Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/tmp/arm7.elf
|
/tmp/arm7.elf
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://upx.sf.net
|
unknown
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
109.202.202.202
|
unknown
|
Switzerland
|
||
|
91.189.91.43
|
unknown
|
United Kingdom
|
||
|
91.189.91.42
|
unknown
|
United Kingdom
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
5561387a4000
|
page execute and read and write
|
|||
|
7fff7cc91000
|
page read and write
|
|||
|
7ff00f8c0000
|
page read and write
|
|||
|
7fef08037000
|
page read and write
|
|||
|
5561367a6000
|
page read and write
|
|||
|
7ff00f8e3000
|
page read and write
|
|||
|
7ff007fff000
|
page read and write
|
|||
|
7ff00f655000
|
page read and write
|
|||
|
7ff00fa4f000
|
page read and write
|
|||
|
7ff00f2f3000
|
page read and write
|
|||
|
7ff008021000
|
page read and write
|
|||
|
7fff7cd65000
|
page execute read
|
|||
|
55613679d000
|
page read and write
|
|||
|
7ff00fc31000
|
page read and write
|
|||
|
7ff00fe12000
|
page read and write
|
|||
|
7ff00ffa4000
|
page read and write
|
|||
|
7ff00ff5f000
|
page read and write
|
|||
|
7ff0077fe000
|
page read and write
|
|||
|
55613654c000
|
page execute read
|
|||
|
7ff00ea59000
|
page read and write
|
|||
|
7ff00f261000
|
page read and write
|
|||
|
55613a37e000
|
page read and write
|
|||
|
7fef08023000
|
page execute read
|
|||
|
5561387bb000
|
page read and write
|
|||
|
7ff00ff3b000
|
page read and write
|
There are 15 hidden memdumps, click here to show them.