.75 1152,-307.75"/>
|
||||
<text text-anchor="middle" x="1186.62" y="-320.32" font-family="Arial" font-size="14.00">/usr/bin/dash</text>
|
||||
</g>
|
||||
<!-- guuid=31bb38cc-0c00-0000-2b3c-d78672040000 pid=1138->guuid=71ab3bcc-0c00-0000-2b3c-d78673040000 pid=1139 -->
|
||||
<g id="edge25" class="edge">
|
||||
<title>guuid=31bb38cc-0c00-0000-2b3c-d78672040000 pid=1138->guuid=71ab3bcc-0c00-0000-2b3c-d78673040000 pid=1139</title>
|
||||
<path fill="none" stroke="black" d="M1186.62,-407.89C1186.62,-393.32 1186.62,-372.11 1186.62,-355.03"/>
|
||||
<polygon fill="black" stroke="black" points="1190.13,-355.51 1186.63,-345.51 1183.13,-355.51 1190.13,-355.51"/>
|
||||
<text text-anchor="middle" x="1208" y="-370.45" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=e97f4fcc-0c00-0000-2b3c-d78674040000 pid=1140 -->
|
||||
<g id="node27" class="node">
|
||||
<title>guuid=e97f4fcc-0c00-0000-2b3c-d78674040000 pid=1140</title>
|
||||
<path fill="white" stroke="black" d="M1148.25,-213.25C1148.25,-213.25 1225,-213.25 1225,-213.25 1231,-213.25 1237,-219.25 1237,-225.25 1237,-225.25 1237,-237.25 1237,-237.25 1237,-243.25 1231,-249.25 1225,-249.25 1225,-249.25 1148.25,-249.25 1148.25,-249.25 1142.25,-249.25 1136.25,-243.25 1136.25,-237.25 1136.25,-237.25 1136.25,-225.25 1136.25,-225.25 1136.25,-219.25 1142.25,-213.25 1148.25,-213.25"/>
|
||||
<text text-anchor="middle" x="1186.62" y="-225.82" font-family="Arial" font-size="14.00">/usr/bin/oracle</text>
|
||||
</g>
|
||||
<!-- guuid=71ab3bcc-0c00-0000-2b3c-d78673040000 pid=1139->guuid=e97f4fcc-0c00-0000-2b3c-d78674040000 pid=1140 -->
|
||||
<g id="edge26" class="edge">
|
||||
<title>guuid=71ab3bcc-0c00-0000-2b3c-d78673040000 pid=1139->guuid=e97f4fcc-0c00-0000-2b3c-d78674040000 pid=1140</title>
|
||||
<path fill="none" stroke="black" d="M1186.62,-307.35C1186.62,-294.3 1186.62,-276.15 1186.62,-260.96"/>
|
||||
<polygon fill="black" stroke="black" points="1190.13,-261.08 1186.63,-251.08 1183.13,-261.08 1190.13,-261.08"/>
|
||||
<text text-anchor="middle" x="1208" y="-270.2" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=00ebffcc-0c00-0000-2b3c-d78675040000 pid=1141 -->
|
||||
<g id="node28" class="node">
|
||||
<title>guuid=00ebffcc-0c00-0000-2b3c-d78675040000 pid=1141</title>
|
||||
<path fill="#3b5741" stroke="black" d="M1118.12,-89.25C1118.12,-89.25 1255.12,-89.25 1255.12,-89.25 1261.12,-89.25 1267.12,-95.25 1267.12,-101.25 1267.12,-101.25 1267.12,-148.5 1267.12,-148.5 1267.12,-154.5 1261.12,-160.5 1255.12,-160.5 1255.12,-160.5 1118.12,-160.5 1118.12,-160.5 1112.12,-160.5 1106.12,-154.5 1106.12,-148.5 1106.12,-148.5 1106.12,-101.25 1106.12,-101.25 1106.12,-95.25 1112.12,-89.25 1118.12,-89.25"/>
|
||||
<text text-anchor="middle" x="1156.5" y="-143.2" font-family="Arial" font-size="14.00" fill="#fff000">/usr/bin/oracle</text>
|
||||
<polyline fill="none" stroke="black" points="1106.12,-136.75 1206.88,-136.75"/>
|
||||
<text text-anchor="middle" x="1156.5" y="-119.45" font-family="Arial" font-size="14.00" fill="#fff000">delete-file</text>
|
||||
<polyline fill="none" stroke="black" points="1106.12,-113 1206.88,-113"/>
|
||||
<text text-anchor="middle" x="1156.5" y="-95.7" font-family="Arial" font-size="14.00" fill="#fff000">write-file</text>
|
||||
<polyline fill="none" stroke="black" points="1206.88,-89.25 1206.88,-160.5"/>
|
||||
<text text-anchor="middle" x="1237" y="-119.7" font-family="Arial" font-size="14.00" fill="#fff000">zombie</text>
|
||||
</g>
|
||||
<!-- guuid=e97f4fcc-0c00-0000-2b3c-d78674040000 pid=1140->guuid=00ebffcc-0c00-0000-2b3c-d78675040000 pid=1141 -->
|
||||
<g id="edge27" class="edge">
|
||||
<title>guuid=e97f4fcc-0c00-0000-2b3c-d78674040000 pid=1140->guuid=00ebffcc-0c00-0000-2b3c-d78675040000 pid=1141</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M1186.62,-213.01C1186.62,-201.87 1186.62,-186.78 1186.62,-172.3"/>
|
||||
<polygon fill="black" stroke="black" points="1190.13,-172.41 1186.63,-162.41 1183.13,-172.41 1190.13,-172.41"/>
|
||||
<text text-anchor="middle" x="1202.75" y="-181.45" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=00ebffcc-0c00-0000-2b3c-d78675040000 pid=1151 -->
|
||||
<g id="node39" class="node">
|
||||
<title>guuid=00ebffcc-0c00-0000-2b3c-d78675040000 pid=1151</title>
|
||||
<path fill="white" stroke="black" d="M1148.25,-0.5C1148.25,-0.5 1225,-0.5 1225,-0.5 1231,-0.5 1237,-6.5 1237,-12.5 1237,-12.5 1237,-24.5 1237,-24.5 1237,-30.5 1231,-36.5 1225,-36.5 1225,-36.5 1148.25,-36.5 1148.25,-36.5 1142.25,-36.5 1136.25,-30.5 1136.25,-24.5 1136.25,-24.5 1136.25,-12.5 1136.25,-12.5 1136.25,-6.5 1142.25,-0.5 1148.25,-0.5"/>
|
||||
<text text-anchor="middle" x="1186.62" y="-13.07" font-family="Arial" font-size="14.00">/usr/bin/oracle</text>
|
||||
</g>
|
||||
<!-- guuid=00ebffcc-0c00-0000-2b3c-d78675040000 pid=1141->guuid=00ebffcc-0c00-0000-2b3c-d78675040000 pid=1151 -->
|
||||
<g id="edge38" class="edge">
|
||||
<title>guuid=00ebffcc-0c00-0000-2b3c-d78675040000 pid=1141->guuid=00ebffcc-0c00-0000-2b3c-d78675040000 pid=1151</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M1186.62,-88.83C1186.62,-75.54 1186.62,-60.59 1186.62,-47.99"/>
|
||||
<polygon fill="black" stroke="black" points="1190.13,-48.26 1186.63,-38.26 1183.13,-48.26 1190.13,-48.26"/>
|
||||
<text text-anchor="middle" x="1202.75" y="-57.45" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=185226cd-0c00-0000-2b3c-d78677040000 pid=1143 -->
|
||||
<g id="node30" class="node">
|
||||
<title>guuid=185226cd-0c00-0000-2b3c-d78677040000 pid=1143</title>
|
||||
<path fill="white" stroke="black" d="M1270.75,-307.75C1270.75,-307.75 1344.5,-307.75 1344.5,-307.75 1350.5,-307.75 1356.5,-313.75 1356.5,-319.75 1356.5,-319.75 1356.5,-331.75 1356.5,-331.75 1356.5,-337.75 1350.5,-343.75 1344.5,-343.75 1344.5,-343.75 1270.75,-343.75 1270.75,-343.75 1264.75,-343.75 1258.75,-337.75 1258.75,-331.75 1258.75,-331.75 1258.75,-319.75 1258.75,-319.75 1258.75,-313.75 1264.75,-307.75 1270.75,-307.75"/>
|
||||
<text text-anchor="middle" x="1307.62" y="-320.32" font-family="Arial" font-size="14.00">/usr/bin/kmod</text>
|
||||
</g>
|
||||
<!-- guuid=c9df14cd-0c00-0000-2b3c-d78676040000 pid=1142->guuid=185226cd-0c00-0000-2b3c-d78677040000 pid=1143 -->
|
||||
<g id="edge29" class="edge">
|
||||
<title>guuid=c9df14cd-0c00-0000-2b3c-d78676040000 pid=1142->guuid=185226cd-0c00-0000-2b3c-d78677040000 pid=1143</title>
|
||||
<path fill="none" stroke="black" d="M1307.62,-407.89C1307.62,-393.32 1307.62,-372.11 1307.62,-355.03"/>
|
||||
<polygon fill="black" stroke="black" points="1311.13,-355.51 1307.63,-345.51 1304.13,-355.51 1311.13,-355.51"/>
|
||||
<text text-anchor="middle" x="1329" y="-370.45" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- 4f6baed0-9587-596c-82b3-fd721afe4cc1 -->
|
||||
<g id="node38" class="node">
|
||||
<title>4f6baed0-9587-596c-82b3-fd721afe4cc1</title>
|
||||
<path fill="grey" stroke="black" d="M2184.88,-307.75C2184.88,-307.75 2244.38,-307.75 2244.38,-307.75 2250.38,-307.75 2256.38,-313.75 2256.38,-319.75 2256.38,-319.75 2256.38,-331.75 2256.38,-331.75 2256.38,-337.75 2250.38,-343.75 2244.38,-343.75 2244.38,-343.75 2184.88,-343.75 2184.88,-343.75 2178.88,-343.75 2172.88,-337.75 2172.88,-331.75 2172.88,-331.75 2172.88,-319.75 2172.88,-319.75 2172.88,-313.75 2178.88,-307.75 2184.88,-307.75"/>
|
||||
<text text-anchor="middle" x="2214.62" y="-320.32" font-family="Arial" font-size="14.00" fill="white">10.0.2.3:53</text>
|
||||
</g>
|
||||
<!-- guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1150->4f6baed0-9587-596c-82b3-fd721afe4cc1 -->
|
||||
<g id="edge37" class="edge">
|
||||
<title>guuid=0a03d020-0b00-0000-2b3c-d7865b040000 pid=1150->4f6baed0-9587-596c-82b3-fd721afe4cc1</title>
|
||||
<path fill="none" stroke="blue" stroke-dasharray="5,2" d="M2214.62,-402.21C2214.62,-388.26 2214.62,-370.27 2214.62,-355.36"/>
|
||||
<polygon fill="blue" stroke="blue" points="2218.13,-355.72 2214.63,-345.72 2211.13,-355.72 2218.13,-355.72"/>
|
||||
<text text-anchor="middle" x="2252.5" y="-370.45" font-family="Arial" font-size="14.00" fill="blue">send: 1734B</text>
|
||||
</g>
|
||||
</g>
|
||||
</svg>
|
||||
|
After Width: | Height: | Size: 54 KiB |
|
|
@ -0,0 +1,192 @@
|
|||
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
|
||||
<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN"
|
||||
"http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
|
||||
<!-- Generated by graphviz version 11.0.0 (0)
|
||||
-->
|
||||
<!-- Pages: 1 -->
|
||||
<svg width="887pt" height="532pt"
|
||||
viewBox="0.00 0.00 887.25 532.00" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink">
|
||||
<g id="graph0" class="graph" transform="scale(1 1) rotate(0) translate(4 528)">
|
||||
<polygon fill="white" stroke="none" points="-4,4 -4,-528 883.25,-528 883.25,4 -4,4"/>
|
||||
<!-- guuid=de5aab22-0b00-0000-2742-7dc259040000 pid=1113 -->
|
||||
<g id="node1" class="node">
|
||||
<title>guuid=de5aab22-0b00-0000-2742-7dc259040000 pid=1113</title>
|
||||
<path fill="white" stroke="black" d="M109.25,-487.5C109.25,-487.5 178.5,-487.5 178.5,-487.5 184.5,-487.5 190.5,-493.5 190.5,-499.5 190.5,-499.5 190.5,-511.5 190.5,-511.5 190.5,-517.5 184.5,-523.5 178.5,-523.5 178.5,-523.5 109.25,-523.5 109.25,-523.5 103.25,-523.5 97.25,-517.5 97.25,-511.5 97.25,-511.5 97.25,-499.5 97.25,-499.5 97.25,-493.5 103.25,-487.5 109.25,-487.5"/>
|
||||
<text text-anchor="middle" x="143.88" y="-500.07" font-family="Arial" font-size="14.00">/usr/bin/sudo</text>
|
||||
</g>
|
||||
<!-- guuid=ce196323-0b00-0000-2742-7dc25a040000 pid=1114 -->
|
||||
<g id="node2" class="node">
|
||||
<title>guuid=ce196323-0b00-0000-2742-7dc25a040000 pid=1114</title>
|
||||
<path fill="#ffbfbf" stroke="black" d="M99.5,-387.25C99.5,-387.25 188.25,-387.25 188.25,-387.25 194.25,-387.25 200.25,-393.25 200.25,-399.25 200.25,-399.25 200.25,-422.75 200.25,-422.75 200.25,-428.75 194.25,-434.75 188.25,-434.75 188.25,-434.75 99.5,-434.75 99.5,-434.75 93.5,-434.75 87.5,-428.75 87.5,-422.75 87.5,-422.75 87.5,-399.25 87.5,-399.25 87.5,-393.25 93.5,-387.25 99.5,-387.25"/>
|
||||
<text text-anchor="middle" x="143.88" y="-417.45" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
<polyline fill="none" stroke="black" points="87.5,-411 200.25,-411"/>
|
||||
<text text-anchor="middle" x="143.88" y="-393.7" font-family="Arial" font-size="14.00">net</text>
|
||||
</g>
|
||||
<!-- guuid=de5aab22-0b00-0000-2742-7dc259040000 pid=1113->guuid=ce196323-0b00-0000-2742-7dc25a040000 pid=1114 -->
|
||||
<g id="edge1" class="edge">
|
||||
<title>guuid=de5aab22-0b00-0000-2742-7dc259040000 pid=1113->guuid=ce196323-0b00-0000-2742-7dc25a040000 pid=1114</title>
|
||||
<path fill="none" stroke="black" d="M143.88,-487.1C143.88,-475.57 143.88,-460.06 143.88,-446.13"/>
|
||||
<polygon fill="black" stroke="black" points="147.38,-446.43 143.88,-436.43 140.38,-446.43 147.38,-446.43"/>
|
||||
<text text-anchor="middle" x="165.25" y="-455.7" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- 8b0a01dc-0728-52c1-8024-c4ba7801b8d6 -->
|
||||
<g id="node3" class="node">
|
||||
<title>8b0a01dc-0728-52c1-8024-c4ba7801b8d6</title>
|
||||
