IOCReport

loading gif

Files

File Path
Type
Category
Malicious
http://covid-19.in.th/
URL
initial url
 clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\8120Q1N4\www.cloudflare[1].xml
ASCII text, with no line terminators
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{FBE078CF-E967-11EB-90E4-ECF4BB862DED}.dat
Microsoft Word Document
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{FBE078D1-E967-11EB-90E4-ECF4BB862DED}.dat
Microsoft Word Document
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{FBE078D2-E967-11EB-90E4-ECF4BB862DED}.dat
Microsoft Word Document
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\ynfz0jx\imagestore.dat
data
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\5xx-error-landing[1].htm
HTML document, UTF-8 Unicode text, with very long lines
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\ao-com[1].svg
SVG Scalable Vector Graphics image
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\discord[1].svg
SVG Scalable Vector Graphics image
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\e34df59b-4a48-4bf9-b2b5-7a4bb09cd231[1].json
ASCII text, with very long lines, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\en[1].json
UTF-8 Unicode text, with very long lines, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\log-me-in[1].svg
SVG Scalable Vector Graphics image
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\logo-cloudflare[1].svg
SVG Scalable Vector Graphics image
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\mapbox[1].svg
SVG Scalable Vector Graphics image
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\marketo[1].svg
SVG Scalable Vector Graphics image
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\otBannerSdk[1].js
ASCII text, with very long lines
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\otFlat[1].json
ASCII text, with very long lines
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\5xx-error-screenshot[1].png
PNG image data, 3473 x 2127, 8-bit/color RGB, non-interlaced
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\api[1].js
UTF-8 Unicode text, with very long lines
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\cookie-banner-close[1].svg
SVG Scalable Vector Graphics image
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\crunchbase[1].svg
SVG Scalable Vector Graphics image
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\favicon[1].ico
MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\library-of-congress[1].svg
SVG Scalable Vector Graphics image
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\logo-cloudflare-dark[1].svg
SVG Scalable Vector Graphics image
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\montecito[1].svg
SVG Scalable Vector Graphics image
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\okcupid[1].svg
SVG Scalable Vector Graphics image
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\trace[1].txt
ASCII text
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\udacity[1].svg
SVG Scalable Vector Graphics image
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\zendesk[1].svg
SVG Scalable Vector Graphics image
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\api[1].js
UTF-8 Unicode text, with very long lines
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\application-ee0728fba2.min[1].css
UTF-8 Unicode text, with very long lines, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\chunk-01f71c423e068664057e[1].js
UTF-8 Unicode text, with very long lines, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\chunk-06380521ff19239efe05[1].js
ASCII text, with very long lines, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\chunk-1c4da1169909c3c43069[1].js
ASCII text, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\chunk-27eef9fa207b28718df2[1].js
ASCII text, with very long lines
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\chunk-3125ea56e87c986b133e[1].js
ASCII text, with very long lines, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\chunk-55d37f7935d3778f0709[1].js
ASCII text, with very long lines
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\chunk-5d677ef1b4eeb74635d3[1].js
UTF-8 Unicode text, with very long lines
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\digital-ocean[1].svg
SVG Scalable Vector Graphics image
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\otPcCenter[1].json
ASCII text, with very long lines
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\chunk-1560bda32b9d6d231e95[1].js
ASCII text, with very long lines, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\chunk-232ffa51e57f882f0534[1].js
UTF-8 Unicode text, with very long lines
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\chunk-55ad6e1817237ece29a0[1].js
ASCII text, with very long lines, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\chunk-5c6ec7c6f9d0b6f9dd57[1].js
ASCII text, with very long lines, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\chunk-5f991135348b5b16cb1b[1].js
HTML document, UTF-8 Unicode text, with very long lines, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\chunk-962e1864decb73b3a75a[1].js
ASCII text, with very long lines, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\chunk-cc3c9c6363f24544e951[1].js
ASCII text, with very long lines, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\chunk-cd8895b507ee9e702e17[1].js
ASCII text, with very long lines, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\chunk-e06d79a8c06c0d46865a[1].js
ASCII text, with very long lines
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\chunk-e50bafad0559f7d0a0f0[1].js
ASCII text, with very long lines, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\chunk-e6a0177c9a8b595a3dd2[1].js
UTF-8 Unicode text, with very long lines
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\main[1].css
ASCII text, with very long lines
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\otSDKStub[1].js
ASCII text, with very long lines
downloaded
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\runtime-6a16446847617098e330[1].js
ASCII text, with very long lines, with no line terminators
downloaded
 clean
C:\Users\user\AppData\Local\Temp\~DF57B235A356874BB7.TMP
data
dropped
 clean
C:\Users\user\AppData\Local\Temp\~DF64BF8B4AEFB55D6C.TMP
data
dropped
 clean
C:\Users\user\AppData\Local\Temp\~DFF8637F91E2C9D542.TMP
data
dropped
 clean
There are 47 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\internet explorer\iexplore.exe
'C:\Program Files\Internet Explorer\iexplore.exe' -Embedding
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:2396 CREDAT:17410 /prefetch:2
 clean

