IOC Report
terraform.exe

loading gif

Files

File Path
Type
Category
Malicious
terraform.exe
PE32+ executable (console) x86-64 (stripped to external PDB), for MS Windows
initial sample
C:\Users\user\AppData\Roaming\terraform.d\checkpoint_signature
ASCII text
dropped

Processes

Path
Cmdline
Malicious
C:\Users\user\Desktop\terraform.exe
C:\Users\user\Desktop\terraform.exe
C:\Windows\System32\conhost.exe
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1

URLs

Name
IP
Malicious
https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims
unknown
https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstoreThe
unknown
https://kubernetes.io/docs/concepts/storage/volumes#hostpathUnschedulable
unknown
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadataDEPRECAT
unknown
https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/can
unknown
https://kubernetes.io/docs/concepts/nodes/node/#phase
unknown
https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#pod-templateOnly
unknown
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-status.
unknown
https://kubernetes.io/docs/concepts/storage/volumes#emptydirNo
unknown
https://kubernetes.io/docs/concepts/nodes/node/#addresses
unknown
https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooksUncountedTe
unknown
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resourcesexterna
unknown
https://examples.k8s.io/volumes/glusterfs/README.md#create-a-podpodIPs
unknown
https://git.k8s.io/enhancements/keps/sig-node/585-runtime-class
unknown
https://kubernetes.io/docs/concepts/storage/persistent-volumes#binding
unknown
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadataPersiste
unknown
https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectorsThe
unknown
https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller#pod-templateThe
unknown
https://developers.google.com/protocol-buffers/docs/reference/go/faq#namespace-conflictinvalid
unknown
https://kubernetes.io/docs/concepts/storage/volumes#awselasticblockstorename
unknown
https://kubernetes.io/docs/concepts/storage/volumes#nfsgetting
unknown
https://kubernetes.io/docs/concepts/workloads/controllers/jobs-run-to-completion/Route
unknown
https://kubernetes.io/docs/concepts/containers/imagesError
unknown
https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/
unknown
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
unknown
https://examples.k8s.io/volumes/rbd/README.md#how-to-use-it
unknown
https://kubernetes.io/docs/concepts/services-networking/service/#publishing-services-service-typesWi
unknown
https://developers.google.com/accounts/docs/application-default-credentialsk8s.io.api.admissionregis
unknown
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata.RuleWit
unknown
https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskData
unknown
https://kubernetes.io/docs/concepts/workloads/pods/init-containers/
unknown
https://kubernetes.io/docs/concepts/storage/volumes#hostpathTerraform
unknown
https://github.com/kubernetes/apiserver/blob/master/pkg/authentication/user/user.go
unknown
https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectorsGCEPersiste
unknown
https://kubernetes.io/docs/concepts/workloads/controllers/daemonset/Optional:
unknown
https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/HostAliases
unknown
https://kubernetes.io/docs/concepts/storage/volumes#gcepersistentdiskNodeStageSecretRef
unknown
https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-itPhase
unknown
https://%s.amazonaws.com/%s/%shttps://%s.cos.%s.myqcloud.comhttps://batch.chinacloudapi.cnhttps://ba
unknown
https://kubernetes.io/docs/concepts/scheduling-eviction/pod-overhead/
unknown
https://issues.k8s.io/61966The
unknown
https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectorspersistentV
unknown
https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#names
unknown
https://tools.ietf.org/html/rfc3339)
unknown
https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistent-volumes
unknown
https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probesRegistry
unknown
https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#pod-phaseThe
unknown
https://examples.k8s.io/volumes/rbd/README.md#how-to-use-itEcsContainer
unknown
http://169.254.170.2i/o
unknown
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#concurrency-cont
unknown
https://tools.ietf.org/html/rfc4122#section-4.3)
unknown
https://kubernetes.io/docs/concepts/overview/working-with-objects/namespaces/Optional.
unknown
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadata
unknown
https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistent-volumesOwnerReference
