Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
initial sample
|
 |
|||
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{CB86F561-57A1-11EB-90E4-ECF4BB862DED}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{CB86F563-57A1-11EB-90E4-ECF4BB862DED}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{D2D1C5C6-57A1-11EB-90E4-ECF4BB862DED}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\Plano%20Vacina o%20Covid%2019%20quem%20pode%20aceder%20
s%20fases%20priorit rias[1].jpg
|
[TIFF image data, big-endian, direntries=8, orientation=upper-left, xresolution=110, yresolution=118, resolutionunit=2, software=Adobe
Photoshop 22.1 (Windows), datetime=2021:01:12 15:41:49], baseline, precision 8, 2361x3450, frames 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\footer-bckg[1].htm
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\covid19vacina1212021[1].htm
|
HTML document, UTF-8 Unicode text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\covid19vacina1212021[2].htm
|
HTML document, UTF-8 Unicode text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\favicon[1].htm
|
HTML document, UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\footer-bckg[1].png
|
PNG image data, 750 x 46, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\Plano%20Vacina o%20Covid%2019%20quem%20pode%20aceder%20
s%20fases%20priorit rias[1].htm
|
HTML document, UTF-8 Unicode text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\actividade_sindical_styles[1].css
|
ASCII text, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\actividade_sindical_home_styles[1].css
|
ASCII text, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\covid19vacina1212021[1].htm
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\favicon[1].htm
|
HTML document, UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF30F362AA3C110D95.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DFAB9916EAF9E47E51.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DFBFFCDE08D8CDEC9A.TMP
|
data
|
dropped
|
|
There are 8 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\internet explorer\iexplore.exe
|
'C:\Program Files\Internet Explorer\iexplore.exe' -Embedding
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:4660 CREDAT:17410 /prefetch:2
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://www.mais.pt/bo/Entidades/PublishingImages/footer-bckg.png
|
193.126.51.80
|
|
|
|
https://www.mais.pt/atividadesindical/informacao/publicacoes/Newsletters/covid19vacina1212021.aspx(
|
unknown
|
|
|
|
http://www.mais.pt/bo/Entidades/PublishingImages/Plano
|
unknown
|
|
|
|
http://www.sbsi.pt
|
unknown
|
|
|
|
https://www.mais.pt/at
|
unknown
|
|
|
|
https://www.sbsi.pt/bo/Entidades/PublishingImages/Plano%20Vacina
|
unknown
|
|
|
|
http://www.link.pt
|
unknown
|
|
|
|
https://www.mais.pt/atividadesindical/informacao/publicacoes/Newsletters/covid19vacina1212021.aspxiv
