Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\Server.exe
|
C:\Users\user\Desktop\Server.exe
|
 |
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://62.173.142.81/drew/vtZ_2FDIi/MRLim5q_2FPOOIVwJV5p/mDG55l02bkwr36hqtHV/_2BXyU_2BkyUgVl9WIyeMc/2k07Y9nJ9nLtT/PcL77Drj/unLXMitiTeAgURShweMUOiB/jO6Gh6u4qj/R0YL8nr8_2Fe_2F8S/NmYC2zbFo_2F/_2F9OVp7R5L/glgHLP7bYaSidB/FZsufB1rfZCbhP2GWCC1X/tQ2Xe4zo9AyYJ7HA/jNvemogj1MfecHx/YKLEAqQON4Cy4b59f3/zq6LmLb43/Vud6lYhHL1LCLqJWQEpj/MZMy2z9wXkXjHl/Y_2BX.jlk
|
62.173.142.81
|
|
|
|
http://193.233.175.113/drew/qHKukbBQWu/Xw77sqXTqtrxRWpPD/yl9MR0Y2eNmn/GbsfhYjdl8H/5GaIgAKgHB90sh/aMn4M6bKKJciYELDTreaM/i8dqMbDS0rDZpO_2/F2s0PNMupq8bNg2/sWxA9_2FGI7DvJntWq/sJDzxIUTO/r8bT3UibSNEQXXaTJdFi/yG6uB8JAsWc6GRKrJig/fWv9nw4MT1weBq8HJPcdl7/ZF86bHFVi_2FJ/yinUV20K/IPPC4VuFn7ORSOMnH_2FY6_/2FwmfjECDI/_2B41PRFw9jRfkH5W/0EbKz9E3ebE/0M10.jlk
|
193.233.175.113
|
|
|
|
http://193.23
|
unknown
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
checklist.skype.com
|
unknown
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
62.173.142.81
|
unknown
|
Russian Federation
|
|
|
|
193.233.175.113
|
unknown
|
Russian Federation
|
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
2CA8000
|
heap
|
page read and write
|
|
|
|
2CA8000
|
heap
|
page read and write
|
|
|
|
2CA8000
|
heap
|
page read and write
|
|
|
|
2CA8000
|
heap
|
page read and write
|
|
|
|
2CA8000
|
heap
|
page read and write
|
|
|
|
2CA8000
|
heap
|
page read and write
|
|
|
|
2CA8000
|
heap
|
page read and write
|
|
|
|
2CA8000
|
heap
|
page read and write
|
|
|
|
2CA8000
|
heap
|
page read and write
|
|
|
|
26BE1060000
|
heap
|
page read and write
|
||
|
182F9B00000
|
heap
|
page read and write
|
||
|
26BE1C02000
|
heap
|
page read and write
|
||
|
A0AE57C000
|
stack
|
page read and write
|
||
|
2DBAB7F000
|
stack
|
page read and write
|
||
|
A0AE37C000
|
stack
|
page read and write
|
||
|
1A7ACF90000
|
heap
|
page read and write
|
||
|
CD734FE000
|
stack
|
page read and write
|
||
|
26BE1200000
|
heap
|
page read and write
|
||
|
182F9B13000
|
heap
|
page read and write
|
||
|
E880EFF000
|
stack
|
page read and write
|
||
|
403000
|
unkown
|
page execute and read and write
|
||
|
4E6000
|
heap
|
page execute and read and write
|
||
|
26BE1B94000
|
heap
|
page read and write
|
||
|
2DBAD7F000
|
stack
|
page read and write
|
||
|
29FCFC71000
|
heap
|
page read and write
|
||
|
25A6F646000
|
heap
|
page read and write
|
||
|
4F9000
|
heap
|
page read and write
|
||
|
30000
|
heap
|
page read and write
|
||
|
5D1567B000
|
stack
|
page read and write
|
||
|
E880AFB000
|
stack
|
page read and write
|
||
|
2050000
|
heap
|
page read and write
|
||
|
2503AE24000
|
heap
|
page read and write
|
||
|
25A6F540000
|
heap
|
page read and write
|
||
|
25A70002000
|
trusted library allocation
|
page read and write
|
||
|
4DA000
|
heap
|
page read and write
|
||
|
5D154FC000
|
stack
|
page read and write
|
||
|
E8809FE000
|
stack
|
page read and write
|
||
|
2DBA87F000
|
stack
|
page read and write
|
||
|
19B000
|
stack
|
page read and write
|
||
|
200C000
|
stack
|
page read and write
|
||
|
CD7327E000
|
stack
|
page read and write
|
||
|
26BE1258000
|
heap
|
page read and write
|
||
|
25A6F629000
|
