Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
http://encrypt.techomind.com
|
URL
|
initial url
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\main[1].htm
|
HTML document, UTF-8 Unicode text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{06CF1657-B39F-11EB-90E4-ECF4BB862DED}.dat
|
Microsoft Word Document
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{06CF1659-B39F-11EB-90E4-ECF4BB862DED}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{06CF165A-B39F-11EB-90E4-ECF4BB862DED}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\ynfz0jx\imagestore.dat
|
data
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\ellipsis_grey[1].svg
|
SVG Scalable Vector Graphics image
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\jquery.min[1].js
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\way[1].png
|
PNG image data, 90 x 68, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\wild[1].png
|
PNG image data, 61 x 63, 8-bit/color RGB, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\converged.login.min[1].css
|
ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\ellipsis_white[1].svg
|
SVG Scalable Vector Graphics image
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\oval[1].png
|
PNG image data, 1582 x 1055, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\picker_account_aad[1].svg
|
SVG Scalable Vector Graphics image
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\3MODYROK.htm
|
HTML document, UTF-8 Unicode text, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\cut[1].ico
|
MS Windows icon resource - 3 icons, 32x32, 32 bits/pixel, 24x24, 32 bits/pixel
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\microsoft_logo[1].svg
|
SVG Scalable Vector Graphics image
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF08B42D9D3081252A.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DFCDF5FB740613BB71.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DFF7CEDCC2DA9C786D.TMP
|
data
|
dropped
|
|
There are 10 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\internet explorer\iexplore.exe
|
'C:\Program Files\Internet Explorer\iexplore.exe' -Embedding
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:3236 CREDAT:17410 /prefetch:2
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://encrypt.techomind.com/wild.png
|
162.241.115.110
|
|
|
|
http://encrypt.techomind.com/Root
|
unknown
|
|
|
|
http://encrypt.techomind.com/favicon.ico
|
162.241.115.110
|
|
|
|
http://encrypt.techomind.com/
|
|
||
|
http://encrypt.techomind.com/way.png
|
162.241.115.110
|
|
|
|
http://encrypt.techomind.com/&TechnoMind
|
unknown
|
|
|
|
https://hebronbilingualsda.org/content/main.html?accessToFile=validating&fileAccess=56662&encryptedCookie=5080b7079e42e7f7f42339337d7fbaa9&u=000142e8f0f0d64fe362ba89009a9da7&connecting=8ea008c13c68eba7937193ba001c13b4&phaseAccess=0eb7b8b7921971db486379d636704280&p=fb527d3e6d419408d9d7f0fb6644eb37
|
|
||
|
http://encrypt.techomind.com/
|
162.241.115.110
|
|
|
|
http://encrypt.techomind.com//content/main.html?accessToFile=validating&fileAccess=56662&encryptedCo
|
unknown
|
|
|
|
https://hebronbilingualsda.org/content/main.html?accessToFile=validating&fileAccess=56662&encryptedC
|
unknown
|
|
|
|
https://hebronbilingualsda.org/content/cut.ico~
|
unknown
|
|
|
|
https://secure.aadcdn.microsoftonline-p.com/ests/2.1.7135.7/content/images/picker_account_aad.svg?x=
|
unknown
|
|
|
|
https://secure.aadcdn.microsoftonline-p.com/ests/2.1.7135.7/content/images/ellipsis_grey.png?x=5bc25
|
unknown
|
|
|
|
