IOCReport

loading gif

Processes

Path
Cmdline
Malicious
C:\Windows\System32\loaddll32.exe
loaddll32.exe 'C:\Users\user\Desktop\n8x3d68Gnd.dll'
malicious
C:\Windows\SysWOW64\rundll32.exe
rundll32.exe C:\Users\user\Desktop\n8x3d68Gnd.dll,Connectdark
malicious
C:\Windows\SysWOW64\rundll32.exe
rundll32.exe 'C:\Users\user\Desktop\n8x3d68Gnd.dll',#1
malicious
C:\Windows\SysWOW64\rundll32.exe
rundll32.exe C:\Users\user\Desktop\n8x3d68Gnd.dll,Mindlake
malicious
C:\Windows\SysWOW64\rundll32.exe
rundll32.exe C:\Users\user\Desktop\n8x3d68Gnd.dll,Porthigh
malicious
C:\Windows\SysWOW64\rundll32.exe
rundll32.exe C:\Users\user\Desktop\n8x3d68Gnd.dll,Problemscale
malicious
C:\Windows\SysWOW64\rundll32.exe
rundll32.exe C:\Users\user\Desktop\n8x3d68Gnd.dll,WingGrass
malicious
C:\Windows\SysWOW64\cmd.exe
cmd.exe /C rundll32.exe 'C:\Users\user\Desktop\n8x3d68Gnd.dll',#1
clean
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\cmd.exe /c cd Island
clean
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\cmd.exe /c cd Island
clean
C:\Windows\System32\conhost.exe
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
clean
C:\Windows\System32\conhost.exe
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
clean
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\cmd.exe /c cd Matter m
clean
C:\Windows\System32\conhost.exe
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
clean
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\cmd.exe /c cd Matter m
clean
C:\Windows\System32\conhost.exe
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
clean
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\cmd.exe /c cd Island
clean
C:\Windows\System32\conhost.exe
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
clean
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\cmd.exe /c cd Island
clean
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\cmd.exe /c cd Matter m
clean
C:\Windows\System32\conhost.exe
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
clean
C:\Windows\System32\conhost.exe
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
clean
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\cmd.exe /c cd Matter m
clean
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\cmd.exe /c cd Island
clean
C:\Windows\System32\conhost.exe
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
clean
C:\Windows\System32\conhost.exe
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
clean
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\cmd.exe /c cd Island
clean
C:\Windows\System32\conhost.exe
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
clean
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\cmd.exe /c cd Island
clean
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\cmd.exe /c cd Matter m
clean
C:\Windows\System32\conhost.exe
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
clean
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\cmd.exe /c cd Matter m
clean
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\cmd.exe /c cd Matter m
clean
C:\Windows\System32\conhost.exe
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
clean
There are 24 hidden processes, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
6D461000
unkown image
page execute read
malicious
6D461000
unkown image
page execute read
malicious
6D461000
unkown image
page execute read
malicious
6D461000
unkown image
page execute read
malicious
6D461000
unkown image
page execute read
malicious
6D461000
unkown image
page execute read
malicious
6D461000
unkown image
page execute read
malicious
2D6C000
unkown
page readonly
clean
2DD3000
unkown
page readonly
clean
9C000
unkown
page read and write
clean
2DFB000
unkown
page readonly
clean
2DC7000
unkown
page readonly
clean
160000
unkown
page readonly
clean
2E45000
unkown
page readonly
clean
6D460000
