IOCReport

loading gif

Processes

Path
Cmdline
Malicious
C:\Windows\System32\loaddll32.exe
loaddll32.exe 'C:\Users\user\Desktop\SecuriteInfo.com.Mal.EncPk-APW.3323.dll'
malicious
C:\Windows\SysWOW64\rundll32.exe
rundll32.exe C:\Users\user\Desktop\SecuriteInfo.com.Mal.EncPk-APW.3323.dll,DllServer
malicious
C:\Windows\SysWOW64\rundll32.exe
rundll32.exe 'C:\Users\user\Desktop\SecuriteInfo.com.Mal.EncPk-APW.3323.dll',#1
malicious
C:\Windows\SysWOW64\cmd.exe
cmd.exe /C rundll32.exe 'C:\Users\user\Desktop\SecuriteInfo.com.Mal.EncPk-APW.3323.dll',#1
clean

Memdumps

Base Address
Regiontype
Protect
Malicious
A50000
unkown
page read and write
malicious
13D0000
unkown
page read and write
malicious
3220000
unkown
page read and write
malicious
7FF5CF0D2000
unkown
page readonly
clean
17CDD400000
unkown
page read and write
clean
7FF5C8B7F000
unkown
page readonly
clean
FF0000
unkown
page read and write
clean
3310000
unkown
page read and write
clean
7FF5084A3000
unkown
page readonly
clean
7FF50849F000
unkown
page readonly
clean
273B4C54000
unkown
page read and write
clean
7FF592177000
unkown
page readonly
clean
263175D0000
unkown
page read and write
clean
A97000
heap private
page read and write
clean
152C000
heap default
page read and write
clean
FF0000
unkown
page read and write
clean
7FF5CEFED000
unkown
page readonly
clean
2068B470000
unkown
page readonly
clean
7FF597416000
unkown
page readonly
clean
273B404E000
unkown
page read and write
clean
3310000
unkown
page read and write
clean
FF0000
unkown
page read and write
clean
FF0000
unkown
page read and write
clean
26315470000
unkown
page read and write
clean
7FF5983F3000
unkown
page readonly
clean
E7A8D7B000
unkown
page read and write
clean
26317402000
unkown
page read and write
clean
26315477000
unkown
page read and write
clean
2643F219000
heap private
page read and write
clean
273B4757000
unkown
page read and write
clean
7FF5C8DB7000
unkown
page readonly
clean
7FF5673A8000
unkown
page readonly
clean
FF0000
unkown
page read and write
clean
7FF53B014000
unkown
page readonly
clean
263175FF000
unkown
page read and write
clean
CFC000
unkown
page read and write
clean
2643EE50000
unkown
page read and write
clean
1C3F1B40000
unkown
page readonly
clean
26318310000
unkown
page read and write
clean
2D85000
unkown
page readonly
clean
7FF567554000
unkown
page readonly
clean
7FF5CF087000
unkown
page readonly
clean
7FF566C24000
unkown
page readonly
clean
2D88000
unkown
page readonly
clean
2068B660000
unkown
page read and write
clean
7FF53B02B000
unkown
page readonly
clean
28952A00000
unkown
page readonly
clean
7FF567544000
unkown
page readonly
clean
F2E000
stack
page read and write
clean
FF0000
unkown
page read and write
clean
2643F7C0000
unkown
page readonly
clean
273B4787000
unkown
page read and write
clean
7FF5C8D57000
unkown
page readonly
clean
FF0000
unkown
page read and write
clean
2CF9000
unkown
page readonly
clean
3310000
unkown
page read and write
clean
FF0000
unkown
page read and write
clean
26315473000
unkown
page read and write
clean
7FF567592000
unkown
page readonly
clean
FC3FF7C000
unkown
page read and write
clean
273B472C000
unkown
page read and write
clean
273B4759000
unkown
page read and write
clean
273B4763000
unkown
page read and write
clean
3310000
unkown
page read and write
clean
273B4761000
unkown
page read and write
clean
28957F50000
unkown
page readonly
clean
7FF567415000
unkown
page readonly
clean
2DF8000
unkown
page readonly
clean
263176C7000
unkown
page read and write
clean
FF0000
unkown
page read and write
clean
273B40B0000
unkown
page read and write
clean
28952890000
unkown
page read and write
clean