heap
|
page read and write
|
||
|
CD72FEE000
|
stack
|
page read and write
|
||
|
27F9000
|
heap
|
page read and write
|
||
|
345D000
|
stack
|
page read and write
|
||
|
1DD06030000
|
heap
|
page read and write
|
||
|
25A6F5E0000
|
trusted library allocation
|
page read and write
|
||
|
26BE1B71000
|
heap
|
page read and write
|
||
|
6CC807C000
|
stack
|
page read and write
|
||
|
20AE000
|
stack
|
page read and write
|
||
|
20B0000
|
heap
|
page read and write
|
||
|
26BE13E5000
|
heap
|
page read and write
|
||
|
2DBA6FB000
|
stack
|
page read and write
|
||
|
1DD06200000
|
heap
|
page read and write
|
||
|
1FD8E320000
|
trusted library allocation
|
page read and write
|
||
|
1FC0000
|
direct allocation
|
page execute and read and write
|
||
|
7C18C7E000
|
stack
|
page read and write
|
||
|
2503ACC0000
|
heap
|
page read and write
|
||
|
29FD1670000
|
trusted library allocation
|
page read and write
|
||
|
1FD8E45A000
|
heap
|
page read and write
|
||
|
1DD06080000
|
heap
|
page read and write
|
||
|
29FD16B0000
|
trusted library allocation
|
page read and write
|
||
|
325F000
|
stack
|
page read and write
|
||
|
25A6F64E000
|
heap
|
page read and write
|
||
|
25A6F550000
|
heap
|
page read and write
|
||
|
1FD8E1C0000
|
heap
|
page read and write
|
||
|
182F9A57000
|
heap
|
page read and write
|
||
|
25A6F664000
|
heap
|
page read and write
|
||
|
2029000
|
unclassified section
|
page readonly
|
||
|
29FCFB90000
|
trusted library allocation
|
page read and write
|
||
|
29FCFBE0000
|
remote allocation
|
page read and write
|
||
|
2503AEE2000
|
heap
|
page read and write
|
||
|
26BE19A0000
|
trusted library allocation
|
page read and write
|
||
|
1A7ACFF0000
|
remote allocation
|
page read and write
|
||
|
26BE1BCB000
|
heap
|
page read and write
|
||
|
25A6F702000
|
heap
|
page read and write
|
||
|
2E10000
|
heap
|
page read and write
|
||
|
4D0000
|
heap
|
page read and write
|
||
|
A0AE47E000
|
stack
|
page read and write
|
||
|
A0ADDFE000
|
stack
|
page read and write
|
||
|
40F000
|
unkown
|
page write copy
|
||
|
26BE1B2A000
|
heap
|
page read and write
|
||
|
1A7ACFF0000
|
remote allocation
|
page read and write
|
||
|
25A6F67D000
|
heap
|
page read and write
|
||
|
6CC867E000
|
stack
|
page read and write
|
||
|
25A6F65C000
|
heap
|
page read and write
|
||
|
29FCFC40000
|
heap
|
page read and write
|
||
|
1FD8E472000
|
heap
|
page read and write
|
||
|
407000
|
unkown
|
page execute and read and write
|
||
|
25A6F655000
|
heap
|
page read and write
|
||
|
1FD8E1B0000
|
heap
|
page read and write
|
||
|
2503AE2A000
|
heap
|
page read and write
|
||
|
1FD8E476000
|
heap
|
page read and write
|
||
|
375C000
|
stack
|
page read and write
|
||
|
26BE128B000
|
heap
|
page read and write
|
||
|
2CAB000
|
heap
|
page read and write
|
||
|
2DBAA7F000
|
stack
|
page read and write
|
||
|
182F9960000
|
trusted library allocation
|
page read and write
|
||
|
29FCFC48000
|
heap
|
page read and write
|
||
|
2503AEC7000
|
heap
|
page read and write
|
||
|
2503B900000
|
heap
|
page read and write
|
||
|
2503AF02000
|
heap
|
page read and write
|
||
|
29FCFC8A000
|
heap
|
page read and write
|
||
|
1DD06245000
|
heap
|
page read and write
|
||
|
CD72F6B000
|
stack
|