unkown image
page readonly
clean
2E54000
unkown
page readonly
clean
7FF566ACA000
unkown
page readonly
clean
76A000
heap default
page read and write
clean
3230000
unkown
page readonly
clean
2DAC000
unkown
page readonly
clean
2DC5000
unkown
page readonly
clean
2E54000
unkown
page readonly
clean
2DB9000
unkown
page readonly
clean
740000
unkown
page readonly
clean
F3A000
heap default
page read and write
clean
2DCF000
unkown
page readonly
clean
9F0000
unkown
page readonly
clean
2DCF000
unkown
page readonly
clean
2DFB000
unkown
page readonly
clean
2DE1000
unkown
page readonly
clean
231A7140000
unkown
page readonly
clean
1340000
unkown
page readonly
clean
231A6B00000
unkown
page read and write
clean
6D460000
unkown image
page readonly
clean
730000
unkown
page readonly
clean
2E41000
unkown
page readonly
clean
2DB0000
unkown
page readonly
clean
2DB0000
unkown
page readonly
clean
231A7400000
unkown
page readonly
clean
6D4EA000
unkown image
page readonly
clean
231A6A55000
unkown
page read and write
clean
231A6CD0000
unkown
page readonly
clean
2DA3000
unkown
page readonly
clean
C50000
unkown
page readonly
clean
7AA000
heap default
page read and write
clean
2DDA000
unkown
page readonly
clean
150000
heap default
page read and write
clean
9E0000
unkown
page readonly
clean
2DE1000
unkown
page readonly
clean
43A000
unkown
page read and write
clean
8C622FE000
unkown
page read and write
clean
2DC5000
unkown
page readonly
clean
7FF566696000
unkown
page readonly
clean
8C623F7000
unkown
page read and write
clean
2DA3000
unkown
page readonly
clean
6D55D000
unkown image
page readonly
clean
2D9C000
unkown
page readonly
clean
30B0000
unkown
page readonly
clean
2DF2000
unkown
page readonly
clean
2E73000
unkown
page readonly
clean
231A6A81000
unkown
page read and write
clean
2E73000
unkown
page readonly
clean
2E68000
unkown
page readonly
clean
2D9C000
unkown
page readonly
clean
2E41000
unkown
page readonly
clean
2E1000
unkown
page read and write
clean
DB000
unkown
page read and write
clean
9D000
unkown
page read and write
clean
C60000
heap default
page read and write
clean
2DF2000
unkown
page readonly
clean
231A6A4A000
unkown
page read and write
clean
2DDA000
unkown
page readonly
clean
ACE000
unkown
page read and write
clean
2E41000
unkown
page readonly
clean
3F0000
heap default
page read and write
clean
2CA0000
unkown
page readonly
clean
2D6C000
unkown
page readonly
clean
A50000
unkown
page readonly
clean
DF0000
heap default
page read and write
clean
6D55C000
unkown image
page read and write
clean
2D95000
unkown
page readonly
clean
7FF566ABA000
unkown
page readonly
clean
7FF566BBA000
unkown
page readonly
clean
7FF566AD0000
unkown
page readonly
clean
2DCD000
unkown
page readonly
clean
2D73000
unkown
page readonly
clean
D60000
unkown
page readonly
clean
2D95000
unkown
page readonly
clean
2C06000
unkown
page readonly
clean
1D0000
unkown
page readonly
clean
6D4EA000
unkown image
page readonly
clean
6D460000
unkown image
page readonly
clean
436000
unkown
page read and write
clean
9D0000
heap default
page read and write
clean
3780000
unkown
page readonly
clean
2E73000
unkown
page readonly
clean
2DB0000
unkown
page readonly
clean
180000
unkown
page readonly
clean
2DD3000
unkown
page readonly
clean
7FF566B3E000
unkown
page readonly
clean
2D69000
unkown
page readonly
clean
2DB9000
unkown
page readonly
clean
2D7A000
unkown
page readonly
clean
140000
unkown
page read and write
clean
2D95000
unkown
page readonly
clean
30EB000
unkown
page read and write
clean
2E45000
unkown
page readonly
clean
AD2000
unkown
page read and write
clean
2E73000
unkown
page readonly
clean
2D9C000
unkown
page readonly
clean
EAD000
unkown
page read and write
clean
2DB0000
unkown
page readonly
clean
2DB9000
unkown
page readonly
clean
2DC5000
unkown
page readonly
clean
6D55D000
unkown image
page readonly
clean
2DDF000
