malware-dataset/linux/22e4a57ac560ebe1eff8957906589f4dd5934ee555ebcc0f7ba613b07fad2c13/analysis/dropped/f0e11bb1-2c57-8d00-dc7d-85a85f68d0e6/event.json

{
  "data": {
    "ancestors": "/usr/lib/systemd/systemd|/tmp/.perf.c/perfctl",
    "command_line": "perfctl",
    "exe": {
      "path": "/tmp/.perf.c/perfctl"
    },
    "path": "/tmp/.apid"
  },
  "info": {
    "host": {
      "uuid": "3eff9364-90b8-5293-9f42-0ea09fbefe18",
      "name": "kunai-sandbox",
      "container": null
    },
    "event": {
      "source": "kunai",
      "id": 87,
      "name": "write_close",
      "uuid": "f0e11bb1-2c57-8d00-dc7d-85a85f68d0e6",
      "batch": 2505
    },
    "task": {
      "name": "perfctl",
      "pid": 3149,
      "tgid": 3149,
      "guuid": "d9fbb7bb-1800-0000-4c09-d8044d0c0000",
      "uid": 0,
      "gid": 0,
      "namespaces": {
        "mnt": 4026531841
      },
      "flags": "0x400040"
    },
    "parent_task": {
      "name": "perfctl",
      "pid": 3148,
      "tgid": 3148,
      "guuid": "193b37b9-1800-0000-4c09-d8044c0c0000",
      "uid": 0,
      "gid": 0,
      "namespaces": {
        "mnt": 4026531841
      },
      "flags": "0x400000"
    },
    "utc_time": "2024-11-06T21:19:51.495643767Z"
  }
}