URLs

Name
IP
Malicious
http://jquery.org/license
unknown
 clean
http://covid-19.in.th/
172.67.159.246
 clean
https://assets.www.cloudflare.com/js/chunk-01f71c423e068664057e.js
unknown
 clean
https://assets.www.cloudflare.com/js/chunk-232ffa51e57f882f0534.js
unknown
 clean
https://assets.www.cloudflare.com/js/chunk-1c4da1169909c3c43069.js
unknown
 clean
http://greensock.com/standard-license
unknown
 clean
http://jqueryui.com
unknown
 clean
https://assets.www.cloudflare.com/js/chunk-5d677ef1b4eeb74635d3.js
unknown
 clean
https://assets.www.cloudflare.com/js/chunk-55d37f7935d3778f0709.js
unknown
 clean
https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location
unknown
 clean
https://www.cloudflare.com/vendor/onetrust/scripttemplates/otSDKStub.js
unknown
 clean
https://github.com/polygonplanet/weakmap-polyfill
unknown
 clean
https://www.cloudflare.com/favicon.ico~
unknown
 clean
https://www.cloudflare.com/img/cf-facebook-card.png
unknown
 clean
http://schema.org/Article
unknown
 clean
http://covid-19.in.th/cdn-cgi/styles/main.css
172.67.159.246
 clean
http://schema.org
unknown
 clean
https://cdn.cookielaw.org/vendorlist/googleData.json
unknown
 clean
https://www.linkedin.com/company/cloudflare
unknown
 clean
https://assets.www.cloudflare.com/js/chunk-1560bda32b9d6d231e95.js
unknown
 clean
https://cdn.cookielaw.org/vendorlist/iabData.json
unknown
 clean
https://vimeo.com/api/oembed.json?url=
unknown
 clean
https://assets.www.cloudflare.com/js/chunk-55ad6e1817237ece29a0.js
unknown
 clean
http://covid-19.in.th/cdn-cgi/bm/cv/669835187/api.js
172.67.159.246
 clean
https://cdn.cookielaw.org/vendorlist/iab2Data.json
unknown
 clean
https://assets.www.cloudflare.com/js/chunk-06380521ff19239efe05.js
unknown
 clean
https://assets.www.cloudflare.com/js/chunk-cc3c9c6363f24544e951.js
unknown
 clean
https://www.cloudflare.com/img/cf-twitter-card.png
unknown
 clean
http://greensock.com
unknown
 clean
http://www.twitter.com/cloudflare
unknown
 clean
https://assets.www.cloudflare.com/js/chunk-962e1864decb73b3a75a.js
unknown
 clean
https://assets.www.cloudflare.com/js/chunk-e6a0177c9a8b595a3dd2.js
unknown
 clean
http://covid-19.in.th/N
unknown
 clean
https://assets.www.cloudflare.com/js/chunk-5c6ec7c6f9d0b6f9dd57.js
unknown
 clean
https://assets.www.cloudflare.com/css/application-ee0728fba2.min.css
unknown
 clean
https://github.com/imakewebthings/waypoints/blob/master/licenses.txt
unknown
 clean
http://getify.mit-license.org
unknown
 clean
https://assets.www.cloudflare.com/js/chunk-e06d79a8c06c0d46865a.js
unknown
 clean
https://github.com/antoinevastel/picasso-like-canvas-fingerprinting
unknown
 clean
http://api.jqueryui.com/category/ui-core/
unknown
 clean
http://covid-19.in.th/cdn-cgi/bm/cv/result?req_id=6719d64d08990eb7
172.67.159.246
 clean
https://www.cloudflare.com
unknown
 clean
https://assets.www.cloudflare.com/js/chunk-27eef9fa207b28718df2.js
unknown
 clean
http://covid-19.in.th/
clean
http://covid-19.in.th/Root
unknown
 clean
https://assets.www.cloudflare.com/js/chunk-5f991135348b5b16cb1b.js
unknown
 clean
https://jquery.org/license
unknown
 clean
https://www.cloudflare.com/5xx-error-landing/
clean
http://plus.google.com/
unknown
 clean
https://jquery.com/
unknown
 clean
https://assets.www.cloudflare.com/js/runtime-6a16446847617098e330.js
unknown
 clean
https://www.cloudflare.com/5xx-error-landing/
unknown
 clean
http://www.youtube.com/user/CloudflareTeam
unknown
 clean
https://www.cloudflare.com/favicon.ico
unknown
 clean
http://www.cloudflare.com
unknown
 clean
https://sizzlejs.com/
unknown
 clean
https://js.foundation/
unknown
 clean
https://assets.www.cloudflare.com/js/chunk-3125ea56e87c986b133e.js
unknown
 clean
https://assets.www.cloudflare.com/js/chunk-cd8895b507ee9e702e17.js
unknown
 clean
https://assets.www.cloudflare.com/js/chunk-e50bafad0559f7d0a0f0.js
unknown
 clean
There are 50 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
www.cloudflare.com
104.16.124.96
 clean
assets.www.cloudflare.com
104.16.124.96
 clean
covid-19.in.th
172.67.159.246
 clean
favicon.ico
unknown
 clean

