IOCReport

loading gif

Files

File Path
Type
Category
Malicious
https://docs.google.com/document/d/e/2PACX-1vRAHP7hrvpDz9KQUwv-UGYQwMoqaq4CogO-Ounm_Bj43rDT7FbutuHOxu--J36ilf9tiDQdTEuajLGO/pub
URL
initial url
malicious
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\NV6588123[1].htm
HTML document, UTF-8 Unicode text, with very long lines, with CRLF line terminators
downloaded
malicious
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{A4953543-CA77-11EB-90EB-ECF4BBEA1588}.dat
Microsoft Word Document
dropped
clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{A4953545-CA77-11EB-90EB-ECF4BBEA1588}.dat
Microsoft Word Document
dropped
clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{A4953546-CA77-11EB-90EB-ECF4BBEA1588}.dat
Microsoft Word Document
dropped
clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\gee00pr\imagestore.dat
data
modified
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\4UaGrENHsxJlGDuGo1OIlL3Owpg[1].woff
Web Open Font Format, TrueType, length 26228, version 1.1
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\favicon[1].ico
MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\loading_payment[1].gif
GIF image data, version 89a, 220 x 19
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\opensans[1].css
ASCII text
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\p1[1].png
PNG image data, 50 x 32, 8-bit/color RGBA, non-interlaced
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\pub[1].htm
HTML document, UTF-8 Unicode text, with very long lines
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\sadad-en-2016[1].png
PNG image data, 179 x 64, 8-bit/color RGBA, non-interlaced
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\62617_1589791686[1].jpg
[TIFF image data, big-endian, direntries=4], baseline, precision 8, 825x465, frames 3
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\bootstrap[1].css
ASCII text, with very long lines
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\cards[1].png
PNG image data, 79 x 16, 8-bit/color RGBA, non-interlaced
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\css[1].css
ASCII text
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\custom[1].css
assembler source, ASCII text, with CRLF line terminators
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\express-checkout[1].png
PNG image data, 85 x 34, 8-bit/color RGBA, non-interlaced
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\kix-favicon7[1].ico
MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\emirates-post-group-1200px-logo[1].jpg
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1200x250, frames 3
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\favicon[1].png
PNG image data, 42 x 43, 8-bit/color RGBA, non-interlaced
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\logo[1].png
PNG image data, 123 x 33, 8-bit/color RGBA, non-interlaced
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\master-card-icon[1].png
PNG image data, 36 x 21, 8-bit/color RGBA, non-interlaced
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\rotate-device[1].png
PNG image data, 161 x 179, 8-bit/color RGBA, non-interlaced
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\style[1].css
assembler source, ASCII text
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\CS6IXJW6\url[1].htm
HTML document, ASCII text, with CRLF, LF line terminators
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\KFOmCnqEu92Fr1Mu4mxM[1].woff
Web Open Font Format, TrueType, length 20332, version 1.1
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\credit-cards[1].png
