Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\Desktop\download\jquery-3.1.1.min.js
|
ASCII text, with very long lines (32030)
|
dropped
|
 |
|
|
C:\Users\user\Desktop\cmdline.out
|
ASCII text, with CRLF line terminators
|
modified
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Windows\System32\wscript.exe
|
C:\Windows\System32\WScript.exe "C:\Users\user\Desktop\download\jquery-3.1.1.min.js"
|
|
|
|
C:\Windows\SysWOW64\cmd.exe
|
C:\Windows\system32\cmd.exe /c wget -t 2 -v -T 60 -P "C:\Users\user\Desktop\download" --no-check-certificate --content-disposition
--user-agent="Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; AS; rv:11.0) like Gecko" "https://code.jquery.com/jquery-3.1.1.min.js"
> cmdline.out 2>&1
|
||
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
||
|
C:\Windows\SysWOW64\wget.exe
|
wget -t 2 -v -T 60 -P "C:\Users\user\Desktop\download" --no-check-certificate --content-disposition --user-agent="Mozilla/5.0
(Windows NT 6.1; WOW64; Trident/7.0; AS; rv:11.0) like Gecko" "https://code.jquery.com/jquery-3.1.1.min.js"
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://code.jquery.com/jquery-3.1.1.min.js
|
|||
|
https://code.jquery.com/jquery-3.1.1.min.jsel
|
unknown
|
||
|
https://code.jquery.com/jquery-3.1.1.min.js
|
151.101.2.137
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
code.jquery.com
|
151.101.2.137
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
151.101.2.137
|
code.jquery.com
|
United States
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows Script\Settings\Telemetry\wscript.exe
|
JScriptSetScriptStateStarted
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
265D84C3000
|
heap
|
page read and write
|
||
|
100000
|
heap
|
page read and write
|
||
|
265D85BE000
|
heap
|
page read and write
|
||
|
265D6AE4000
|
heap
|
page read and write
|
||
|
265D8A0E000
|
heap
|
page read and write
|
||
|
265D6AEC000
|
heap
|
page read and write
|
||
|
265D6B2C000
|
heap
|
page read and write
|
||
|
265D6D19000
|
heap
|
page read and write
|
||
|
2FD0000
|
heap
|
page read and write
|
||
|
265D854D000
|
heap
|
page read and write
|
||
|
1BE000
|
stack
|
page read and write
|
||
|
265D85BE000
|
heap
|
page read and write
|
||
|
265D852D000
|
heap
|
page read and write
|
||
|
265D84F8000
|
heap
|
page read and write
|
||
|
265D85A1000
|
heap
|
page read and write
|
||
|
265D8BF8000
|
heap
|
page read and write
|
||
|
9979DFE000
|
stack
|
page read and write
|
||
|
DDA000
|
heap
|
page read and write
|
||
|
265D8A19000
|
heap
|
page read and write
|
||
|
150000
|
heap
|
page read and write
|
||
|
265D8A57000
|
heap
|
page read and write
|
||
|
265D6B38000
|
heap
|
page read and write
|
||
|
265D84C1000
|
heap
|
page read and write
|
||
|
265D8A1C000
|
heap
|
page read and write
|
||
|
265D89F9000
|
heap
|
page read and write
|
||
|
265D85BE000
|
heap
|
page read and write
|
||
|
265D6BBE000
|
heap
|
page read and write
|
||
|
265D6BBA000
|
heap
|
page read and write
|
||
|
265D8575000
|
heap
|
page read and write
|
||
|
265D89F5000
|
heap
|
page read and write
|
||
|
265D6B02000
|
heap
|
page read and write
|
||
|
265D89EB000
|
heap
|
page read and write
|
||
|
265D6B2C000
|
heap
|
page read and write
|
||
|
265D8A57000
|
heap
|
page read and write
|
||
|
265D857D000
|
heap
|
page read and write
|
||
|
DD6000
|
heap
|
page read and write
|
||
|
265D6BBA000
|
heap
|
page read and write
|
||
|
265D84C1000
|
heap
|
page read and write
|
||
|
14E000
|
stack
|
page read and write
|
||
|
F00000
|
heap
|
page read and write
|
||
|
9979CFE000
|
stack
|
page read and write
|
||
|
265D8A57000
|
heap
|
page read and write
|
||
|
265D84C0000
|
heap
|
page read and write
|
||
|
265D6AED000
|
heap
|
page read and write
|
||
|
265D85BE000
|
heap
|
page read and write
|
||
|
265D6BBE000
|
heap
|
page read and write
|
||
|
265D6D1D000
|
heap
|
page read and write
|
||
|
265D8A57000
|
heap
|
page read and write
|
||
|
D9F000
|
stack
|
page read and write
|
||
|
265D89ED000
|
heap
|