<path fill="grey" stroke="black" d="M169.88,-1.75C169.88,-1.75 221.88,-1.75 221.88,-1.75 227.88,-1.75 233.88,-7.75 233.88,-13.75 233.88,-13.75 233.88,-25.75 233.88,-25.75 233.88,-31.75 227.88,-37.75 221.88,-37.75 221.88,-37.75 169.88,-37.75 169.88,-37.75 163.88,-37.75 157.88,-31.75 157.88,-25.75 157.88,-25.75 157.88,-13.75 157.88,-13.75 157.88,-7.75 163.88,-1.75 169.88,-1.75"/>
|
||||
<text text-anchor="middle" x="195.88" y="-14.32" font-family="Arial" font-size="14.00" fill="white">8.8.8.8:53</text>
|
||||
</g>
|
||||
<!-- guuid=ce196323-0b00-0000-2742-7dc25a040000 pid=1114->8b0a01dc-0728-52c1-8024-c4ba7801b8d6 -->
|
||||
<g id="edge2" class="edge">
|
||||
<title>guuid=ce196323-0b00-0000-2742-7dc25a040000 pid=1114->8b0a01dc-0728-52c1-8024-c4ba7801b8d6</title>
|
||||
<path fill="none" stroke="green" stroke-dasharray="5,2" d="M87.04,-392.35C59.8,-380.7 29.71,-362.41 13.88,-335 -7.46,-298.05 -0.65,-279.12 13.88,-239 44,-155.85 121.17,-82.14 164.73,-45.42"/>
|
||||
<polygon fill="green" stroke="green" points="166.86,-48.2 172.32,-39.12 162.39,-42.81 166.86,-48.2"/>
|
||||
<text text-anchor="middle" x="39.75" y="-207.7" font-family="Arial" font-size="14.00" fill="green">con</text>
|
||||
</g>
|
||||
<!-- guuid=52b87523-0b00-0000-2742-7dc25b040000 pid=1115 -->
|
||||
<g id="node4" class="node">
|
||||
<title>guuid=52b87523-0b00-0000-2742-7dc25b040000 pid=1115</title>
|
||||
<path fill="white" stroke="black" d="M34.5,-269C34.5,-269 123.25,-269 123.25,-269 129.25,-269 135.25,-275 135.25,-281 135.25,-281 135.25,-293 135.25,-293 135.25,-299 129.25,-305 123.25,-305 123.25,-305 34.5,-305 34.5,-305 28.5,-305 22.5,-299 22.5,-293 22.5,-293 22.5,-281 22.5,-281 22.5,-275 28.5,-269 34.5,-269"/>
|
||||
<text text-anchor="middle" x="78.88" y="-281.57" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=ce196323-0b00-0000-2742-7dc25a040000 pid=1114->guuid=52b87523-0b00-0000-2742-7dc25b040000 pid=1115 -->
|
||||
<g id="edge3" class="edge">
|
||||
<title>guuid=ce196323-0b00-0000-2742-7dc25a040000 pid=1114->guuid=52b87523-0b00-0000-2742-7dc25b040000 pid=1115</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M131.5,-386.77C120.66,-366.42 104.9,-336.83 93.45,-315.35"/>
|
||||
<polygon fill="black" stroke="black" points="96.57,-313.76 88.77,-306.58 90.39,-317.05 96.57,-313.76"/>
|
||||
<text text-anchor="middle" x="137" y="-355.45" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=1a137723-0b00-0000-2742-7dc25c040000 pid=1116 -->
|
||||
<g id="node5" class="node">
|
||||
<title>guuid=1a137723-0b00-0000-2742-7dc25c040000 pid=1116</title>
|
||||
<path fill="white" stroke="black" d="M165.5,-269C165.5,-269 254.25,-269 254.25,-269 260.25,-269 266.25,-275 266.25,-281 266.25,-281 266.25,-293 266.25,-293 266.25,-299 260.25,-305 254.25,-305 254.25,-305 165.5,-305 165.5,-305 159.5,-305 153.5,-299 153.5,-293 153.5,-293 153.5,-281 153.5,-281 153.5,-275 159.5,-269 165.5,-269"/>
|
||||
<text text-anchor="middle" x="209.88" y="-281.57" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=ce196323-0b00-0000-2742-7dc25a040000 pid=1114->guuid=1a137723-0b00-0000-2742-7dc25c040000 pid=1116 -->
|
||||
<g id="edge4" class="edge">
|
||||
<title>guuid=ce196323-0b00-0000-2742-7dc25a040000 pid=1114->guuid=1a137723-0b00-0000-2742-7dc25c040000 pid=1116</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M156.45,-386.77C167.45,-366.42 183.46,-336.83 195.08,-315.35"/>
|
||||
<polygon fill="black" stroke="black" points="198.15,-317.03 199.83,-306.57 191.99,-313.7 198.15,-317.03"/>
|
||||
<text text-anchor="middle" x="189" y="-355.45" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=66368023-0b00-0000-2742-7dc25d040000 pid=1117 -->
|
||||
<g id="node6" class="node">
|
||||
<title>guuid=66368023-0b00-0000-2742-7dc25d040000 pid=1117</title>
|
||||
<path fill="#3b5741" stroke="black" d="M296.38,-239.5C296.38,-239.5 445.38,-239.5 445.38,-239.5 451.38,-239.5 457.38,-245.5 457.38,-251.5 457.38,-251.5 457.38,-322.5 457.38,-322.5 457.38,-328.5 451.38,-334.5 445.38,-334.5 445.38,-334.5 296.38,-334.5 296.38,-334.5 290.38,-334.5 284.38,-328.5 284.38,-322.5 284.38,-322.5 284.38,-251.5 284.38,-251.5 284.38,-245.5 290.38,-239.5 296.38,-239.5"/>
|
||||
<text text-anchor="middle" x="340.75" y="-317.2" font-family="Arial" font-size="14.00" fill="#fff000">/tmp/sample.bin</text>
|
||||
<polyline fill="none" stroke="black" points="284.38,-310.75 397.13,-310.75"/>
|
||||
<text text-anchor="middle" x="340.75" y="-293.45" font-family="Arial" font-size="14.00" fill="#fff000">dns</text>
|
||||
<polyline fill="none" stroke="black" points="284.38,-287 397.13,-287"/>
|
||||
<text text-anchor="middle" x="340.75" y="-269.7" font-family="Arial" font-size="14.00" fill="#fff000">net</text>
|
||||
<polyline fill="none" stroke="black" points="284.38,-263.25 397.13,-263.25"/>
|
||||
<text text-anchor="middle" x="340.75" y="-245.95" font-family="Arial" font-size="14.00" fill="#fff000">send-data</text>
|
||||
<polyline fill="none" stroke="black" points="397.13,-239.5 397.13,-334.5"/>
|
||||
<text text-anchor="middle" x="427.25" y="-281.7" font-family="Arial" font-size="14.00" fill="#fff000">zombie</text>
|
||||
</g>
|
||||
<!-- guuid=ce196323-0b00-0000-2742-7dc25a040000 pid=1114->guuid=66368023-0b00-0000-2742-7dc25d040000 pid=1117 -->
|
||||
<g id="edge5" class="edge">
|
||||
<title>guuid=ce196323-0b00-0000-2742-7dc25a040000 pid=1114->guuid=66368023-0b00-0000-2742-7dc25d040000 pid=1117</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M187.11,-386.77C211.83,-373.48 243.89,-356.25 274.29,-339.91"/>
|
||||
<polygon fill="black" stroke="black" points="275.61,-343.18 282.76,-335.36 272.29,-337.01 275.61,-343.18"/>
|
||||
<text text-anchor="middle" x="259" y="-355.45" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=66368023-0b00-0000-2742-7dc25d040000 pid=1117->8b0a01dc-0728-52c1-8024-c4ba7801b8d6 -->
|
||||
<g id="edge6" class="edge">
|
||||
<title>guuid=66368023-0b00-0000-2742-7dc25d040000 pid=1117->8b0a01dc-0728-52c1-8024-c4ba7801b8d6</title>
|
||||
<path fill="none" stroke="blue" stroke-dasharray="5,2" d="M284.33,-243.84C249.66,-225.09 215.55,-203.61 205.63,-187.25 179.79,-144.66 184.28,-84.11 190,-48.98"/>
|
||||
<polygon fill="blue" stroke="blue" points="193.36,-50.05 191.68,-39.59 186.47,-48.82 193.36,-50.05"/>
|
||||
<text text-anchor="middle" x="239" y="-133.82" font-family="Arial" font-size="14.00" fill="blue">send: 264B</text>
|
||||
</g>
|
||||
<!-- b88ffc53-4532-5b2f-8283-1c460c0170ca -->
|
||||
<g id="node7" class="node">
|
||||
<title>b88ffc53-4532-5b2f-8283-1c460c0170ca</title>
|
||||
<path fill="grey" stroke="black" d="M294.63,-121.25C294.63,-121.25 363.13,-121.25 363.13,-121.25 369.13,-121.25 375.13,-127.25 375.13,-133.25 375.13,-133.25 375.13,-145.25 375.13,-145.25 375.13,-151.25 369.13,-157.25 363.13,-157.25 363.13,-157.25 294.63,-157.25 294.63,-157.25 288.63,-157.25 282.63,-151.25 282.63,-145.25 282.63,-145.25 282.63,-133.25 282.63,-133.25 282.63,-127.25 288.63,-121.25 294.63,-121.25"/>
|
||||
<text text-anchor="middle" x="328.88" y="-133.82" font-family="Arial" font-size="14.00" fill="white">pty.su:33335</text>
|
||||
</g>
|
||||
<!-- guuid=66368023-0b00-0000-2742-7dc25d040000 pid=1117->b88ffc53-4532-5b2f-8283-1c460c0170ca -->
|
||||
<g id="edge7" class="edge">
|
||||
<title>guuid=66368023-0b00-0000-2742-7dc25d040000 pid=1117->b88ffc53-4532-5b2f-8283-1c460c0170ca</title>
|
||||
<path fill="none" stroke="green" stroke-dasharray="5,2" d="M357.36,-239.08C350.66,-215.85 342.8,-188.56 337.03,-168.56"/>
|
||||
<polygon fill="green" stroke="green" points="340.46,-167.8 334.33,-159.16 333.73,-169.73 340.46,-167.8"/>
|
||||
<text text-anchor="middle" x="361.75" y="-207.7" font-family="Arial" font-size="14.00" fill="green">con</text>
|
||||
</g>
|
||||
<!-- guuid=e72c8d23-0b00-0000-2742-7dc25e040000 pid=1118 -->
|
||||
<g id="node8" class="node">
|
||||
<title>guuid=e72c8d23-0b00-0000-2742-7dc25e040000 pid=1118</title>
|
||||
<path fill="#ff3f3f" stroke="black" d="M405.5,-91.75C405.5,-91.75 494.25,-91.75 494.25,-91.75 500.25,-91.75 506.25,-97.75 506.25,-103.75 506.25,-103.75 506.25,-174.75 506.25,-174.75 506.25,-180.75 500.25,-186.75 494.25,-186.75 494.25,-186.75 405.5,-186.75 405.5,-186.75 399.5,-186.75 393.5,-180.75 393.5,-174.75 393.5,-174.75 393.5,-103.75 393.5,-103.75 393.5,-97.75 399.5,-91.75 405.5,-91.75"/>
|
||||
<text text-anchor="middle" x="449.88" y="-169.45" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
<polyline fill="none" stroke="black" points="393.5,-163 506.25,-163"/>
|
||||
<text text-anchor="middle" x="449.88" y="-145.7" font-family="Arial" font-size="14.00">net</text>
|
||||
<polyline fill="none" stroke="black" points="393.5,-139.25 506.25,-139.25"/>
|
||||
<text text-anchor="middle" x="449.88" y="-121.95" font-family="Arial" font-size="14.00">net-scan</text>
|
||||
<polyline fill="none" stroke="black" points="393.5,-115.5 506.25,-115.5"/>
|
||||
<text text-anchor="middle" x="449.88" y="-98.2" font-family="Arial" font-size="14.00">send-data</text>
|
||||
</g>
|
||||
<!-- guuid=66368023-0b00-0000-2742-7dc25d040000 pid=1117->guuid=e72c8d23-0b00-0000-2742-7dc25e040000 pid=1118 -->
|
||||
<g id="edge8" class="edge">
|
||||
<title>guuid=66368023-0b00-0000-2742-7dc25d040000 pid=1117->guuid=e72c8d23-0b00-0000-2742-7dc25e040000 pid=1118</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M396.31,-239.08C403.57,-225.69 411.56,-210.95 419.1,-197.04"/>
|
||||
<polygon fill="black" stroke="black" points="422.08,-198.87 423.77,-188.41 415.93,-195.53 422.08,-198.87"/>
|
||||
<text text-anchor="middle" x="428" y="-207.7" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=e72c8d23-0b00-0000-2742-7dc25e040000 pid=1118->8b0a01dc-0728-52c1-8024-c4ba7801b8d6 -->
|
||||
<g id="edge9" class="edge">
|
||||
<title>guuid=e72c8d23-0b00-0000-2742-7dc25e040000 pid=1118->8b0a01dc-0728-52c1-8024-c4ba7801b8d6</title>
|
||||
<path fill="none" stroke="green" stroke-dasharray="5,2" d="M393.3,-96.4C390.16,-94.58 387.01,-92.85 383.88,-91.25 361.43,-79.82 353.81,-81.84 330.13,-73.25 301.62,-62.91 270.01,-50.59 244.64,-40.49"/>
|
||||
<polygon fill="green" stroke="green" points="246.16,-37.33 235.57,-36.87 243.56,-43.83 246.16,-37.33"/>
|
||||
<text text-anchor="middle" x="340.75" y="-59.95" font-family="Arial" font-size="14.00" fill="green">con</text>
|
||||
</g>
|
||||
<!-- 94105429-224b-52b6-9a21-e4eb622df9a6 -->
|
||||
<g id="node9" class="node">
|
||||
<title>94105429-224b-52b6-9a21-e4eb622df9a6</title>
|
||||
<path fill="grey" stroke="black" d="M267.13,-1.75C267.13,-1.75 356.63,-1.75 356.63,-1.75 362.63,-1.75 368.63,-7.75 368.63,-13.75 368.63,-13.75 368.63,-25.75 368.63,-25.75 368.63,-31.75 362.63,-37.75 356.63,-37.75 356.63,-37.75 267.13,-37.75 267.13,-37.75 261.13,-37.75 255.13,-31.75 255.13,-25.75 255.13,-25.75 255.13,-13.75 255.13,-13.75 255.13,-7.75 261.13,-1.75 267.13,-1.75"/>
|
||||
<text text-anchor="middle" x="311.88" y="-14.32" font-family="Arial" font-size="14.00" fill="white">197.15.8.245:23</text>
|
||||
</g>
|
||||
<!-- guuid=e72c8d23-0b00-0000-2742-7dc25e040000 pid=1118->94105429-224b-52b6-9a21-e4eb622df9a6 -->
|
||||
<g id="edge10" class="edge">
|
||||