|
unknown
|
|
|
|
http://www.mais.pt/atividadesindical/informacao/publicacoes/Newsletters/covid19vacina1212021.aspx
|
193.126.51.80
|
|
|
|
http://www.mais.pt/bo/Entidades/PublishingImages/Plano%20Vacina%C3%A7%C3%A3o%20Covid%2019%20quem%20pode%20aceder%20%C3%A0s%20fases%20priorit%C3%A1rias.jpg
|
193.126.51.80
|
|
|
|
https://www.sbsi.pt/bo/Entidades/PublishingImages/footer-bckg.png
|
unknown
|
|
|
|
https://www.mais.pt/atividadesindical/informacao/publicacoes/Newsletters/covid19vacina1212021.aspx
|
unknown
|
|
|
|
https://www.mais.pt/atividadesindical/informacao/publicacoes/Newsletters/covid19vacina1212021.aspxRo
|
unknown
|
|
|
|
https://www.mais.pt/atividadesindical/informacao/publicacoes/Newsletters/covid19vacina1212021.aspx
|
|
||
|
https://www.sbsi.pt/atividadesindical/informacao/publicacoes/Newsletters/covid19vacina1212021.aspx
|
unknown
|
|
There are 5 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
www.sbsi.pt
|
193.126.51.80
|
|
|
|
www.mais.pt
|
193.126.51.80
|
|
IPs
|
IP
|
Domain
|
Country
|
Active
|
Malicious
|
|
|---|---|---|---|---|---|
|
193.126.51.80
|
unknown
|
Portugal
|
unknown
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\internet explorer\iexplore.exe
|
{CB86F561-57A1-11EB-90E4-ECF4BB862DED}
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
AdminActive
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
There are 12 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
CCF167D000
|
unkown
|
page read and write
|
|
|
|
722CAF7000
|
unkown
|
page read and write
|
|
|
|
7FF5B00F3000
|
unkown
|
page readonly
|
|
|
|
7FF5E5A49000
|
unkown
|
page readonly
|
|
|
|
7FF5E58CA000
|
unkown
|
page readonly
|
|
|
|
1EE7C461000
|
unkown
|
page read and write
|
|
|
|
1EE7AC8D000
|
unkown
|
page read and write
|
|
|
|
7FF5C7B2C000
|
unkown
|
page readonly
|
|
|
|
CCF15FE000
|
unkown
|
page read and write
|
|
|
|
1EE7C2C0000
|
unkown
|
page read and write
|
|
|
|
1EE7BD20000
|
unkown
|
page readonly
|
|
|
|
DB1ECFE000
|
unkown
|
page read and write
|
|
|
|
DB1F0FF000
|
unkown
|
page read and write
|
|
|
|
7FF5C7B58000
|
unkown
|
page readonly
|
|
|
|
7FF5C7BBC000
|
unkown
|
page readonly
|
|
|
|
1F3D82E0000
|
heap private
|
page read and write
|
|
|
|
7FF5C73ED000
|
unkown
|
page readonly
|
|
|
|
1F3D68AD000
|
heap default
|
page read and write
|
|
|
|
7FF5C79FC000
|
unkown
|
page readonly
|
|
|
|
DB1E777000
|
unkown
|
page read and write
|
|
|
|
7FF5B0912000
|
unkown
|
page readonly
|
|
|
|
7FF5C7BE4000
|
unkown
|
page readonly
|
|
|
|
7FF5C7B23000
|
unkown
|
page readonly
|
|
|
|
7FF5B080A000
|
unkown
|
page readonly
|
|
|
|
1EE7C300000
|
unkown
|
page read and write
|
|
|
|
7FF5B0878000
|
unkown
|
page readonly
|
|
|
|
1F3D6870000
|
heap default
|
page read and write
|
|
|
|
722C97B000
|
unkown
|
page read and write
|
|
|
|
1EE7C2EC000
|
unkown
|
page readonly
|
|
|
|
1EE7AC41000
|
