IOC Report
CAtgZotl2p.elf

loading gif

Processes

Path
Cmdline
Malicious
/tmp/CAtgZotl2p.elf
/tmp/CAtgZotl2p.elf

URLs

Name
IP
Malicious
http://scan.chromies.cf/9x83HE5AFD/arm7.jade
unknown
http://schemas.xmlsoap.org/soap/encoding/
unknown
http://schemas.xmlsoap.org/soap/envelope/
unknown

Domains

Name
IP
Malicious
daisy.ubuntu.com
162.213.35.24

Memdumps

Base Address
Regiontype
Protect
Malicious
7efb98035000
page execute read
malicious
7efc9fb27000
page read and write
563e7fed5000
page read and write
563e7dc66000
page execute read
7efc9f3cb000
page read and write
7efca007c000
page read and write
7efc9eb31000
page read and write
7efb98048000
page read and write
7efc9f998000
page read and write
563e80ecc000
page read and write
7fffd7cb4000
page read and write
7efc98021000
page read and write
7efc9fd09000
page read and write
7efc9f9bb000
page read and write
563e7deb7000
page read and write
7efc9feea000
page read and write
7efca0013000
page read and write
563e7dec0000
page read and write
7efc9f72d000
page read and write
7efc9f339000
page read and write
7efca0037000
page read and write
563e7febe000
page execute and read and write
7efb9803e000
page read and write
7efc97fff000
page read and write
7fffd7cc9000
page execute read
There are 15 hidden memdumps, click here to show them.