<title>guuid=e72c8d23-0b00-0000-2742-7dc25e040000 pid=1118->94105429-224b-52b6-9a21-e4eb622df9a6</title>
|
||||
<path fill="none" stroke="blue" stroke-dasharray="5,2" d="M394.94,-91.47C376.47,-75.74 356.59,-58.82 340.91,-45.47"/>
|
||||
<polygon fill="blue" stroke="blue" points="343.25,-42.86 333.36,-39.04 338.71,-48.19 343.25,-42.86"/>
|
||||
<text text-anchor="middle" x="402.25" y="-59.95" font-family="Arial" font-size="14.00" fill="blue">send: 40B</text>
|
||||
</g>
|
||||
<!-- 998ba047-bf20-58bd-b6ae-c5da3e2cf778 -->
|
||||
<g id="node10" class="node">
|
||||
<title>998ba047-bf20-58bd-b6ae-c5da3e2cf778</title>
|
||||
<path fill="grey" stroke="black" d="M398.38,-1.75C398.38,-1.75 495.38,-1.75 495.38,-1.75 501.38,-1.75 507.38,-7.75 507.38,-13.75 507.38,-13.75 507.38,-25.75 507.38,-25.75 507.38,-31.75 501.38,-37.75 495.38,-37.75 495.38,-37.75 398.38,-37.75 398.38,-37.75 392.38,-37.75 386.38,-31.75 386.38,-25.75 386.38,-25.75 386.38,-13.75 386.38,-13.75 386.38,-7.75 392.38,-1.75 398.38,-1.75"/>
|
||||
<text text-anchor="middle" x="446.88" y="-14.32" font-family="Arial" font-size="14.00" fill="white">94.121.73.170:23</text>
|
||||
</g>
|
||||
<!-- guuid=e72c8d23-0b00-0000-2742-7dc25e040000 pid=1118->998ba047-bf20-58bd-b6ae-c5da3e2cf778 -->
|
||||
<g id="edge11" class="edge">
|
||||
<title>guuid=e72c8d23-0b00-0000-2742-7dc25e040000 pid=1118->998ba047-bf20-58bd-b6ae-c5da3e2cf778</title>
|
||||
<path fill="none" stroke="blue" stroke-dasharray="5,2" d="M448.68,-91.47C448.32,-77.21 447.93,-61.97 447.61,-49.3"/>
|
||||
<polygon fill="blue" stroke="blue" points="451.11,-49.48 447.36,-39.58 444.11,-49.66 451.11,-49.48"/>
|
||||
<text text-anchor="middle" x="478.25" y="-59.95" font-family="Arial" font-size="14.00" fill="blue">send: 40B</text>
|
||||
</g>
|
||||
<!-- guuid=e72c8d23-0b00-0000-2742-7dc25e040000 pid=1118|send-data -->
|
||||
<g id="node11" class="node">
|
||||
<title>guuid=e72c8d23-0b00-0000-2742-7dc25e040000 pid=1118|send-data</title>
|
||||
<path fill="grey" stroke="black" d="M736,-39.5C736,-39.5 537.75,-39.5 537.75,-39.5 531.75,-39.5 525.75,-33.5 525.75,-27.5 525.75,-27.5 525.75,-12 525.75,-12 525.75,-6 531.75,0 537.75,0 537.75,0 736,0 736,0 742,0 748,-6 748,-12 748,-12 748,-27.5 748,-27.5 748,-33.5 742,-39.5 736,-39.5"/>
|
||||
<text text-anchor="middle" x="636.88" y="-22.2" font-family="Arial" font-size="14.00" fill="white">send-data to 307377 IP addresses</text>
|
||||
<text text-anchor="middle" x="636.88" y="-6.45" font-family="Arial" font-size="14.00" fill="white">review logs to see them all</text>
|
||||
</g>
|
||||
<!-- guuid=e72c8d23-0b00-0000-2742-7dc25e040000 pid=1118->guuid=e72c8d23-0b00-0000-2742-7dc25e040000 pid=1118|send-data -->
|
||||
<g id="edge12" class="edge">
|
||||
<title>guuid=e72c8d23-0b00-0000-2742-7dc25e040000 pid=1118->guuid=e72c8d23-0b00-0000-2742-7dc25e040000 pid=1118|send-data</title>
|
||||
<path fill="none" stroke="blue" stroke-dasharray="5,2" d="M506.74,-102.52C535.81,-84.26 570.47,-62.47 596.72,-45.98"/>
|
||||
<polygon fill="blue" stroke="blue" points="598.45,-49.03 605.05,-40.75 594.72,-43.1 598.45,-49.03"/>
|
||||
<text text-anchor="middle" x="590.5" y="-59.95" font-family="Arial" font-size="14.00" fill="blue">send</text>
|
||||
</g>
|
||||
<!-- guuid=78439723-0b00-0000-2742-7dc25f040000 pid=1119 -->
|
||||
<g id="node12" class="node">
|
||||
<title>guuid=78439723-0b00-0000-2742-7dc25f040000 pid=1119</title>
|
||||
<path fill="white" stroke="black" d="M778.5,-1.75C778.5,-1.75 867.25,-1.75 867.25,-1.75 873.25,-1.75 879.25,-7.75 879.25,-13.75 879.25,-13.75 879.25,-25.75 879.25,-25.75 879.25,-31.75 873.25,-37.75 867.25,-37.75 867.25,-37.75 778.5,-37.75 778.5,-37.75 772.5,-37.75 766.5,-31.75 766.5,-25.75 766.5,-25.75 766.5,-13.75 766.5,-13.75 766.5,-7.75 772.5,-1.75 778.5,-1.75"/>
|
||||
<text text-anchor="middle" x="822.88" y="-14.32" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=e72c8d23-0b00-0000-2742-7dc25e040000 pid=1118->guuid=78439723-0b00-0000-2742-7dc25f040000 pid=1119 -->
|
||||
<g id="edge13" class="edge">
|
||||
<title>guuid=e72c8d23-0b00-0000-2742-7dc25e040000 pid=1118->guuid=78439723-0b00-0000-2742-7dc25f040000 pid=1119</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M506.53,-120.4C573.79,-99.21 685.8,-63.93 756.91,-41.53"/>
|
||||
<polygon fill="black" stroke="black" points="757.59,-44.99 766.08,-38.64 755.49,-38.31 757.59,-44.99"/>
|
||||
<text text-anchor="middle" x="718" y="-59.95" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
</g>
|
||||
</svg>
|
||||
|
After Width: | Height: | Size: 19 KiB |
|
|
@ -0,0 +1,214 @@
|
|||
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
|
||||
<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN"
|
||||
"http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
|
||||
<!-- Generated by graphviz version 11.0.0 (0)
|
||||
-->
|
||||
<!-- Pages: 1 -->
|
||||
<svg width="580pt" height="683pt"
|
||||
viewBox="0.00 0.00 579.88 683.25" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink">
|
||||
<g id="graph0" class="graph" transform="scale(1 1) rotate(0) translate(4 679.25)">
|
||||
<polygon fill="white" stroke="none" points="-4,4 -4,-679.25 575.88,-679.25 575.88,4 -4,4"/>
|
||||
<!-- guuid=01272926-0b00-0000-79d1-e3c959040000 pid=1113 -->
|
||||
<g id="node1" class="node">
|
||||
<title>guuid=01272926-0b00-0000-79d1-e3c959040000 pid=1113</title>
|
||||
<path fill="white" stroke="black" d="M243.75,-638.75C243.75,-638.75 313,-638.75 313,-638.75 319,-638.75 325,-644.75 325,-650.75 325,-650.75 325,-662.75 325,-662.75 325,-668.75 319,-674.75 313,-674.75 313,-674.75 243.75,-674.75 243.75,-674.75 237.75,-674.75 231.75,-668.75 231.75,-662.75 231.75,-662.75 231.75,-650.75 231.75,-650.75 231.75,-644.75 237.75,-638.75 243.75,-638.75"/>
|
||||
<text text-anchor="middle" x="278.38" y="-651.33" font-family="Arial" font-size="14.00">/usr/bin/sudo</text>
|
||||
</g>
|
||||
<!-- guuid=bbcd9627-0b00-0000-79d1-e3c95a040000 pid=1114 -->
|
||||
<g id="node2" class="node">
|
||||
<title>guuid=bbcd9627-0b00-0000-79d1-e3c95a040000 pid=1114</title>
|
||||
<path fill="#ffbfbf" stroke="black" d="M234,-538.5C234,-538.5 322.75,-538.5 322.75,-538.5 328.75,-538.5 334.75,-544.5 334.75,-550.5 334.75,-550.5 334.75,-574 334.75,-574 334.75,-580 328.75,-586 322.75,-586 322.75,-586 234,-586 234,-586 228,-586 222,-580 222,-574 222,-574 222,-550.5 222,-550.5 222,-544.5 228,-538.5 234,-538.5"/>
|
||||
<text text-anchor="middle" x="278.38" y="-568.7" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
<polyline fill="none" stroke="black" points="222,-562.25 334.75,-562.25"/>
|
||||
<text text-anchor="middle" x="278.38" y="-544.95" font-family="Arial" font-size="14.00">net</text>
|
||||
</g>
|
||||
<!-- guuid=01272926-0b00-0000-79d1-e3c959040000 pid=1113->guuid=bbcd9627-0b00-0000-79d1-e3c95a040000 pid=1114 -->
|
||||
<g id="edge1" class="edge">
|
||||
<title>guuid=01272926-0b00-0000-79d1-e3c959040000 pid=1113->guuid=bbcd9627-0b00-0000-79d1-e3c95a040000 pid=1114</title>
|
||||
<path fill="none" stroke="black" d="M278.38,-638.35C278.38,-626.82 278.38,-611.31 278.38,-597.38"/>
|
||||
<polygon fill="black" stroke="black" points="281.88,-597.68 278.38,-587.68 274.88,-597.68 281.88,-597.68"/>
|
||||
<text text-anchor="middle" x="299.75" y="-606.95" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- 8b0a01dc-0728-52c1-8024-c4ba7801b8d6 -->
|
||||
<g id="node3" class="node">
|
||||
<title>8b0a01dc-0728-52c1-8024-c4ba7801b8d6</title>
|
||||
<path fill="grey" stroke="black" d="M244.38,-300.75C244.38,-300.75 296.38,-300.75 296.38,-300.75 302.38,-300.75 308.38,-306.75 308.38,-312.75 308.38,-312.75 308.38,-324.75 308.38,-324.75 308.38,-330.75 302.38,-336.75 296.38,-336.75 296.38,-336.75 244.38,-336.75 244.38,-336.75 238.38,-336.75 232.38,-330.75 232.38,-324.75 232.38,-324.75 232.38,-312.75 232.38,-312.75 232.38,-306.75 238.38,-300.75 244.38,-300.75"/>
|
||||
<text text-anchor="middle" x="270.38" y="-313.32" font-family="Arial" font-size="14.00" fill="white">8.8.8.8:53</text>
|
||||
</g>
|
||||
<!-- guuid=bbcd9627-0b00-0000-79d1-e3c95a040000 pid=1114->8b0a01dc-0728-52c1-8024-c4ba7801b8d6 -->
|
||||
<g id="edge2" class="edge">
|
||||
<title>guuid=bbcd9627-0b00-0000-79d1-e3c95a040000 pid=1114->8b0a01dc-0728-52c1-8024-c4ba7801b8d6</title>
|
||||
<path fill="none" stroke="green" stroke-dasharray="5,2" d="M277.61,-538.09C276.14,-493.78 272.94,-397.1 271.33,-348.65"/>
|
||||
<polygon fill="green" stroke="green" points="274.83,-348.55 271,-338.67 267.83,-348.78 274.83,-348.55"/>
|
||||
<text text-anchor="middle" x="287.25" y="-432.82" font-family="Arial" font-size="14.00" fill="green">con</text>
|
||||
</g>
|
||||
<!-- guuid=f725dd27-0b00-0000-79d1-e3c95b040000 pid=1115 -->
|
||||
<g id="node4" class="node">
|
||||
<title>guuid=f725dd27-0b00-0000-79d1-e3c95b040000 pid=1115</title>
|
||||
<path fill="#3b5741" stroke="black" d="M80.88,-390.75C80.88,-390.75 229.88,-390.75 229.88,-390.75 235.88,-390.75 241.88,-396.75 241.88,-402.75 241.88,-402.75 241.88,-473.75 241.88,-473.75 241.88,-479.75 235.88,-485.75 229.88,-485.75 229.88,-485.75 80.88,-485.75 80.88,-485.75 74.88,-485.75 68.88,-479.75 68.88,-473.75 68.88,-473.75 68.88,-402.75 68.88,-402.75 68.88,-396.75 74.88,-390.75 80.88,-390.75"/>
|
||||
<text text-anchor="middle" x="125.25" y="-468.45" font-family="Arial" font-size="14.00" fill="#fff000">/tmp/sample.bin</text>
|
||||
<polyline fill="none" stroke="black" points="68.88,-462 181.62,-462"/>
|
||||
<text text-anchor="middle" x="125.25" y="-444.7" font-family="Arial" font-size="14.00" fill="#fff000">net</text>
|
||||
<polyline fill="none" stroke="black" points="68.88,-438.25 181.62,-438.25"/>
|
||||
<text text-anchor="middle" x="125.25" y="-420.95" font-family="Arial" font-size="14.00" fill="#fff000">net-scan</text>
|
||||
<polyline fill="none" stroke="black" points="68.88,-414.5 181.62,-414.5"/>
|
||||
<text text-anchor="middle" x="125.25" y="-397.2" font-family="Arial" font-size="14.00" fill="#fff000">send-data</text>
|
||||
<polyline fill="none" stroke="black" points="181.62,-390.75 181.62,-485.75"/>
|
||||
<text text-anchor="middle" x="211.75" y="-432.95" font-family="Arial" font-size="14.00" fill="#fff000">zombie</text>
|
||||
</g>
|
||||
<!-- guuid=bbcd9627-0b00-0000-79d1-e3c95a040000 pid=1114->guuid=f725dd27-0b00-0000-79d1-e3c95b040000 pid=1115 -->
|
||||
<g id="edge3" class="edge">
|
||||
<title>guuid=bbcd9627-0b00-0000-79d1-e3c95a040000 pid=1114->guuid=f725dd27-0b00-0000-79d1-e3c95b040000 pid=1115</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M251.62,-538.06C245.14,-532.26 238.31,-525.99 232.12,-520 223.7,-511.84 214.97,-503.02 206.54,-494.3"/>
|
||||
<polygon fill="black" stroke="black" points="209.07,-491.88 199.61,-487.1 204.02,-496.73 209.07,-491.88"/>
|
||||
<text text-anchor="middle" x="248.5" y="-506.7" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=bb4e4328-0b00-0000-79d1-e3c95c040000 pid=1116 -->
|
||||
<g id="node6" class="node">
|
||||
<title>guuid=bb4e4328-0b00-0000-79d1-e3c95c040000 pid=1116</title>
|
||||