unkown
|
page read and write
|
|
|
|
1F3D85FF000
|
heap private
|
page read and write
|
|
|
|
DB1F07F000
|
unkown
|
page read and write
|
|
|
|
1EE7AB90000
|
heap default
|
page read and write
|
|
|
|
1F3D8320000
|
heap private
|
page read and write
|
|
|
|
1EE7BCD0000
|
unkown
|
page readonly
|
|
|
|
7FF5C77C0000
|
unkown
|
page readonly
|
|
|
|
7FF5E59F2000
|
unkown
|
page readonly
|
|
|
|
7FF5C7B85000
|
unkown
|
page readonly
|
|
|
|
7FF5C7B38000
|
unkown
|
page readonly
|
|
|
|
7FF5B0876000
|
unkown
|
page readonly
|
|
|
|
1EE62C2A000
|
unkown
|
page read and write
|
|
|
|
1EE7AC00000
|
unkown
|
page read and write
|
|
|
|
1EE7ACFD000
|
unkown
|
page read and write
|
|
|
|
7FF5C7B8F000
|
unkown
|
page readonly
|
|
|
|
1EE7AB30000
|
heap private
|
page read and write
|
|
|
|
1EE62AE0000
|
unkown
|
page readonly
|
|
|
|
7FF5B0860000
|
unkown
|
page readonly
|
|
|
|
1EE7C211000
|
unkown
|
page read and write
|
|
|
|
1EE7C310000
|
unkown
|
page read and write
|
|
|
|
1EE7AC8B000
|
unkown
|
page read and write
|
|
|
|
1EE7C0E0000
|
unkown
|
page read and write
|
|
|
|
7FF5E5A6C000
|
unkown
|
page readonly
|
|
|
|
7FF5B08F5000
|
unkown
|
page readonly
|
|
|
|
1EE7C2C4000
|
unkown
|
page readonly
|
|
|
|
7FF5C7BC6000
|
unkown
|
page readonly
|
|
|
|
1EE7C414000
|
unkown
|
page read and write
|
|
|
|
1EE7B3F0000
|
unkown
|
page read and write
|
|
|
|
1EE7B518000
|
unkown
|
page read and write
|
|
|
|
7FF5E5A08000
|
unkown
|
page readonly
|
|
|
|
7FF5C7C49000
|
unkown
|
page readonly
|
|
|
|
7FF5E5AF1000
|
unkown
|
page readonly
|
|
|
|
DB1E34B000
|
unkown
|
page read and write
|
|
|
|
7FF5C7B99000
|
unkown
|
page readonly
|
|
|
|
CCF17FF000
|
unkown
|
page read and write
|
|
|
|
1EE7BCC0000
|
unkown
|
page readonly
|
|
|
|
7FF5E55F0000
|
unkown
|
page readonly
|
|
|
|
DB1EEFE000
|
unkown
|
page read and write
|
|
|
|
7FF5B08D6000
|
unkown
|
page readonly
|
|
|
|
7FF5C7BB1000
|
unkown
|
page readonly
|
|
|
|
DB1E67E000
|
unkown
|
page read and write
|
|
|
|
7FF5E5A94000
|
unkown
|
page readonly
|
|
|
|
7FF5E5937000
|
unkown
|
page readonly
|
|
|
|
7FF5C7C3E000
|
unkown
|
page readonly
|
|
|
|
1EE7AC13000
|
unkown
|
page read and write
|
|
|
|
7FF5E5299000
|
unkown
|
page readonly
|
|
|
|
7FF5E5293000
|
unkown
|
page readonly
|
|
|
|
1EE62A10000
|
unkown
|
page readonly
|
|
|
|
DB1EA7E000
|
unkown
|
page read and write
|
|
|
|
7FF5B080E000
|
unkown
|
page readonly
|
|
|
|
7FF5C7B52000
|
unkown
|
page readonly
|
|
|
|
7FF5C7B27000
|
unkown
|
page readonly
|
|
|
|
7FF5B05EC000
|
unkown
|
page readonly
|
|
|
|
1EE7C220000
|
unkown
|
page read and write
|
|
|
|
1EE7AC94000
|
unkown
|
page read and write
|
|
|
|
7FF5C7B01000
|
unkown
|
page readonly
|
|
|
|
7FF5B05E3000
|
unkown
|
page readonly
|
|
|
|
7FF5C79AE000
|
unkown
|
page readonly
|
|
|
|
722CCFE000
|
unkown
|
page read and write
|
|
|
|
7FF5B08B9000
|
unkown
|
page readonly