page read and write
|
||
|
265D84C3000
|
heap
|
page read and write
|
||
|
265D8561000
|
heap
|
page read and write
|
||
|
265D8A06000
|
heap
|
page read and write
|
||
|
265D85BE000
|
heap
|
page read and write
|
||
|
265D6BBE000
|
heap
|
page read and write
|
||
|
265D89F2000
|
heap
|
page read and write
|
||
|
265D89F9000
|
heap
|
page read and write
|
||
|
265D89F9000
|
heap
|
page read and write
|
||
|
265D85BE000
|
heap
|
page read and write
|
||
|
265D8A57000
|
heap
|
page read and write
|
||
|
265D8BE1000
|
heap
|
page read and write
|
||
|
265D8A19000
|
heap
|
page read and write
|
||
|
265D8A19000
|
heap
|
page read and write
|
||
|
997A4FF000
|
stack
|
page read and write
|
||
|
265D84E1000
|
heap
|
page read and write
|
||
|
2DEF000
|
stack
|
page read and write
|
||
|
265D6D1B000
|
heap
|
page read and write
|
||
|
265D6D15000
|
heap
|
page read and write
|
||
|
265D6BA6000
|
heap
|
page read and write
|
||
|
9979927000
|
stack
|
page read and write
|
||
|
265D8A57000
|
heap
|
page read and write
|
||
|
265D8505000
|
heap
|
page read and write
|
||
|
9B000
|
stack
|
page read and write
|
||
|
DA0000
|
heap
|
page read and write
|
||
|
265D6BA4000
|
heap
|
page read and write
|
||
|
265D8AB2000
|
heap
|
page read and write
|
||
|
265D6D19000
|
heap
|
page read and write
|
||
|
265D8690000
|
heap
|
page read and write
|
||
|
265D851D000
|
heap
|
page read and write
|
||
|
997A3FE000
|
stack
|
page read and write
|
||
|
265D89F2000
|
heap
|
page read and write
|
||
|
EDE000
|
stack
|
page read and write
|
||
|
265D84C7000
|
heap
|
page read and write
|
||
|
265D8511000
|
heap
|
page read and write
|
||
|
265D85BE000
|
heap
|
page read and write
|
||
|
265D6B62000
|
heap
|
page read and write
|
||
|
265D8A33000
|
heap
|
page read and write
|
||
|
265D8A54000
|
heap
|
page read and write
|
||
|
265D6BB6000
|
heap
|
page read and write
|
||
|
265D8A2F000
|
heap
|
page read and write
|
||
|
265D8A00000
|
heap
|
page read and write
|
||
|
265D6BAC000
|
heap
|
page read and write
|
||
|
160000
|
heap
|
page read and write
|
||
|
265D89F9000
|
heap
|
page read and write
|
||
|
265D85BE000
|
heap
|
page read and write
|
||
|
265D85BE000
|
heap
|
page read and write
|
||
|
265D8A43000
|
heap
|
page read and write
|
||
|
265D8A11000
|
heap
|
page read and write
|
||
|
265D8A57000
|
heap
|
page read and write
|
||
|
265D6BBA000
|
heap
|
page read and write
|
||
|
265D85BE000
|
heap
|
page read and write
|
||
|
265D8A36000
|
heap
|
page read and write
|
||
|
997A2FF000
|
stack
|
page read and write
|
||
|
9979EFF000
|
stack
|
page read and write
|
||
|
265D85BD000
|
heap
|
page read and write
|
||
|
265D6BA6000
|
heap
|
page read and write
|
||
|
265D84FD000
|
heap
|
page read and write
|
||
|
265D6BB6000
|
heap
|
page read and write
|
||
|
265D6A80000
|
heap
|
page read and write
|
||
|
265D6BA4000
|
heap
|
page read and write
|
||
|
9CC000
|
stack
|
page read and write
|
||
|
265D89E9000
|
heap
|
page read and write
|
||
|
265D6BB6000
|
heap
|
page read and write
|
||
|
265D85BE000
|
heap
|
page read and write
|
||
|
265D6BB6000
|
heap
|
page read and write
|
||
|
265D8BF1000
|
heap
|
page read and write
|
||
|
265D8C0D000
|
heap
|
page read and write
|
||
|
265D6BBA000
|
heap
|
page read and write
|
||
|
997A0FE000
|
stack
|
page read and write
|
||
|
265D84CD000
|
heap
|
page read and write
|
||
|
265D858D000
|
heap
|
page read and write
|
||
|
265D6AFF000
|
heap
|
page read and write
|
||
|
265D6980000
|
heap
|
page read and write
|
||
|
265D8A12000
|
heap
|
page read and write
|
||
|
265D89E1000
|
heap
|
page read and write
|
||
|
265D6D10000
|
heap
|
page read and write
|
||
|
265D6BBE000
|
heap
|
page read and write
|
||
|
1C0000
|
heap
|
page read and write
|
||
|
265D8A57000
|
heap
|
page read and write
|
||
|
265D84ED000
|
heap
|
page read and write
|
||
|
DE1000
|
heap
|
page read and write
|
||
|
265D6AC0000
|
heap
|
page read and write
|
||
|
265D6BAC000
|
heap
|
page read and write
|
||
|
265D6D1B000
|
heap
|