<path fill="white" stroke="black" d="M338,-420.25C338,-420.25 426.75,-420.25 426.75,-420.25 432.75,-420.25 438.75,-426.25 438.75,-432.25 438.75,-432.25 438.75,-444.25 438.75,-444.25 438.75,-450.25 432.75,-456.25 426.75,-456.25 426.75,-456.25 338,-456.25 338,-456.25 332,-456.25 326,-450.25 326,-444.25 326,-444.25 326,-432.25 326,-432.25 326,-426.25 332,-420.25 338,-420.25"/>
|
||||
<text text-anchor="middle" x="382.38" y="-432.82" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=bbcd9627-0b00-0000-79d1-e3c95a040000 pid=1114->guuid=bb4e4328-0b00-0000-79d1-e3c95c040000 pid=1116 -->
|
||||
<g id="edge6" class="edge">
|
||||
<title>guuid=bbcd9627-0b00-0000-79d1-e3c95a040000 pid=1114->guuid=bb4e4328-0b00-0000-79d1-e3c95c040000 pid=1116</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M298.18,-538.02C315.92,-517.21 341.9,-486.73 360.3,-465.14"/>
|
||||
<polygon fill="black" stroke="black" points="362.87,-467.52 366.7,-457.64 357.54,-462.98 362.87,-467.52"/>
|
||||
<text text-anchor="middle" x="339.5" y="-506.7" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=f725dd27-0b00-0000-79d1-e3c95b040000 pid=1115->8b0a01dc-0728-52c1-8024-c4ba7801b8d6 -->
|
||||
<g id="edge4" class="edge">
|
||||
<title>guuid=f725dd27-0b00-0000-79d1-e3c95b040000 pid=1115->8b0a01dc-0728-52c1-8024-c4ba7801b8d6</title>
|
||||
<path fill="none" stroke="green" stroke-dasharray="5,2" d="M201.16,-390.47C216.26,-375.04 232.5,-358.45 245.44,-345.22"/>
|
||||
<polygon fill="green" stroke="green" points="247.88,-347.74 252.37,-338.14 242.88,-342.84 247.88,-347.74"/>
|
||||
<text text-anchor="middle" x="244.25" y="-358.95" font-family="Arial" font-size="14.00" fill="green">con</text>
|
||||
</g>
|
||||
<!-- guuid=f725dd27-0b00-0000-79d1-e3c95b040000 pid=1115|send-data -->
|
||||
<g id="node5" class="node">
|
||||
<title>guuid=f725dd27-0b00-0000-79d1-e3c95b040000 pid=1115|send-data</title>
|
||||
<path fill="grey" stroke="black" d="M202.75,-338.5C202.75,-338.5 12,-338.5 12,-338.5 6,-338.5 0,-332.5 0,-326.5 0,-326.5 0,-311 0,-311 0,-305 6,-299 12,-299 12,-299 202.75,-299 202.75,-299 208.75,-299 214.75,-305 214.75,-311 214.75,-311 214.75,-326.5 214.75,-326.5 214.75,-332.5 208.75,-338.5 202.75,-338.5"/>
|
||||
<text text-anchor="middle" x="107.38" y="-321.2" font-family="Arial" font-size="14.00" fill="white">send-data to 40919 IP addresses</text>
|
||||
<text text-anchor="middle" x="107.38" y="-305.45" font-family="Arial" font-size="14.00" fill="white">review logs to see them all</text>
|
||||
</g>
|
||||
<!-- guuid=f725dd27-0b00-0000-79d1-e3c95b040000 pid=1115->guuid=f725dd27-0b00-0000-79d1-e3c95b040000 pid=1115|send-data -->
|
||||
<g id="edge5" class="edge">
|
||||
<title>guuid=f725dd27-0b00-0000-79d1-e3c95b040000 pid=1115->guuid=f725dd27-0b00-0000-79d1-e3c95b040000 pid=1115|send-data</title>
|
||||
<path fill="none" stroke="blue" stroke-dasharray="5,2" d="M136.27,-390.47C130.56,-376.51 124.48,-361.61 119.37,-349.11"/>
|
||||
<polygon fill="blue" stroke="blue" points="122.76,-348.15 115.74,-340.22 116.28,-350.8 122.76,-348.15"/>
|
||||
<text text-anchor="middle" x="144" y="-358.95" font-family="Arial" font-size="14.00" fill="blue">send</text>
|
||||
</g>
|
||||
<!-- guuid=399b5128-0b00-0000-79d1-e3c95d040000 pid=1117 -->
|
||||
<g id="node7" class="node">
|
||||
<title>guuid=399b5128-0b00-0000-79d1-e3c95d040000 pid=1117</title>
|
||||
<path fill="white" stroke="black" d="M338,-300.75C338,-300.75 426.75,-300.75 426.75,-300.75 432.75,-300.75 438.75,-306.75 438.75,-312.75 438.75,-312.75 438.75,-324.75 438.75,-324.75 438.75,-330.75 432.75,-336.75 426.75,-336.75 426.75,-336.75 338,-336.75 338,-336.75 332,-336.75 326,-330.75 326,-324.75 326,-324.75 326,-312.75 326,-312.75 326,-306.75 332,-300.75 338,-300.75"/>
|
||||
<text text-anchor="middle" x="382.38" y="-313.32" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=bb4e4328-0b00-0000-79d1-e3c95c040000 pid=1116->guuid=399b5128-0b00-0000-79d1-e3c95d040000 pid=1117 -->
|
||||
<g id="edge7" class="edge">
|
||||
<title>guuid=bb4e4328-0b00-0000-79d1-e3c95c040000 pid=1116->guuid=399b5128-0b00-0000-79d1-e3c95d040000 pid=1117</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M382.38,-419.91C382.38,-401.17 382.38,-370.98 382.38,-348.64"/>
|
||||
<polygon fill="black" stroke="black" points="385.88,-348.67 382.38,-338.67 378.88,-348.67 385.88,-348.67"/>
|
||||
<text text-anchor="middle" x="398.5" y="-358.95" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=aeec5228-0b00-0000-79d1-e3c95e040000 pid=1118 -->
|
||||
<g id="node8" class="node">
|
||||
<title>guuid=aeec5228-0b00-0000-79d1-e3c95e040000 pid=1118</title>
|
||||
<path fill="white" stroke="black" d="M434,-244.5C434,-244.5 522.75,-244.5 522.75,-244.5 528.75,-244.5 534.75,-250.5 534.75,-256.5 534.75,-256.5 534.75,-268.5 534.75,-268.5 534.75,-274.5 528.75,-280.5 522.75,-280.5 522.75,-280.5 434,-280.5 434,-280.5 428,-280.5 422,-274.5 422,-268.5 422,-268.5 422,-256.5 422,-256.5 422,-250.5 428,-244.5 434,-244.5"/>
|
||||
<text text-anchor="middle" x="478.38" y="-257.07" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=bb4e4328-0b00-0000-79d1-e3c95c040000 pid=1116->guuid=aeec5228-0b00-0000-79d1-e3c95e040000 pid=1118 -->
|
||||
<g id="edge8" class="edge">
|
||||
<title>guuid=bb4e4328-0b00-0000-79d1-e3c95c040000 pid=1116->guuid=aeec5228-0b00-0000-79d1-e3c95e040000 pid=1118</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M395.17,-420.03C409.1,-400.8 431.53,-368.43 447.38,-338.5 455.34,-323.47 462.68,-305.93 468.22,-291.6"/>
|
||||
<polygon fill="black" stroke="black" points="471.47,-292.91 471.72,-282.32 464.92,-290.44 471.47,-292.91"/>
|
||||
<text text-anchor="middle" x="452.5" y="-358.95" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=d1b1c2e1-0b00-0000-79d1-e3c961040000 pid=1121 -->
|
||||
<g id="node12" class="node">
|
||||
<title>guuid=d1b1c2e1-0b00-0000-79d1-e3c961040000 pid=1121</title>
|
||||
<path fill="white" stroke="black" d="M322,-189.5C322,-189.5 410.75,-189.5 410.75,-189.5 416.75,-189.5 422.75,-195.5 422.75,-201.5 422.75,-201.5 422.75,-213.5 422.75,-213.5 422.75,-219.5 416.75,-225.5 410.75,-225.5 410.75,-225.5 322,-225.5 322,-225.5 316,-225.5 310,-219.5 310,-213.5 310,-213.5 310,-201.5 310,-201.5 310,-195.5 316,-189.5 322,-189.5"/>
|
||||
<text text-anchor="middle" x="366.38" y="-202.07" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=399b5128-0b00-0000-79d1-e3c95d040000 pid=1117->guuid=d1b1c2e1-0b00-0000-79d1-e3c961040000 pid=1121 -->
|
||||
<g id="edge12" class="edge">
|
||||
<title>guuid=399b5128-0b00-0000-79d1-e3c95d040000 pid=1117->guuid=d1b1c2e1-0b00-0000-79d1-e3c961040000 pid=1121</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M379.88,-300.68C377.39,-283.7 373.53,-257.35 370.57,-237.16"/>
|
||||
<polygon fill="black" stroke="black" points="374.04,-236.7 369.13,-227.31 367.12,-237.71 374.04,-236.7"/>
|
||||
<text text-anchor="middle" x="392.5" y="-257.07" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=3c3fbd28-0b00-0000-79d1-e3c95f040000 pid=1119 -->
|
||||
<g id="node9" class="node">
|
||||
<title>guuid=3c3fbd28-0b00-0000-79d1-e3c95f040000 pid=1119</title>
|
||||
<path fill="#3b5741" stroke="black" d="M410.88,-89.25C410.88,-89.25 559.88,-89.25 559.88,-89.25 565.88,-89.25 571.88,-95.25 571.88,-101.25 571.88,-101.25 571.88,-124.75 571.88,-124.75 571.88,-130.75 565.88,-136.75 559.88,-136.75 559.88,-136.75 410.88,-136.75 410.88,-136.75 404.88,-136.75 398.88,-130.75 398.88,-124.75 398.88,-124.75 398.88,-101.25 398.88,-101.25 398.88,-95.25 404.88,-89.25 410.88,-89.25"/>
|
||||
<text text-anchor="middle" x="455.25" y="-119.45" font-family="Arial" font-size="14.00" fill="#fff000">/tmp/sample.bin</text>
|
||||
<polyline fill="none" stroke="black" points="398.88,-113 511.62,-113"/>
|
||||
<text text-anchor="middle" x="455.25" y="-95.7" font-family="Arial" font-size="14.00" fill="#fff000">net</text>
|
||||
<polyline fill="none" stroke="black" points="511.62,-89.25 511.62,-136.75"/>
|
||||
<text text-anchor="middle" x="541.75" y="-107.95" font-family="Arial" font-size="14.00" fill="#fff000">zombie</text>
|
||||
</g>
|
||||
<!-- guuid=aeec5228-0b00-0000-79d1-e3c95e040000 pid=1118->guuid=3c3fbd28-0b00-0000-79d1-e3c95f040000 pid=1119 -->
|
||||
<g id="edge9" class="edge">
|
||||
<title>guuid=aeec5228-0b00-0000-79d1-e3c95e040000 pid=1118->guuid=3c3fbd28-0b00-0000-79d1-e3c95f040000 pid=1119</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M479.21,-244C480.32,-220.49 482.33,-178.2 483.75,-148.24"/>
|
||||
<polygon fill="black" stroke="black" points="487.23,-148.71 484.21,-138.55 480.24,-148.38 487.23,-148.71"/>
|
||||
<text text-anchor="middle" x="497.5" y="-202.07" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- dc94e27b-d2f9-54c8-8b08-da9fbb0a3023 -->
|
||||
<g id="node10" class="node">
|
||||
<title>dc94e27b-d2f9-54c8-8b08-da9fbb0a3023</title>
|
||||
<path fill="grey" stroke="black" d="M250.62,-0.5C250.62,-0.5 370.12,-0.5 370.12,-0.5 376.12,-0.5 382.12,-6.5 382.12,-12.5 382.12,-12.5 382.12,-24.5 382.12,-24.5 382.12,-30.5 376.12,-36.5 370.12,-36.5 370.12,-36.5 250.62,-36.5 250.62,-36.5 244.62,-36.5 238.62,-30.5 238.62,-24.5 238.62,-24.5 238.62,-12.5 238.62,-12.5 238.62,-6.5 244.62,-0.5 250.62,-0.5"/>
|
||||
<text text-anchor="middle" x="310.38" y="-13.07" font-family="Arial" font-size="14.00" fill="white">85.239.34.203:11025</text>
|
||||
</g>
|
||||
<!-- guuid=3c3fbd28-0b00-0000-79d1-e3c95f040000 pid=1119->dc94e27b-d2f9-54c8-8b08-da9fbb0a3023 -->
|
||||
<g id="edge10" class="edge">
|
||||
<title>guuid=3c3fbd28-0b00-0000-79d1-e3c95f040000 pid=1119->dc94e27b-d2f9-54c8-8b08-da9fbb0a3023</title>
|
||||
<path fill="none" stroke="green" stroke-dasharray="5,2" d="M446.77,-88.75C428.64,-78.1 406.61,-65.53 386.38,-55 377.83,-50.56 368.63,-46.04 359.68,-41.78"/>
|
||||
<polygon fill="green" stroke="green" points="361.26,-38.66 350.72,-37.57 358.28,-44.99 361.26,-38.66"/>
|
||||
<text text-anchor="middle" x="424.25" y="-57.45" font-family="Arial" font-size="14.00" fill="green">con</text>
|
||||
</g>
|
||||
<!-- a1dfd28d-1233-579a-9946-6915fe63e53f -->
|
||||
<g id="node11" class="node">
|
||||
<title>a1dfd28d-1233-579a-9946-6915fe63e53f</title>
|
||||
<path fill="grey" stroke="black" d="M415.12,-0.5C415.12,-0.5 549.62,-0.5 549.62,-0.5 555.62,-0.5 561.62,-6.5 561.62,-12.5 561.62,-12.5 561.62,-24.5 561.62,-24.5 561.62,-30.5 555.62,-36.5 549.62,-36.5 549.62,-36.5 415.12,-36.5 415.12,-36.5 409.12,-36.5 403.12,-30.5 403.12,-24.5 403.12,-24.5 403.12,-12.5 403.12,-12.5 403.12,-6.5 409.12,-0.5 415.12,-0.5"/>
|
||||
<text text-anchor="middle" x="482.38" y="-13.07" font-family="Arial" font-size="14.00" fill="white">255.255.255.255:11025</text>
|
||||
</g>
|
||||
<!-- guuid=3c3fbd28-0b00-0000-79d1-e3c95f040000 pid=1119->a1dfd28d-1233-579a-9946-6915fe63e53f -->
|
||||
<g id="edge11" class="edge">
|
||||
<title>guuid=3c3fbd28-0b00-0000-79d1-e3c95f040000 pid=1119->a1dfd28d-1233-579a-9946-6915fe63e53f</title>
|
||||
<path fill="none" stroke="red" stroke-dasharray="5,2" d="M484.63,-89.13C484.23,-76.76 483.73,-61.37 483.31,-48.2"/>
|
||||
<polygon fill="red" stroke="red" points="486.81,-48.27 482.99,-38.39 479.81,-48.5 486.81,-48.27"/>
|
||||
<text text-anchor="middle" x="494.25" y="-57.45" font-family="Arial" font-size="14.00" fill="red">con</text>