|
|
|
|
1EE7C600000
|
unkown
|
page readonly
|
|
|
|
1EE62C8D000
|
unkown
|
page read and write
|
|
|
|
1EE7ABC0000
|
unkown
|
page read and write
|
|
|
|
7FF5C78F7000
|
unkown
|
page readonly
|
|
|
|
1EE7C4B4000
|
unkown
|
page read and write
|
|
|
|
1EE7ABD0000
|
unkown
|
page read and write
|
|
|
|
1EE7BB00000
|
unkown
|
page read and write
|
|
|
|
1EE7B3C1000
|
unkown
|
page read and write
|
|
|
|
1EE7AC75000
|
unkown
|
page read and write
|
|
|
|
1EE7B559000
|
unkown
|
page read and write
|
|
|
|
7FF5C77D7000
|
unkown
|
page readonly
|
|
|
|
7FF5B08EC000
|
unkown
|
page readonly
|
|
|
|
1EE7C2C0000
|
unkown
|
page write copy
|
|
|
|
722C77D000
|
unkown
|
page read and write
|
|
|
|
7FF5B090D000
|
unkown
|
page readonly
|
|
|
|
DB1EB7C000
|
unkown
|
page read and write
|
|
|
|
7FF5C7BCC000
|
unkown
|
page readonly
|
|
|
|
CCF177E000
|
unkown
|
page read and write
|
|
|
|
1EE62C47000
|
unkown
|
page read and write
|
|
|
|
7FF5E581A000
|
unkown
|
page readonly
|
|
|
|
DB1EE7E000
|
unkown
|
page read and write
|
|
|
|
7FF5C7BAD000
|
unkown
|
page readonly
|
|
|
|
7FF5C73EB000
|
unkown
|
page readonly
|
|
|
|
7FF5C7A01000
|
unkown
|
page readonly
|
|
|
|
1EE7C220000
|
unkown
|
page read and write
|
|
|
|
7FF5E58BE000
|
unkown
|
page readonly
|
|
|
|
1EE7ABA0000
|
unkown
|
page readonly
|
|
|
|
7FF5E5A85000
|
unkown
|
page readonly
|
|
|
|
1EE62D02000
|
unkown
|
page read and write
|
|
|
|
1EE7AC9F000
|
unkown
|
page read and write
|
|
|
|
1EE7C1F0000
|
unkown
|
page read and write
|
|
|
|
7FF5C784D000
|
unkown
|
page readonly
|
|
|
|
7FF5C785F000
|
unkown
|
page readonly
|
|
|
|
7FF5C72E2000
|
unkown
|
page readonly
|
|
|
|
7FF5E596C000
|
unkown
|
page readonly
|
|
|
|
7FF5B089E000
|
unkown
|
page readonly
|
|
|
|
1EE7C234000
|
unkown
|
page read and write
|
|
|
|
1EE7C0D0000
|
unkown
|
page read and write
|
|
|
|
7FF5C79CF000
|
unkown
|
page readonly
|
|
|
|
1EE7C3E0000
|
unkown
|
page read and write
|
|
|
|
1EE62C3C000
|
unkown
|
page read and write
|
|
|
|
1EE7AD02000
|
unkown
|
page read and write
|
|
|
|
1F3D6A40000
|
unkown
|
page readonly
|
|
|
|
7FF5B08D1000
|
unkown
|
page readonly
|
|
|
|
CCF147C000
|
unkown
|
page read and write
|
|
|
|
7FF5C7BE7000
|
unkown
|
page readonly
|
|
|
|
7FF5E5A90000
|
unkown
|
page readonly
|
|
|
|
7FF5C7B7E000
|
unkown
|
page readonly
|
|
|
|
7FF5E59F0000
|
unkown
|
page readonly
|
|
|
|
1EE7B559000
|
unkown
|
page read and write
|
|
|
|
722C6FE000
|
unkown
|
page read and write
|
|
|
|
7FF5C7ABC000
|
unkown
|
page readonly
|
|
|
|
7FF5C7B6A000
|
unkown
|
page readonly
|
|
|
|
7FF5C796B000
|
unkown
|
page readonly
|
|
|
|
1EE7C3A0000
|
unkown
|
page readonly
|
|
|
|
1EE7B513000
|
unkown
|
page read and write
|
|
|
|
7FF5B0862000
|
unkown
|
page readonly
|
|
|
|
7FF5C7988000
|
unkown
|
page readonly
|
|
|
|
1EE7AC58000
|
unkown
|
page read and write
|
|
|
|
7FF5E5A97000
|
unkown
|