https://secure.aadcdn.microsoftonline-p.com/ests/2.1.7135.7/content/images/ellipsis_white.png?x=0ad4
|
unknown
|
|
|
|
https://secure.aadcdn.microsoftonline-p.com/ests/2.1.7135.7/content/images/ellipsis_grey.svg?x=2b5d3
|
unknown
|
|
|
|
https://secure.aadcdn.microsoftonline-p.com/ests/2.1.7135.7/content/images/microsoft_logo.svg?x=ee5c
|
unknown
|
|
|
|
https://secure.aadcdn.microsoftonline-p.com/ests/2.1.7135.7/content/images/ellipsis_white.svg?x=5ac5
|
unknown
|
|
|
|
https://hebronbilinguand.com/lsda.org/content/main.html?accessToFile=validating&fileAccess=56662&enc
|
unknown
|
|
|
|
https://secure.aadcdn.microsoftonline-p.com/ests/2.1.7135.7/content/images/microsoft_logo.png?x=ed9c
|
unknown
|
|
|
|
http://encrypt.techomi
|
unknown
|
|
|
|
https://hebronbilingualsda.org/content/cut.ico
|
unknown
|
|
|
|
https://hebronbilingualsda.org/content/
|
unknown
|
|
There are 12 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
encrypt.techomind.com
|
162.241.115.110
|
|
|
|
hebronbilingualsda.org
|
198.12.154.178
|
|
|
|
secure.aadcdn.microsoftonline-p.com
|
unknown
|
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
162.241.115.110
|
encrypt.techomind.com
|
United States
|
|
|
|
198.12.154.178
|
hebronbilingualsda.org
|
United States
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\internet explorer\iexplore.exe
|
{06CF1657-B39F-11EB-90E4-ECF4BB862DED}
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
AdminActive
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
CVListPingLastYMD
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
@C:\Windows\System32\ieframe.dll,-912
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
@C:\Windows\System32\ieframe.dll,-903
|
|
There are 17 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
8F498FA000
|
unkown
|
page read and write
|
|
|
|
7FF5CA097000
|
unkown
|
page readonly
|
|
|
|
1E8C4760000
|
unkown
|
page readonly
|
|
|
|
19C160AE000
|
unkown
|
page read and write
|
|
|
|
7FF5C97CD000
|
unkown
|
page readonly
|
|
|
|
7FF5C9D0F000
|
unkown
|
page readonly
|
|
|
|
7FF5CA035000
|
unkown
|
page readonly
|
|
|
|
7FF5A9F03000
|
unkown
|
page readonly
|
|
|
|
1970E7E000
|
unkown
|
page read and write
|
|
|
|
19C167B0000
|
unkown
|
page readonly
|
|
|
|
1E8C49D0000
|
heap private
|
page read and write
|
|
|
|
19C167D0000
|
unkown
|
page readonly
|
|
|
|
22483380000
|
heap private
|
page read and write
|
|
|
|
7FF5AA7CD000
|
unkown
|
page readonly
|
|
|
|
19C1B5D1000
|
unkown
|
page read and write
|
|
|
|
7FF5CA049000
|
unkown
|
page readonly
|
|
|
|
18695A00000
|
unkown
|
page readonly
|
|
|
|
18695882000
|
unkown
|
page read and write
|
|
|
|
7FF5CA090000
|
unkown
|
page readonly
|
|
|
|
18695780000
|
unkown
|
page readonly
|
|
|
|
19C15F80000
|
unkown
|
page read and write
|
|
|
|
19C15F70000
|
unkown
|
page readonly
|
|
|
|
801E8F7000
|
unkown
|
page read and write
|
|
|
|
8F49A7F000
|
unkown
|
page read and write
|
|
|
|
7FF5CA002000
|
unkown
|
page readonly
|
|
|
|
7FF5AA804000
|
unkown
|
page readonly
|
|
|
|
7FF5ABEDA000
|
unkown
|
page readonly
|
|
|
|
801ECFA000
|
unkown
|
page read and write
|
|
|
|
7FF5A9ABC000
|
unkown
|
page readonly
|
|
|
|
19C1606F000
|
unkown
|
page read and write
|
|
|
|
16B01600000
|
unkown
|
page readonly
|
|
|
|
22483502000
|
unkown
|
page read and write
|
|
|
|
7FF5AA721000
|
unkown
|
page readonly
|
|
|
|
7FF59C643000
|
unkown
|
page readonly
|
|
|
|
22483413000
|
unkown
|
page read and write
|
|
|
|
19C16200000
|
unkown
|
page readonly
|
|
|
|
7FF5AA215000
|
unkown
|