|
||||
</g>
|
||||
<!-- guuid=36d3c4e1-0b00-0000-79d1-e3c962040000 pid=1122 -->
|
||||
<g id="node13" class="node">
|
||||
<title>guuid=36d3c4e1-0b00-0000-79d1-e3c962040000 pid=1122</title>
|
||||
<path fill="#3b5741" stroke="black" d="M219.88,-89.25C219.88,-89.25 368.88,-89.25 368.88,-89.25 374.88,-89.25 380.88,-95.25 380.88,-101.25 380.88,-101.25 380.88,-124.75 380.88,-124.75 380.88,-130.75 374.88,-136.75 368.88,-136.75 368.88,-136.75 219.88,-136.75 219.88,-136.75 213.88,-136.75 207.88,-130.75 207.88,-124.75 207.88,-124.75 207.88,-101.25 207.88,-101.25 207.88,-95.25 213.88,-89.25 219.88,-89.25"/>
|
||||
<text text-anchor="middle" x="264.25" y="-119.45" font-family="Arial" font-size="14.00" fill="#fff000">/tmp/sample.bin</text>
|
||||
<polyline fill="none" stroke="black" points="207.88,-113 320.62,-113"/>
|
||||
<text text-anchor="middle" x="264.25" y="-95.7" font-family="Arial" font-size="14.00" fill="#fff000">net</text>
|
||||
<polyline fill="none" stroke="black" points="320.62,-89.25 320.62,-136.75"/>
|
||||
<text text-anchor="middle" x="350.75" y="-107.95" font-family="Arial" font-size="14.00" fill="#fff000">zombie</text>
|
||||
</g>
|
||||
<!-- guuid=d1b1c2e1-0b00-0000-79d1-e3c961040000 pid=1121->guuid=36d3c4e1-0b00-0000-79d1-e3c962040000 pid=1122 -->
|
||||
<g id="edge13" class="edge">
|
||||
<title>guuid=d1b1c2e1-0b00-0000-79d1-e3c961040000 pid=1121->guuid=36d3c4e1-0b00-0000-79d1-e3c962040000 pid=1122</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M352.83,-189.1C343.32,-176.88 330.32,-160.18 319,-145.64"/>
|
||||
<polygon fill="black" stroke="black" points="322.05,-143.85 313.14,-138.11 316.52,-148.15 322.05,-143.85"/>
|
||||
<text text-anchor="middle" x="352.5" y="-157.7" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=36d3c4e1-0b00-0000-79d1-e3c962040000 pid=1122->dc94e27b-d2f9-54c8-8b08-da9fbb0a3023 -->
|
||||
<g id="edge14" class="edge">
|
||||
<title>guuid=36d3c4e1-0b00-0000-79d1-e3c962040000 pid=1122->dc94e27b-d2f9-54c8-8b08-da9fbb0a3023</title>
|
||||
<path fill="none" stroke="green" stroke-dasharray="5,2" d="M298.33,-89.13C300.47,-76.76 303.13,-61.37 305.41,-48.2"/>
|
||||
<polygon fill="green" stroke="green" points="308.86,-48.82 307.11,-38.37 301.96,-47.63 308.86,-48.82"/>
|
||||
<text text-anchor="middle" x="314.25" y="-57.45" font-family="Arial" font-size="14.00" fill="green">con</text>
|
||||
</g>
|
||||
<!-- guuid=36d3c4e1-0b00-0000-79d1-e3c962040000 pid=1122->a1dfd28d-1233-579a-9946-6915fe63e53f -->
|
||||
<g id="edge15" class="edge">
|
||||
<title>guuid=36d3c4e1-0b00-0000-79d1-e3c962040000 pid=1122->a1dfd28d-1233-579a-9946-6915fe63e53f</title>
|
||||
<path fill="none" stroke="red" stroke-dasharray="5,2" d="M316.45,-88.75C328.55,-77.19 344.35,-63.83 360.62,-55 370.82,-49.47 381.97,-44.71 393.25,-40.64"/>
|
||||
<polygon fill="red" stroke="red" points="394.32,-43.98 402.66,-37.44 392.06,-37.35 394.32,-43.98"/>
|
||||
<text text-anchor="middle" x="371.25" y="-57.45" font-family="Arial" font-size="14.00" fill="red">con</text>
|
||||
</g>
|
||||
</g>
|
||||
</svg>
|
||||
|
After Width: | Height: | Size: 21 KiB |
|
|
@ -0,0 +1,31 @@
|
|||
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
|
||||
<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN"
|
||||
"http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
|
||||
<!-- Generated by graphviz version 11.0.0 (0)
|
||||
-->
|
||||
<!-- Pages: 1 -->
|
||||
<svg width="121pt" height="134pt"
|
||||
viewBox="0.00 0.00 120.75 133.75" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink">
|
||||
<g id="graph0" class="graph" transform="scale(1 1) rotate(0) translate(4 129.75)">
|
||||
<polygon fill="white" stroke="none" points="-4,4 -4,-129.75 116.75,-129.75 116.75,4 -4,4"/>
|
||||
<!-- guuid=31486530-0b00-0000-d458-7b1f58040000 pid=1112 -->
|
||||
<g id="node1" class="node">
|
||||
<title>guuid=31486530-0b00-0000-d458-7b1f58040000 pid=1112</title>
|
||||
<path fill="white" stroke="black" d="M21.75,-89.25C21.75,-89.25 91,-89.25 91,-89.25 97,-89.25 103,-95.25 103,-101.25 103,-101.25 103,-113.25 103,-113.25 103,-119.25 97,-125.25 91,-125.25 91,-125.25 21.75,-125.25 21.75,-125.25 15.75,-125.25 9.75,-119.25 9.75,-113.25 9.75,-113.25 9.75,-101.25 9.75,-101.25 9.75,-95.25 15.75,-89.25 21.75,-89.25"/>
|
||||
<text text-anchor="middle" x="56.38" y="-101.83" font-family="Arial" font-size="14.00">/usr/bin/sudo</text>
|
||||
</g>
|
||||
<!-- guuid=41fb7f31-0b00-0000-d458-7b1f59040000 pid=1113 -->
|
||||
<g id="node2" class="node">
|
||||
<title>guuid=41fb7f31-0b00-0000-d458-7b1f59040000 pid=1113</title>
|
||||
<path fill="white" stroke="black" d="M12,-0.5C12,-0.5 100.75,-0.5 100.75,-0.5 106.75,-0.5 112.75,-6.5 112.75,-12.5 112.75,-12.5 112.75,-24.5 112.75,-24.5 112.75,-30.5 106.75,-36.5 100.75,-36.5 100.75,-36.5 12,-36.5 12,-36.5 6,-36.5 0,-30.5 0,-24.5 0,-24.5 0,-12.5 0,-12.5 0,-6.5 6,-0.5 12,-0.5"/>
|
||||
<text text-anchor="middle" x="56.38" y="-13.07" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=31486530-0b00-0000-d458-7b1f58040000 pid=1112->guuid=41fb7f31-0b00-0000-d458-7b1f59040000 pid=1113 -->
|
||||
<g id="edge1" class="edge">
|
||||
<title>guuid=31486530-0b00-0000-d458-7b1f58040000 pid=1112->guuid=41fb7f31-0b00-0000-d458-7b1f59040000 pid=1113</title>
|
||||
<path fill="none" stroke="black" d="M56.38,-89.11C56.38,-77.42 56.38,-61.67 56.38,-48.1"/>
|
||||
<polygon fill="black" stroke="black" points="59.88,-48.41 56.38,-38.41 52.88,-48.41 59.88,-48.41"/>
|
||||
<text text-anchor="middle" x="77.75" y="-57.45" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
</g>
|
||||
</svg>
|
||||
|
After Width: | Height: | Size: 2.4 KiB |
File diff suppressed because it is too large
Load diff
|
After Width: | Height: | Size: 125 KiB |
|
|
@ -0,0 +1,61 @@
|
|||
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
|
||||
<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN"
|
||||
"http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
|
||||
<!-- Generated by graphviz version 11.0.0 (0)
|
||||
-->
|
||||
<!-- Pages: 1 -->
|
||||
<svg width="181pt" height="323pt"
|
||||
viewBox="0.00 0.00 181.00 322.75" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink">
|
||||
<g id="graph0" class="graph" transform="scale(1 1) rotate(0) translate(4 318.75)">
|
||||
<polygon fill="white" stroke="none" points="-4,4 -4,-318.75 177,-318.75 177,4 -4,4"/>
|
||||
<!-- guuid=7f31842b-0b00-0000-8cf8-69ff59040000 pid=1113 -->
|
||||
<g id="node1" class="node">
|
||||
<title>guuid=7f31842b-0b00-0000-8cf8-69ff59040000 pid=1113</title>
|
||||
<path fill="white" stroke="black" d="M51.88,-278.25C51.88,-278.25 121.12,-278.25 121.12,-278.25 127.12,-278.25 133.12,-284.25 133.12,-290.25 133.12,-290.25 133.12,-302.25 133.12,-302.25 133.12,-308.25 127.12,-314.25 121.12,-314.25 121.12,-314.25 51.88,-314.25 51.88,-314.25 45.88,-314.25 39.88,-308.25 39.88,-302.25 39.88,-302.25 39.88,-290.25 39.88,-290.25 39.88,-284.25 45.88,-278.25 51.88,-278.25"/>
|
||||
<text text-anchor="middle" x="86.5" y="-290.82" font-family="Arial" font-size="14.00">/usr/bin/sudo</text>
|
||||
</g>
|
||||
<!-- guuid=3de8402c-0b00-0000-8cf8-69ff5a040000 pid=1114 -->
|
||||
<g id="node2" class="node">
|
||||
<title>guuid=3de8402c-0b00-0000-8cf8-69ff5a040000 pid=1114</title>
|
||||
<path fill="white" stroke="black" d="M42.12,-189.5C42.12,-189.5 130.88,-189.5 130.88,-189.5 136.88,-189.5 142.88,-195.5 142.88,-201.5 142.88,-201.5 142.88,-213.5 142.88,-213.5 142.88,-219.5 136.88,-225.5 130.88,-225.5 130.88,-225.5 42.12,-225.5 42.12,-225.5 36.12,-225.5 30.12,-219.5 30.12,-213.5 30.12,-213.5 30.12,-201.5 30.12,-201.5 30.12,-195.5 36.12,-189.5 42.12,-189.5"/>
|
||||
<text text-anchor="middle" x="86.5" y="-202.07" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=7f31842b-0b00-0000-8cf8-69ff59040000 pid=1113->guuid=3de8402c-0b00-0000-8cf8-69ff5a040000 pid=1114 -->
|
||||
<g id="edge1" class="edge">
|
||||
<title>guuid=7f31842b-0b00-0000-8cf8-69ff59040000 pid=1113->guuid=3de8402c-0b00-0000-8cf8-69ff5a040000 pid=1114</title>
|
||||
<path fill="none" stroke="black" d="M86.5,-278.11C86.5,-266.42 86.5,-250.67 86.5,-237.1"/>
|
||||
<polygon fill="black" stroke="black" points="90,-237.41 86.5,-227.41 83,-237.41 90,-237.41"/>
|
||||
<text text-anchor="middle" x="107.88" y="-246.45" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=b54c522c-0b00-0000-8cf8-69ff5b040000 pid=1115 -->
|
||||
<g id="node3" class="node">
|
||||
<title>guuid=b54c522c-0b00-0000-8cf8-69ff5b040000 pid=1115</title>
|
||||
<path fill="#3b5741" stroke="black" d="M12,-89.25C12,-89.25 161,-89.25 161,-89.25 167,-89.25 173,-95.25 173,-101.25 173,-101.25 173,-124.75 173,-124.75 173,-130.75 167,-136.75 161,-136.75 161,-136.75 12,-136.75 12,-136.75 6,-136.75 0,-130.75 0,-124.75 0,-124.75 0,-101.25 0,-101.25 0,-95.25 6,-89.25 12,-89.25"/>
|
||||
<text text-anchor="middle" x="56.38" y="-119.45" font-family="Arial" font-size="14.00" fill="#fff000">/tmp/sample.bin</text>
|
||||
<polyline fill="none" stroke="black" points="0,-113 112.75,-113"/>
|
||||
<text text-anchor="middle" x="56.38" y="-95.7" font-family="Arial" font-size="14.00" fill="#fff000">net</text>
|
||||
<polyline fill="none" stroke="black" points="112.75,-89.25 112.75,-136.75"/>
|
||||
<text text-anchor="middle" x="142.88" y="-107.95" font-family="Arial" font-size="14.00" fill="#fff000">zombie</text>
|
||||
</g>
|
||||
<!-- guuid=3de8402c-0b00-0000-8cf8-69ff5a040000 pid=1114->guuid=b54c522c-0b00-0000-8cf8-69ff5b040000 pid=1115 -->
|
||||
<g id="edge2" class="edge">
|
||||
<title>guuid=3de8402c-0b00-0000-8cf8-69ff5a040000 pid=1114->guuid=b54c522c-0b00-0000-8cf8-69ff5b040000 pid=1115</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M86.5,-189.1C86.5,-177.57 86.5,-162.06 86.5,-148.13"/>
|
||||
<polygon fill="black" stroke="black" points="90,-148.43 86.5,-138.43 83,-148.43 90,-148.43"/>
|
||||
<text text-anchor="middle" x="102.62" y="-157.7" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- bad43607-e301-542b-b465-9a4ecd91b4de -->
|
||||
<g id="node4" class="node">
|
||||
<title>bad43607-e301-542b-b465-9a4ecd91b4de</title>
|
||||
<path fill="grey" stroke="black" d="M30.5,-0.5C30.5,-0.5 142.5,-0.5 142.5,-0.5 148.5,-0.5 154.5,-6.5 154.5,-12.5 154.5,-12.5 154.5,-24.5 154.5,-24.5 154.5,-30.5 148.5,-36.5 142.5,-36.5 142.5,-36.5 30.5,-36.5 30.5,-36.5 24.5,-36.5 18.5,-30.5 18.5,-24.5 18.5,-24.5 18.5,-12.5 18.5,-12.5 18.5,-6.5 24.5,-0.5 30.5,-0.5"/>
|
||||
<text text-anchor="middle" x="86.5" y="-13.07" font-family="Arial" font-size="14.00" fill="white">110.41.14.58:46001</text>
|
||||
</g>
|
||||
<!-- guuid=b54c522c-0b00-0000-8cf8-69ff5b040000 pid=1115->bad43607-e301-542b-b465-9a4ecd91b4de -->
|
||||
<g id="edge3" class="edge">
|
||||
<title>guuid=b54c522c-0b00-0000-8cf8-69ff5b040000 pid=1115->bad43607-e301-542b-b465-9a4ecd91b4de</title>
|
||||
<path fill="none" stroke="red" stroke-dasharray="5,2" d="M86.5,-89.13C86.5,-76.76 86.5,-61.37 86.5,-48.2"/>
|
||||
<polygon fill="red" stroke="red" points="90,-48.39 86.5,-38.39 83,-48.39 90,-48.39"/>
|
||||
<text text-anchor="middle" x="97.38" y="-57.45" font-family="Arial" font-size="14.00" fill="red">con</text>