unknown
https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxiesno
unknown
https://pkg.go.dev/cloud.google.com/go/storage#hdr-Credential_requirements_for_
unknown
https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#restart-policyAPIVersion
unknown
https://github.com/opencontainers/runtime-spec/blob/master/config.md#platform-specific-configuration
unknown
https://examples.k8s.io/volumes/iscsi/README.mdResource
unknown
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kindsDestr
unknown
https://examples.k8s.io/mysql-cinder-pd/README.mdA
unknown
https://kubernetes.io/docs/concepts/overview/working-with-objects/names/#uids
unknown
http://pr.k8s.io/79391
unknown
https://www.terraform.io/downloads.htmlThe
unknown
http://kubernetes.io/docs/user-guide/identifiers#names
unknown
https://kubernetes.io/docs/concepts/services-networking/service/#virtual-ips-and-service-proxies
unknown
https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaims00c6858e06b7040
unknown
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadataAllocata
unknown
https://www.terraform.io/docs/cloud/workspaces/naming.html
unknown
https://www.terraform.io/language/provider-checksum-verification
unknown
https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle#container-probesdefaultRuntimeClass
unknown
https://golang.org/pkg/unicode/#IsPrint.
unknown
https://examples.k8s.io/volumes/cephfs/README.md#how-to-use-itContainer
unknown
https://kubernetes.io/docs/concepts/policy/resource-quotas/type
unknown
https://examples.k8s.io/volumes/rbd/README.mdThe
unknown
https://kubernetes.io/docs/concepts/workloads/controllers/replicationcontroller/#what-is-a-replicati
unknown
https://examples.k8s.io/mysql-cinder-pd/README.mdAt
unknown
https://intl.cloud.tencent.com/document/product/598/10588).If
unknown
https://examples.k8s.io/volumes/glusterfs/README.mdThe
unknown
https://kubernetes.io/docs/concepts/storage/persistent-volumes#persistentvolumeclaimsDaemonSetUpdate
unknown
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadataThe
unknown
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadatauid
unknown
https://learn.hashicorp.com/collections/terraform/provision
unknown
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#metadataCurrent
unknown
https://kubernetes.io/docs/concepts/architecture/nodes/#capacity
unknown
https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/
unknown
http://www.iana.org/assignments/service-names).
unknown
https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectorstUnknowntSt
unknown
https://kubernetes.io/docs/concepts/containers/images#specifying-imagepullsecrets-on-a-podDEPRECATED
unknown
https://kubernetes.io/docs/concepts/configuration/assign-pod-node/Adapts
unknown
https://kubernetes-csi.github.io/docs/ephemeral-local-volumes.html
unknown
https://yaml.org/spec/1.2/spec.html)
unknown
https://kubernetes.io/docs/tasks/administer-cluster/namespaces/observedGeneration
unknown
https://github.com/grpc/grpc/blob/master/doc/health-checking.md).
unknown
https://kubernetes.io/docs/concepts/configuration/secretThe
unknown
https://kubernetes.io/docs/concepts/containers/container-lifecycle-hooks/#container-hooksresource
unknown
https://tools.ietf.org/html/rfc4648#section-4APIVersion
unknown
https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
unknown
https://github.com/OAI/OpenAPI-Specification/blob/master/versions/2.0.md#data-types
unknown
https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#spec-and-statust
unknown
There are 90 hidden URLs, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
5105000
unkown
page write copy
4F93000
unkown
page write copy
3D37000
unkown
page readonly
3D5B000
unkown
page readonly
3D3A000
unkown
page readonly
3D58000
unkown
page readonly
3D24000
unkown
page readonly
1321000
unkown
page execute read
1321000
unkown
page execute read
518B000
unkown
page readonly
3D41000
unkown
page readonly
3D6F000
unkown
page readonly
50CB000
unkown
page write copy
3A3C000
unkown
page readonly
3D3D000
unkown
page readonly
477D000
unkown
page readonly
3D68000
unkown
page readonly
3D55000
unkown
page readonly
1D21000
unkown
page execute read
508B000
unkown
page write copy
303C000
unkown
page readonly
3D2F000
unkown
page readonly
2721000
unkown
page execute read
3D6C000
unkown
page readonly
3D5D000
unkown
page readonly
518A000
unkown
page write copy
3D63000
unkown
page readonly
3CBB000
unkown
page readonly
3D29000
unkown
page readonly
3D5F000
unkown
page readonly
1320000
unkown
page readonly
3D6A000
unkown
page readonly
3D7D000
unkown
page readonly
There are 23 hidden memdumps, click here to show them.