IPs

IP
Domain
Country
Malicious
172.67.159.246
covid-19.in.th
United States
clean
104.16.124.96
www.cloudflare.com
United States
clean

Registry

Path
Value
Malicious
C:\Program Files\internet explorer\iexplore.exe
{FBE078CF-E967-11EB-90E4-ECF4BB862DED}
 clean
C:\Program Files\internet explorer\iexplore.exe
AdminActive
 clean
C:\Program Files\internet explorer\iexplore.exe
Count
 clean
C:\Program Files\internet explorer\iexplore.exe
Time
 clean
C:\Program Files\internet explorer\iexplore.exe
Blocked
 clean
C:\Program Files\internet explorer\iexplore.exe
Count
 clean
C:\Program Files\internet explorer\iexplore.exe
Time
 clean
C:\Program Files\internet explorer\iexplore.exe
Count
 clean
C:\Program Files\internet explorer\iexplore.exe
Time
 clean
C:\Program Files\internet explorer\iexplore.exe
LoadTimeArray
 clean
C:\Program Files\internet explorer\iexplore.exe
LoadTimeArray
 clean
C:\Program Files\internet explorer\iexplore.exe
Count
 clean
C:\Program Files\internet explorer\iexplore.exe
Time
 clean
C:\Program Files\internet explorer\iexplore.exe
Blocked
 clean
C:\Program Files\internet explorer\iexplore.exe
Count
 clean
C:\Program Files\internet explorer\iexplore.exe
Time
 clean
C:\Program Files\internet explorer\iexplore.exe
LoadTimeArray
 clean
C:\Program Files\internet explorer\iexplore.exe
Count
 clean
C:\Program Files\internet explorer\iexplore.exe
Time
 clean
C:\Program Files\internet explorer\iexplore.exe
LoadTimeArray
 clean
C:\Program Files\internet explorer\iexplore.exe
DecayDateQueue
 clean
C:\Program Files\internet explorer\iexplore.exe
LastProcessed
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
@C:\Windows\System32\ieframe.dll,-912
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
@C:\Windows\System32\ieframe.dll,-903
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NumberOfSubdomains
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
NULL
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
Total
 clean
There are 27 hidden registries, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
7FF5DA1BD000
unkown
page readonly
 clean
22003424000
unkown
page read and write
 clean
22003513000
unkown
page read and write
 clean
7FF5DA326000
unkown
page readonly
 clean
7FF5DA39E000
unkown
page readonly
 clean
7FF5DA2B8000
unkown
page readonly
 clean
7FF5EADD6000
unkown
page readonly
 clean
3E0F7FB000
unkown
page read and write
 clean
7FF5EAE04000
unkown
page readonly
 clean
22003A70000
unkown
page readonly
 clean
7FF5D9EB0000
unkown
page readonly
 clean
7FF5DA2E5000
unkown
page readonly
 clean
7FF5DA12F000
unkown
page readonly
 clean
3E0F29B000
unkown
page read and write
 clean
22003481000
unkown