|
||||
</g>
|
||||
</g>
|
||||
</svg>
|
||||
|
After Width: | Height: | Size: 5.3 KiB |
|
|
@ -0,0 +1,91 @@
|
|||
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
|
||||
<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN"
|
||||
"http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
|
||||
<!-- Generated by graphviz version 11.0.0 (0)
|
||||
-->
|
||||
<!-- Pages: 1 -->
|
||||
<svg width="245pt" height="447pt"
|
||||
viewBox="0.00 0.00 244.50 446.75" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink">
|
||||
<g id="graph0" class="graph" transform="scale(1 1) rotate(0) translate(4 442.75)">
|
||||
<polygon fill="white" stroke="none" points="-4,4 -4,-442.75 240.5,-442.75 240.5,4 -4,4"/>
|
||||
<!-- guuid=56bd9127-0b00-0000-7c0a-19cb58040000 pid=1112 -->
|
||||
<g id="node1" class="node">
|
||||
<title>guuid=56bd9127-0b00-0000-7c0a-19cb58040000 pid=1112</title>
|
||||
<path fill="white" stroke="black" d="M25.38,-402.25C25.38,-402.25 94.62,-402.25 94.62,-402.25 100.62,-402.25 106.62,-408.25 106.62,-414.25 106.62,-414.25 106.62,-426.25 106.62,-426.25 106.62,-432.25 100.62,-438.25 94.62,-438.25 94.62,-438.25 25.38,-438.25 25.38,-438.25 19.38,-438.25 13.38,-432.25 13.38,-426.25 13.38,-426.25 13.38,-414.25 13.38,-414.25 13.38,-408.25 19.38,-402.25 25.38,-402.25"/>
|
||||
<text text-anchor="middle" x="60" y="-414.82" font-family="Arial" font-size="14.00">/usr/bin/sudo</text>
|
||||
</g>
|
||||
<!-- guuid=fed9b428-0b00-0000-7c0a-19cb59040000 pid=1113 -->
|
||||
<g id="node2" class="node">
|
||||
<title>guuid=fed9b428-0b00-0000-7c0a-19cb59040000 pid=1113</title>
|
||||
<path fill="#ffbfbf" stroke="black" d="M15.62,-302C15.62,-302 104.38,-302 104.38,-302 110.38,-302 116.38,-308 116.38,-314 116.38,-314 116.38,-337.5 116.38,-337.5 116.38,-343.5 110.38,-349.5 104.38,-349.5 104.38,-349.5 15.62,-349.5 15.62,-349.5 9.62,-349.5 3.62,-343.5 3.62,-337.5 3.62,-337.5 3.62,-314 3.62,-314 3.62,-308 9.62,-302 15.62,-302"/>
|
||||
<text text-anchor="middle" x="60" y="-332.2" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
<polyline fill="none" stroke="black" points="3.62,-325.75 116.38,-325.75"/>
|
||||
<text text-anchor="middle" x="60" y="-308.45" font-family="Arial" font-size="14.00">net</text>
|
||||
</g>
|
||||
<!-- guuid=56bd9127-0b00-0000-7c0a-19cb58040000 pid=1112->guuid=fed9b428-0b00-0000-7c0a-19cb59040000 pid=1113 -->
|
||||
<g id="edge1" class="edge">
|
||||
<title>guuid=56bd9127-0b00-0000-7c0a-19cb58040000 pid=1112->guuid=fed9b428-0b00-0000-7c0a-19cb59040000 pid=1113</title>
|
||||
<path fill="none" stroke="black" d="M60,-401.85C60,-390.32 60,-374.81 60,-360.88"/>
|
||||
<polygon fill="black" stroke="black" points="63.5,-361.18 60,-351.18 56.5,-361.18 63.5,-361.18"/>
|
||||
<text text-anchor="middle" x="81.38" y="-370.45" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- 8b0a01dc-0728-52c1-8024-c4ba7801b8d6 -->
|
||||
<g id="node3" class="node">
|
||||
<title>8b0a01dc-0728-52c1-8024-c4ba7801b8d6</title>
|
||||
<path fill="grey" stroke="black" d="M12,-213.25C12,-213.25 64,-213.25 64,-213.25 70,-213.25 76,-219.25 76,-225.25 76,-225.25 76,-237.25 76,-237.25 76,-243.25 70,-249.25 64,-249.25 64,-249.25 12,-249.25 12,-249.25 6,-249.25 0,-243.25 0,-237.25 0,-237.25 0,-225.25 0,-225.25 0,-219.25 6,-213.25 12,-213.25"/>
|
||||
<text text-anchor="middle" x="38" y="-225.82" font-family="Arial" font-size="14.00" fill="white">8.8.8.8:53</text>
|
||||
</g>
|
||||
<!-- guuid=fed9b428-0b00-0000-7c0a-19cb59040000 pid=1113->8b0a01dc-0728-52c1-8024-c4ba7801b8d6 -->
|
||||
<g id="edge2" class="edge">
|
||||
<title>guuid=fed9b428-0b00-0000-7c0a-19cb59040000 pid=1113->8b0a01dc-0728-52c1-8024-c4ba7801b8d6</title>
|
||||
<path fill="none" stroke="green" stroke-dasharray="5,2" d="M54.56,-301.88C51.59,-289.39 47.88,-273.8 44.73,-260.54"/>
|
||||
<polygon fill="green" stroke="green" points="48.2,-260.02 42.48,-251.1 41.39,-261.64 48.2,-260.02"/>
|
||||
<text text-anchor="middle" x="59.88" y="-270.2" font-family="Arial" font-size="14.00" fill="green">con</text>
|
||||
</g>
|
||||
<!-- guuid=7b1ec728-0b00-0000-7c0a-19cb5a040000 pid=1114 -->
|
||||
<g id="node4" class="node">
|
||||
<title>guuid=7b1ec728-0b00-0000-7c0a-19cb5a040000 pid=1114</title>
|
||||
<path fill="white" stroke="black" d="M105.62,-213.25C105.62,-213.25 194.38,-213.25 194.38,-213.25 200.38,-213.25 206.38,-219.25 206.38,-225.25 206.38,-225.25 206.38,-237.25 206.38,-237.25 206.38,-243.25 200.38,-249.25 194.38,-249.25 194.38,-249.25 105.62,-249.25 105.62,-249.25 99.62,-249.25 93.62,-243.25 93.62,-237.25 93.62,-237.25 93.62,-225.25 93.62,-225.25 93.62,-219.25 99.62,-213.25 105.62,-213.25"/>
|
||||
<text text-anchor="middle" x="150" y="-225.82" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=fed9b428-0b00-0000-7c0a-19cb59040000 pid=1113->guuid=7b1ec728-0b00-0000-7c0a-19cb5a040000 pid=1114 -->
|
||||
<g id="edge3" class="edge">
|
||||
<title>guuid=fed9b428-0b00-0000-7c0a-19cb59040000 pid=1113->guuid=7b1ec728-0b00-0000-7c0a-19cb5a040000 pid=1114</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M82.25,-301.88C95.27,-288.5 111.73,-271.58 125.17,-257.77"/>
|
||||
<polygon fill="black" stroke="black" points="127.57,-260.32 132.03,-250.71 122.55,-255.44 127.57,-260.32"/>
|
||||
<text text-anchor="middle" x="129.12" y="-270.2" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=c24ac928-0b00-0000-7c0a-19cb5b040000 pid=1115 -->
|
||||
<g id="node5" class="node">
|
||||
<title>guuid=c24ac928-0b00-0000-7c0a-19cb5b040000 pid=1115</title>
|
||||
<path fill="#3b5741" stroke="black" d="M75.5,-89.25C75.5,-89.25 224.5,-89.25 224.5,-89.25 230.5,-89.25 236.5,-95.25 236.5,-101.25 236.5,-101.25 236.5,-148.5 236.5,-148.5 236.5,-154.5 230.5,-160.5 224.5,-160.5 224.5,-160.5 75.5,-160.5 75.5,-160.5 69.5,-160.5 63.5,-154.5 63.5,-148.5 63.5,-148.5 63.5,-101.25 63.5,-101.25 63.5,-95.25 69.5,-89.25 75.5,-89.25"/>
|
||||
<text text-anchor="middle" x="119.88" y="-143.2" font-family="Arial" font-size="14.00" fill="#fff000">/tmp/sample.bin</text>
|
||||
<polyline fill="none" stroke="black" points="63.5,-136.75 176.25,-136.75"/>
|
||||
<text text-anchor="middle" x="119.88" y="-119.45" font-family="Arial" font-size="14.00" fill="#fff000">net</text>
|
||||
<polyline fill="none" stroke="black" points="63.5,-113 176.25,-113"/>
|
||||
<text text-anchor="middle" x="119.88" y="-95.7" font-family="Arial" font-size="14.00" fill="#fff000">send-data</text>
|
||||
<polyline fill="none" stroke="black" points="176.25,-89.25 176.25,-160.5"/>
|
||||
<text text-anchor="middle" x="206.38" y="-119.7" font-family="Arial" font-size="14.00" fill="#fff000">zombie</text>
|
||||
</g>
|
||||
<!-- guuid=7b1ec728-0b00-0000-7c0a-19cb5a040000 pid=1114->guuid=c24ac928-0b00-0000-7c0a-19cb5b040000 pid=1115 -->
|
||||
<g id="edge4" class="edge">
|
||||
<title>guuid=7b1ec728-0b00-0000-7c0a-19cb5a040000 pid=1114->guuid=c24ac928-0b00-0000-7c0a-19cb5b040000 pid=1115</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M150,-213.01C150,-201.87 150,-186.78 150,-172.3"/>
|
||||
<polygon fill="black" stroke="black" points="153.5,-172.41 150,-162.41 146.5,-172.41 153.5,-172.41"/>
|
||||
<text text-anchor="middle" x="166.12" y="-181.45" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- a30f3d7c-8730-52b5-a823-356212651cfb -->
|
||||
<g id="node6" class="node">
|
||||
<title>a30f3d7c-8730-52b5-a823-356212651cfb</title>
|
||||
<path fill="grey" stroke="black" d="M97.75,-0.5C97.75,-0.5 202.25,-0.5 202.25,-0.5 208.25,-0.5 214.25,-6.5 214.25,-12.5 214.25,-12.5 214.25,-24.5 214.25,-24.5 214.25,-30.5 208.25,-36.5 202.25,-36.5 202.25,-36.5 97.75,-36.5 97.75,-36.5 91.75,-36.5 85.75,-30.5 85.75,-24.5 85.75,-24.5 85.75,-12.5 85.75,-12.5 85.75,-6.5 91.75,-0.5 97.75,-0.5"/>
|
||||
<text text-anchor="middle" x="150" y="-13.07" font-family="Arial" font-size="14.00" fill="white">45.95.169.138:322</text>
|
||||
</g>
|
||||
<!-- guuid=c24ac928-0b00-0000-7c0a-19cb5b040000 pid=1115->a30f3d7c-8730-52b5-a823-356212651cfb -->
|
||||
<g id="edge5" class="edge">
|
||||
<title>guuid=c24ac928-0b00-0000-7c0a-19cb5b040000 pid=1115->a30f3d7c-8730-52b5-a823-356212651cfb</title>
|
||||
<path fill="none" stroke="blue" stroke-dasharray="5,2" d="M150,-88.83C150,-75.54 150,-60.59 150,-47.99"/>
|
||||
<polygon fill="blue" stroke="blue" points="153.5,-48.26 150,-38.26 146.5,-48.26 153.5,-48.26"/>
|
||||
<text text-anchor="middle" x="180.38" y="-57.45" font-family="Arial" font-size="14.00" fill="blue">send: 96B</text>
|
||||
</g>
|
||||
</g>
|
||||
</svg>
|
||||
|
After Width: | Height: | Size: 8.3 KiB |
|
|
@ -0,0 +1,76 @@
|
|||
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
|
||||
<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN"
|
||||
"http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
|
||||
<!-- Generated by graphviz version 11.0.0 (0)
|
||||
-->
|
||||
<!-- Pages: 1 -->
|
||||
<svg width="354pt" height="223pt"
|
||||
viewBox="0.00 0.00 354.00 222.50" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink">
|
||||
<g id="graph0" class="graph" transform="scale(1 1) rotate(0) translate(4 218.5)">
|
||||
<polygon fill="white" stroke="none" points="-4,4 -4,-218.5 350,-218.5 350,4 -4,4"/>
|
||||
<!-- guuid=b11c622b-0b00-0000-bc0f-2f2859040000 pid=1113 -->
|
||||
<g id="node1" class="node">
|
||||
<title>guuid=b11c622b-0b00-0000-bc0f-2f2859040000 pid=1113</title>
|
||||
<path fill="white" stroke="black" d="M81.75,-178C81.75,-178 151,-178 151,-178 157,-178 163,-184 163,-190 163,-190 163,-202 163,-202 163,-208 157,-214 151,-214 151,-214 81.75,-214 81.75,-214 75.75,-214 69.75,-208 69.75,-202 69.75,-202 69.75,-190 69.75,-190 69.75,-184 75.75,-178 81.75,-178"/>
|
||||
<text text-anchor="middle" x="116.38" y="-190.57" font-family="Arial" font-size="14.00">/usr/bin/sudo</text>
|
||||
</g>
|
||||
<!-- guuid=57ed1f2c-0b00-0000-bc0f-2f285a040000 pid=1114 -->
|
||||
<g id="node2" class="node">
|
||||
<title>guuid=57ed1f2c-0b00-0000-bc0f-2f285a040000 pid=1114</title>
|
||||
<path fill="white" stroke="black" d="M74.25,-89.25C74.25,-89.25 158.5,-89.25 158.5,-89.25 164.5,-89.25 170.5,-95.25 170.5,-101.25 170.5,-101.25 170.5,-113.25 170.5,-113.25 170.5,-119.25 164.5,-125.25 158.5,-125.25 158.5,-125.25 74.25,-125.25 74.25,-125.25 68.25,-125.25 62.25,-119.25 62.25,-113.25 62.25,-113.25 62.25,-101.25 62.25,-101.25 62.25,-95.25 68.25,-89.25 74.25,-89.25"/>
|
||||
<text text-anchor="middle" x="116.38" y="-101.83" font-family="Arial" font-size="14.00">/usr/bin/newgrp</text>
|
||||
</g>
|
||||
<!-- guuid=b11c622b-0b00-0000-bc0f-2f2859040000 pid=1113->guuid=57ed1f2c-0b00-0000-bc0f-2f285a040000 pid=1114 -->
|
||||
<g id="edge1" class="edge">
|
||||
<title>guuid=b11c622b-0b00-0000-bc0f-2f2859040000 pid=1113->guuid=57ed1f2c-0b00-0000-bc0f-2f285a040000 pid=1114</title>
|
||||
<path fill="none" stroke="black" d="M116.38,-177.86C116.38,-166.17 116.38,-150.42 116.38,-136.85"/>
|
||||
<polygon fill="black" stroke="black" points="119.88,-137.16 116.38,-127.16 112.88,-137.16 119.88,-137.16"/>
|
||||
<text text-anchor="middle" x="137.75" y="-146.2" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=b8c1c52c-0b00-0000-bc0f-2f285c040000 pid=1116 -->
