USER         PID %CPU %MEM    VSZ   RSS TTY      STAT START   TIME COMMAND
root           1  0.0  0.2 1232060 8772 ?        Ssl   2025   9:24 /shell2http -show-errors -include-stderr /ps ps aux /rootkit ./bin/Defense_Evasion_via_Rootkit.sh /masquerading ./bin/Defense_Evasion_via_Masquerading.sh /data_exfiltration ./bin/Exfiltration_via_Exfiltration_Over_Alternative_Protocol.sh /reverse_shell_trojan ./bin/Reverse_Shell_Trojan.sh /deploy_malware ./bin/evil/Linux_Malware_High /reverse_shell ./bin/Command_Control_via_Remote_Access.sh /reverse_shell-obfuscated ./bin/Command_Control_via_Remote_Access-obfuscated.sh /credentials_dumping ./bin/Credential_Access_via_Credential_Dumping.sh /credentials_dumping_collection ./bin/Collection_via_Automated_Collection.sh /suspicious_commands ./bin/Execution_via_Command-Line_Interface.sh /container_drift ./bin/ContainerDrift_Via_File_Creation_and_Execution.sh
root         472  0.0  0.0      0     0 ?        Z     2025   0:00 [mimipenguin.sh] <defunct>
root         473  0.0  0.0      0     0 ?        Z     2025   0:00 [ps] <defunct>
root         474  0.0  0.0      0     0 ?        Z     2025   0:00 [grep] <defunct>
root         475  0.0  0.0      0     0 ?        Z     2025   0:00 [grep] <defunct>
root         476  0.0  0.0      0     0 ?        Z     2025   0:00 [grep] <defunct>
root        1208  0.0  0.0      0     0 ?        Z     2025   0:00 [mimipenguin.sh] <defunct>
root        1209  0.0  0.0      0     0 ?        Z     2025   0:00 [mimipenguin.sh] <defunct>
root        1924  0.0  0.0      0     0 ?        Z     2025   0:00 [ruby] <defunct>
root        2602  0.0  0.0      0     0 ?        Z     2025   0:00 [mimipenguin.sh] <defunct>
root        2603  0.0  0.0      0     0 ?        Z     2025   0:00 [mimipenguin.sh] <defunct>
root        3012  0.0  0.0      0     0 ?        Z     2025   0:00 [sample] <defunct>
root        5714  0.0  0.0      0     0 ?        Z     2025   0:00 [mimipenguin.sh] <defunct>
root        5715  0.0  0.0      0     0 ?        Z     2025   0:00 [ps] <defunct>
root        5716  0.0  0.0      0     0 ?        Z     2025   0:00 [grep] <defunct>
root        5717  0.0  0.0      0     0 ?        Z     2025   0:00 [grep] <defunct>
root        5718  0.0  0.0      0     0 ?        Z     2025   0:00 [grep] <defunct>
root        6771  0.0  0.0      0     0 ?        Z     2025   0:00 [mimipenguin.sh] <defunct>
root        7445  0.0  0.0      0     0 ?        Z     2025   0:00 [mimipenguin.sh] <defunct>
root        7446  0.0  0.0      0     0 ?        Z     2025   0:00 [mimipenguin.sh] <defunct>
root        7979  0.0  0.0      0     0 ?        Z     2025   0:00 [ruby] <defunct>
root        8203  0.0  0.0      0     0 ?        Z     2025   0:00 [ruby] <defunct>
root        9471  0.0  0.0      0     0 ?        Z     2025   0:00 [mimipenguin.sh] <defunct>
root        9472  0.0  0.0      0     0 ?        Z     2025   0:00 [ps] <defunct>
root        9473  0.0  0.0      0     0 ?        Z     2025   0:00 [grep] <defunct>
root        9474  0.0  0.0      0     0 ?        Z     2025   0:00 [grep] <defunct>
root       11394  0.0  0.0      0     0 ?        Z    Jan01   0:00 [ruby] <defunct>
root       11615  0.0  0.0      0     0 ?        Z    Jan02   0:00 [mimipenguin.sh] <defunct>
root       11616  0.0  0.0      0     0 ?        Z    Jan02   0:00 [ps] <defunct>
root       11617  0.0  0.0      0     0 ?        Z    Jan02   0:00 [mimipenguin.sh] <defunct>
root       11618  0.0  0.0      0     0 ?        Z    Jan02   0:00 [mimipenguin.sh] <defunct>
root       12311  0.0  0.0      0     0 ?        Z    Jan05   0:00 [ruby] <defunct>
root       12540  0.0  0.0      0     0 ?        Z    Jan05   0:00 [ruby] <defunct>
root       12938  0.0  0.0      0     0 ?        Z    Jan06   0:00 [mimipenguin.sh] <defunct>
root       12939  0.0  0.0      0     0 ?        Z    Jan06   0:00 [mimipenguin.sh] <defunct>
root       12940  0.0  0.0      0     0 ?        Z    Jan06   0:00 [grep] <defunct>
root       12941  0.0  0.0      0     0 ?        Z    Jan06   0:00 [grep] <defunct>
root       12942  0.0  0.0      0     0 ?        Z    Jan06   0:00 [mimipenguin.sh] <defunct>
root       14315  0.0  0.0      0     0 ?        Z    12:02   0:00 [ruby] <defunct>
root       14534  0.0  0.0   7032  3244 ?        R    12:06   0:00 ps aux