Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\ffplay.exe
|
"C:\Users\user\Desktop\ffplay.exe"
|
||
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://x265.org
|
unknown
|
||
|
https://kode54.net/)
|
unknown
|
||
|
https://twitter.com/daniel_collin
|
unknown
|
||
|
https://github.com/nothings/stb/
|
unknown
|
||
|
https://github.com/iamgreaser/it2everything/
|
unknown
|
||
|
https://joaobapt.com/)
|
unknown
|
||
|
http://schismtracker.org/
|
unknown
|
||
|
http://standards.iso.org/ittf/PubliclyAvailableStandards/MPEG-DASH_schema_files/DASH-MPD.xsd
|
unknown
|
||
|
http://lame.sf.net64bits
|
unknown
|
||
|
http://www.oasis-open.org/committees/entity/release/1.0/catalog.dtd
|
unknown
|
||
|
https://bel.fi/alankila/modguide/interpolate.txt
|
unknown
|
||
|
http://www.oasis-open.org/committees/entity/release/1.0/catalog.dtd-//OASIS//DTD
|
unknown
|
||
|
https://www.3eality.com/
|
unknown
|
||
|
http://dashif.org/guidelines/last-segment-number
|
unknown
|
||
|
http://www.smpte-ra.org/schemas/2067-3/2013#standard-markersInvalid
|
unknown
|
||
|
http://www.smpte-ra.org/schemas/2067-3/2013#standard-markers
|
unknown
|
||
|
http://WWW-Authenticate:Proxy-Authenticate:Content-Encoding:gzip1.3.1Content-Length:
|
unknown
|
||
|
https://revenant1.net/)
|
unknown
|
||
|
http://lame.sf.net
|
unknown
|
||
|
http://relaxng.org/ns/structure/1.0datatypeLibrary:/#?includegrammardefinenamestartInternal
|
unknown
|
||
|
https://github.com/viiri/st2play
|
unknown
|
||
|
https://streams.videolan.org/upload/
|
unknown
|
||
|
https://coda.s3m.us/)
|
unknown
|
||
|
https://github.com/ryuhei-mori/tinyfft
|
unknown
|
||
|
http://www.videolan.org/x264.html
|
unknown
|
||
|
http://xaimus.com/)
|
unknown
|
||
|
http://dashif.org/guidelines/trickmode
|
unknown
|
||
|
http://www.brynosaurus.com/cachedir/
|
unknown
|
||
|
https://github.com/lieff/minimp3/
|
unknown
|
||
|
http://modplug-xmms.sourceforge.net/
|
unknown
|
||
|
http://relaxng.org/ns/structure/1.0
|
unknown
|
||
|
https://github.com/lclevy/unmo3
|
unknown
|
||
|
https://github.com/richgel999/miniz
|
unknown
|
||
|
http://www.gnu.org/licenses/
|
unknown
|
There are 24 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
bg.microsoft.map.fastly.net
|
199.232.214.172
|
||
|
fp2e7a.wpc.phicdn.net
|
192.229.211.108
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7FF67D66F000
|
unkown
|
page readonly
|
||
|
7FF678B51000
|
unkown
|
page execute read
|
||
|
7FF677751000
|
unkown
|
page execute read
|
||
|
7FF67BA8E000
|
unkown
|
page readonly
|
||
|
7FF67BA3A000
|
unkown
|
page readonly
|
||
|
7FF67B602000
|
unkown
|
page readonly
|
||
|
250D1435000
|
heap
|
page read and write
|
||
|
7FF67B720000
|
unkown
|
page readonly
|
||
|
7FF67B60D000
|
unkown
|
page readonly
|
||
|
7FF67BA9F000
|
unkown
|
page readonly
|
||
|
250D2D10000
|
heap
|
page read and write
|
||
|
250D1300000
|
heap
|
page read and write
|
||
|
7FF67B2FA000
|
unkown
|
page readonly
|
||
|
7FF67BAA8000
|
unkown
|
page readonly
|
||
|
7FF678151000
|
unkown
|
page execute read
|
||
|
7FF679551000
|
unkown
|
page execute read
|
||
|
7FF67A951000
|
unkown
|
page execute read
|
||
|
7FF677751000
|
unkown
|
page execute read
|
||
|
7FF67B2E6000
|
unkown
|
page readonly
|
||
|
7FF67B08E000
|
unkown
|
page write copy
|
||
|
7FF67BA63000
|
unkown
|
page readonly
|
||
|
7FF67BA99000
|
unkown
|
page readonly
|
||
|
7FF67BA36000
|
unkown
|
page readonly
|
||
|
7FF67B7F4000
|
unkown
|
page readonly
|
||
|
250D2BE0000
|
heap
|
page read and write
|
||
|
7FF67BAA4000
|
unkown
|
page readonly
|
||
|
7FF67BA86000
|
unkown
|
page readonly
|
||
|
7FF67BA96000
|
unkown
|
page readonly
|
||
|
250D1206000
|
heap
|
page read and write
|
||
|
7FF67B609000
|
unkown
|
page readonly
|
||
|
7FF679551000
|
unkown
|
page execute read
|
||
|
7FF67B2ED000
|
unkown
|
page readonly
|
||
|
250D1320000
|
heap
|
page read and write
|
||
|
7FF67D666000
|
unkown
|
page write copy
|
||
|
7FF67B963000
|
unkown
|
page readonly
|
||
|
7FF678B51000
|
unkown
|
page execute read
|
||
|
7FF67B5FF000
|
unkown
|
page readonly
|
||
|
7FF678151000
|
unkown
|
page execute read
|
||
|
7FF67AF64000
|
unkown
|
page write copy
|
||
|
250D1200000
|
heap
|
page read and write
|
||
|
7FF67B2F6000
|
unkown
|
page readonly
|
||
|
7FF67B08C000
|
unkown
|
page write copy
|
||
|
7FF676D51000
|
unkown
|
page execute read
|
||
|
D6BBFFD000
|
stack
|
page read and write
|
||
|
7FF679F51000
|
unkown
|
page execute read
|
||
|
7FF67BA8B000
|
unkown
|
page readonly
|
||
|
7FF67B545000
|
unkown
|
page readonly
|
||
|
7FF67BAB3000
|
unkown
|
page readonly
|
||
|
7FF676D50000
|
unkown
|
page readonly
|
||
|
7FF67B094000
|
unkown
|
page readonly
|
||
|
250D1120000
|
heap
|
page read and write
|
||
|
7FF67B2E9000
|
unkown
|
page readonly
|
||
|
7FF67BA9C000
|
unkown
|
page readonly
|
||
|
7FF67BA83000
|
unkown
|
page readonly
|
||
|
D6BBBFD000
|
stack
|
page read and write
|
||
|
D6BC1FF000
|
stack
|
page read and write
|
||
|
7FF67B4A4000
|
unkown
|
page readonly
|
||
|
7FF67B534000
|
unkown
|
page readonly
|
||
|
7FF67B2F0000
|
unkown
|
page readonly
|
||
|
7FF67D664000
|
unkown
|
page readonly
|
||
|
7FF676D50000
|
unkown
|
page readonly
|
||
|
7FF67BAAB000
|
unkown
|
page readonly
|
||
|
7FF67BA7E000
|
unkown
|
page readonly
|
||
|
250D1430000
|
heap
|
page read and write
|
||
|
D6BBDFE000
|
stack
|
page read and write
|
||
|
250D2C0E000
|
heap
|
page read and write
|
||
|
250D120C000
|
heap
|
page read and write
|
||
|
7FF676D51000
|
unkown
|
page execute read
|
There are 58 hidden memdumps, click here to show them.