Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/tmp/ygshcdTGkk.elf
|
/tmp/ygshcdTGkk.elf
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
daisy.ubuntu.com
|
162.213.35.24
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7f7aec42b000
|
page execute read
|
 |
||
|
5569940c0000
|
page read and write
|
|||
|
7f7b6c000000
|
page read and write
|
|||
|
556994f89000
|
page read and write
|
|||
|
7f7b71a4b000
|
page read and write
|
|||
|
7f7b70e9a000
|
page read and write
|
|||
|
7fffba38c000
|
page execute read
|
|||
|
7f7b714f9000
|
page read and write
|
|||
|
7f7b71158000
|
page read and write
|
|||
|
5569920a1000
|
page read and write
|
|||
|
7f7b70692000
|
page read and write
|
|||
|
7f7aec46f000
|
page read and write
|
|||
|
7f7b71b74000
|
page read and write
|
|||
|
7f7b7151c000
|
page read and write
|
|||
|
5569920ab000
|
page read and write
|
|||
|
7f7b7186a000
|
page read and write
|
|||
|
7fffba2b6000
|
page read and write
|
|||
|
7f7b6c021000
|
page read and write
|
|||
|
5569940a9000
|
page execute and read and write
|
|||
|
7f7b71b7c000
|
page read and write
|
|||
|
7f7b71539000
|
page read and write
|
|||
|
556991e19000
|
page execute read
|
|||
|
7f7b71bc1000
|
page read and write
|
|||
|
7f7b70ea8000
|
page read and write
|
There are 14 hidden memdumps, click here to show them.