page readonly
|
|
|
|
7FF59C9D9000
|
unkown
|
page readonly
|
|
|
|
19C1B83C000
|
unkown
|
page read and write
|
|
|
|
7FF59C634000
|
unkown
|
page readonly
|
|
|
|
7FF5AC5FE000
|
unkown
|
page readonly
|
|
|
|
7FF5A9E9C000
|
unkown
|
page readonly
|
|
|
|
7FF5AA807000
|
unkown
|
page readonly
|
|
|
|
19C15FF0000
|
unkown
|
page read and write
|
|
|
|
16B01500000
|
unkown
|
page read and write
|
|
|
|
7FF5C9FC7000
|
unkown
|
page readonly
|
|
|
|
801EFFF000
|
unkown
|
page read and write
|
|
|
|
19C1B89B000
|
unkown
|
page read and write
|
|
|
|
7FF5CA066000
|
unkown
|
page readonly
|
|
|
|
7FF5C9FD3000
|
unkown
|
page readonly
|
|
|
|
7FF5CA006000
|
unkown
|
page readonly
|
|
|
|
1970BCB000
|
unkown
|
page read and write
|
|
|
|
7FF5AA1BE000
|
unkown
|
page readonly
|
|
|
|
7FF5C9F6C000
|
unkown
|
page readonly
|
|
|
|
1E8C49E0000
|
unkown
|
page readonly
|
|
|
|
19C1B6E0000
|
unkown
|
page read and write
|
|
|
|
19C17401000
|
unkown
|
page read and write
|
|
|
|
7FF5C9EC9000
|
unkown
|
page readonly
|
|
|
|
7FF5AC77F000
|
unkown
|
page readonly
|
|
|
|
7FF5C98A0000
|
unkown
|
page readonly
|
|
|
|
19C1603F000
|
unkown
|
page read and write
|
|
|
|
19C162D0000
|
unkown
|
page readonly
|
|
|
|
7FF5AA27E000
|
unkown
|
page readonly
|
|
|
|
7FF5AA134000
|
unkown
|
page readonly
|
|
|
|
7FF5C9E2C000
|
unkown
|
page readonly
|
|
|
|
8F495CE000
|
unkown
|
page read and write
|
|
|
|
7FF5AC82E000
|
unkown
|
page readonly
|
|
|
|
1E8C4600000
|
unkown
|
page readonly
|
|
|
|
19C1B82C000
|
unkown
|
page read and write
|
|
|
|
19C167A0000
|
unkown
|
page readonly
|
|
|
|
7FF5AC64D000
|
unkown
|
page readonly
|
|
|
|
22483454000
|
unkown
|
page read and write
|
|
|
|
19C167C0000
|
unkown
|
page readonly
|
|
|
|
7FF5CA0F9000
|
unkown
|
page readonly
|
|
|
|
16B0146C000
|
unkown
|
page read and write
|
|
|
|
1970EFF000
|
unkown
|
page read and write
|
|
|
|
7FF5CA02E000
|
unkown
|
page readonly
|
|
|
|
7FF5CA0F0000
|
unkown
|
page readonly
|
|
|
|
19C1BA30000
|
unkown
|
page readonly
|
|
|
|
19C1B710000
|
unkown
|
page read and write
|
|
|
|
7FF59C8FA000
|
unkown
|
page readonly
|
|
|
|
7FF5AA7E6000
|
unkown
|
page readonly
|
|
|
|
7FF5AA4D3000
|
unkown
|
page readonly
|
|
|
|
7FF59C891000
|
unkown
|
page readonly
|
|
|
|
165AAFE000
|
unkown
|
page read and write
|
|
|
|
19C170C0000
|
unkown
|
page readonly
|
|
|
|
19C1B750000
|
unkown
|
page readonly
|
|
|
|
7FF5AA530000
|
unkown
|
page readonly
|
|
|
|
19C16FE0000
|
unkown
|
page read and write
|
|
|
|
7FF5A9A30000
|
unkown
|
page readonly
|
|
|
|
165ADFE000
|
unkown
|
page read and write
|
|
|
|
16B01429000
|
unkown
|
page read and write
|
|
|
|
6C2737E000
|
unkown
|
page read and write
|
|
|
|
7FF5C9DC0000
|
unkown
|
page readonly
|
|
|
|
7FF5AC7BC000
|
unkown
|
page readonly
|
|
|
|
19C1B710000
|
unkown
|
page read and write
|
|
|
|
16B01455000
|
unkown
|
page read and write
|
|
|
|
19C16079000
|
unkown
|
page read and write
|
|
|
|
19C1B770000
|
unkown
|
page readonly
|
|
|
|
7FF5AC5BF000
|
unkown
|
page readonly
|
|
|
|
165A5FD000
|
unkown
|
page read and write
|
|
|
|
7FF5AA73C000
|
unkown
|
page readonly
|
|
|
|
1970FF9000
|
unkown
|
page read and write
|
|
|
|
7FF5AA525000
|
unkown
|
page readonly
|
|
|
|
7FF5AA5BA000
|
unkown
|
page readonly
|
|
|
|
2248346A000
|
unkown
|
page read and write
|
|
|
|
7FF5AC628000
|
unkown
|
page readonly
|
|
|
|
7FF59C887000
|
unkown
|
page readonly
|
|
|
|
1E8C4660000
|
heap default
|
page read and write
|
|
|
|
7FF5AA289000
|
unkown
|
page readonly
|
|
|
|
7FF59C93D000
|
unkown
|
page readonly