PNG image data, 112 x 21, 8-bit/color RGBA, non-interlaced
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\css[1].css
ASCII text
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\p2[1].png
PNG image data, 48 x 33, 8-bit/color RGBA, non-interlaced
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\p3[1].png
PNG image data, 27 x 41, 8-bit/color RGBA, non-interlaced
downloaded
clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\visa-icon[1].png
PNG image data, 58 x 18, 8-bit/color RGBA, non-interlaced
downloaded
clean
C:\Users\user\AppData\Local\Temp\~DF1E12EB6036C3D8D3.TMP
data
dropped
clean
C:\Users\user\AppData\Local\Temp\~DF6D99441CB1FA02B4.TMP
data
dropped
clean
C:\Users\user\AppData\Local\Temp\~DFA5F3CD9D61D5BB31.TMP
data
dropped
clean
There are 26 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\internet explorer\iexplore.exe
'C:\Program Files\Internet Explorer\iexplore.exe' -Embedding
clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:6368 CREDAT:17410 /prefetch:2
clean

URLs

Name
IP
Malicious
https://funfid.com/.ae/en/NV6588123/
malicious
https://funfid.com/.ae/en/NV6588123/files/favicon.png
unknown
malicious
https://funfid.com/.ae/en/NV6588123/
unknown
malicious
https://funfid.com/.ae/en/NV6588123/FPayTabs
unknown
malicious
https://funfid.com/.ae/en/NV6588123/unfid.com/.ae/en/&sa=D&source=editors&ust=1623393681163000&usg=A
unknown
malicious
https://funfid.com/.ae
unknown
clean
https://funfid.com/.ae/en/&sa=D&source=editors&ust=1623393681163000&usg=AOvVaw1EVQHT19sUbqCGwqho_dPr
unknown
clean
http://getbootstrap.com)
unknown
clean
https://github.com/twbs/bootstrap/blob/master/LICENSE)
unknown
clean
https://mci.gov.sa/
unknown
clean
https://github.com/h5bp/html5-boilerplate/blob/master/src/css/main.css
unknown
clean
https://funfid.com/.ae/en/
unknown
clean
https://www.paytabs.com/terms_conditions
unknown
clean
https://funfid.com/.ae/en/&sa=D&source=editors&ust=1623393681163000&usg=AOvVaw1EVQHT19sUbRoot
unknown
clean
There are 4 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
googlehosted.l.googleusercontent.com
142.250.180.225
clean
funfid.com
104.21.79.236
clean
lh4.googleusercontent.com
unknown
clean

IPs

IP
Domain
Country
Malicious
142.250.180.225
googlehosted.l.googleusercontent.com
United States
clean
104.21.79.236
funfid.com
United States
clean

Registry

Path
Value
Malicious
C:\Program Files\internet explorer\iexplore.exe
{A4953543-CA77-11EB-90EB-ECF4BBEA1588}
clean
C:\Program Files\internet explorer\iexplore.exe
Count
clean
C:\Program Files\internet explorer\iexplore.exe
Time
clean
C:\Program Files\internet explorer\iexplore.exe
Blocked
clean
C:\Program Files\internet explorer\iexplore.exe
Count
clean
C:\Program Files\internet explorer\iexplore.exe
Time
clean
C:\Program Files\internet explorer\iexplore.exe
Count
clean
C:\Program Files\internet explorer\iexplore.exe
Time
clean
C:\Program Files\internet explorer\iexplore.exe
LoadTimeArray
clean
C:\Program Files\internet explorer\iexplore.exe
LoadTimeArray
clean
C:\Program Files\internet explorer\iexplore.exe
Count
clean
C:\Program Files\internet explorer\iexplore.exe
Time
clean
C:\Program Files\internet explorer\iexplore.exe
Blocked
clean
C:\Program Files\internet explorer\iexplore.exe
Count
clean
C:\Program Files\internet explorer\iexplore.exe
Time
clean
C:\Program Files\internet explorer\iexplore.exe
LoadTimeArray
clean
C:\Program Files\internet explorer\iexplore.exe
Count
clean
C:\Program Files\internet explorer\iexplore.exe
Time
clean
C:\Program Files\internet explorer\iexplore.exe
LoadTimeArray
clean
C:\Program Files\internet explorer\iexplore.exe