page read and write
|
||
|
265D89EE000
|
heap
|
page read and write
|
||
|
265D853D000
|
heap
|
page read and write
|
||
|
DE5000
|
heap
|
page read and write
|
||
|
265D85BE000
|
heap
|
page read and write
|
||
|
265D6BA4000
|
heap
|
page read and write
|
||
|
265D6BB0000
|
heap
|
page read and write
|
||
|
265D8BE0000
|
heap
|
page read and write
|
||
|
265D6BBA000
|
heap
|
page read and write
|
||
|
265D6BB6000
|
heap
|
page read and write
|
||
|
265D89EC000
|
heap
|
page read and write
|
||
|
265D8A13000
|
heap
|
page read and write
|
||
|
265D6BBA000
|
heap
|
page read and write
|
||
|
DAB000
|
heap
|
page read and write
|
||
|
265D6BBE000
|
heap
|
page read and write
|
||
|
265D8A0D000
|
heap
|
page read and write
|
||
|
DE2000
|
heap
|
page read and write
|
||
|
265D6BAC000
|
heap
|
page read and write
|
||
|
265D89F9000
|
heap
|
page read and write
|
||
|
265D6AC9000
|
heap
|
page read and write
|
||
|
1D0000
|
heap
|
page read and write
|
||
|
265D89EC000
|
heap
|
page read and write
|
||
|
265D6D1D000
|
heap
|
page read and write
|
||
|
265D84D5000
|
heap
|
page read and write
|
||
|
265D6BBE000
|
heap
|
page read and write
|
||
|
265D85BE000
|
heap
|
page read and write
|
||
|
265D85BE000
|
heap
|
page read and write
|
||
|
265D6BB6000
|
heap
|
page read and write
|
||
|
265D8550000
|
heap
|
page read and write
|
||
|
265D84DD000
|
heap
|
page read and write
|
||
|
AA8000
|
heap
|
page read and write
|
||
|
265D8A0E000
|
heap
|
page read and write
|
||
|
265D8A04000
|
heap
|
page read and write
|
||
|
265D89E6000
|
heap
|
page read and write
|
||
|
265D6BAC000
|
heap
|
page read and write
|
||
|
265D85BE000
|
heap
|
page read and write
|
||
|
265D89E0000
|
heap
|
page read and write
|
||
|
DDE000
|
heap
|
page read and write
|
||
|
F05000
|
heap
|
page read and write
|
||
|
F0E000
|
heap
|
page read and write
|
||
|
265D85BE000
|
heap
|
page read and write
|
||
|
265D8580000
|
heap
|
page read and write
|
||
|
265D84F5000
|
heap
|
page read and write
|
||
|
156000
|
heap
|
page read and write
|
||
|
265D8A57000
|
heap
|
page read and write
|
||
|
265D8BEF000
|
heap
|
page read and write
|
||
|
265DA540000
|
trusted library allocation
|
page read and write
|
||
|
265D89FF000
|
heap
|
page read and write
|
||
|
265D8A1A000
|
heap
|
page read and write
|
||
|
265D8600000
|
heap
|
page read and write
|
||
|
265D8A19000
|
heap
|
page read and write
|
||
|
265D84C3000
|
heap
|
page read and write
|
||
|
265D8A47000
|
heap
|
page read and write
|
||
|
265D6BAC000
|
heap
|
page read and write
|
||
|
265D6ADF000
|
heap
|
page read and write
|
||
|
265D84D8000
|
heap
|
page read and write
|
||
|
265D85BE000
|
heap
|
page read and write
|
||
|
265D84C2000
|
heap
|
page read and write
|
||
|
265D6BBA000
|
heap
|
page read and write
|
||
|
265D6BBE000
|
heap
|
page read and write
|
||
|
265D89F4000
|
heap
|
page read and write
|
||
|
DE4000
|
heap
|
page read and write
|
||
|
265D89F2000
|
heap
|
page read and write
|
||
|
AA0000
|
heap
|
page read and write
|
||
|
997A1FF000
|
stack
|
page read and write
|
||
|
265D8694000
|
heap
|
page read and write
|
||
|
265D89EA000
|
heap
|
page read and write
|
||
|
265D8A13000
|
heap
|
page read and write
|
||
|
28AF000
|
stack
|
page read and write
|
||
|
265D8BF1000
|
heap
|
page read and write
|
||
|
265D8A19000
|
heap
|
page read and write
|
||
|
265D85BE000
|
heap
|
page read and write
|
||
|
265D8A13000
|
heap
|
page read and write
|
||
|
DAD000
|
heap
|
page read and write
|
||
|
F0C000
|
heap
|
page read and write
|
||
|
265D6B00000
|
heap
|
page read and write
|
||
|
265D89EC000
|
heap
|
page read and write
|
||
|
265D85B9000
|
heap
|
page read and write
|
||
|
265D89E1000
|
heap
|
page read and write
|
||
|
265D8A10000
|
heap
|
page read and write
|
||
|
265D6AE4000
|
heap
|
page read and write
|
||
|
F0B000
|
heap
|
page read and write
|
||
|
265D6A60000
|
heap
|
page read and write
|
||
|
F0D000
|
heap
|
page read and write
|
There are 207 hidden memdumps, click here to show them.