|
|
|
|
7FF59C6A0000
|
unkown
|
page readonly
|
|
|
|
7FF5C9FF0000
|
unkown
|
page readonly
|
|
|
|
16B012E0000
|
unkown
|
page write copy
|
|
|
|
19C16918000
|
unkown
|
page read and write
|
|
|
|
19C1609E000
|
unkown
|
page read and write
|
|
|
|
1E8C60B0000
|
unkown
|
page readonly
|
|
|
|
7FF5AC7D4000
|
unkown
|
page readonly
|
|
|
|
7FF59C7E7000
|
unkown
|
page readonly
|
|
|
|
7FF5CA01A000
|
unkown
|
page readonly
|
|
|
|
197107E000
|
unkown
|
page read and write
|
|
|
|
7FF59C929000
|
unkown
|
page readonly
|
|
|
|
7FF59C88A000
|
unkown
|
page readonly
|
|
|
|
7FF59C91F000
|
unkown
|
page readonly
|
|
|
|
2248346A000
|
unkown
|
page read and write
|
|
|
|
16B01402000
|
unkown
|
page read and write
|
|
|
|
7FF5AA7D6000
|
unkown
|
page readonly
|
|
|
|
19C15EF0000
|
heap private
|
page read and write
|
|
|
|
1970F79000
|
unkown
|
page read and write
|
|
|
|
7FF59C9D9000
|
unkown
|
page readonly
|
|
|
|
19C1B684000
|
unkown
|
page readonly
|
|
|
|
7FF5AC32A000
|
unkown
|
page readonly
|
|
|
|
2248346A000
|
unkown
|
page read and write
|
|
|
|
19C160FD000
|
unkown
|
page read and write
|
|
|
|
7FF5AA7AF000
|
unkown
|
page readonly
|
|
|
|
7FF5AA717000
|
unkown
|
page readonly
|
|
|
|
7FF5AA224000
|
unkown
|
page readonly
|
|
|
|
7FF59C8EA000
|
unkown
|
page readonly
|
|
|
|
1869583C000
|
unkown
|
page read and write
|
|
|
|
7FF5AA19A000
|
unkown
|
page readonly
|
|
|
|
7FF5C9E38000
|
unkown
|
page readonly
|
|
|
|
19C16B01000
|
unkown
|
page read and write
|
|
|
|
19C1B760000
|
unkown
|
page readonly
|
|
|
|
7FF5C9935000
|
unkown
|
page readonly
|
|
|
|
801F1FB000
|
unkown
|
page read and write
|
|
|
|
7FF5C9EB8000
|
unkown
|
page readonly
|
|
|
|
19C1B6B7000
|
unkown
|
page write copy
|
|
|
|
16B0146C000
|
unkown
|
page read and write
|
|
|
|
19C1B5E0000
|
unkown
|
page read and write
|
|
|
|
16B01468000
|
unkown
|
page read and write
|
|
|
|
19C16029000
|
unkown
|
page read and write
|
|
|
|
18695902000
|
unkown
|
page read and write
|
|
|
|
7FF5AA1D9000
|
unkown
|
page readonly
|
|
|
|
19C167E0000
|
unkown
|
page readonly
|
|
|
|
801F07F000
|
unkown
|
page read and write
|
|
|
|
19C16790000
|
unkown
|
page readonly
|
|
|
|
2248346A000
|
unkown
|
page read and write
|
|
|
|
18695E60000
|
unkown
|
page readonly
|
|
|
|
1E8C4560000
|
unkown
|
page readonly
|
|
|
|
19C160A6000
|
unkown
|
page read and write
|
|
|
|
7FF5AC7A6000
|
unkown
|
page readonly
|
|
|
|
7FF5C9DAE000
|
unkown
|
page readonly
|
|
|
|
19C15FF3000
|
unkown
|
page read and write
|
|
|
|
7FF5AC746000
|
unkown
|
page readonly
|
|
|
|
7FF5AC55A000
|
unkown
|
page readonly
|
|
|
|
6C271FE000
|
unkown
|
page read and write
|
|
|
|
7FF59C970000
|
unkown
|
page readonly
|
|
|
|
19C1B710000
|
unkown
|
page read and write
|
|
|
|
8F499FA000
|
unkown
|
page read and write
|
|
|
|
19C1B7F0000
|
unkown
|
page readonly
|
|
|
|
7FF5CA05D000
|
unkown
|
page readonly
|
|
|
|
19C1B5B8000
|
unkown
|
page read and write
|
|
|
|
19C1B710000
|
unkown
|
page read and write
|
|
|
|
7FF5C9FF2000
|
unkown
|
page readonly
|
|
|
|
19C16058000
|
unkown
|
page read and write
|
|
|
|
7FF5AA1AA000
|
unkown
|
page readonly
|
|
|
|
7FF5AA220000
|
unkown
|
page readonly
|
|
|
|
1869582C000
|
unkown
|
page read and write
|
|
|
|
7FF5AC677000
|
unkown
|
page readonly
|
|
|
|
7FF5AA658000
|
unkown
|
page readonly
|
|
|
|
7FF5AC6AC000
|
unkown
|
page readonly
|
|
|
|
7FF5AC340000
|
unkown
|
page readonly
|
|
|
|
19C16074000
|
unkown
|
page read and write
|
|
|
|
1E8C62C0000
|
heap private
|
page read and write
|
|
|
|
7FF5AC643000
