IOCReport

loading gif

Processes

Path
Cmdline
Malicious
C:\Windows\System32\loaddll32.exe
loaddll32.exe 'C:\Users\user\Desktop\SecuriteInfo.com.Mal.EncPk-APW.3323.dll'
malicious
C:\Windows\SysWOW64\rundll32.exe
rundll32.exe C:\Users\user\Desktop\SecuriteInfo.com.Mal.EncPk-APW.3323.dll,DllServer
malicious
C:\Windows\SysWOW64\rundll32.exe
rundll32.exe 'C:\Users\user\Desktop\SecuriteInfo.com.Mal.EncPk-APW.3323.dll',#1
malicious
C:\Windows\SysWOW64\cmd.exe
cmd.exe /C rundll32.exe 'C:\Users\user\Desktop\SecuriteInfo.com.Mal.EncPk-APW.3323.dll',#1
clean

Memdumps

Base Address
Regiontype
Protect
Malicious
2600000
unkown
page read and write
malicious
4990000
unkown
page read and write
malicious
D90000
unkown
page read and write
malicious
28A0000
unkown
page read and write
clean
24AE4318000
unkown
page read and write
clean
1ED366B0000
heap default
page read and write
clean
2B743B30000
unkown
page read and write
clean
28A0000
unkown
page read and write
clean
7FF56269A000
unkown
page readonly
clean
3242000
heap default
page read and write
clean
7FF5AA56A000
unkown
page readonly
clean
7FF587535000
unkown
page readonly
clean
7FF574BC3000
unkown
page readonly
clean
CD0000
unkown
page read and write
clean
24DFB170000
unkown
page read and write
clean
7FF5C6A01000
unkown
page readonly
clean
21FAE481000
unkown
page read and write
clean
432F17B000
unkown
page read and write
clean
7FF57488F000
unkown
page readonly
clean
ECAAF7C000
unkown
page read and write
clean
190C2C05000
heap private
page read and write
clean
1F71A110000
unkown
page read and write
clean
6049AF9000
unkown
page read and write
clean
7FF5C69B5000
unkown
page readonly
clean
7FF5AA6E4000
unkown
page readonly
clean
CD0000
unkown
page read and write
clean
2086152E000
unkown
page read and write
clean
7FF514AC2000
unkown
page readonly
clean
CD0000
unkown
page read and write
clean
28A0000
unkown
page read and write
clean
2B742FC1000
unkown
page read and write
clean
7FF5C1621000
unkown
page readonly
clean
28A0000
unkown
page read and write
clean
7FF5C6832000
unkown
page readonly
clean
7FF56281F000
unkown
page readonly
clean
BFA99AE000
unkown
page read and write
clean
CD0000
unkown
page read and write
clean
191A9C13000
unkown
page read and write
clean
7FF574AE4000
unkown
page readonly
clean
7FF58CE24000
unkown
page readonly
clean
15C056E000
unkown
page read and write
clean
7FF5C6666000
unkown
page readonly
clean
CD0000
unkown
page read and write
clean
28A0000
unkown
page read and write
clean
7FF51BAAB000
unkown
page readonly
clean
2FCE000
unkown
page read and write
clean
29074780000
unkown
page readonly
clean
CD0000
unkown
page read and write
clean
CD0000
unkown
page read and write
clean
CD0000
unkown
page read and write
clean
24DFB16D000
unkown
page read and write
clean
1F719619000
unkown
page read and write
clean
7FF598DE9000
unkown
page readonly
clean
CD0000
unkown
page read and write
clean
7FF58CE31000
unkown
page readonly
clean
28A0000
unkown
page read and write
clean
CD0000
unkown
page read and write
clean
7FF58CE72000
unkown
page readonly
clean
20861516000
unkown
page read and write
clean
24AE39F0000
unkown
page readonly
clean
4030000
unkown
page read and write
clean
28A0000
unkown
page read and write
clean
7FF5629CC000
unkown
page readonly
clean
CD0000
unkown
page read and write
clean
7FF5C1659000
unkown
page readonly
clean
7FF5C69F4000
unkown
page readonly
clean
7FF55E544000
unkown
page readonly
clean
17DF4FE000
unkown
page read and write
clean
CD0000
unkown
page read and write
clean
24AE3A58000
unkown
page read and write
clean
28A0000
unkown
page read and write
clean
13436960000
unkown
page read and write
clean