Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/tmp/FtRTuVcia6.elf
|
/tmp/FtRTuVcia6.elf
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://103.174.73.190/tajma.mpsl;
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/encoding/
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/envelope/
|
unknown
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
daisy.ubuntu.com
|
162.213.35.25
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
185.125.190.26
|
unknown
|
United Kingdom
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7fc7c0034000
|
page execute read
|
 |
||
|
5569275a6000
|
page read and write
|
|||
|
7fc8c5f2d000
|
page read and write
|
|||
|
7ffcd47d8000
|
page read and write
|
|||
|
7ffcd47dc000
|
page execute read
|
|||
|
7fc8c5f7a000
|
page read and write
|
|||
|
5569275af000
|
page read and write
|
|||
|
5569295ad000
|
page execute and read and write
|
|||
|
5569295c4000
|
page read and write
|
|||
|
7fc8c4c32000
|
page read and write
|
|||
|
7fc8c0000000
|
page read and write
|
|||
|
7fc8c5e04000
|
page read and write
|
|||
|
7fc8c5435000
|
page read and write
|
|||
|
7fc8c5f35000
|
page read and write
|
|||
|
7fc8c56d2000
|
page read and write
|
|||
|
7fc7c0048000
|
page read and write
|
|||
|
7fc8c0021000
|
page read and write
|
|||
|
7fc8c5ab9000
|
page read and write
|
|||
|
556927378000
|
page execute read
|
|||
|
7fc7c004d000
|
page read and write
|
|||
|
7fc8c5a94000
|
page read and write
|
|||
|
7fc8c5443000
|
page read and write
|
|||
|
55692a4c7000
|
page read and write
|
There are 13 hidden memdumps, click here to show them.