DecayDateQueue
clean
C:\Program Files\internet explorer\iexplore.exe
LastProcessed
clean
C:\Program Files\internet explorer\iexplore.exe
DecayDateQueue
clean
C:\Program Files\internet explorer\iexplore.exe
LastProcessed
clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
@C:\Windows\System32\ieframe.dll,-912
clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
@C:\Windows\System32\ieframe.dll,-904
clean
There are 15 hidden registries, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
7FF52D04D000
unkown
page readonly
clean
1CA13C20000
unkown
page readonly
clean
7FF566462000
unkown
page readonly
clean
1E00926A000
unkown
page read and write
clean
7FF5663E6000
unkown
page readonly
clean
7FF52CC9A000
unkown
page readonly
clean
7FF52C831000
unkown
page readonly
clean
7FF54E5C0000
unkown
page readonly
clean
7FF51CD3B000
unkown
page readonly
clean
145E4E56000
unkown
page read and write
clean
7FF5D2B7D000
unkown
page readonly
clean
145E4E00000
unkown
page read and write
clean
7FF52CDF5000
unkown
page readonly
clean
2128FEB0000
unkown
page readonly
clean
7FF5D2B4A000
unkown
page readonly
clean
1000FE000
unkown
page read and write
clean
28CF4A00000
unkown
page readonly
clean
7FF522ACB000
unkown
page readonly
clean
145E4DE0000
heap default
page read and write
clean
7FF51CF2A000
unkown
page readonly
clean
7FF5663D8000
unkown
page readonly
clean
7FF522CB4000
unkown
page readonly
clean
1E009269000
unkown
page read and write
clean
10017E000
unkown
page read and write
clean
7FF56603A000
unkown
page readonly
clean
7FF52D02E000
unkown
page readonly
clean
7434E7A000
unkown
page read and write
clean
7FF52CFD0000
unkown
page readonly
clean
7FF51C50F000
unkown
page readonly
clean
7FF566310000
unkown
page readonly
clean
58109FF000
unkown
page read and write
clean
7FF52CF70000
unkown
page readonly
clean
149784D0000
unkown
page readonly
clean
618AE7F000
unkown
page read and write
clean
7FF51CDA4000
unkown
page readonly
clean
7FF522BCE000
unkown
page readonly
clean
1E0091C0000
unkown
page readonly
clean
14978200000
unkown
page read and write
clean
21290000000
unkown
page read and write
clean
7FF52CE29000
unkown
page readonly
clean
7FF522C4D000
unkown
page readonly
clean
7FF54E6B1000
unkown
page readonly
clean
28CF4913000
unkown
page read and write
clean
7FF51CEB9000
unkown
page readonly
clean
B70157E000
unkown
page read and write
clean
7FF52CF93000
unkown
page readonly
clean
7FF56639F000
unkown
page readonly
clean
5810D7F000
unkown
page read and write
clean
1E009313000
unkown
page read and write
clean
7FF54E5CB000
unkown
page readonly
clean
7FF5D2B00000
unkown
page readonly
clean
1CA13930000
unkown
page read and write
clean
7FF52CFFC000
unkown
page readonly
clean
B70107E000
unkown
page read and write
clean
778F87A000
unkown
page read and write
clean
7FF522BD0000
unkown
page readonly
clean
7FF5ABBA8000
unkown
page readonly
clean
14978229000
unkown
page read and write
clean
7FF522B1D000
unkown
page readonly
clean
7FF5ABBAE000
unkown
page readonly
clean
28CF4902000
unkown
page read and write
clean
145E4D80000
heap private
page read and write
clean
7FF566461000
unkown
page readonly
clean
7FF5D2B68000
unkown
page readonly
clean
24BAE7F000
unkown
page read and write
clean
618ACFE000
unkown
page read and write
clean
7FF522B34000
unkown
page readonly
clean
7FF5ABC31000
unkown
page readonly
clean
7FF56645A000
unkown
page readonly
clean
28CF4800000
unkown
page read and write
clean
7FF565BD1000
unkown
page readonly
clean
28CF4770000
unkown
page readonly
clean
14978251000
unkown
page read and write
clean
7FF52CDF1000
unkown
page readonly
clean