|
||||
<g id="node5" class="node">
|
||||
<title>guuid=b8c1c52c-0b00-0000-bc0f-2f285c040000 pid=1116</title>
|
||||
<path fill="white" stroke="black" d="M12,-0.5C12,-0.5 100.75,-0.5 100.75,-0.5 106.75,-0.5 112.75,-6.5 112.75,-12.5 112.75,-12.5 112.75,-24.5 112.75,-24.5 112.75,-30.5 106.75,-36.5 100.75,-36.5 100.75,-36.5 12,-36.5 12,-36.5 6,-36.5 0,-30.5 0,-24.5 0,-24.5 0,-12.5 0,-12.5 0,-6.5 6,-0.5 12,-0.5"/>
|
||||
<text text-anchor="middle" x="56.38" y="-13.07" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=57ed1f2c-0b00-0000-bc0f-2f285a040000 pid=1114->guuid=b8c1c52c-0b00-0000-bc0f-2f285c040000 pid=1116 -->
|
||||
<g id="edge3" class="edge">
|
||||
<title>guuid=57ed1f2c-0b00-0000-bc0f-2f285a040000 pid=1114->guuid=b8c1c52c-0b00-0000-bc0f-2f285c040000 pid=1116</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M104.52,-89.11C96.03,-76.83 84.43,-60.07 74.75,-46.06"/>
|
||||
<polygon fill="black" stroke="black" points="77.84,-44.38 69.27,-38.15 72.08,-48.36 77.84,-44.38"/>
|
||||
<text text-anchor="middle" x="108.5" y="-57.45" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=cae6f62e-0b00-0000-bc0f-2f285d040000 pid=1117 -->
|
||||
<g id="node6" class="node">
|
||||
<title>guuid=cae6f62e-0b00-0000-bc0f-2f285d040000 pid=1117</title>
|
||||
<path fill="white" stroke="black" d="M142.75,-0.5C142.75,-0.5 212,-0.5 212,-0.5 218,-0.5 224,-6.5 224,-12.5 224,-12.5 224,-24.5 224,-24.5 224,-30.5 218,-36.5 212,-36.5 212,-36.5 142.75,-36.5 142.75,-36.5 136.75,-36.5 130.75,-30.5 130.75,-24.5 130.75,-24.5 130.75,-12.5 130.75,-12.5 130.75,-6.5 136.75,-0.5 142.75,-0.5"/>
|
||||
<text text-anchor="middle" x="177.38" y="-13.07" font-family="Arial" font-size="14.00">/usr/bin/bash</text>
|
||||
</g>
|
||||
<!-- guuid=57ed1f2c-0b00-0000-bc0f-2f285a040000 pid=1114->guuid=cae6f62e-0b00-0000-bc0f-2f285d040000 pid=1117 -->
|
||||
<g id="edge4" class="edge">
|
||||
<title>guuid=57ed1f2c-0b00-0000-bc0f-2f285a040000 pid=1114->guuid=cae6f62e-0b00-0000-bc0f-2f285d040000 pid=1117</title>
|
||||
<path fill="none" stroke="black" d="M128.43,-89.11C137.06,-76.83 148.85,-60.07 158.7,-46.06"/>
|
||||
<polygon fill="black" stroke="black" points="161.38,-48.33 164.27,-38.14 155.65,-44.31 161.38,-48.33"/>
|
||||
<text text-anchor="middle" x="173.75" y="-57.45" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=a493e31f-0000-0000-bc0f-2f2801000000 pid=1 -->
|
||||
<g id="node3" class="node">
|
||||
<title>guuid=a493e31f-0000-0000-bc0f-2f2801000000 pid=1</title>
|
||||
<path fill="white" stroke="black" d="M192.75,-178C192.75,-178 334,-178 334,-178 340,-178 346,-184 346,-190 346,-190 346,-202 346,-202 346,-208 340,-214 334,-214 334,-214 192.75,-214 192.75,-214 186.75,-214 180.75,-208 180.75,-202 180.75,-202 180.75,-190 180.75,-190 180.75,-184 186.75,-178 192.75,-178"/>
|
||||
<text text-anchor="middle" x="263.38" y="-190.57" font-family="Arial" font-size="14.00">/usr/lib/systemd/systemd</text>
|
||||
</g>
|
||||
<!-- guuid=2f5bc22c-0b00-0000-bc0f-2f285b040000 pid=1115 -->
|
||||
<g id="node4" class="node">
|
||||
<title>guuid=2f5bc22c-0b00-0000-bc0f-2f285b040000 pid=1115</title>
|
||||
<path fill="white" stroke="black" d="M220.5,-89.25C220.5,-89.25 306.25,-89.25 306.25,-89.25 312.25,-89.25 318.25,-95.25 318.25,-101.25 318.25,-101.25 318.25,-113.25 318.25,-113.25 318.25,-119.25 312.25,-125.25 306.25,-125.25 306.25,-125.25 220.5,-125.25 220.5,-125.25 214.5,-125.25 208.5,-119.25 208.5,-113.25 208.5,-113.25 208.5,-101.25 208.5,-101.25 208.5,-95.25 214.5,-89.25 220.5,-89.25"/>
|
||||
<text text-anchor="middle" x="263.38" y="-101.83" font-family="Arial" font-size="14.00">/usr/bin/passwd</text>
|
||||
</g>
|
||||
<!-- guuid=a493e31f-0000-0000-bc0f-2f2801000000 pid=1->guuid=2f5bc22c-0b00-0000-bc0f-2f285b040000 pid=1115 -->
|
||||
<g id="edge2" class="edge">
|
||||
<title>guuid=a493e31f-0000-0000-bc0f-2f2801000000 pid=1->guuid=2f5bc22c-0b00-0000-bc0f-2f285b040000 pid=1115</title>
|
||||
<path fill="none" stroke="black" d="M263.38,-177.86C263.38,-166.17 263.38,-150.42 263.38,-136.85"/>
|
||||
<polygon fill="black" stroke="black" points="266.88,-137.16 263.38,-127.16 259.88,-137.16 266.88,-137.16"/>
|
||||
<text text-anchor="middle" x="284.75" y="-146.2" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
</g>
|
||||
</svg>
|
||||
|
After Width: | Height: | Size: 6.8 KiB |
|
|
@ -0,0 +1,113 @@
|
|||
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
|
||||
<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN"
|
||||
"http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
|
||||
<!-- Generated by graphviz version 11.0.0 (0)
|
||||
-->
|
||||
<!-- Pages: 1 -->
|
||||
<svg width="699pt" height="334pt"
|
||||
viewBox="0.00 0.00 699.25 334.25" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink">
|
||||
<g id="graph0" class="graph" transform="scale(1 1) rotate(0) translate(4 330.25)">
|
||||
<polygon fill="white" stroke="none" points="-4,4 -4,-330.25 695.25,-330.25 695.25,4 -4,4"/>
|
||||
<!-- guuid=bd280644-0b00-0000-e216-e78358040000 pid=1112 -->
|
||||
<g id="node1" class="node">
|
||||
<title>guuid=bd280644-0b00-0000-e216-e78358040000 pid=1112</title>
|
||||
<path fill="white" stroke="black" d="M317.62,-289.75C317.62,-289.75 386.88,-289.75 386.88,-289.75 392.88,-289.75 398.88,-295.75 398.88,-301.75 398.88,-301.75 398.88,-313.75 398.88,-313.75 398.88,-319.75 392.88,-325.75 386.88,-325.75 386.88,-325.75 317.62,-325.75 317.62,-325.75 311.62,-325.75 305.62,-319.75 305.62,-313.75 305.62,-313.75 305.62,-301.75 305.62,-301.75 305.62,-295.75 311.62,-289.75 317.62,-289.75"/>
|
||||
<text text-anchor="middle" x="352.25" y="-302.32" font-family="Arial" font-size="14.00">/usr/bin/sudo</text>
|
||||
</g>
|
||||
<!-- guuid=b541e645-0b00-0000-e216-e78359040000 pid=1113 -->
|
||||
<g id="node2" class="node">
|
||||
<title>guuid=b541e645-0b00-0000-e216-e78359040000 pid=1113</title>
|
||||
<path fill="#ffbfbf" stroke="black" d="M307.88,-189.5C307.88,-189.5 396.62,-189.5 396.62,-189.5 402.62,-189.5 408.62,-195.5 408.62,-201.5 408.62,-201.5 408.62,-225 408.62,-225 408.62,-231 402.62,-237 396.62,-237 396.62,-237 307.88,-237 307.88,-237 301.88,-237 295.88,-231 295.88,-225 295.88,-225 295.88,-201.5 295.88,-201.5 295.88,-195.5 301.88,-189.5 307.88,-189.5"/>
|
||||
<text text-anchor="middle" x="352.25" y="-219.7" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
<polyline fill="none" stroke="black" points="295.88,-213.25 408.62,-213.25"/>
|
||||
<text text-anchor="middle" x="352.25" y="-195.95" font-family="Arial" font-size="14.00">net</text>
|
||||
</g>
|
||||
<!-- guuid=bd280644-0b00-0000-e216-e78358040000 pid=1112->guuid=b541e645-0b00-0000-e216-e78359040000 pid=1113 -->
|
||||
<g id="edge1" class="edge">
|
||||
<title>guuid=bd280644-0b00-0000-e216-e78358040000 pid=1112->guuid=b541e645-0b00-0000-e216-e78359040000 pid=1113</title>
|
||||
<path fill="none" stroke="black" d="M352.25,-289.35C352.25,-277.82 352.25,-262.31 352.25,-248.38"/>
|
||||
<polygon fill="black" stroke="black" points="355.75,-248.68 352.25,-238.68 348.75,-248.68 355.75,-248.68"/>
|
||||
<text text-anchor="middle" x="373.62" y="-257.95" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- a8768f99-4583-5c1d-a65f-3952bbad8e62 -->
|
||||
<g id="node3" class="node">
|
||||
<title>a8768f99-4583-5c1d-a65f-3952bbad8e62</title>
|
||||
<path fill="grey" stroke="black" d="M12,-95C12,-95 134.5,-95 134.5,-95 140.5,-95 146.5,-101 146.5,-107 146.5,-107 146.5,-119 146.5,-119 146.5,-125 140.5,-131 134.5,-131 134.5,-131 12,-131 12,-131 6,-131 0,-125 0,-119 0,-119 0,-107 0,-107 0,-101 6,-95 12,-95"/>
|
||||
<text text-anchor="middle" x="73.25" y="-107.58" font-family="Arial" font-size="14.00" fill="white">2a12:5940:7116::2:80</text>
|
||||
</g>
|
||||
<!-- guuid=b541e645-0b00-0000-e216-e78359040000 pid=1113->a8768f99-4583-5c1d-a65f-3952bbad8e62 -->
|
||||
<g id="edge2" class="edge">
|
||||
<title>guuid=b541e645-0b00-0000-e216-e78359040000 pid=1113->a8768f99-4583-5c1d-a65f-3952bbad8e62</title>
|
||||
<path fill="none" stroke="green" stroke-dasharray="5,2" d="M295.45,-192.25C248.2,-175.61 181.14,-151.99 133.07,-135.06"/>
|
||||
<polygon fill="green" stroke="green" points="134.52,-131.87 123.93,-131.85 132.2,-138.47 134.52,-131.87"/>
|
||||
<text text-anchor="middle" x="240.12" y="-157.7" font-family="Arial" font-size="14.00" fill="green">con</text>
|
||||
</g>
|
||||
<!-- guuid=b541e645-0b00-0000-e216-e78359040000 pid=1114 -->
|
||||
<g id="node4" class="node">
|
||||
<title>guuid=b541e645-0b00-0000-e216-e78359040000 pid=1114</title>
|
||||
<path fill="white" stroke="black" d="M176.88,-95C176.88,-95 265.62,-95 265.62,-95 271.62,-95 277.62,-101 277.62,-107 277.62,-107 277.62,-119 277.62,-119 277.62,-125 271.62,-131 265.62,-131 265.62,-131 176.88,-131 176.88,-131 170.88,-131 164.88,-125 164.88,-119 164.88,-119 164.88,-107 164.88,-107 164.88,-101 170.88,-95 176.88,-95"/>
|
||||
<text text-anchor="middle" x="221.25" y="-107.58" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=b541e645-0b00-0000-e216-e78359040000 pid=1113->guuid=b541e645-0b00-0000-e216-e78359040000 pid=1114 -->
|
||||
<g id="edge3" class="edge">
|
||||
<title>guuid=b541e645-0b00-0000-e216-e78359040000 pid=1113->guuid=b541e645-0b00-0000-e216-e78359040000 pid=1114</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M321.54,-189.21C301.08,-173.87 274.23,-153.74 253.47,-138.16"/>
|
||||
<polygon fill="black" stroke="black" points="255.71,-135.47 245.61,-132.27 251.51,-141.07 255.71,-135.47"/>
|
||||
<text text-anchor="middle" x="310.38" y="-157.7" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=b541e645-0b00-0000-e216-e78359040000 pid=1115 -->
|
||||
<g id="node5" class="node">
|
||||
<title>guuid=b541e645-0b00-0000-e216-e78359040000 pid=1115</title>
|
||||
<path fill="white" stroke="black" d="M307.88,-95C307.88,-95 396.62,-95 396.62,-95 402.62,-95 408.62,-101 408.62,-107 408.62,-107 408.62,-119 408.62,-119 408.62,-125 402.62,-131 396.62,-131 396.62,-131 307.88,-131 307.88,-131 301.88,-131 295.88,-125 295.88,-119 295.88,-119 295.88,-107 295.88,-107 295.88,-101 301.88,-95 307.88,-95"/>
|
||||
<text text-anchor="middle" x="352.25" y="-107.58" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=b541e645-0b00-0000-e216-e78359040000 pid=1113->guuid=b541e645-0b00-0000-e216-e78359040000 pid=1115 -->
|
||||
<g id="edge4" class="edge">
|
||||
<title>guuid=b541e645-0b00-0000-e216-e78359040000 pid=1113->guuid=b541e645-0b00-0000-e216-e78359040000 pid=1115</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M352.25,-189.46C352.25,-175.51 352.25,-157.52 352.25,-142.61"/>
|
||||
<polygon fill="black" stroke="black" points="355.75,-142.97 352.25,-132.97 348.75,-142.97 355.75,-142.97"/>
|
||||
<text text-anchor="middle" x="368.38" y="-157.7" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=b541e645-0b00-0000-e216-e78359040000 pid=1116 -->
|
||||
<g id="node6" class="node">
|
||||
<title>guuid=b541e645-0b00-0000-e216-e78359040000 pid=1116</title>
|
||||