page read and write
 clean
16266462000
unkown
page read and write
 clean
16266429000
unkown
page read and write
 clean
7FF5D9EA0000
unkown
page readonly
 clean
7FF5EAE00000
unkown
page readonly
 clean
7FF5EACA7000
unkown
page readonly
 clean
16266508000
unkown
page read and write
 clean
16266481000
unkown
page read and write
 clean
7FF5DA1E7000
unkown
page readonly
 clean
16266370000
unkown
page readonly
 clean
3E0F39E000
unkown
page read and write
 clean
7FF5DA0CA000
unkown
page readonly
 clean
7FF5DA2B2000
unkown
page readonly
 clean
7FF5DA1B3000
unkown
page readonly
 clean
944D6FE000
unkown
page read and write
 clean
7FF5EADF5000
unkown
page readonly
 clean
7FF5EAE61000
unkown
page readonly
 clean
7FF5EAC73000
unkown
page readonly
 clean
7FF5DA347000
unkown
page readonly
 clean
7FF5EAB8A000
unkown
page readonly
 clean
7FF5DA2F9000
unkown
page readonly
 clean
1626645B000
unkown
page read and write
 clean
7FF5EABEF000
unkown
page readonly
 clean
22003320000
heap default
page read and write
 clean
7FF5DA2CA000
unkown
page readonly
 clean
7FF5EAC58000
unkown
page readonly
 clean
7FF5DA344000
unkown
page readonly
 clean
7FF5EADAF000
unkown
page readonly
 clean
22003C02000
unkown
page read and write
 clean
7FF5EA95A000
unkown
page readonly
 clean
16266453000
unkown
page read and write
 clean
7FF5DA17A000
unkown
page readonly
 clean
7FF5DA2A2000
unkown
page readonly
 clean
7FF5EA970000
unkown
page readonly
 clean
16266E00000
unkown
page readonly
 clean
16266500000
unkown
page read and write
 clean
944D67B000
unkown
page read and write
 clean
16266400000
unkown
page read and write
 clean
7FF5EADE6000
unkown
page readonly
 clean
7FF5DA2A0000
unkown
page readonly
 clean
7FF5D9E9A000
unkown
page readonly
 clean
7FF5EA54E000
unkown
page readonly
 clean
7FF5EAD72000
unkown
page readonly
 clean
944DA77000
unkown
page read and write
 clean
7FF5EAD9E000
unkown
page readonly
 clean
944D97B000
unkown
page read and write
 clean
7FF5EAC3A000
unkown
page readonly
 clean
220039A0000
unkown
page readonly
 clean
7FF5DA31C000
unkown
page readonly
 clean
16266502000
unkown
page read and write
 clean
22003400000
unkown
page read and write
 clean
16266390000
unkown
page read and write
 clean
3E0F9FE000
unkown
page read and write
 clean
7FF5EAD78000
unkown
page readonly
 clean
7FF5EA960000
unkown
page readonly
 clean
7FF5DA3A1000
unkown
page readonly
 clean
7FF5EA981000
unkown
page readonly
 clean
2200343C000
unkown
page read and write
 clean
7FF5DA198000
unkown
page readonly
 clean
7FF5DA3A9000
unkown
page readonly
 clean
7FF5EAE69000
unkown
page readonly
 clean
7FF5DA2EF000
unkown
page readonly
 clean
7FF5DA2B6000
unkown
page readonly
 clean