1001F9000
unkown
page read and write
clean
74350FF000
unkown
page read and write
clean
28CF4700000
heap private
page read and write
clean
7FF566273000
unkown
page readonly
clean
7FF51CEAE000
unkown
page readonly
clean
7FF522C38000
unkown
page readonly
clean
7FF522CC1000
unkown
page readonly
clean
1E00926C000
unkown
page read and write
clean
7FF51CE84000
unkown
page readonly
clean
24BA87C000
unkown
page read and write
clean
145E4E02000
unkown
page read and write
clean
145E4E13000
unkown
page read and write
clean
1E009269000
unkown
page read and write
clean
198625C0000
unkown
page readonly
clean
14978A02000
unkown
page read and write
clean
7FF522C49000
unkown
page readonly
clean
7FF566191000
unkown
page readonly
clean
B70167F000
unkown
page read and write
clean
7FF54E63D000
unkown
page readonly
clean
19862750000
heap private
page read and write
clean
7FF5ABC2A000
unkown
page readonly
clean
1497824B000
unkown
page read and write
clean
1E00926C000
unkown
page read and write
clean
7FF51CF31000
unkown
page readonly
clean
1CA13A90000
unkown
page readonly
clean
100479000
unkown
page read and write
clean
7FF51CE40000
unkown
page readonly
clean
7FF566136000
unkown
page readonly
clean
1497823C000
unkown
page read and write
clean
198626D0000
unkown
page read and write
clean
778F779000
unkown
page read and write
clean
14978180000
heap default
page read and write
clean
7FF522B23000
unkown
page readonly
clean
7FF51CE8A000
unkown
page readonly
clean
7FF52D03E000
unkown
page readonly
clean
7FF54E285000
unkown
page readonly
clean
7434F7F000
unkown
page read and write
clean
7FF522AB1000
unkown
page readonly
clean
7FF5D2BEA000
unkown
page readonly
clean
7FF56626B000
unkown
page readonly
clean
1CA13C15000
heap private
page read and write
clean
7FF5ABC32000
unkown
page readonly
clean
7FF5ABB42000
unkown
page readonly
clean
7FF522C3E000
unkown
page readonly
clean
14978313000
unkown
page read and write
clean
7FF566333000
unkown
page readonly
clean
7FF5ABB8A000
unkown
page readonly
clean
21290090000
heap default
page read and write
clean
14978302000
unkown
page read and write
clean
7FF5ABB78000
unkown
page readonly
clean
7FF5ABB6C000
unkown
page readonly
clean
1CA13968000
heap default
page read and write
clean
7FF51CE3E000
unkown
page readonly
clean
7FF5663DE000
unkown
page readonly
clean
7FF5663E1000
unkown
page readonly
clean
1CA13982000
heap default
page read and write
clean
28CF4790000
unkown
page read and write
clean
1E009213000
unkown
page read and write
clean
1CA13C10000
heap private
page read and write
clean
145E4E6A000
unkown
page read and write
clean
28CF4780000
unkown
page readonly
clean
7FF51CBC0000
unkown
page readonly
clean
145E4E29000
unkown
page read and write
clean
7FF51CDAC000
unkown
page readonly
clean
7FF5D2B0B000
unkown
page readonly
clean
7FF54E6A4000
unkown
page readonly
clean
2129009E000
heap default
page read and write
clean
14978213000
unkown
page read and write
clean
1E009160000
heap default
page read and write
clean
28CF4813000
unkown
page read and write
clean
7FF5663BA000
unkown
page readonly
clean
778F3EB000
unkown
page read and write
clean
7FF54E5EC000
unkown
page readonly
clean
7FF566047000
unkown
page readonly
clean
1E009240000
unkown
page read and write
clean
1E00926C000
unkown
page read and write
clean
7FF54E5F8000
unkown
page readonly
clean
7FF51CA15000
unkown
page readonly
clean
145E69C0000
unkown
page readonly
clean
581097F000
unkown
page read and write
clean
7FF566387000
unkown
page readonly
clean
1E009229000
unkown
page read and write
clean
7FF52CFFF000
unkown
page readonly
clean
5810DFE000
unkown
page read and write
