Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/tmp/3Tqu9ydZZe.elf
|
/tmp/3Tqu9ydZZe.elf
|
||
|
/tmp/3Tqu9ydZZe.elf
|
-
|
||
|
/tmp/3Tqu9ydZZe.elf
|
-
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
freethewind.parody
|
86.104.194.171
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
86.104.194.178
|
unknown
|
Romania
|
 |
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
55b24dcc8000
|
page read and write
|
|||
|
55b250ac2000
|
page read and write
|
|||
|
7f5da041b000
|
page read and write
|
|||
|
7f5da040b000
|
page execute read
|
|||
|
55b24dcd0000
|
page read and write
|
|||
|
7f5e28504000
|
page read and write
|
|||
|
7f5e28980000
|
page read and write
|
|||
|
7f5e2811d000
|
page read and write
|
|||
|
7f5e2767d000
|
page read and write
|
|||
|
7f5e20021000
|
page read and write
|
|||
|
55b24fce5000
|
page read and write
|
|||
|
7f5e289c5000
|
page read and write
|
|||
|
7ffcd6712000
|
page read and write
|
|||
|
7f5e20000000
|
page read and write
|
|||
|
55b24fcce000
|
page execute and read and write
|
|||
|
7f5e27e8e000
|
page read and write
|
|||
|
7f5e284df000
|
page read and write
|
|||
|
7ffcd6748000
|
page execute read
|
|||
|
7f5e28978000
|
page read and write
|
|||
|
55b24dab2000
|
page execute read
|
|||
|
7f5e27e80000
|
page read and write
|
|||
|
7f5e2884f000
|
page read and write
|
|||
|
7f5da041c000
|
page read and write
|
There are 13 hidden memdumps, click here to show them.