|
unkown
|
page readonly
|
|
|
|
7FF5AC831000
|
unkown
|
page readonly
|
|
|
|
7FF59C8E8000
|
unkown
|
page readonly
|
|
|
|
7FF5C9EAC000
|
unkown
|
page readonly
|
|
|
|
7FF5AA289000
|
unkown
|
page readonly
|
|
|
|
7FF59C977000
|
unkown
|
page readonly
|
|
|
|
7FF5AA861000
|
unkown
|
page readonly
|
|
|
|
16B0146A000
|
unkown
|
page read and write
|
|
|
|
18695790000
|
unkown
|
page readonly
|
|
|
|
2248346A000
|
unkown
|
page read and write
|
|
|
|
19C1BA10000
|
unkown
|
page readonly
|
|
|
|
1E8C4610000
|
unkown
|
page readonly
|
|
|
|
7FF5AA79E000
|
unkown
|
page readonly
|
|
|
|
7FF5C9DA7000
|
unkown
|
page readonly
|
|
|
|
7FF5AA180000
|
unkown
|
page readonly
|
|
|
|
224833F0000
|
unkown
|
page readonly
|
|
|
|
18695849000
|
unkown
|
page read and write
|
|
|
|
19C1B849000
|
unkown
|
page read and write
|
|
|
|
7FF5AA1C5000
|
unkown
|
page readonly
|
|
|
|
19C1B5BE000
|
unkown
|
page read and write
|
|
|
|
7FF59C9CE000
|
unkown
|
page readonly
|
|
|
|
7FF5AC789000
|
unkown
|
page readonly
|
|
|
|
18695829000
|
unkown
|
page read and write
|
|
|
|
224833E0000
|
heap default
|
page read and write
|
|
|
|
7FF5AA7A5000
|
unkown
|
page readonly
|
|
|
|
16B0146A000
|
unkown
|
page read and write
|
|
|
|
1E8C4BE0000
|
unkown
|
page readonly
|
|
|
|
6C26DAC000
|
unkown
|
page read and write
|
|
|
|
19C16660000
|
unkown
|
page readonly
|
|
|
|
1E8C49C0000
|
unkown
|
page readonly
|
|
|
|
19710FE000
|
unkown
|
page read and write
|
|
|
|
19C1608D000
|
unkown
|
page read and write
|
|
|
|
7FF5AA281000
|
unkown
|
page readonly
|
|
|
|
19C1B420000
|
unkown
|
page read and write
|
|
|
|
7FF5AA182000
|
unkown
|
page readonly
|
|
|
|
7FF5AA1FC000
|
unkown
|
page readonly
|
|
|
|
8F4954B000
|
unkown
|
page read and write
|
|
|
|
16B01330000
|
unkown
|
page readonly
|
|
|
|
8F4987E000
|
unkown
|
page read and write
|
|
|
|
22483429000
|
unkown
|
page read and write
|
|
|
|
7FF59C90E000
|
unkown
|
page readonly
|
|
|
|
7FF5C9FDC000
|
unkown
|
page readonly
|
|
|
|
19C1B4A0000
|
unkown
|
page read and write
|
|
|
|
7FF59C647000
|
unkown
|
page readonly
|
|
|
|
1E8C45E0000
|
unkown
|
page read and write
|
|
|
|
19C1B700000
|
unkown
|
page read and write
|
|
|
|
7FF5AA227000
|
unkown
|
page readonly
|
|
|
|
801EEFF000
|
unkown
|
page read and write
|
|
|
|
7FF5ABFD1000
|
unkown
|
page readonly
|
|
|
|
18695802000
|
unkown
|
page read and write
|
|
|
|
7FF59C94C000
|
unkown
|
page readonly
|
|
|
|
16B0143F000
|
unkown
|
page read and write
|
|
|
|
7FF5C9C31000
|
unkown
|
page readonly
|
|
|
|
16B02DA0000
|
unkown
|
page read and write
|
|
|
|
6C270FE000
|
unkown
|
page read and write
|
|
|
|
7FF5CA07C000
|
unkown
|
page readonly
|
|
|
|
7FF5CA0EE000
|
unkown
|
page readonly
|
|
|
|
16B0146C000
|
unkown
|
page read and write
|
|
|
|
7FF5AA776000
|
unkown
|
page readonly
|
|
|
|
1869584E000
|
unkown
|
page read and write
|
|
|
|
7FF5C9E7F000
|
unkown
|
page readonly
|
|
|
|
22483400000
|
unkown
|
page read and write
|
|
|
|
19C16900000
|
unkown
|
page read and write
|
|
|
|
6C2727E000
|
unkown
|
page read and write
|
|
|
|
19C1B680000
|
unkown
|
page read and write
|
|
|
|
22483402000
|
unkown
|
page read and write
|
|
|
|
19C1B6D0000
|
unkown
|
page read and write
|
|
|
|
7FF59C177000
|
unkown
|
page readonly
|
|
|
|
19C16093000
|
unkown
|
page read and write
|
|
|
|
7FF5AC775000
|
unkown
|
page readonly
|
|
|
|
19C16013000
|
unkown
|
page read and write
|
|
|
|
19C1B5E0000
|
unkown
|
page read and write
|
|
|
|
19C16056000
|
unkown
|
page read and write
|
|
|
|
1E8C466B000
|