clean
7FF5227A5000
unkown
page readonly
clean
7FF522A73000
unkown
page readonly
clean
7FF52D0BA000
unkown
page readonly
clean
778F67E000
unkown
page read and write
clean
618AF7F000
unkown
page read and write
clean
1E009200000
unkown
page read and write
clean
7FF5D2B02000
unkown
page readonly
clean
1E009269000
unkown
page read and write
clean
7FF56637B000
unkown
page readonly
clean
7FF51CEA8000
unkown
page readonly
clean
28CF483C000
unkown
page read and write
clean
7FF52CED3000
unkown
page readonly
clean
7FF56636A000
unkown
page readonly
clean
149781A0000
unkown
page readonly
clean
7FF5ABB9E000
unkown
page readonly
clean
7FF51CE6C000
unkown
page readonly
clean
14978C00000
unkown
page readonly
clean
7FF56636E000
unkown
page readonly
clean
7FF522CBA000
unkown
page readonly
clean
7FF5663B4000
unkown
page readonly
clean
7FF54E604000
unkown
page readonly
clean
7FF52CD8B000
unkown
page readonly
clean
7FF566195000
unkown
page readonly
clean
145E50D0000
unkown
page write copy
clean
198625FB000
heap default
page read and write
clean
7FF5D2BF2000
unkown
page readonly
clean
14978247000
unkown
page read and write
clean
212900B6000
unkown
page read and write
clean
7FF56639C000
unkown
page readonly
clean
618AC7C000
unkown
page read and write
clean
7FF52D0C2000
unkown
page readonly
clean
24BAB7B000
unkown
page read and write
clean
7FF52CC9F000
unkown
page readonly
clean
24BA8FF000
unkown
page read and write
clean
21290040000
heap private
page read and write
clean
1E00AD70000
unkown
page readonly
clean
24BA97F000
unkown
page read and write
clean
21290045000
heap private
page read and write
clean
14978270000
unkown
page read and write
clean
7FF52CECB000
unkown
page readonly
clean
7FF51CE3A000
unkown
page readonly
clean
7FF52CFCE000
unkown
page readonly
clean
1E00926A000
unkown
page read and write
clean
7FF522790000
unkown
page readonly
clean
28CF4AD0000
unkown
page readonly
clean
7FF54E61F000
unkown
page readonly
clean
14978400000
unkown
page readonly
clean
14978300000
unkown
page read and write
clean
7FF52D014000
unkown
page readonly
clean
7FF56612B000
unkown
page readonly
clean
145E5000000
unkown
page readonly
clean
778F6FE000
unkown
page read and write
clean
28CF4852000
unkown
page read and write
clean
7FF51CEBD000
unkown
page readonly
clean
7FF5663E9000
unkown
page readonly
clean
7FF522BFF000
unkown
page readonly
clean
B7011FC000
unkown
page read and write
clean
2128FF10000
unkown
page readonly
clean
7FF522C46000
unkown
page readonly
clean
198625A0000
unkown
page read and write
clean
7FF522A21000
unkown
page readonly
clean
7FF522BCA000
unkown
page readonly
clean
1E00926A000
unkown
page read and write
clean
145E4E6A000
unkown
page read and write
clean
7FF5D2B05000
unkown
page readonly
clean
2128FFE0000
unkown
page read and write
clean
B700DCB000
unkown
page read and write
clean
7FF51CE4B000
unkown
page readonly
clean
1E0094D0000
unkown
page readonly
clean
14978254000
unkown
page read and write
clean
145E4E6A000
unkown
page read and write
clean
7FF52D008000
unkown
page readonly
clean
145E4DF0000
unkown
page readonly
clean
7FF51CE94000
unkown
page readonly
clean
778F8FE000
unkown
page read and write
clean
212900B8000
unkown
page read and write
clean
212900BA000
unkown
page read and write
clean
19862470000
unkown
page readonly
clean
7FF51CA06000
unkown
page readonly
clean
1497827C000
unkown
page read and write
clean
7FF52CFD5000
unkown
page readonly
clean
743507F000
unkown
page read and write
clean
7434EFE000
unkown
page read and write
clean
7FF566454000
unkown
page readonly
clean
1E00926C000
unkown
page read and write
clean
7FF51CD93000
unkown