unkown
page readonly
clean
2D73000
unkown
page readonly
clean
2DDF000
unkown
page readonly
clean
159B000
heap default
page read and write
clean
2DE1000
unkown
page readonly
clean
231A6A29000
unkown
page read and write
clean
2DAC000
unkown
page readonly
clean
3240000
unkown
page readonly
clean
2E62000
unkown
page readonly
clean
EE2000
unkown
page read and write
clean
2D95000
unkown
page readonly
clean
2DDA000
unkown
page readonly
clean
1A20000
unkown
page readonly
clean
D40000
unkown
page readonly
clean
D20000
unkown
page read and write
clean
6E0000
unkown
page readonly
clean
7FF566A34000
unkown
page readonly
clean
6D4EA000
unkown image
page readonly
clean
BB1000
unkown
page read and write
clean
FAB000
unkown
page read and write
clean
32B0000
heap private
page read and write
clean
2CA0000
unkown
page readonly
clean
2C06000
unkown
page readonly
clean
2E73000
unkown
page readonly
clean
2E68000
unkown
page readonly
clean
2DF2000
unkown
page readonly
clean
4D0000
heap default
page read and write
clean
7FF566B07000
unkown
page readonly
clean
3D0000
unkown
page read and write
clean
6D545000
unkown image
page read and write
clean
400000
unkown
page readonly
clean
2D7A000
unkown
page readonly
clean
7FF566ABC000
unkown
page readonly
clean
231A6A3C000
unkown
page read and write
clean
2DC7000
unkown
page readonly
clean
760000
heap default
page read and write
clean
231A6A00000
unkown
page read and write
clean
7FF566921000
unkown
page readonly
clean
231A6C00000
unkown
page readonly
clean
9AD000
unkown
page read and write
clean
231A6ED0000
unkown
page readonly
clean
2DCD000
unkown
page readonly
clean
1220000
unkown
page readonly
clean
2DF6000
unkown
page readonly
clean
7FF566B46000
unkown
page readonly
clean
8C61D3B000
unkown
page read and write
clean
4D0000
unkown
page readonly
clean
6D545000
unkown image
page read and write
clean
F10000
unkown
page readonly
clean
2D9C000
unkown
page readonly
clean
1020000
unkown
page read and write
clean
6D55D000
unkown image
page readonly
clean
7FF566ACE000
unkown
page readonly
clean
2D69000
unkown
page readonly
clean
2D73000
unkown
page readonly
clean
2D95000
unkown
page readonly
clean
A40000
heap private
page read and write
clean
3140000
unkown
page readonly
clean
2DAC000
unkown
page readonly
clean
7FF566A3C000
unkown
page readonly
clean
6D4EA000
unkown image
page readonly
clean
6D545000
unkown image
page read and write
clean
785000
heap default
page read and write
clean
231A6A4D000
unkown
page read and write
clean
170000
unkown
page readonly
clean
6D4EA000
unkown image
page readonly
clean
7FF5669CE000
unkown
page readonly
clean
2E73000
unkown
page readonly
clean
348A000
heap default
page read and write
clean
107D000
unkown
page read and write
clean
2DA3000
unkown
page readonly
clean
231A7202000
unkown
page read and write
clean
3290000
unkown
page readonly
clean
2E73000
unkown
page readonly
clean
2DC7000
unkown
page readonly
clean
2D73000
unkown
page readonly
clean
2D95000
unkown
page readonly
clean
3440000
unkown
page readonly
clean
2DDF000
unkown
page readonly
clean
2DF2000
unkown
page readonly
clean
2DC5000
unkown
page readonly
clean
1024000
unkown
page read and write
clean
EDE000
unkown
page read and write
clean
2DCF000
unkown
page readonly
clean
2DAC000
unkown
page readonly
clean
6D460000
unkown image
page readonly
clean
7FF566AFF000
unkown
page readonly
clean
6D55D000
unkown image
page readonly
clean
7FF566ADB000
unkown
page readonly
clean
231A6A50000
unkown
page read and write
clean
6D545000
unkown image
page read and write
clean
6D545000
unkown image
page read and write
clean
6D55C000
unkown image
page read and write
clean
2E68000
unkown
page readonly
clean
2DD3000
unkown
page readonly
clean
6D4EA000
unkown image
page readonly
clean
2D6C000
unkown
page readonly
clean
2CA0000
unkown
page readonly
clean
6D55C000
