Learning Objectives
In this task, we will:
- Identify the CPU and memory usage of processes in Linux.
- Kill unwanted processes in Linux.
- Find ways a process can persist beyond termination.
- Remove persistent processes permanently.
After machine is up open the terminal and follow along.
QUESTIONS
- What is the name of the service that respawns the process after killing it?
Command
systemctl list-unit-files
ANSWER
a-unkillable.service
- What is the path from where the process and service were running?
Command
systemctl status a-unkillable.service
ANSWER
/etc/systemd/system/
-
The malware prints a taunting message. When is the message shown? Choose from the options below.
-
Randomly
-
After a set interval
-
On process termination
-
None of the above
ANSWER
4