heap default
|
page read and write
|
|
|
|
19C1C000000
|
unkown
|
page read and write
|
|
|
|
19C1B5B0000
|
unkown
|
page read and write
|
|
|
|
7FF5AA7EC000
|
unkown
|
page readonly
|
|
|
|
7FF5AC60A000
|
unkown
|
page readonly
|
|
|
|
7FF5C9CFD000
|
unkown
|
page readonly
|
|
|
|
165A57B000
|
unkown
|
page read and write
|
|
|
|
7FF5C9FBB000
|
unkown
|
page readonly
|
|
|
|
7FF59C8AA000
|
unkown
|
page readonly
|
|
|
|
19C16000000
|
unkown
|
page read and write
|
|
|
|
7FF5AC79D000
|
unkown
|
page readonly
|
|
|
|
7FF5AA73A000
|
unkown
|
page readonly
|
|
|
|
7FF5AC75A000
|
unkown
|
page readonly
|
|
|
|
18696200000
|
unkown
|
page readonly
|
|
|
|
2248346A000
|
unkown
|
page read and write
|
|
|
|
1E8C60C0000
|
unkown
|
page readonly
|
|
|
|
7FF5C9C8E000
|
unkown
|
page readonly
|
|
|
|
18695853000
|
unkown
|
page read and write
|
|
|
|
7FF5CA0F9000
|
unkown
|
page readonly
|
|
|
|
19C1B81E000
|
unkown
|
page read and write
|
|
|
|
7FF5C9FD7000
|
unkown
|
page readonly
|
|
|
|
8F4997F000
|
unkown
|
page read and write
|
|
|
|
19C1B5D4000
|
unkown
|
page read and write
|
|
|
|
186957A0000
|
unkown
|
page read and write
|
|
|
|
19C16902000
|
unkown
|
page read and write
|
|
|
|
7FF5AA677000
|
unkown
|
page readonly
|
|
|
|
7FF5AA7DC000
|
unkown
|
page readonly
|
|
|
|
16B011A0000
|
heap private
|
page read and write
|
|
|
|
18695900000
|
unkown
|
page read and write
|
|
|
|
16B0146C000
|
unkown
|
page read and write
|
|
|
|
7FF5C9FA7000
|
unkown
|
page readonly
|
|
|
|
7FF59C946000
|
unkown
|
page readonly
|
|
|
|
22483600000
|
unkown
|
page readonly
|
|
|
|
19C1B460000
|
unkown
|
page readonly
|
|
|
|
1E8C63BF000
|
heap private
|
page read and write
|
|
|
|
7FF5C9D0C000
|
unkown
|
page readonly
|
|
|
|
1E8C49D5000
|
heap private
|
page read and write
|
|
|
|
7FF5C9F91000
|
unkown
|
page readonly
|
|
|
|
19C16077000
|
unkown
|
page read and write
|
|
|
|
19C1B5D0000
|
unkown
|
page read and write
|
|
|
|
19C1B861000
|
unkown
|
page read and write
|
|
|
|
19C1B8AF000
|
unkown
|
page read and write
|
|
|
|
7FF5C9E1B000
|
unkown
|
page readonly
|
|
|
|
7FF5CA094000
|
unkown
|
page readonly
|
|
|
|
7FF5C9E9E000
|
unkown
|
page readonly
|
|
|
|
7FF59C95C000
|
unkown
|
page readonly
|
|
|
|
7FF5C9D06000
|
unkown
|
page readonly
|
|
|
|
19C16F00000
|
unkown
|
page read and write
|
|
|
|
7FF5C9EC0000
|
unkown
|
page readonly
|
|
|
|
801E4FC000
|
unkown
|
page read and write
|
|
|
|
801E57E000
|
unkown
|
page read and write
|
|
|
|
7FF59C695000
|
unkown
|
page readonly
|
|
|
|
16B01502000
|
unkown
|
page read and write
|
|
|
|
7FF5AC7AC000
|
unkown
|
page readonly
|
|
|
|
7FF5C9D2A000
|
unkown
|
page readonly
|
|
|
|
7FF5C9FB1000
|
unkown
|
page readonly
|
|
|
|
6C2707E000
|
unkown
|
page read and write
|
|
|
|
19C1B680000
|
unkown
|
page write copy
|
|
|
|
7FF5AA7B9000
|
unkown
|
page readonly
|
|
|
|
7FF59C7E3000
|
unkown
|
page readonly
|
|
|
|
1E8C45C0000
|
unkown
|
page read and write
|
|
|
|
7FF5AA4C4000
|
unkown
|
page readonly
|
|
|
|
22483513000
|
unkown
|
page read and write
|
|
|
|
801EF7F000
|
unkown
|
page read and write
|
|
|
|
7FF5AC7C5000
|
unkown
|
page readonly
|
|
|
|
7FF59C9D1000
|
unkown
|
page readonly
|
|
|
|
165ACFE000
|
unkown
|
page read and write
|
|
|
|
16B01400000
|
unkown
|
page read and write
|
|
|
|
16B0146C000
|
unkown
|
page read and write
|
|
|
|
7FF5AA1F1000
|
unkown
|
page readonly
|
|
|
|
16B02EA0000
|
unkown
|
page readonly
|
|
|
|
19C16913000
|
unkown
|
page read and write
|
|
|
|
7FF5C9F77000
|
unkown
|
page readonly
|
|
|
|
7FF5AC742000
|