<path fill="white" stroke="black" d="M438.88,-95C438.88,-95 527.62,-95 527.62,-95 533.62,-95 539.62,-101 539.62,-107 539.62,-107 539.62,-119 539.62,-119 539.62,-125 533.62,-131 527.62,-131 527.62,-131 438.88,-131 438.88,-131 432.88,-131 426.88,-125 426.88,-119 426.88,-119 426.88,-107 426.88,-107 426.88,-101 432.88,-95 438.88,-95"/>
|
||||
<text text-anchor="middle" x="483.25" y="-107.58" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=b541e645-0b00-0000-e216-e78359040000 pid=1113->guuid=b541e645-0b00-0000-e216-e78359040000 pid=1116 -->
|
||||
<g id="edge5" class="edge">
|
||||
<title>guuid=b541e645-0b00-0000-e216-e78359040000 pid=1113->guuid=b541e645-0b00-0000-e216-e78359040000 pid=1116</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M382.96,-189.21C403.42,-173.87 430.27,-153.74 451.03,-138.16"/>
|
||||
<polygon fill="black" stroke="black" points="452.99,-141.07 458.89,-132.27 448.79,-135.47 452.99,-141.07"/>
|
||||
<text text-anchor="middle" x="441.38" y="-157.7" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- guuid=b541e645-0b00-0000-e216-e78359040000 pid=1117 -->
|
||||
<g id="node7" class="node">
|
||||
<title>guuid=b541e645-0b00-0000-e216-e78359040000 pid=1117</title>
|
||||
<path fill="#ffbfbf" stroke="black" d="M569.88,-89.25C569.88,-89.25 658.62,-89.25 658.62,-89.25 664.62,-89.25 670.62,-95.25 670.62,-101.25 670.62,-101.25 670.62,-124.75 670.62,-124.75 670.62,-130.75 664.62,-136.75 658.62,-136.75 658.62,-136.75 569.88,-136.75 569.88,-136.75 563.88,-136.75 557.88,-130.75 557.88,-124.75 557.88,-124.75 557.88,-101.25 557.88,-101.25 557.88,-95.25 563.88,-89.25 569.88,-89.25"/>
|
||||
<text text-anchor="middle" x="614.25" y="-119.45" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
<polyline fill="none" stroke="black" points="557.88,-113 670.62,-113"/>
|
||||
<text text-anchor="middle" x="614.25" y="-95.7" font-family="Arial" font-size="14.00">net</text>
|
||||
</g>
|
||||
<!-- guuid=b541e645-0b00-0000-e216-e78359040000 pid=1113->guuid=b541e645-0b00-0000-e216-e78359040000 pid=1117 -->
|
||||
<g id="edge6" class="edge">
|
||||
<title>guuid=b541e645-0b00-0000-e216-e78359040000 pid=1113->guuid=b541e645-0b00-0000-e216-e78359040000 pid=1117</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M409.1,-190.93C449.61,-175.74 504.23,-155.26 546.93,-139.25"/>
|
||||
<polygon fill="black" stroke="black" points="547.96,-142.6 556.09,-135.81 545.5,-136.04 547.96,-142.6"/>
|
||||
<text text-anchor="middle" x="514.38" y="-157.7" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- 93104443-10c6-544e-9f0f-61fc6c171a44 -->
|
||||
<g id="node8" class="node">
|
||||
<title>93104443-10c6-544e-9f0f-61fc6c171a44</title>
|
||||
<path fill="grey" stroke="black" d="M549.25,-0.5C549.25,-0.5 679.25,-0.5 679.25,-0.5 685.25,-0.5 691.25,-6.5 691.25,-12.5 691.25,-12.5 691.25,-24.5 691.25,-24.5 691.25,-30.5 685.25,-36.5 679.25,-36.5 679.25,-36.5 549.25,-36.5 549.25,-36.5 543.25,-36.5 537.25,-30.5 537.25,-24.5 537.25,-24.5 537.25,-12.5 537.25,-12.5 537.25,-6.5 543.25,-0.5 549.25,-0.5"/>
|
||||
<text text-anchor="middle" x="614.25" y="-13.07" font-family="Arial" font-size="14.00" fill="white">2a12:5940:7116::2:443</text>
|
||||
</g>
|
||||
<!-- guuid=b541e645-0b00-0000-e216-e78359040000 pid=1117->93104443-10c6-544e-9f0f-61fc6c171a44 -->
|
||||
<g id="edge7" class="edge">
|
||||
<title>guuid=b541e645-0b00-0000-e216-e78359040000 pid=1117->93104443-10c6-544e-9f0f-61fc6c171a44</title>
|
||||
<path fill="none" stroke="green" stroke-dasharray="5,2" d="M614.25,-89.13C614.25,-76.76 614.25,-61.37 614.25,-48.2"/>
|
||||
<polygon fill="green" stroke="green" points="617.75,-48.39 614.25,-38.39 610.75,-48.39 617.75,-48.39"/>
|
||||
<text text-anchor="middle" x="625.12" y="-57.45" font-family="Arial" font-size="14.00" fill="green">con</text>
|
||||
</g>
|
||||
</g>
|
||||
</svg>
|
||||
|
After Width: | Height: | Size: 10 KiB |
File diff suppressed because it is too large
Load diff
|
After Width: | Height: | Size: 127 KiB |
|
|
@ -0,0 +1,78 @@
|
|||
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
|
||||
<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN"
|
||||
"http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
|
||||
<!-- Generated by graphviz version 11.0.0 (0)
|
||||
-->
|
||||
<!-- Pages: 1 -->
|
||||
<svg width="268pt" height="370pt"
|
||||
viewBox="0.00 0.00 268.00 370.25" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink">
|
||||
<g id="graph0" class="graph" transform="scale(1 1) rotate(0) translate(4 366.25)">
|
||||
<polygon fill="white" stroke="none" points="-4,4 -4,-366.25 264,-366.25 264,4 -4,4"/>
|
||||
<!-- guuid=a0c9fb2d-0b00-0000-ba64-d1ba59040000 pid=1113 -->
|
||||
<g id="node1" class="node">
|
||||
<title>guuid=a0c9fb2d-0b00-0000-ba64-d1ba59040000 pid=1113</title>
|
||||
<path fill="white" stroke="black" d="M76.12,-325.75C76.12,-325.75 145.38,-325.75 145.38,-325.75 151.38,-325.75 157.38,-331.75 157.38,-337.75 157.38,-337.75 157.38,-349.75 157.38,-349.75 157.38,-355.75 151.38,-361.75 145.38,-361.75 145.38,-361.75 76.12,-361.75 76.12,-361.75 70.12,-361.75 64.12,-355.75 64.12,-349.75 64.12,-349.75 64.12,-337.75 64.12,-337.75 64.12,-331.75 70.12,-325.75 76.12,-325.75"/>
|
||||
<text text-anchor="middle" x="110.75" y="-338.32" font-family="Arial" font-size="14.00">/usr/bin/sudo</text>
|
||||
</g>
|
||||
<!-- guuid=837bc42e-0b00-0000-ba64-d1ba5a040000 pid=1114 -->
|
||||
<g id="node2" class="node">
|
||||
<title>guuid=837bc42e-0b00-0000-ba64-d1ba5a040000 pid=1114</title>
|
||||
<path fill="white" stroke="black" d="M66.38,-237C66.38,-237 155.12,-237 155.12,-237 161.12,-237 167.12,-243 167.12,-249 167.12,-249 167.12,-261 167.12,-261 167.12,-267 161.12,-273 155.12,-273 155.12,-273 66.38,-273 66.38,-273 60.38,-273 54.38,-267 54.38,-261 54.38,-261 54.38,-249 54.38,-249 54.38,-243 60.38,-237 66.38,-237"/>
|
||||
<text text-anchor="middle" x="110.75" y="-249.57" font-family="Arial" font-size="14.00">/tmp/sample.bin</text>
|
||||
</g>
|
||||
<!-- guuid=a0c9fb2d-0b00-0000-ba64-d1ba59040000 pid=1113->guuid=837bc42e-0b00-0000-ba64-d1ba5a040000 pid=1114 -->
|
||||
<g id="edge1" class="edge">
|
||||
<title>guuid=a0c9fb2d-0b00-0000-ba64-d1ba59040000 pid=1113->guuid=837bc42e-0b00-0000-ba64-d1ba5a040000 pid=1114</title>
|
||||
<path fill="none" stroke="black" d="M110.75,-325.61C110.75,-313.92 110.75,-298.17 110.75,-284.6"/>
|
||||
<polygon fill="black" stroke="black" points="114.25,-284.91 110.75,-274.91 107.25,-284.91 114.25,-284.91"/>
|
||||
<text text-anchor="middle" x="132.12" y="-293.95" font-family="Arial" font-size="14.00">execve</text>
|
||||
</g>
|
||||
<!-- guuid=8b77dc2e-0b00-0000-ba64-d1ba5b040000 pid=1115 -->
|
||||
<g id="node3" class="node">
|
||||
<title>guuid=8b77dc2e-0b00-0000-ba64-d1ba5b040000 pid=1115</title>
|
||||
<path fill="#3b5741" stroke="black" d="M36.25,-89.25C36.25,-89.25 185.25,-89.25 185.25,-89.25 191.25,-89.25 197.25,-95.25 197.25,-101.25 197.25,-101.25 197.25,-172.25 197.25,-172.25 197.25,-178.25 191.25,-184.25 185.25,-184.25 185.25,-184.25 36.25,-184.25 36.25,-184.25 30.25,-184.25 24.25,-178.25 24.25,-172.25 24.25,-172.25 24.25,-101.25 24.25,-101.25 24.25,-95.25 30.25,-89.25 36.25,-89.25"/>
|
||||
<text text-anchor="middle" x="80.62" y="-166.95" font-family="Arial" font-size="14.00" fill="#fff000">/tmp/sample.bin</text>
|
||||
<polyline fill="none" stroke="black" points="24.25,-160.5 137,-160.5"/>
|
||||
<text text-anchor="middle" x="80.62" y="-143.2" font-family="Arial" font-size="14.00" fill="#fff000">dns</text>
|
||||
<polyline fill="none" stroke="black" points="24.25,-136.75 137,-136.75"/>
|
||||
<text text-anchor="middle" x="80.62" y="-119.45" font-family="Arial" font-size="14.00" fill="#fff000">net</text>
|
||||
<polyline fill="none" stroke="black" points="24.25,-113 137,-113"/>
|
||||
<text text-anchor="middle" x="80.62" y="-95.7" font-family="Arial" font-size="14.00" fill="#fff000">send-data</text>
|
||||
<polyline fill="none" stroke="black" points="137,-89.25 137,-184.25"/>
|
||||
<text text-anchor="middle" x="167.12" y="-131.45" font-family="Arial" font-size="14.00" fill="#fff000">zombie</text>
|
||||
</g>
|
||||
<!-- guuid=837bc42e-0b00-0000-ba64-d1ba5a040000 pid=1114->guuid=8b77dc2e-0b00-0000-ba64-d1ba5b040000 pid=1115 -->
|
||||
<g id="edge2" class="edge">
|
||||
<title>guuid=837bc42e-0b00-0000-ba64-d1ba5a040000 pid=1114->guuid=8b77dc2e-0b00-0000-ba64-d1ba5b040000 pid=1115</title>
|
||||
<path fill="none" stroke="black" stroke-dasharray="1,5" d="M110.75,-236.6C110.75,-225.64 110.75,-210.81 110.75,-195.98"/>
|
||||
<polygon fill="black" stroke="black" points="114.25,-196.2 110.75,-186.2 107.25,-196.2 114.25,-196.2"/>
|
||||
<text text-anchor="middle" x="126.88" y="-205.2" font-family="Arial" font-size="14.00">clone</text>
|
||||
</g>
|
||||
<!-- 4f6baed0-9587-596c-82b3-fd721afe4cc1 -->
|
||||
<g id="node4" class="node">
|
||||
<title>4f6baed0-9587-596c-82b3-fd721afe4cc1</title>
|
||||
<path fill="grey" stroke="black" d="M12,-0.5C12,-0.5 71.5,-0.5 71.5,-0.5 77.5,-0.5 83.5,-6.5 83.5,-12.5 83.5,-12.5 83.5,-24.5 83.5,-24.5 83.5,-30.5 77.5,-36.5 71.5,-36.5 71.5,-36.5 12,-36.5 12,-36.5 6,-36.5 0,-30.5 0,-24.5 0,-24.5 0,-12.5 0,-12.5 0,-6.5 6,-0.5 12,-0.5"/>
|
||||
<text text-anchor="middle" x="41.75" y="-13.07" font-family="Arial" font-size="14.00" fill="white">10.0.2.3:53</text>
|
||||
</g>
|
||||
<!-- guuid=8b77dc2e-0b00-0000-ba64-d1ba5b040000 pid=1115->4f6baed0-9587-596c-82b3-fd721afe4cc1 -->
|
||||
<g id="edge3" class="edge">
|
||||
<title>guuid=8b77dc2e-0b00-0000-ba64-d1ba5b040000 pid=1115->4f6baed0-9587-596c-82b3-fd721afe4cc1</title>
|
||||
<path fill="none" stroke="blue" stroke-dasharray="5,2" d="M82.88,-88.8C74.41,-74.52 65.38,-59.31 57.95,-46.79"/>
|
||||
<polygon fill="blue" stroke="blue" points="61.01,-45.1 52.9,-38.28 54.99,-48.67 61.01,-45.1"/>
|
||||
<text text-anchor="middle" x="103.12" y="-57.45" font-family="Arial" font-size="14.00" fill="blue">send: 66B</text>
|
||||
</g>
|
||||
<!-- 82e82d60-8006-5759-85fe-7ad37ac115b6 -->
|
||||
<g id="node5" class="node">
|
||||
<title>82e82d60-8006-5759-85fe-7ad37ac115b6</title>
|
||||
<path fill="grey" stroke="black" d="M113.5,-0.5C113.5,-0.5 248,-0.5 248,-0.5 254,-0.5 260,-6.5 260,-12.5 260,-12.5 260,-24.5 260,-24.5 260,-30.5 254,-36.5 248,-36.5 248,-36.5 113.5,-36.5 113.5,-36.5 107.5,-36.5 101.5,-30.5 101.5,-24.5 101.5,-24.5 101.5,-12.5 101.5,-12.5 101.5,-6.5 107.5,-0.5 113.5,-0.5"/>
|
||||
<text text-anchor="middle" x="180.75" y="-13.07" font-family="Arial" font-size="14.00" fill="white">108.181.160.104:54337</text>
|
||||
</g>
|
||||
<!-- guuid=8b77dc2e-0b00-0000-ba64-d1ba5b040000 pid=1115->82e82d60-8006-5759-85fe-7ad37ac115b6 -->
|
||||
<g id="edge4" class="edge">
|
||||
<title>guuid=8b77dc2e-0b00-0000-ba64-d1ba5b040000 pid=1115->82e82d60-8006-5759-85fe-7ad37ac115b6</title>
|
||||
<path fill="none" stroke="green" stroke-dasharray="5,2" d="M139.02,-88.8C147.62,-74.52 156.78,-59.31 164.32,-46.79"/>
|
||||
<polygon fill="green" stroke="green" points="167.28,-48.65 169.44,-38.28 161.29,-45.04 167.28,-48.65"/>
|
||||
<text text-anchor="middle" x="168.62" y="-57.45" font-family="Arial" font-size="14.00" fill="green">con</text>
|
||||
</g>
|
||||
</g>
|
||||
</svg>
|
||||
|
After Width: | Height: | Size: 6.9 KiB |
Loading…
Reference in a new issue