Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/usr/bin/dash
|
-
|
||
|
/usr/bin/rm
|
rm -f /tmp/tmp.IM4u5aeyei /tmp/tmp.RezRzG61Iv /tmp/tmp.4dvX4qoUbM
|
||
|
/tmp/vvV3pyLNs0.elf
|
/tmp/vvV3pyLNs0.elf
|
||
|
/tmp/vvV3pyLNs0.elf
|
-
|
||
|
/tmp/vvV3pyLNs0.elf
|
-
|
||
|
/tmp/vvV3pyLNs0.elf
|
-
|
||
|
/tmp/vvV3pyLNs0.elf
|
-
|
||
|
/usr/bin/xfce4-panel
|
-
|
||
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 /usr/lib/x86_64-linux-gnu/xfce4/panel/plugins/libsystray.so 6 12582920 systray
"Notification Area" "Area where notification icons appear"
|
||
|
/usr/bin/xfce4-panel
|
-
|
||
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 /usr/lib/x86_64-linux-gnu/xfce4/panel/plugins/libstatusnotifier.so 7 12582921
statusnotifier "Status Notifier Plugin" "Provides a panel area for status notifier items (application indicators)"
|
||
|
/usr/bin/xfce4-panel
|
-
|
||
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 /usr/lib/x86_64-linux-gnu/xfce4/panel/plugins/libpulseaudio-plugin.so 8
12582922 pulseaudio "PulseAudio Plugin" "Adjust the audio volume of the PulseAudio sound system"
|
||
|
/usr/bin/xfce4-panel
|
-
|
||
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 /usr/lib/x86_64-linux-gnu/xfce4/panel/plugins/libxfce4powermanager.so 9
12582923 power-manager-plugin "Power Manager Plugin" "Display the battery levels of your devices and control the brightness
of your display"
|
||
|
/usr/bin/xfce4-panel
|
-
|
||
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 /usr/lib/x86_64-linux-gnu/xfce4/panel/plugins/libnotification-plugin.so
10 12582924 notification-plugin "Notification Plugin" "Notification plugin for the Xfce panel"
|
||
|
/usr/bin/xfce4-panel
|
-
|
||
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0
|
/usr/lib/x86_64-linux-gnu/xfce4/panel/wrapper-2.0 /usr/lib/x86_64-linux-gnu/xfce4/panel/plugins/libactions.so 14 12582925
actions "Action Buttons" "Log out, lock or other system actions"
|
There are 9 hidden processes, click here to show them.
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://scan.chromies.cf/9x83HE5AFD/arm7.jade
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/encoding/
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/envelope/
|
unknown
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
cnc.chromies.cf
|
5.181.156.131
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
197.55.12.102
|
unknown
|
Egypt
|
||
|
197.186.76.80
|
unknown
|
Tanzania United Republic of
|
||
|
197.74.66.13
|
unknown
|
South Africa
|
||
|
156.224.36.104
|
unknown
|
Seychelles
|
||
|
156.131.188.161
|
unknown
|
United States
|
||
|
156.102.237.112
|
unknown
|
United States
|
||
|
156.152.190.63
|
unknown
|
United States
|
||
|
156.173.142.131
|
unknown
|
Egypt
|
||
|
156.112.215.102
|
unknown
|
United States
|
||
|
197.201.211.154
|
unknown
|
Algeria
|
||
|
156.194.215.223
|
unknown
|
Egypt
|
||
|
197.57.166.42
|
unknown
|
Egypt
|
||
|
197.195.24.22
|
unknown
|
Egypt
|
||
|
156.236.37.220
|
unknown
|
Seychelles
|
||
|
156.12.79.170
|
unknown
|
United States
|
||
|
197.12.187.97
|
unknown
|
Tunisia
|
||
|
156.21.157.128
|
unknown
|
United States
|
||
|
156.19.217.18
|
unknown
|
United States
|
||
|
197.112.18.96
|
unknown
|
Algeria
|
||
|
197.180.247.183
|
unknown
|
Kenya
|
||
|
156.56.238.73
|
unknown
|
United States
|
||
|
