IOCReport

loading gif

Processes

Path
Cmdline
Malicious
C:\Windows\System32\loaddll64.exe
loaddll64.exe 'C:\Users\user\Desktop\6d60000.dll'
clean
C:\Windows\System32\cmd.exe
cmd.exe /C rundll32.exe 'C:\Users\user\Desktop\6d60000.dll',#1
clean
C:\Windows\System32\rundll32.exe
rundll32.exe C:\Users\user\Desktop\6d60000.dll,#1
clean
C:\Windows\System32\rundll32.exe
rundll32.exe 'C:\Users\user\Desktop\6d60000.dll',#1
clean

Memdumps

Base Address
Regiontype
Protect
Malicious
7DF5DEF02000
unkown image
page readonly
clean
2561FE84000
unkown
page read and write
clean
240EB1F0000
unkown image
page readonly
clean
FAE65FE000
unkown
page read and write
clean
7FF5010F7000
unkown image
page readonly
clean
1BE55000000
unkown
page read and write
clean
7FF54B179000
unkown image
page readonly
clean
7DF528010000
unkown image
page readonly
clean
7FF55ECA8000
unkown image
page readonly
clean
7FF518D7F000
unkown image
page readonly
clean
2561FE64000
unkown
page read and write
clean
7FF520E60000
unkown image
page readonly
clean
7FF518DA6000
unkown image
page readonly
clean
7DF533262000
unkown image
page readonly
clean
240EF8EE000
unkown
page read and write
clean
7DF55D472000
unkown image
page readonly
clean
7FF57993D000
unkown image
page readonly
clean
2561FC70000
unkown image
page read and write
clean
1BE54EF0000
heap private
page read and write
clean
240EF750000
unkown
page read and write
clean
7FF5BAC8A000
unkown image
page readonly
clean
2561FCB0000
unkown image
page readonly
clean
7FF500D23000
unkown image
page readonly
clean
15C3F800000
unkown
page read and write
clean
7FF518AE7000
unkown image
page readonly
clean
7DF533280000
unkown image
page readonly
clean
7FF518BF8000
unkown image
page readonly
clean
1E1FBBF0000
unkown image
page read and write
clean
7FF55ECBA000
unkown image
page readonly
clean
15C3F730000
unkown image
page readonly
clean
7FF5B0DEE000
unkown image
page readonly
clean
7FF5BAC45000
unkown image
page readonly
clean
706E0BB000
unkown
page read and write
clean
7DF5CD0B2000
unkown image
page readonly
clean
7FF57A1AE000
unkown image
page readonly
clean
2B969C000
unkown
page read and write
clean
143D07C000
unkown
page read and write
clean
240EF744000
unkown
page read and write
clean
7FF520E2B000
unkown image
page readonly
clean
7FF5B0D08000
unkown image
page readonly
clean
7FF520B85000
unkown image
page readonly
clean
7FF500A54000
unkown image
page readonly
clean
240EA070000
unkown image
page readonly
clean
7FF5B0D02000
unkown image
page readonly
clean
7FF515A1A000
unkown image
page readonly
clean
7FF520F69000
unkown image
page readonly
clean
240EA302000
unkown
page read and write
clean
7FF5B674D000
unkown image
page readonly
clean
2A7AF718000
unkown
page read and write
clean
706EB7E000
unkown
page read and write
clean
15C3FA00000
unkown image
page readonly
clean
240EF760000
unkown
page read and write
clean
2561FE6A000
unkown
page read and write
clean
1D825C66000
unkown
page read and write
clean
7FF5009C4000
unkown image
page readonly
clean
240EF72E000
unkown
page read and write
clean
7FF5BAD21000
unkown image
page readonly
clean
7FF5B671E000
unkown image
page readonly
clean
2B979F000
unkown
page read and write
clean
2561FE7D000
unkown
page read and write
clean
7DF5DEF00000
unkown image
page readonly
clean
7FF51A154000
unkown image
page readonly
clean
7FF5BABD0000
unkown image
page readonly
clean
798C87A000
unkown
page read and write
clean
7FF57A136000
unkown image
page readonly
clean
252ACA4A000
unkown
page read and write
clean
7FF5B66E0000
unkown image
page readonly
clean
1FB5DE52000
unkown
page read and write
clean
240EF8FE000
unkown
page read and write
clean
4B7FBFE000
unkown
page read and write
clean
7FF5B0D6C000
unkown image
page readonly
clean
7DF5DEF00000
unkown image
page readonly
clean
7FF57A0F5000
unkown image
page readonly
clean