Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
terraform.exe
|
PE32+ executable (console) x86-64 (stripped to external PDB), for MS Windows
|
initial sample
|
||
C:\Users\user\AppData\Roaming\terraform.d\checkpoint_signature
|
ASCII text
|
dropped
|
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Users\user\Desktop\terraform.exe
|
C:\Users\user\Desktop\terraform.exe
|
||
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
|
unknown
|
||
https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstoreThe
|
unknown
|
||
https://kubernetes.io/docs/concepts/storage/volumes#hostpathUnschedulable
|
unknown
|
||
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadataDEPRECAT
|
unknown
|
||
https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/can
|
unknown
|
||
https://kubernetes.io/docs/concepts/nodes/node/#phase
|
unknown
|
||
https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#pod-templateOnly
|
unknown
|
||
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.
|
unknown
|
||
https://kubernetes.io/docs/concepts/storage/volumes#emptydirNo
|
unknown
|
||
https://kubernetes.io/docs/concepts/nodes/node/#addresses
|
unknown
|
||
https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooksUncountedTe
|
unknown
|
||
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resourcesexterna
|
unknown
|
||
https://examples.k8s.io/volumes/glusterfs/README.md#create-a-podpodIPs
|
unknown
|
||
https://git.k8s.io/enhancements/keps/sig-node/585-runtime-class
|
unknown
|
||
https://kubernetes.io/docs/concepts/storage/persistent-volumes#binding
|
unknown
|
||
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadataPersiste
|
unknown
|
||
https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectorsThe
|
unknown
|
||
https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#pod-templateThe
|
unknown
|
||
https://developers.google.com/protocol-buffers/docs/reference/go/faq#namespace-conflictinvalid
|
unknown
|
||
https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstorename
|
unknown
|
||
https://kubernetes.io/docs/concepts/storage/volumes#nfsgetting
|
unknown
|
||
https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/Route
|
unknown
|
||
https://kubernetes.io/docs/concepts/containers/imagesError
|
unknown
|
||
https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/
|
unknown
|
||
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
|
unknown
|
||
https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
|
unknown
|
||
https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-typesWi
|
unknown
|
||
https://developers.google.com/accounts/docs/application-default-credentialsk8s.io.api.admissionregis
|
unknown
|
||
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata.RuleWit
|
unknown
|
||
https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskData
|
unknown
|
||
https://kubernetes.io/docs/concepts/workloads/pods/init-containers/
|
unknown
|
||
https://kubernetes.io/docs/concepts/storage/volumes#hostpathTerraform
|
unknown
|
||
https://github.com/kubernetes/apiserver/blob/master/pkg/authentication/user/user.go
|
unknown
|
||
https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectorsGCEPersiste
|
unknown
|
||
https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/Optional:
|
unknown
|
||
https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/HostAliases
|
unknown
|
||
https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskNodeStageSecretRef
|
unknown
|
||
https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-itPhase
|
unknown
|
||
https://%s.amazonaws.com/%s/%shttps://%s.cos.%s.myqcloud.comhttps://batch.chinacloudapi.cnhttps://ba
|
unknown
|
||
https://kubernetes.io/docs/concepts/scheduling-eviction/pod-overhead/
|
unknown
|
||
https://issues.k8s.io/61966The
|
unknown
|
||
https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectorspersistentV
|
unknown
|
||
https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
|
unknown
|
||
https://tools.ietf.org/html/rfc3339)
|
unknown
|
||
https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistent-volumes
|
unknown
|
||
https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probesRegistry
|
unknown
|
||
https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-phaseThe
|
unknown
|
||
https://examples.k8s.io/volumes/rbd/README.md#how-to-use-itEcsContainer
|
unknown
|
||
http://169.254.170.2i/o
|
unknown
|
||
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-cont
|
unknown
|
||
https://tools.ietf.org/html/rfc4122#section-4.3)
|
unknown
|
||
https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/Optional.
|
unknown
|
||
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
|
unknown
|
||
https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistent-volumesOwnerReference
|
unknown
|
||
https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxiesno
|
unknown
|
||
https://pkg.go.dev/cloud.google.com/go/storage#hdr-Credential_requirements_for_
|
unknown
|
||
https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#restart-policyAPIVersion
|
unknown
|
||
https://github.com/opencontainers/runtime-spec/blob/master/config.md#platform-specific-configuration
|
unknown
|
||
https://examples.k8s.io/volumes/iscsi/README.mdResource
|
unknown
|
||
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kindsDestr
|
unknown
|
||
https://examples.k8s.io/mysql-cinder-pd/README.mdA
|
unknown
|
||
https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids
|
unknown
|
||
http://pr.k8s.io/79391
|
unknown
|
||
https://www.terraform.io/downloads.htmlThe
|
unknown
|
||
http://kubernetes.io/docs/user-guide/identifiers#names
|
unknown
|
||
https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies
|
unknown
|
||
https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims00c6858e06b7040
|
unknown
|
||
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadataAllocata
|
unknown
|
||
https://www.terraform.io/docs/cloud/workspaces/naming.html
|
unknown
|
||
https://www.terraform.io/language/provider-checksum-verification
|
unknown
|
||
https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probesdefaultRuntimeClass
|
unknown
|
||
https://golang.org/pkg/unicode/#IsPrint.