page readonly
|
|
|
|
DB1E3CE000
|
unkown
|
page read and write
|
|
|
|
1F3D8500000
|
heap private
|
page read and write
|
|
|
|
1EE62C83000
|
unkown
|
page read and write
|
|
|
|
1EE7C3D0000
|
unkown
|
page readonly
|
|
|
|
1EE7C2E8000
|
unkown
|
page write copy
|
|
|
|
1EE62D13000
|
unkown
|
page read and write
|
|
|
|
1EE7C230000
|
unkown
|
page read and write
|
|
|
|
1F3D6840000
|
unkown
|
page readonly
|
|
|
|
7FF5B0969000
|
unkown
|
page readonly
|
|
|
|
7FF5B088A000
|
unkown
|
page readonly
|
|
|
|
1EE7C350000
|
unkown
|
page read and write
|
|
|
|
1EE7B701000
|
unkown
|
page read and write
|
|
|
|
1EE7C1FE000
|
unkown
|
page read and write
|
|
|
|
1EE7C350000
|
unkown
|
page readonly
|
|
|
|
DB1E87B000
|
unkown
|
page read and write
|
|
|
|
1EE7B500000
|
unkown
|
page read and write
|
|
|
|
722C67B000
|
unkown
|
page read and write
|
|
|
|
1EE7C44A000
|
unkown
|
page read and write
|
|
|
|
7FF5C7818000
|
unkown
|
page readonly
|
|
|
|
1EE62A00000
|
heap default
|
page read and write
|
|
|
|
7FF5B0115000
|
unkown
|
page readonly
|
|
|
|
1F3D81E0000
|
unkown
|
page readonly
|
|
|
|
1EE7B260000
|
unkown
|
page readonly
|
|
|
|
7FF5E5AF9000
|
unkown
|
page readonly
|
|
|
|
7FF5C7781000
|
unkown
|
page readonly
|
|
|
|
1EE7C1F0000
|
unkown
|
page read and write
|
|
|
|
7FF5C78CC000
|
unkown
|
page readonly
|
|
|
|
1EE7C3F0000
|
unkown
|
page readonly
|
|
|
|
1EE7C2D4000
|
unkown
|
page readonly
|
|
|
|
1EE7ACA1000
|
unkown
|
page read and write
|
|
|
|
DB1ED7E000
|
unkown
|
page read and write
|
|
|
|
7FF5B0814000
|
unkown
|
page readonly
|
|
|
|
7FF5E587F000
|
unkown
|
page readonly
|
|
|
|
1EE7C489000
|
unkown
|
page read and write
|
|
|
|
7FF5E5A76000
|
unkown
|
page readonly
|
|
|
|
7FF5B0969000
|
unkown
|
page readonly
|
|
|
|
7FF5C7C40000
|
unkown
|
page readonly
|
|
|
|
1EE7C0A0000
|
unkown
|
page readonly
|
|
|
|
1EE7B400000
|
unkown
|
page read and write
|
|
|
|
7FF5C7AF7000
|
unkown
|
page readonly
|
|
|
|
7FF5C7AE1000
|
unkown
|
page readonly
|
|
|
|
7FF5C78FE000
|
unkown
|
page readonly
|
|
|
|
7FF5E5A5D000
|
unkown
|
page readonly
|
|
|
|
1EE7C4A0000
|
unkown
|
page read and write
|
|
|
|
1EE7C4B4000
|
unkown
|
page read and write
|
|
|
|
7FF5C77DE000
|
unkown
|
page readonly
|
|
|
|
7FF5B0904000
|
unkown
|
page readonly
|
|
|
|
1EE7C350000
|
unkown
|
page read and write
|
|
|
|
1EE62AF0000
|
unkown
|
page readonly
|
|
|
|
7FF5E5A7C000
|
unkown
|
page readonly
|
|
|
|
7FF5C7B56000
|
unkown
|
page readonly
|
|
|
|
7FF5C7A19000
|
unkown
|
page readonly
|
|
|
|
7FF5E55EA000
|
unkown
|
page readonly
|
|
|
|
1F3D6800000
|
unkown
|
page read and write
|
|
|
|
1EE7C350000
|
unkown
|
page read and write
|
|
|
|
1EE7BCE0000
|
unkown
|
page readonly
|
|
|
|
1EE7C421000
|
unkown
|
page read and write
|
|
|
|
1EE7B415000
|
unkown
|
page read and write
|
|
|
|
1EE7C1F8000
|
unkown
|
page read and write
|
|
|
|
722C9FE000