unkown image
page read and write
clean
8C624FF000
unkown
page read and write
clean
2DB0000
unkown
page readonly
clean
2DFB000
unkown
page readonly
clean
2DF6000
unkown
page readonly
clean
32D000
unkown
page read and write
clean
2DB9000
unkown
page readonly
clean
F90000
heap private
page read and write
clean
231A6A13000
unkown
page read and write
clean
2DCF000
unkown
page readonly
clean
2DCD000
unkown
page readonly
clean
2DDA000
unkown
page readonly
clean
2CA0000
unkown
page readonly
clean
980000
unkown
page readonly
clean
6B0000
heap private
page read and write
clean
2E62000
unkown
page readonly
clean
6D55C000
unkown image
page read and write
clean
2C06000
unkown
page readonly
clean
3000000
heap private
page read and write
clean
21D000
unkown
page read and write
clean
2D73000
unkown
page readonly
clean
7FF566BC1000
unkown
page readonly
clean
C6A000
heap default
page read and write
clean
2D69000
unkown
page readonly
clean
9EB000
unkown
page read and write
clean
32A0000
unkown
page readonly
clean
7FF5666A5000
unkown
page readonly
clean
7FF566AFC000
unkown
page readonly
clean
D50000
unkown
page readonly
clean
2DA3000
unkown
page readonly
clean
30B0000
unkown
page readonly
clean
2DB0000
unkown
page readonly
clean
6D460000
unkown image
page readonly
clean
3440000
unkown
page readonly
clean
1690000
unkown
page readonly
clean
600000
unkown
page readonly
clean
2D9C000
unkown
page readonly
clean
4DA000
heap default
page read and write
clean
6D460000
unkown image
page readonly
clean
7A0000
heap default
page read and write
clean
2DDA000
unkown
page readonly
clean
6D545000
unkown image
page read and write
clean
231A6A70000
unkown
page read and write
clean
2E68000
unkown
page readonly
clean
6D460000
unkown image
page readonly
clean
5E0000
heap default
page read and write
clean
2DB9000
unkown
page readonly
clean
2DA3000
unkown
page readonly
clean
7FF566A23000
unkown
page readonly
clean
30B0000
unkown
page readonly
clean
36B000
unkown
page read and write
clean
2E73000
unkown
page readonly
clean
2DDF000
unkown
page readonly
clean
2D7A000
unkown
page readonly
clean
2DD3000
unkown
page readonly
clean
2E5000
unkown
page read and write
clean
2DCF000
unkown
page readonly
clean
2DCD000
unkown
page readonly
clean
7FF5663D2000
unkown
page readonly
clean
7FF566B24000
unkown
page readonly
clean
7FF5669B1000
unkown
page readonly
clean
2DDF000
unkown
page readonly
clean
400000
unkown
page readonly
clean
6D55D000
unkown image
page readonly
clean
3480000
heap default
page read and write
clean
2DA3000
unkown
page readonly
clean
2E45000
unkown
page readonly
clean
2DF2000
unkown
page readonly
clean
6D460000
unkown image
page readonly
clean
FF0000
unkown
page read and write
clean
2E45000
unkown
page readonly
clean
7FF566973000
unkown
page readonly
clean
2E41000
unkown
page readonly
clean
2DE1000
unkown
page readonly
clean
2E62000
unkown
page readonly
clean
170000
unkown
page readonly
clean
140000
unkown
page read and write
clean
E00000
unkown
page readonly
clean
2D69000
unkown
page readonly
clean
2DFB000
unkown
page readonly
clean
2C06000
unkown
page readonly
clean
7FF566B4D000
unkown
page readonly
clean
7FF566847000
unkown
page readonly
clean
2E54000
unkown
page readonly
clean
8C61DBE000
unkown
page read and write
clean
7FF566690000
unkown
page readonly
clean
7FF56632D000
unkown
page readonly
clean
2DD3000
unkown
page readonly
clean
30B0000
unkown
page readonly
clean
231A6B13000
unkown
page read and write
clean
2E41000
unkown
page readonly
clean
2DE1000
unkown
page readonly
clean
2E62000
unkown
page readonly
clean
2DF6000
unkown
page readonly
clean
6D0000
unkown
page readonly
clean
7FF566B14000
unkown
page readonly
clean
2CA0000
unkown
page readonly
clean
2E68000
unkown
page readonly
clean
231A6B08000
unkown
page read and write
clean
2DDF000
unkown
page readonly
clean
6D460000
