Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/tmp/1NSVzJh1X7.elf
|
/tmp/1NSVzJh1X7.elf
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://103.174.73.190/tajma.mpsl;
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/encoding/
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/envelope/
|
unknown
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
daisy.ubuntu.com
|
162.213.35.24
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
185.125.190.26
|
unknown
|
United Kingdom
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7fd19841c000
|
page execute read
|
 |
||
|
560af1215000
|
page read and write
|
|||
|
7fd21f599000
|
page read and write
|
|||
|
7fd198431000
|
page read and write
|
|||
|
7fd21f11d000
|
page read and write
|
|||
|
7fd218000000
|
page read and write
|
|||
|
7fd21f591000
|
page read and write
|
|||
|
7fd21ea99000
|
page read and write
|
|||
|
560aedbc2000
|
page execute read
|
|||
|
7fd21f468000
|
page read and write
|
|||
|
560aeddd8000
|
page read and write
|
|||
|
7fd218021000
|
page read and write
|
|||
|
7fd21e296000
|
page read and write
|
|||
|
7fd21eaa7000
|
page read and write
|
|||
|
7fd21f0f8000
|
page read and write
|
|||
|
7fd21ed36000
|
page read and write
|
|||
|
7fd21f5de000
|
page read and write
|
|||
|
560aefdf5000
|
page read and write
|
|||
|
560aefdde000
|
page execute and read and write
|
|||
|
7fd198445000
|
page read and write
|
|||
|
7ffc239ef000
|
page execute read
|
|||
|
560aedde0000
|
page read and write
|
|||
|
7ffc238a7000
|
page read and write
|
There are 13 hidden memdumps, click here to show them.