unkown
|
page readonly
|
|
|
|
7FF5AA198000
|
unkown
|
page readonly
|
|
|
|
18695800000
|
unkown
|
page read and write
|
|
|
|
7FF5AA1ED000
|
unkown
|
page readonly
|
|
|
|
7FF5AA7F7000
|
unkown
|
page readonly
|
|
|
|
7FF5CA06C000
|
unkown
|
page readonly
|
|
|
|
7FF5AA800000
|
unkown
|
page readonly
|
|
|
|
7FF5AA1F6000
|
unkown
|
page readonly
|
|
|
|
7FF5CA085000
|
unkown
|
page readonly
|
|
|
|
801EBFE000
|
unkown
|
page read and write
|
|
|
|
7FF5AA12E000
|
unkown
|
page readonly
|
|
|
|
7FF59C915000
|
unkown
|
page readonly
|
|
|
|
7FF59C7C8000
|
unkown
|
page readonly
|
|
|
|
19C1B8AB000
|
unkown
|
page read and write
|
|
|
|
7FF5C9D7C000
|
unkown
|
page readonly
|
|
|
|
22483720000
|
unkown
|
page readonly
|
|
|
|
7FF5AC76E000
|
unkown
|
page readonly
|
|
|
|
186956A0000
|
heap default
|
page read and write
|
|
|
|
19C16815000
|
unkown
|
page read and write
|
|
|
|
18695913000
|
unkown
|
page read and write
|
|
|
|
165A87E000
|
unkown
|
page read and write
|
|
|
|
165ABF7000
|
unkown
|
page read and write
|
|
|
|
19C1B6F0000
|
unkown
|
page read and write
|
|
|
|
7FF5AC330000
|
unkown
|
page readonly
|
|
|
|
19C16102000
|
unkown
|
page read and write
|
|
|
|
801F0FF000
|
unkown
|
page read and write
|
|
|
|
7FF59C72A000
|
unkown
|
page readonly
|
|
|
|
7FF5AA007000
|
unkown
|
page readonly
|
|
|
|
16B01513000
|
unkown
|
page read and write
|
|
|
|
7FF5AA85E000
|
unkown
|
page readonly
|
|
|
|
16B01200000
|
heap default
|
page read and write
|
|
|
|
7FF5AA206000
|
unkown
|
page readonly
|
|
|
|
7FF5CA061000
|
unkown
|
page readonly
|
|
|
|
19C1B5B0000
|
unkown
|
page read and write
|
|
|
|
1E8C6190000
|
heap private
|
page read and write
|
|
|
|
22483440000
|
unkown
|
page read and write
|
|
|
|
19C1B490000
|
unkown
|
page read and write
|
|
|
|
7FF5AA77A000
|
unkown
|
page readonly
|
|
|
|
8F49AFF000
|
unkown
|
page read and write
|
|
|
|
1E8C6590000
|
heap private
|
page read and write
|
|
|
|
19C16800000
|
unkown
|
page read and write
|
|
|
|
7FF59C956000
|
unkown
|
page readonly
|
|
|
|
22484ED0000
|
unkown
|
page read and write
|
|
|
|
801EDFB000
|
unkown
|
page read and write
|
|
|
|
16B0146A000
|
unkown
|
page read and write
|
|
|
|
7FF5AC732000
|
unkown
|
page readonly
|
|
|
|
18695813000
|
unkown
|
page read and write
|
|
|
|
7FF59C8E6000
|
unkown
|
page readonly
|
|
|
|
7FF5C9EB1000
|
unkown
|
page readonly
|
|
|
|
19C1BA00000
|
unkown
|
page read and write
|
|
|
|
186956B0000
|
unkown
|
page readonly
|
|
|
|
19C1B8B3000
|
unkown
|
page read and write
|
|
|
|
18695908000
|
unkown
|
page read and write
|
|
|
|
7FF59C740000
|
unkown
|
page readonly
|
|
|
|
801E9FD000
|
unkown
|
page read and write
|
|
|
|
801E5FE000
|
unkown
|
page read and write
|
|
|
|
7FF5AC7B6000
|
unkown
|
page readonly
|
|
|
|
7FF5CA008000
|
unkown
|
page readonly
|
|
|
|
7FF5AA4D7000
|
unkown
|
page readonly
|
|
|
|
19C16113000
|
unkown
|
page read and write
|
|
|
|
19C1B6A4000
|
unkown
|
page readonly
|
|
|
|
19C15F50000
|
heap default
|
page read and write
|
|
|
|
19C167F0000
|
unkown
|
page read and write
|
|
|
|
7FF5C9F65000
|
unkown
|
page readonly
|
|
|
|
19C1B6A7000
|
unkown
|
page readonly
|
|
|
|
18696002000
|
unkown
|
page read and write
|
|
|
|
7FF5AA673000
|
unkown
|
page readonly
|
|
|
|
7FF5AA12A000
|
unkown
|
page readonly
|
|
|
|
7FF5AA5D0000
|
unkown
|
page readonly
|
|
|
|
18695877000
|
unkown
|
page read and write
|
|
|
|
7FF5C9C70000
|
unkown
|
page readonly
|
|
|
|
16B01210000
|
unkown
|
page readonly
|
|
|
|
7FF5AA71A000
|
unkown
|
page readonly
|
|
|
|