156.242.104.146
|
unknown
|
Seychelles
|
||
|
197.203.67.178
|
unknown
|
Algeria
|
||
|
197.249.243.202
|
unknown
|
Mozambique
|
||
|
197.178.119.243
|
unknown
|
Kenya
|
||
|
197.161.226.48
|
unknown
|
Egypt
|
||
|
156.219.202.253
|
unknown
|
Egypt
|
||
|
156.36.150.81
|
unknown
|
United States
|
||
|
197.83.17.249
|
unknown
|
South Africa
|
||
|
197.126.179.156
|
unknown
|
Egypt
|
||
|
197.243.107.54
|
unknown
|
Rwanda
|
||
|
197.60.234.99
|
unknown
|
Egypt
|
||
|
156.86.14.71
|
unknown
|
United States
|
||
|
156.41.113.140
|
unknown
|
United States
|
||
|
156.50.196.164
|
unknown
|
Australia
|
||
|
197.180.47.233
|
unknown
|
Kenya
|
||
|
197.113.155.63
|
unknown
|
Algeria
|
||
|
197.204.239.18
|
unknown
|
Algeria
|
||
|
197.250.9.203
|
unknown
|
Tanzania United Republic of
|
||
|
156.233.156.173
|
unknown
|
Seychelles
|
||
|
156.143.122.249
|
unknown
|
United States
|
||
|
156.78.142.177
|
unknown
|
United States
|
||
|
197.33.30.162
|
unknown
|
Egypt
|
||
|
156.39.20.69
|
unknown
|
United States
|
||
|
156.9.243.44
|
unknown
|
United States
|
||
|
197.184.51.1
|
unknown
|
South Africa
|
||
|
197.6.135.73
|
unknown
|
Tunisia
|
||
|
156.62.146.154
|
unknown
|
New Zealand
|
||
|
156.109.174.61
|
unknown
|
United States
|
||
|
156.11.132.132
|
unknown
|
Canada
|
||
|
156.195.117.193
|
unknown
|
Egypt
|
||
|
197.244.176.254
|
unknown
|
unknown
|
||
|
156.115.152.177
|
unknown
|
Switzerland
|
||
|
197.111.184.179
|
unknown
|
South Africa
|
||
|
156.83.154.209
|
unknown
|
Netherlands
|
||
|
156.247.42.62
|
unknown
|
Seychelles
|
||
|
197.127.13.222
|
unknown
|
Egypt
|
||
|
156.189.100.99
|
unknown
|
Egypt
|
||
|
197.20.228.211
|
unknown
|
Tunisia
|
||
|
197.56.249.80
|
unknown
|
Egypt
|
||
|
197.67.143.237
|
unknown
|
South Africa
|
||
|
156.88.35.161
|
unknown
|
United States
|
||
|
197.185.161.114
|
unknown
|
South Africa
|
||
|
197.22.196.249
|
unknown
|
Tunisia
|
||
|
197.221.172.91
|
unknown
|
South Africa
|
||
|
156.91.45.21
|
unknown
|
United States
|
||
|
197.73.206.129
|
unknown
|
South Africa
|
||
|
197.158.103.173
|
unknown
|
Madagascar
|
||
|
197.44.25.73
|
unknown
|
Egypt
|
||
|
156.14.12.210
|
unknown
|
Italy
|
||
|
156.186.241.201
|
unknown
|
Egypt
|
||
|
197.157.239.226
|
unknown
|
unknown
|
||
|
156.94.124.27
|
unknown
|
United States
|
||
|
197.235.141.114
|
unknown
|
Mozambique
|
||
|
197.204.34.68
|
unknown
|
Algeria
|
||
|
156.15.137.162
|
unknown
|
United States
|
||
|
156.180.201.197
|
unknown
|
Egypt
|
||
|
197.222.26.214
|
unknown
|
Egypt
|
||
|
156.34.159.223
|
unknown
|
Canada
|
||
|
197.36.173.85
|
unknown
|
Egypt
|
||
|
197.113.253.180
|
unknown
|
Algeria
|
||
|
156.105.187.241
|
unknown
|
United States
|
||
|
197.72.65.187
|
unknown
|
South Africa
|
||
|
156.188.107.207
|
unknown
|
Egypt
|
||
|
156.221.111.228
|
unknown
|
Egypt
|
||
|
197.206.17.227
|
unknown
|
Algeria
|
||
|
156.229.57.190
|
unknown
|
Seychelles
|
||
|
156.211.246.145
|
unknown
|
Egypt
|
||
|
156.71.238.100
|
unknown
|
United States
|
||
|
197.46.110.217
|
unknown
|
Egypt
|
||
|
156.121.241.11
|
unknown
|
United States
|
||
|
197.203.146.91
|
unknown
|
Algeria
|
||
|
197.32.231.101
|
unknown
|
Egypt
|
||
|
156.148.169.106
|
unknown
|
Italy
|
||
|
197.87.32.64
|
unknown
|
South Africa
|
||
|
156.189.4.172
|
unknown
|
Egypt
|
||
|
197.249.212.147
|
unknown
|
Mozambique
|
||
|