|
unkown
|
page read and write
|
|
|
|
7FF5B057C000
|
unkown
|
page readonly
|
|
|
|
1F3D8300000
|
unkown
|
page readonly
|
|
|
|
1F3D6DD0000
|
unkown
|
page readonly
|
|
|
|
1EE7C2D0000
|
unkown
|
page readonly
|
|
|
|
7FF5B0907000
|
unkown
|
page readonly
|
|
|
|
7FF5C7485000
|
unkown
|
page readonly
|
|
|
|
1EE629A0000
|
heap private
|
page read and write
|
|
|
|
7FF5E5A02000
|
unkown
|
page readonly
|
|
|
|
1EE7C0F0000
|
unkown
|
page read and write
|
|
|
|
1EE62C6E000
|
unkown
|
page read and write
|
|
|
|
1EE7C060000
|
unkown
|
page read and write
|
|
|
|
7FF5C7B40000
|
unkown
|
page readonly
|
|
|
|
7FF5C7856000
|
unkown
|
page readonly
|
|
|
|
1EE62BC0000
|
unkown
|
page readonly
|
|
|
|
7FF5C7910000
|
unkown
|
page readonly
|
|
|
|
1F3D82D0000
|
unkown
|
page readonly
|
|
|
|
1EE62C13000
|
unkown
|
page read and write
|
|
|
|
1EE62E00000
|
unkown
|
page readonly
|
|
|
|
7FF5E58E8000
|
unkown
|
page readonly
|
|
|
|
DB1E97A000
|
unkown
|
page read and write
|
|
|
|
1EE7B3E3000
|
unkown
|
page read and write
|
|
|
|
7FF5C7C49000
|
unkown
|
page readonly
|
|
|
|
1EE7BBE0000
|
unkown
|
page read and write
|
|
|
|
CCF16FD000
|
unkown
|
page read and write
|
|
|
|
1EE63400000
|
unkown
|
page readonly
|
|
|
|
1F3D67A0000
|
heap private
|
page read and write
|
|
|
|
1EE7BD00000
|
unkown
|
page readonly
|
|
|
|
7FF5C7AB5000
|
unkown
|
page readonly
|
|
|
|
1F3D6850000
|
unkown
|
page readonly
|
|
|
|
7FF5C7785000
|
unkown
|
page readonly
|
|
|
|
DB1F1FB000
|
unkown
|
page read and write
|
|
|
|
722CBFF000
|
unkown
|
page read and write
|
|
|
|
1EE7B502000
|
unkown
|
page read and write
|
|
|
|
7FF5B08DC000
|
unkown
|
page readonly
|
|
|
|
7FF5E5A3F000
|
unkown
|
page readonly
|
|
|
|
7FF5E5AF9000
|
unkown
|
page readonly
|
|
|
|
1EE7C390000
|
unkown
|
page readonly
|
|
|
|
7FF5B087A000
|
unkown
|
page readonly
|
|
|
|
1EE7C42E000
|
unkown
|
page read and write
|
|
|
|
7FF5C7A10000
|
unkown
|
page readonly
|
|
|
|
7FF5C7A08000
|
unkown
|
page readonly
|
|
|
|
7FF5E5903000
|
unkown
|
page readonly
|
|
|
|
1EE7C350000
|
unkown
|
page read and write
|
|
|
|
1F3D67A5000
|
heap private
|
page read and write
|
|
|
|
7FF5B08CD000
|
unkown
|
page readonly
|
|
|
|
1EE7C43D000
|
unkown
|
page read and write
|
|
|
|
1F3D6877000
|
heap default
|
page read and write
|
|
|
|
7FF5C7B0B000
|
unkown
|
page readonly
|
|
|
|
7FF5C7B17000
|
unkown
|
page readonly
|
|
|
|
7FF5C72EC000
|
unkown
|
page readonly
|
|
|
|
7FF5B08E6000
|
unkown
|
page readonly
|
|
|
|
7FF5C7AC7000
|
unkown
|
page readonly
|
|
|
|
7FF5C7B42000
|
unkown
|
page readonly
|
|
|
|
7FF5E5A35000
|
unkown
|
page readonly
|
|
|
|
DB1EC7B000
|
unkown
|
page read and write
|
|
|
|
1F3D6860000
|
unkown
|
page readonly
|
|
|
|
1EE7B402000
|
unkown
|
page read and write
|
|
|
|
7FF5E5931000
|
unkown
|
page readonly
|
|
|
|
7FF5E5600000
|
unkown
|
page readonly
|
|
|
|
1EE7AD13000