224836D0000
|
unkown
|
page write copy
|
|
|
|
801EAFA000
|
unkown
|
page read and write
|
|
|
|
18695871000
|
unkown
|
page read and write
|
|
|
|
22484FD0000
|
unkown
|
page readonly
|
|
|
|
7FF5AA232000
|
unkown
|
page readonly
|
|
|
|
7FF5AC7D0000
|
unkown
|
page readonly
|
|
|
|
7FF5AA22D000
|
unkown
|
page readonly
|
|
|
|
19C1B710000
|
unkown
|
page readonly
|
|
|
|
19C16802000
|
unkown
|
page read and write
|
|
|
|
7FF5CA03F000
|
unkown
|
page readonly
|
|
|
|
16B01413000
|
unkown
|
page read and write
|
|
|
|
18695640000
|
heap private
|
page read and write
|
|
|
|
7FF5CA076000
|
unkown
|
page readonly
|
|
|
|
19C15F60000
|
unkown
|
page readonly
|
|
|
|
1E8C4699000
|
heap default
|
page read and write
|
|
|
|
7FF5AC730000
|
unkown
|
page readonly
|
|
|
|
7FF59C967000
|
unkown
|
page readonly
|
|
|
|
19C1B6C0000
|
unkown
|
page read and write
|
|
|
|
7FF59C8AC000
|
unkown
|
page readonly
|
|
|
|
16B01468000
|
unkown
|
page read and write
|
|
|
|
7FF5AA869000
|
unkown
|
page readonly
|
|
|
|
19C1B4B0000
|
unkown
|
page read and write
|
|
|
|
7FF5AA772000
|
unkown
|
page readonly
|
|
|
|
6C272FC000
|
unkown
|
page read and write
|
|
|
|
7FF5C9FE8000
|
unkown
|
page readonly
|
|
|
|
19C15F90000
|
unkown
|
page read and write
|
|
|
|
19C1B800000
|
unkown
|
page read and write
|
|
|
|
6C2717D000
|
unkown
|
page read and write
|
|
|
|
7FF5AA196000
|
unkown
|
page readonly
|
|
|
|
7FF59C974000
|
unkown
|
page readonly
|
|
|
|
7FF5AC839000
|
unkown
|
page readonly
|
|
|
|
1E8C4630000
|
heap private
|
page read and write
|
|
|
|
7FF5AC839000
|
unkown
|
page readonly
|
|
|
|
165AA7B000
|
unkown
|
page read and write
|
|
|
|
7FF59C8E2000
|
unkown
|
page readonly
|
|
|
|
1E8C5FF0000
|
unkown
|
page readonly
|
|
|
|
19C1B80E000
|
unkown
|
page read and write
|
|
|
|
7FF5AC671000
|
unkown
|
page readonly
|
|
|
|
7FF5A9F0C000
|
unkown
|
page readonly
|
|
|
|
19C1B8B1000
|
unkown
|
page read and write
|
|
|
|
7FF5AA78A000
|
unkown
|
page readonly
|
|
|
|
7FF5AA869000
|
unkown
|
page readonly
|
|
|
|
2248346A000
|
unkown
|
page read and write
|
|
|
|
801F2FC000
|
unkown
|
page read and write
|
|
|
|
1869584B000
|
unkown
|
page read and write
|
|
|
|
2248346A000
|
unkown
|
page read and write
|
|
|
|
7FF5C9DB5000
|
unkown
|
page readonly
|
|
|
|
19C16023000
|
unkown
|
page read and write
|
|
|
|
7FF5AC748000
|
unkown
|
page readonly
|
|
|
|
7FF5AA20C000
|
unkown
|
page readonly
|
|
|
|
7FF5AC7D7000
|
unkown
|
page readonly
|
|
|
|
7FF5C9C35000
|
unkown
|
page readonly
|
|
|
|
7FF5C9E5E000
|
unkown
|
page readonly
|
|
|
|
22483500000
|
unkown
|
page read and write
|
|
|
|
7FF5C9C87000
|
unkown
|
page readonly
|
|
|
|
19C16918000
|
unkown
|
page read and write
|
|
|
|
19C17420000
|
unkown
|
page read and write
|
|
|
|
19C1B5F0000
|
unkown
|
page read and write
|
|
|
|
19C1B6B4000
|
unkown
|
page write copy
|
|
|
|
7FF5C9CC8000
|
unkown
|
page readonly
|
|
|
|
801F3FE000
|
unkown
|
page read and write
|
|
|
|
7FF5AA778000
|
unkown
|
page readonly
|
|
|
|
801EE7F000
|
unkown
|
page read and write
|
|
|
|
19C1B5F4000
|
unkown
|
page read and write
|
|
There are 457 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://hebronbilingualsda.org/content/main.html?accessToFile=validating&fileAccess=56662&encryptedCookie=5080b7079e42e7f7f42339337d7fbaa9&u=000142e8f0f0d64fe362ba89009a9da7&connecting=8ea008c13c68eba7937193ba001c13b4&phaseAccess=0eb7b8b7921971db486379d636704280&p=fb527d3e6d419408d9d7f0fb6644eb37
|
|
|
|
http://encrypt.techomind.com/
|
|
|
|
http://encrypt.techomind.com/
|
|