156.241.123.219
|
unknown
|
Seychelles
|
||
|
197.117.175.152
|
unknown
|
Algeria
|
||
|
197.94.27.13
|
unknown
|
South Africa
|
There are 90 hidden IPs, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7f94a401f000
|
page execute read
|
 |
||
|
7f94a401f000
|
page execute read
|
|
||
|
7f94a401f000
|
page execute read
|
|
||
|
55d2b163a000
|
page execute and read and write
|
|||
|
7f9524000000
|
page read and write
|
|||
|
55d2b163a000
|
page execute and read and write
|
|||
|
7f9528d79000
|
page read and write
|
|||
|
55d2b163a000
|
page execute and read and write
|
|||
|
55d2af63c000
|
page read and write
|
|||
|
7f9528d79000
|
page read and write
|
|||
|
7f9529008000
|
page read and write
|
|||
|
7f9524021000
|
page read and write
|
|||
|
7f952973a000
|
page read and write
|
|||
|
7ffd1792e000
|
page execute read
|
|||
|
7f95293ca000
|
page read and write
|
|||
|
55d2af634000
|
page read and write
|
|||
|
7f9528568000
|
page read and write
|
|||
|
7f9529008000
|
page read and write
|
|||
|
7ffd1780b000
|
page read and write
|
|||
|
7f9529863000
|
page read and write
|
|||
|
55d2af63c000
|
page read and write
|
|||
|
7f952986b000
|
page read and write
|
|||
|
55d2af63c000
|
page read and write
|
|||
|
7f94a40cf000
|
page read and write
|
|||
|
7f94a4021000
|
page read and write
|
|||
|
55d2b16d1000
|
page read and write
|
|||
|
7f952973a000
|
page read and write
|
|||
|
7f9524021000
|
page read and write
|
|||
|
7f95293ef000
|
page read and write
|
|||
|
7f95298b0000
|
page read and write
|
|||
|
7f9528d6b000
|
page read and write
|
|||
|
7f9524021000
|
page read and write
|
|||
|
55d2af402000
|
page execute read
|
|||
|
7f94a4024000
|
page read and write
|
|||
|
7f95293ef000
|
page read and write
|
|||
|
7f9528d79000
|
page read and write
|
|||
|
55d2b181b000
|
page read and write
|
|||
|
7f94a4026000
|
page read and write
|
|||
|
7f9529863000
|
page read and write
|
|||
|
7f952986b000
|
page read and write
|
|||
|
55d2af634000
|
page read and write
|
|||
|
7f94a4024000
|
page read and write
|
|||
|
7ffd1780b000
|
page read and write
|
|||
|
7f95298b0000
|
page read and write
|
|||
|
7f9528d6b000
|
page read and write
|
|||
|
7f94a4021000
|
page read and write
|
|||
|
7f9524000000
|
page read and write
|
|||
|
7f9528d6b000
|
page read and write
|
|||
|
7f9529863000
|
page read and write
|
|||
|
7f9528568000
|
page read and write
|
|||
|
55d2af402000
|
page execute read
|
|||
|
7f95293ca000
|
page read and write
|
|||
|
55d2af402000
|
page execute read
|
|||
|
7f95298b0000
|
page read and write
|
|||
|
7f94a4021000
|
page read and write
|
|||
|
7ffd1792e000
|
page execute read
|
|||
|
7f95293ca000
|
page read and write
|
|||
|
7f952973a000
|
page read and write
|
|||
|
55d2b181b000
|
page read and write
|
|||
|
7f95293ef000
|
page read and write
|
|||
|
55d2b181b000
|
page read and write
|
|||
|
7f9528568000
|
page read and write
|
|||
|
7f9524000000
|
page read and write
|
|||
|
7f952986b000
|
page read and write
|
|||
|
7f9529008000
|
page read and write
|
|||
|
55d2b16d1000
|
page read and write
|
|||
|
55d2b16d1000
|
page read and write
|
|||
|
7f94a4024000
|
page read and write
|
|||
|
7ffd1780b000
|
page read and write
|
|||
|
7ffd1792e000
|
page execute read
|
|||
|
55d2af634000
|
page read and write
|
There are 61 hidden memdumps, click here to show them.