|
unknown
|
||
https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-itContainer
|
unknown
|
||
https://kubernetes.io/docs/concepts/policy/resource-quotas/type
|
unknown
|
||
https://examples.k8s.io/volumes/rbd/README.mdThe
|
unknown
|
||
https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller/#what-is-a-replicati
|
unknown
|
||
https://examples.k8s.io/mysql-cinder-pd/README.mdAt
|
unknown
|
||
https://intl.cloud.tencent.com/document/product/598/10588).If
|
unknown
|
||
https://examples.k8s.io/volumes/glusterfs/README.mdThe
|
unknown
|
||
https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaimsDaemonSetUpdate
|
unknown
|
||
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadataThe
|
unknown
|
||
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadatauid
|
unknown
|
||
https://learn.hashicorp.com/collections/terraform/provision
|
unknown
|
||
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadataCurrent
|
unknown
|
||
https://kubernetes.io/docs/concepts/architecture/nodes/#capacity
|
unknown
|
||
https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/
|
unknown
|
||
http://www.iana.org/assignments/service-names).
|
unknown
|
||
https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectorstUnknowntSt
|
unknown
|
||
https://kubernetes.io/docs/concepts/containers/images#specifying-imagepullsecrets-on-a-podDEPRECATED
|
unknown
|
||
https://kubernetes.io/docs/concepts/configuration/assign-pod-node/Adapts
|
unknown
|
||
https://kubernetes-csi.github.io/docs/ephemeral-local-volumes.html
|
unknown
|
||
https://yaml.org/spec/1.2/spec.html)
|
unknown
|
||
https://kubernetes.io/docs/tasks/administer-cluster/namespaces/observedGeneration
|
unknown
|
||
https://github.com/grpc/grpc/blob/master/doc/health-checking.md).
|
unknown
|
||
https://kubernetes.io/docs/concepts/configuration/secretThe
|
unknown
|
||
https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooksresource
|
unknown
|
||
https://tools.ietf.org/html/rfc4648#section-4APIVersion
|
unknown
|
||
https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
|
unknown
|
||
https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md#data-types
|
unknown
|
||
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-statust
|
unknown
|
There are 90 hidden URLs, click here to show them.
Memdumps
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
---|---|---|---|---|
5105000
|
unkown
|
page write copy
|
||
4F93000
|
unkown
|
page write copy
|
||
3D37000
|
unkown
|
page readonly
|
||
3D5B000
|
unkown
|
page readonly
|
||
3D3A000
|
unkown
|
page readonly
|
||
3D58000
|
unkown
|
page readonly
|
||
3D24000
|
unkown
|
page readonly
|
||
1321000
|
unkown
|
page execute read
|
||
1321000
|
unkown
|
page execute read
|
||
518B000
|
unkown
|
page readonly
|
||
3D41000
|
unkown
|
page readonly
|
||
3D6F000
|
unkown
|
page readonly
|
||
50CB000
|
unkown
|
page write copy
|
||
3A3C000
|
unkown
|
page readonly
|
||
3D3D000
|
unkown
|
page readonly
|
||
477D000
|
unkown
|
page readonly
|
||
3D68000
|
unkown
|
page readonly
|
||
3D55000
|
unkown
|
page readonly
|
||
1D21000
|
unkown
|
page execute read
|
||
508B000
|
unkown
|
page write copy
|
||
303C000
|
unkown
|
page readonly
|
||
3D2F000
|
unkown
|
page readonly
|
||
2721000
|
unkown
|
page execute read
|
||
3D6C000
|
unkown
|
page readonly
|
||
3D5D000
|
unkown
|
page readonly
|
||
518A000
|
unkown
|
page write copy
|
||
3D63000
|
unkown
|
page readonly
|
||
3CBB000
|
unkown
|
page readonly
|
||
3D29000
|
unkown
|
page readonly
|
||
3D5F000
|
unkown
|
page readonly
|
||
1320000
|
unkown
|
page readonly
|
||
3D6A000
|
unkown
|
page readonly
|
||
3D7D000
|
unkown
|
page readonly
|
There are 23 hidden memdumps, click here to show them.