page readonly
clean
7FF522C1A000
unkown
page readonly
clean
24BAF7F000
unkown
page read and write
clean
145E68C0000
unkown
page read and write
clean
14978120000
heap private
page read and write
clean
7FF51CBB7000
unkown
page readonly
clean
1E009270000
unkown
page read and write
clean
7FF52CFE7000
unkown
page readonly
clean
1E009170000
unkown
page write copy
clean
7FF5663ED000
unkown
page readonly
clean
7FF52CED8000
unkown
page readonly
clean
7FF5ABB40000
unkown
page readonly
clean
7FF522BFC000
unkown
page readonly
clean
7FF522B3C000
unkown
page readonly
clean
145E4E6A000
unkown
page read and write
clean
7FF52CFCA000
unkown
page readonly
clean
7FF51CE45000
unkown
page readonly
clean
7FF52D041000
unkown
page readonly
clean
28CF5200000
unkown
page readonly
clean
19862755000
heap private
page read and write
clean
7FF565BCD000
unkown
page readonly
clean
28CF4881000
unkown
page read and write
clean
7FF566370000
unkown
page readonly
clean
7FF51CEB6000
unkown
page readonly
clean
7FF52D0B4000
unkown
page readonly
clean
7FF522ACE000
unkown
page readonly
clean
7FF51C515000
unkown
page readonly
clean
149781B0000
unkown
page read and write
clean
1E009100000
heap private
page read and write
clean
7FF566375000
unkown
page readonly
clean
7FF51CF32000
unkown
page readonly
clean
145E4F02000
unkown
page read and write
clean
7FF52CFDB000
unkown
page readonly
clean
7FF51CE2C000
unkown
page readonly
clean
618AD7F000
unkown
page read and write
clean
7FF522947000
unkown
page readonly
clean
7FF54E541000
unkown
page readonly
clean
10007B000
unkown
page read and write
clean
7FF5ABB94000
unkown
page readonly
clean
212900B6000
unkown
page read and write
clean
7FF51CC91000
unkown
page readonly
clean
7FF52D038000
unkown
page readonly
clean
212900AB000
unkown
page read and write
clean
7FF5ABC24000
unkown
page readonly
clean
145E5120000
unkown
page readonly
clean
145E4F00000
unkown
page read and write
clean
7FF54E5C5000
unkown
page readonly
clean
7FF54E6B2000
unkown
page readonly
clean
7FF52CCA7000
unkown
page readonly
clean
7FF522C14000
unkown
page readonly
clean
145E4E6A000
unkown
page read and write
clean
7FF54E628000
unkown
page readonly
clean
7FF52C82D000
unkown
page readonly
clean
28CF4829000
unkown
page read and write
clean
1E00926C000
unkown
page read and write
clean
7FF5D2B38000
unkown
page readonly
clean
7FF54E62E000
unkown
page readonly
clean
7FF51CE9F000
unkown
page readonly
clean
7FF5663CE000
unkown
page readonly
clean
7FF52CEB1000
unkown
page readonly
clean
7FF51CE77000
unkown
page readonly
clean
145E4E6A000
unkown
page read and write
clean
28CF4E60000
unkown
page readonly
clean
7FF566312000
unkown
page readonly
clean
7FF522BBC000
unkown
page readonly
clean
7FF522BD5000
unkown
page readonly
clean
1E009236000
unkown
page read and write
clean
21290097000
heap default
page read and write
clean
7FF51CE2A000
unkown
page readonly
clean
7FF52D046000
unkown
page readonly
clean
7FF54E60A000
unkown
page readonly
clean
5810CFF000
unkown
page read and write
clean
28CF488D000
unkown
page read and write
clean
7FF5ABB84000
unkown
page readonly
clean
7FF51CD8D000
unkown
page readonly
clean
145E4E3F000
unkown
page read and write
clean
14978291000
unkown
page read and write
clean
7FF54E614000
unkown
page readonly
clean
1E00926C000
unkown
page read and write
clean
7FF522C24000
unkown
page readonly
clean
778F97F000
unkown
page read and write
clean
19862760000
unkown
page readonly
clean
7FF5661C9000
unkown
page readonly
clean
28CF5002000
unkown
page read and write
clean
7FF5D2B6E000
unkown
page readonly
clean
1E009300000
unkown
page read and write
clean
7FF5ABBBD000
unkown
