Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/tmp/CcsWgcYeDy.elf
|
/tmp/CcsWgcYeDy.elf
|
||
|
/tmp/CcsWgcYeDy.elf
|
-
|
||
|
/tmp/CcsWgcYeDy.elf
|
-
|
||
|
/usr/libexec/gnome-session-binary
|
-
|
||
|
/bin/sh
|
/bin/sh -e -u -c "export GIO_LAUNCHED_DESKTOP_FILE_PID=$$; exec \"$@\"" sh /usr/libexec/gsd-rfkill
|
||
|
/usr/libexec/gsd-rfkill
|
/usr/libexec/gsd-rfkill
|
||
|
/usr/lib/systemd/systemd
|
-
|
||
|
/lib/systemd/systemd-hostnamed
|
/lib/systemd/systemd-hostnamed
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
kovey.mezo-api.xyz
|
45.131.111.219
|
 |
|
|
kovey.mezo-api.xyz.R< f66a/PV!E(w3jM5<R< fOOOPV!a/EA@@
|
unknown
|
|
|
|
kovey.mezo-api.xyz.< fY&66a/PV!E(Pj,5- < f.(OOPV!a/EA@@
|
unknown
|
|
|
|
kovey.mezo-api.xyz.< f?66a/PV!E(Aj;5c#< fOOPV!a/EAh@@~
|
unknown
|
|
|
|
kovey.mezo-api.xyz.R< fN66a/PV!E(0M9~5<R< faOOOPV!a/EA@@
|
unknown
|
|
|
|
kovey.mezo-api.xyz.q< f66a/PV!E(:,;5'Aq< fqOOPV!a/EA@@
|
unknown
|
|
|
|
kovey.mezo-api.xyz.< f~66a/PV!E(99ug5} < fVJJPV!a/E</@@
|
unknown
|
|
|
|
kovey.mezo-api.xyz.< f66a/PV!E(I95 < fKOOPV!a/EA@@
|
unknown
|
|
|
|
kovey.mezo-api.xyz.q< f66a/PV!E(9!f5Rq< fJJPV!a/E<@@@h
|
unknown
|
|
|
|
kovey.mezo-api.xyz.< f66a/PV!E(9B5M#< ftOOPV!a/EA@@f
|
unknown
|
|
|
|
kovey.mezo-api.xyz.< fuA66a/PV!E(j~q54#< feBJJPV!a/E<c@@v
|
unknown
|
|
|
|
kovey.mezo-api.xyz.q< f#66a/PV!E("9951"q< f[OOPV!a/EA@@!
|
unknown
|
|
|
|
kovey.mezo-api.xyz.R< f66a/PV!E(:A5CI<R< fOOPV!a/EA@@
|
unknown
|
|
|
|
kovey.mezo-api.xyz.R< f66a/PV!E(9V5<R< fJJPV!a/E<;"@@
|
unknown
|
|
|
|
kovey.mezo-api.xyz.q< f]V66a/PV!E(J3:c51q< feWOOPV!a/EA@@
|
unknown
|
|
|
|
kovey.mezo-api.xyz.< f]66a/PV!E(|:5. < f^OOPV!a/EA:@@
|
unknown
|
|
|
|
kovey.mezo-api.xyz.R< f'166a/PV!E(%#jX]5<R< f1OOPV!a/EA"@@
|
unknown
|
|
|
|
kovey.mezo-api.xyz.q< fQ66a/PV!E(:5q< fuOOPV!a/EA@@:
|
unknown
|
|
|
|
kovey.mezo-api.xyz.< fR66a/PV!E(':5f < fOOPV!a/EA @@
|
unknown
|
|
|
|
kovey.mezo-api.xyz.< fN66a/PV!E(95/#< fOOOPV!a/EA@@d
|
unknown
|
|
|
|
kovey.mezo-api.xyz.< f66a/PV!E(3:5%#< fpOOPV!a/EA@@W
|
unknown
|
|
There are 11 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
45.131.111.219
|
kovey.mezo-api.xyz
|
Germany
|
|
|
|
89.190.156.145
|
unknown
|
United Kingdom
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
805b000
|
page execute read
|
|
||
|
8da5000
|
page read and write
|
|||
|
ff835000
|
page read and write
|
|||
|
805c000
|
page read and write
|
|||
|
805e000
|
page read and write
|
|||
|
f7fab000
|
page execute read
|