|
unkown
|
page read and write
|
|
|
|
1EE7AC70000
|
unkown
|
page read and write
|
|
|
|
1EE62C00000
|
unkown
|
page read and write
|
|
|
|
7FF5C785C000
|
unkown
|
page readonly
|
|
|
|
1EE7BCF0000
|
unkown
|
page readonly
|
|
|
|
7FF5E5A66000
|
unkown
|
page readonly
|
|
|
|
DB1F3FE000
|
unkown
|
page read and write
|
|
|
|
CCF157E000
|
unkown
|
page read and write
|
|
|
|
7FF5B08A5000
|
unkown
|
page readonly
|
|
|
|
1F3D6820000
|
unkown
|
page read and write
|
|
|
|
1EE7C4AD000
|
unkown
|
page read and write
|
|
|
|
7FF5C7905000
|
unkown
|
page readonly
|
|
|
|
1EE7C454000
|
unkown
|
page read and write
|
|
|
|
1EE7C4B2000
|
unkown
|
page read and write
|
|
|
|
1EE62BD0000
|
unkown
|
page read and write
|
|
|
|
1EE7AED0000
|
unkown
|
page readonly
|
|
|
|
1F3D87D0000
|
heap private
|
page read and write
|
|
|
|
7FF5C7BD5000
|
unkown
|
page readonly
|
|
|
|
7FF5E5AEE000
|
unkown
|
page readonly
|
|
|
|
7FF5E5A1A000
|
unkown
|
page readonly
|
|
|
|
1F3D82F0000
|
unkown
|
page readonly
|
|
|
|
1EE00000000
|
unkown
|
page read and write
|
|
|
|
1EE7B518000
|
unkown
|
page read and write
|
|
|
|
7FF5C7BB6000
|
unkown
|
page readonly
|
|
|
|
1EE7C330000
|
unkown
|
page read and write
|
|
|
|
1EE7AC79000
|
unkown
|
page read and write
|
|
|
|
722C87C000
|
unkown
|
page read and write
|
|
|
|
1EE7C210000
|
unkown
|
page read and write
|
|
|
|
DB1F2FD000
|
unkown
|
page read and write
|
|
|
|
1EE7C340000
|
unkown
|
page read and write
|
|
|
|
1EE7BD10000
|
unkown
|
page readonly
|
|
|
|
7FF5C79EE000
|
unkown
|
page readonly
|
|
|
|
1EE63202000
|
unkown
|
page read and write
|
|
|
|
1EE7C320000
|
unkown
|
page read and write
|
|
|
|
7FF5B0900000
|
unkown
|
page readonly
|
|
|
|
1EE7C4A7000
|
unkown
|
page read and write
|
|
|
|
1EE7AC2A000
|
unkown
|
page read and write
|
|
|
|
7FF5C787A000
|
unkown
|
page readonly
|
|
|
|
1EE7AE00000
|
unkown
|
page readonly
|
|
|
|
7FF5E5A2E000
|
unkown
|
page readonly
|
|
|
|
1EE7C660000
|
unkown
|
page readonly
|
|
|
|
7FF5C797C000
|
unkown
|
page readonly
|
|
|
|
1EE7ABB0000
|
unkown
|
page readonly
|
|
|
|
CCF14FE000
|
unkown
|
page read and write
|
|
|
|
7FF5C7BE0000
|
unkown
|
page readonly
|
|
|
|
1EE7C214000
|
unkown
|
page read and write
|
|
|
|
DB1EF7E000
|
unkown
|
page read and write
|
|
|
|
1F3D6970000
|
unkown
|
page readonly
|
|
|
|
DB1EDFE000
|
unkown
|
page read and write
|
|
|
|
1EE7B3E0000
|
unkown
|
page read and write
|
|
|
|
7FF5B0961000
|
unkown
|
page readonly
|
|
|
|
7FF5E5A06000
|
unkown
|
page readonly
|
|
|
|
1EE7C400000
|
unkown
|
page read and write
|
|
|
|
7FF5B095E000
|
unkown
|
page readonly
|
|
There are 312 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://www.mais.pt/atividadesindical/informacao/publicacoes/Newsletters/covid19vacina1212021.aspx
|
|
|
|
https://www.mais.pt/atividadesindical/informacao/publicacoes/Newsletters/covid19vacina1212021.aspx
|
|