unkown image
page readonly
clean
2DB9000
unkown
page readonly
clean
7FF566A1D000
unkown
page readonly
clean
2DF6000
unkown
page readonly
clean
2E73000
unkown
page readonly
clean
7FF566B49000
unkown
page readonly
clean
1590000
heap default
page read and write
clean
2E73000
unkown
page readonly
clean
2D7A000
unkown
page readonly
clean
7FF566BB4000
unkown
page readonly
clean
DE0000
heap private
page read and write
clean
13E0000
heap default
page read and write
clean
2DC7000
unkown
page readonly
clean
DB000
unkown
page read and write
clean
6D55C000
unkown image
page read and write
clean
4E0000
unkown
page readonly
clean
2C06000
unkown
page readonly
clean
2D6C000
unkown
page readonly
clean
F30000
heap default
page read and write
clean
6D460000
unkown image
page readonly
clean
2D6C000
unkown
page readonly
clean
BB5000
unkown
page read and write
clean
2D73000
unkown
page readonly
clean
6D460000
unkown image
page readonly
clean
8A0000
unkown
page readonly
clean
7FF566BC2000
unkown
page readonly
clean
12F0000
unkown
page readonly
clean
2DD3000
unkown
page readonly
clean
2DC7000
unkown
page readonly
clean
7FF566AD5000
unkown
page readonly
clean
2E41000
unkown
page readonly
clean
2DCF000
unkown
page readonly
clean
2DF6000
unkown
page readonly
clean
2DAC000
unkown
page readonly
clean
7FF566AE7000
unkown
page readonly
clean
2E54000
unkown
page readonly
clean
2E73000
unkown
page readonly
clean
2DF2000
unkown
page readonly
clean
2DDA000
unkown
page readonly
clean
8AC000
unkown
page read and write
clean
2DAC000
unkown
page readonly
clean
2DFB000
unkown
page readonly
clean
3580000
unkown
page readonly
clean
2D9C000
unkown
page readonly
clean
2D6C000
unkown
page readonly
clean
231A6990000
heap private
page read and write
clean
2D7A000
unkown
page readonly
clean
231A6B02000
unkown
page read and write
clean
231A69F0000
heap default
page read and write
clean
2DFB000
unkown
page readonly
clean
6D55C000
unkown image
page read and write
clean
6D55C000
unkown image
page read and write
clean
2DC5000
unkown
page readonly
clean
2DCD000
unkown
page readonly
clean
2E62000
unkown
page readonly
clean
2D69000
unkown
page readonly
clean
2E45000
unkown
page readonly
clean
1E0000
unkown
page readonly
clean
7FF566B2F000
unkown
page readonly
clean
8C6227B000
unkown
page read and write
clean
6D460000
unkown image
page readonly
clean
7FF566B1A000
unkown
page readonly
clean
2DF6000
unkown
page readonly
clean
2DCD000
unkown
page readonly
clean
6D545000
unkown image
page read and write
clean
30B0000
unkown
page readonly
clean
2CA0000
unkown
page readonly
clean
970000
unkown
page readonly
clean
231A7740000
unkown
page readonly
clean
6D55D000
unkown image
page readonly
clean
2DC7000
unkown
page readonly
clean
8C6207E000
unkown
page read and write
clean
7FF5669CB000
unkown
page readonly
clean
6D4EA000
unkown image
page readonly
clean
6C0000
unkown
page readonly
clean
2DE1000
unkown
page readonly
clean
8EB000
unkown
page read and write
clean
231A7150000
unkown
page read and write
clean
2E62000
unkown
page readonly
clean
5A0000
heap private
page read and write
clean
32C0000
heap default
page read and write
clean
2DC5000
unkown
page readonly
clean
221000
unkown
page read and write
clean
2D7A000
unkown
page readonly
clean
2E45000
unkown
page readonly
clean
2E68000
unkown
page readonly
clean
6D460000
unkown image
page readonly
clean
6D55D000
unkown image
page readonly
clean
2C06000
unkown
page readonly
clean
950000
unkown
page read and write
clean
3210000
unkown
page read and write
clean
6D460000
unkown image
page readonly
clean
2E54000
unkown
page readonly
clean
8C625FE000
unkown
page read and write
clean
2E73000
unkown
page readonly
clean
2E54000
unkown
page readonly
clean
2D69000
unkown
page readonly
clean
7FF566B38000
unkown
page readonly
clean
There are 401 hidden memdumps, click here to show them.