page readonly
clean
7FF566251000
unkown
page readonly
clean
1E009302000
unkown
page read and write
clean
145E4F13000
unkown
page read and write
clean
1E009202000
unkown
page read and write
clean
778F7FF000
unkown
page read and write
clean
7FF51CD21000
unkown
page readonly
clean
618AEFF000
unkown
page read and write
clean
7FF522C07000
unkown
page readonly
clean
7FF5ABB4B000
unkown
page readonly
clean
7FF56603F000
unkown
page readonly
clean
7FF51CE57000
unkown
page readonly
clean
21290190000
unkown
page readonly
clean
14978248000
unkown
page read and write
clean
7FF5D2B2C000
unkown
page readonly
clean
7FF5ABB45000
unkown
page readonly
clean
7FF52CC8C000
unkown
page readonly
clean
B70137B000
unkown
page read and write
clean
28CF4760000
heap default
page read and write
clean
145E4E6A000
unkown
page read and write
clean
1497824E000
unkown
page read and write
clean
7434FFE000
unkown
page read and write
clean
7FF52D01A000
unkown
page readonly
clean
7FF5D2BF1000
unkown
page readonly
clean
1E00926C000
unkown
page read and write
clean
14978F40000
unkown
page readonly
clean
7FF522BBA000
unkown
page readonly
clean
7FF56602C000
unkown
page readonly
clean
7FF5D2BE4000
unkown
page readonly
clean
1004FF000
unkown
page read and write
clean
7FF5663A8000
unkown
page readonly
clean
7FF5D2B79000
unkown
page readonly
clean
1CA13A80000
unkown
page readonly
clean
7FF52CF72000
unkown
page readonly
clean
1CA13A60000
unkown
page read and write
clean
7FF51CF24000
unkown
page readonly
clean
21290020000
unkown
page readonly
clean
1E009258000
unkown
page read and write
clean
7FF52D024000
unkown
page readonly
clean
14978308000
unkown
page read and write
clean
7FF51CE6F000
unkown
page readonly
clean
7FF5D2B54000
unkown
page readonly
clean
7FF52D0C1000
unkown
page readonly
clean
7FF522796000
unkown
page readonly
clean
212900A5000
unkown
page read and write
clean
1E00926C000
unkown
page read and write
clean
145E4E6A000
unkown
page read and write
clean
7FF522CC2000
unkown
page readonly
clean
7FF5D2B44000
unkown
page readonly
clean
7FF51CCE3000
unkown
page readonly
clean
14978286000
unkown
page read and write
clean
7FF5D2B5E000
unkown
page readonly
clean
7FF5663C4000
unkown
page readonly
clean
24BAD7C000
unkown
page read and write
clean
7FF54E639000
unkown
page readonly
clean
58108FC000
unkown
page read and write
clean
7FF522BE7000
unkown
page readonly
clean
7FF52CD96000
unkown
page readonly
clean
B701477000
unkown
page read and write
clean
7FF522401000
unkown
page readonly
clean
7FF54E5C2000
unkown
page readonly
clean
1E009400000
unkown
page readonly
clean
198625DB000
heap default
page read and write
clean
7FF566278000
unkown
page readonly
clean
7FF51CA00000
unkown
page readonly
clean
B70127E000
unkown
page read and write
clean
1E00AC70000
unkown
page read and write
clean
198624D0000
unkown
page readonly
clean
198625D0000
heap default
page read and write
clean
7FF54E6AA000
unkown
page readonly
clean
1497828F000
unkown
page read and write
clean
14978190000
unkown
page readonly
clean
7FF522C2F000
unkown
page readonly
clean
24BAC77000
unkown
page read and write
clean
B7010FE000
unkown
page read and write
clean
7FF5ABBB9000
unkown
page readonly
clean
1CA13860000
unkown
page readonly
clean
1CA13960000
heap default
page read and write
clean
7FF522BDB000
unkown
page readonly
clean
7FF52D049000
unkown
page readonly
clean
There are 399 hidden memdumps, click here to show them.

DOM / HTML

URL
Malicious
https://funfid.com/.ae/en/NV6588123/
malicious
https://docs.google.com/document/d/e/2PACX-1vRAHP7hrvpDz9KQUwv-UGYQwMoqaq4CogO-Ounm_Bj43rDT7FbutuHOxu--J36ilf9tiDQdTEuajLGO/pub
clean