Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Users\user\Desktop\RICHIESTA DI OFFERTA.exe
|
'C:\Users\user\Desktop\RICHIESTA DI OFFERTA.exe'
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
https://bamontarquitectura.com.mx/IRANSAT_kowbB4.bi}
|
Memdumps
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
---|---|---|---|---|
460000
|
unkown
|
page execute and read and write
|
||
3122000
|
unkown
|
page readonly
|
||
400000
|
unkown image
|
page readonly
|
||
3D0000
|
unkown
|
page read and write
|
||
2BC0000
|
unkown
|
page readonly
|
||
31B5000
|
unkown
|
page readonly
|
||
4D4000
|
heap private
|
page read and write
|
||
18C000
|
unkown
|
page read and write
|
||
590000
|
heap private
|
page read and write
|
||
31C6000
|
unkown
|
page readonly
|
||
322D000
|
unkown
|
page readonly
|
||
25B7000
|
heap private
|
page read and write
|
||
433000
|
unkown image
|
page read and write
|
||
3265000
|
unkown
|
page readonly
|
||
3279000
|
unkown
|
page readonly
|
||
6E0000
|
unkown
|
page readonly
|
||
604000
|
heap default
|
page read and write
|
||
340000
|
unkown
|
page readonly
|
||
27A0000
|
unkown
|
page read and write
|
||
450000
|
unkown
|
page readonly
|
||
3226000
|
unkown
|
page readonly
|
||
3295000
|
unkown
|
page readonly
|
||
32A2000
|
unkown
|
page readonly
|
||
3144000
|
unkown
|
page readonly
|
||
435000
|
unkown image
|
page readonly
|
||
5E7000
|
heap default
|
page read and write
|
||
2F42000
|
unkown
|
page readonly
|
||
32A9000
|
unkown
|
page readonly
|
||
3249000
|
unkown
|
page readonly
|
||
2B0000
|
heap private
|
page read and write
|
||
3042000
|
unkown
|
page readonly
|
||
3196000
|
unkown
|
page readonly
|
||
1E00000
|
unkown
|
page read and write
|
||
31F6000
|
unkown
|
page readonly
|
||
2F48000
|
unkown
|
page readonly
|
||
3142000
|
unkown
|
page readonly
|
||
400000
|
unkown image
|
page readonly
|
||
4DB000
|
heap private
|
page read and write
|
||
20000
|
unkown
|
page read and write
|
||
2200000
|
unkown
|
page readonly
|
||
31A2000
|
unkown
|
page readonly
|
||
26A2000
|
heap private
|
page read and write
|
||
230000
|
unkown
|
page read and write
|
||
7EFDF000
|
unkown
|
page read and write
|
||
3490000
|
unkown
|
page readonly
|
||
220000
|
unkown
|
page execute read
|
||
32C5000
|
unkown
|
page readonly
|
||
3470000
|
unkown
|
page readonly
|
||
3229000
|
unkown
|
page readonly
|
||
4D0000
|
heap private
|
page read and write
|
||
3E0000
|
unkown
|
page write copy
|
||
2684000
|
heap private
|
page read and write
|
||
259A000
|
heap private
|
page read and write
|
||
401000
|
unkown image
|
page execute read
|
||
3172000
|
unkown
|
page readonly
|
||
3124000
|
unkown
|
page readonly
|
||
31D2000
|
unkown
|
page readonly
|
||
2560000
|
heap private
|
page read and write
|
||
3272000
|
unkown
|
page readonly
|
||
401000
|
unkown image
|
page execute read
|
||
400000
|
unkown image
|
page readonly
|
||
860000
|
unkown
|
page readonly
|
||
2680000
|
heap private
|
page read and write
|
||
435000
|
unkown image
|
page readonly
|
||
4D8000
|
heap private
|
page read and write
|
||
2BA0000
|
unkown
|
page readonly
|
||
3202000
|
unkown
|
page readonly
|
||
3242000
|
unkown
|
page readonly
|
||
34B0000
|
unkown
|
page readonly
|
||
3185000
|
unkown
|
page readonly
|
||
3215000
|
unkown
|
page readonly
|
||
26C0000
|
unkown
|
page readonly
|
||
2590000
|
heap private
|
page read and write
|
||
3104000
|
unkown
|
page readonly
|
||
1B0000
|
unkown
|
page readonly
|
||
A00000
|
unkown
|
page readonly
|
||
5E0000
|
heap default
|
page read and write
|
||
3102000
|
unkown
|
page readonly
|
||
31E5000
|
unkown
|
page readonly
|
||
3432000
|
unkown
|
page readonly
|
||
2C0000
|
unkown
|
page read and write
|
||
350000
|
heap default
|
page read and write
|
||
3F0000
|
unkown
|
page readonly
|
||
89000
|
unkown
|
page read and write
|
There are 74 hidden memdumps, click here to show them.