7FF5EADDC000
unkown
page readonly
 clean
22003E00000
unkown
page readonly
 clean
16266380000
unkown
page readonly
 clean
1626645F000
unkown
page read and write
 clean
16266600000
unkown
page readonly
 clean
7FF5EACDC000
unkown
page readonly
 clean
22003447000
unkown
page read and write
 clean
7FF5EADCD000
unkown
page readonly
 clean
16266513000
unkown
page read and write
 clean
944D77E000
unkown
page read and write
 clean
7FF5EADA5000
unkown
page readonly
 clean
7FF5EADEC000
unkown
page readonly
 clean
22003600000
unkown
page readonly
 clean
1626645D000
unkown
page read and write
 clean
7FF5EAC2E000
unkown
page readonly
 clean
944D87C000
unkown
page read and write
 clean
7FF5DA32C000
unkown
page readonly
 clean
7FF5EAE07000
unkown
page readonly
 clean
7FF5DA21C000
unkown
page readonly
 clean
944DC7E000
unkown
page read and write
 clean
220032C0000
heap private
page read and write
 clean
162662A0000
unkown
page readonly
 clean
7FF5EAE5E000
unkown
page readonly
 clean
16266230000
heap private
page read and write
 clean
7FF5EADB9000
unkown
page readonly
 clean
7FF5D9EC1000
unkown
page readonly
 clean
7FF5EAD62000
unkown
page readonly
 clean
22003413000
unkown
page read and write
 clean
7FF5EACA1000
unkown
page readonly
 clean
944DB7F000
unkown
page read and write
 clean
7FF5DA1E1000
unkown
page readonly
 clean
3E0F6F5000
unkown
page read and write
 clean
3E0FAFF000
unkown
page read and write
 clean
7FF5DA2DE000
unkown
page readonly
 clean
16266460000
unkown
page read and write
 clean
7FF5EAE69000
unkown
page readonly
 clean
7FF5DA335000
unkown
page readonly
 clean
7FF5EAD76000
unkown
page readonly
 clean
16266A60000
unkown
page readonly
 clean
7FF5DA340000
unkown
page readonly
 clean
22003A80000
unkown
page read and write
 clean
16266C02000
unkown
page read and write
 clean
3E0F8F7000
unkown
page read and write
 clean
16266413000
unkown
page read and write
 clean
22003502000
unkown
page read and write
 clean
7FF5DA316000
unkown
page readonly
 clean
1626643C000
unkown
page read and write
 clean
3E0F31E000
unkown
page read and write
 clean
22003800000
unkown
page readonly
 clean
16266290000
heap default
page read and write
 clean
7FF5DA16E000
unkown
page readonly
 clean
7FF5EAD8A000
unkown
page readonly
 clean
1626645C000
unkown
page read and write
 clean
2200346F000
unkown
page read and write
 clean
7FF5DA30D000
unkown
page readonly
 clean
7FF5EAD60000
unkown
page readonly
 clean
22003330000
unkown
page readonly
 clean
7FF5DA3A9000
unkown
page readonly
 clean
There are 125 hidden memdumps, click here to show them.

DOM / HTML

URL
Malicious
https://www.cloudflare.com/5xx-error-landing/
 clean
http://covid-19.in.th/
 clean