Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\SecuriteInfo.com.Trojan.Crypt.14125.25529.exe
|
"C:\Users\user\Desktop\SecuriteInfo.com.Trojan.Crypt.14125.25529.exe"
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://www.e-sushi.net/minibin/
|
unknown
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7F0000
|
heap
|
page read and write
|
||
|
9B9000
|
unkown
|
page readonly
|
||
|
294E000
|
stack
|
page read and write
|
||
|
510000
|
heap
|
page read and write
|
||
|
9B9000
|
unkown
|
page readonly
|
||
|
9AC000
|
unkown
|
page readonly
|
||
|
9B7000
|
unkown
|
page read and write
|
||
|
566000
|
heap
|
page read and write
|
||
|
970000
|
heap
|
page read and write
|
||
|
61A000
|
heap
|
page read and write
|
||
|
19B000
|
stack
|
page read and write
|
||
|
9A0000
|
unkown
|
page readonly
|
||
|
95E000
|
stack
|
page read and write
|
||
|
280E000
|
stack
|
page read and write
|
||
|
500000
|
heap
|
page read and write
|
||
|
290F000
|
stack
|
page read and write
|
||
|
27CE000
|
stack
|
page read and write
|
||
|
520000
|
heap
|
page read and write
|
||
|
649000
|
heap
|
page read and write
|
||
|
9A1000
|
unkown
|
page execute read
|
||
|
9A1000
|
unkown
|
page execute read
|
||
|
235E000
|
stack
|
page read and write
|
||
|
2380000
|
heap
|
page read and write
|
||
|
9A0000
|
unkown
|
page readonly
|
||
|
7E0000
|
heap
|
page read and write
|
||
|
610000
|
heap
|
page read and write
|
||
|
9B2000
|
unkown
|
page read and write
|
||
|
4F6000
|
stack
|
page read and write
|
||
|
91E000
|
stack
|
page read and write
|
||
|
960000
|
heap
|
page read and write
|
||
|
9AC000
|
unkown
|
page readonly
|
||
|
9AF000
|
unkown
|
page write copy
|
||
|
9AF000
|
unkown
|
page read and write
|
||
|
560000
|
heap
|
page read and write
|
||
|
2A4F000
|
stack
|
page read and write
|
||
|
61E000
|
heap
|
page read and write
|
There are 26 hidden memdumps, click here to show them.