page read and write
|
||
|
26BE11D0000
|
trusted library allocation
|
page read and write
|
||
|
1FD8E468000
|
heap
|
page read and write
|
||
|
223E000
|
stack
|
page read and write
|
||
|
25A6F660000
|
heap
|
page read and write
|
||
|
2503AECF000
|
heap
|
page read and write
|
||
|
23BC000
|
stack
|
page read and write
|
||
|
182F9B02000
|
heap
|
page read and write
|
||
|
182F9A40000
|
heap
|
page read and write
|
||
|
2503B912000
|
heap
|
page read and write
|
||
|
1FD8E429000
|
heap
|
page read and write
|
||
|
26BE138E000
|
heap
|
page read and write
|
||
|
2878000
|
heap
|
page read and write
|
||
|
2DBA2AB000
|
stack
|
page read and write
|
||
|
536000
|
heap
|
page read and write
|
||
|
2CAB000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
26BE1B00000
|
heap
|
page read and write
|
||
|
26BE1BBF000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page execute and read and write
|
||
|
29FCFD18000
|
heap
|
page read and write
|
||
|
1FD8E413000
|
heap
|
page read and write
|
||
|
202A000
|
unclassified section
|
page read and write
|
||
|
E880C7E000
|
stack
|
page read and write
|
||
|
2DBA97C000
|
stack
|
page read and write
|
||
|
1A7AD000000
|
heap
|
page read and write
|
||
|
182F9A28000
|
heap
|
page read and write
|
||
|
182F97F0000
|
heap
|
page read and write
|
||
|
29FCFC62000
|
heap
|
page read and write
|
||
|
7C18D7E000
|
stack
|
page read and write
|
||
|
29FCFC58000
|
heap
|
page read and write
|
||
|
25A6F656000
|
heap
|
page read and write
|
||
|
26BE126E000
|
heap
|
page read and write
|
||
|
1FD8E400000
|
heap
|
page read and write
|
||
|
365F000
|
stack
|
page read and write
|
||
|
29FCFD13000
|
heap
|
page read and write
|
||
|
2503AF13000
|
heap
|
page read and write
|
||
|
405000
|
unkown
|
page execute and read and write
|
||
|
26BE1C23000
|
heap
|
page read and write
|
||
|
2DBF000
|
stack
|
page read and write
|
||
|
26BE128E000
|
heap
|
page read and write
|
||
|
26BE1243000
|
heap
|
page read and write
|
||
|
1A7AD013000
|
heap
|
page read and write
|
||
|
2021000
|
unclassified section
|
page execute read
|
||
|
2503AE13000
|
heap
|
page read and write
|
||
|
1A7AD002000
|
heap
|
page read and write
|
||
|
5D1597C000
|
stack
|
page read and write
|
||
|
25A6F640000
|
heap
|
page read and write
|
||
|
26BE13B9000
|
heap
|
page read and write
|
||
|
1DD06229000
|
heap
|
page read and write
|
||
|
1DD06254000
|
heap
|
page read and write
|
||
|
2CAB000
|
heap
|
page read and write
|
||
|
21FE000
|
stack
|
page read and write
|
||
|
2240000
|
heap
|
page read and write
|
||
|
1DD0622F000
|
heap
|
page read and write
|
||
|
1A7ACF30000
|
heap
|
page read and write
|
||
|
1A7AD029000
|
heap
|
page read and write
|
||
|
1DD0623E000
|
heap
|
page read and write
|
||
|
25A6F67C000
|
heap
|
page read and write
|
||
|
2503AD60000
|
trusted library allocation
|
page read and write
|
||
|
2020000
|
unclassified section
|
page read and write
|
||
|
1A7AD05F000
|
heap
|
page read and write
|
||
|
26BE1070000
|
heap
|
page read and write
|
||
|
29FCFC59000
|
heap
|
page read and write
|
||
|
CD735FE000
|
stack
|
page read and write
|
||
|
E880E7E000
|
stack
|
page read and write
|
||
|
25A6F678000
|
heap
|
page read and write
|
||
|
2FCFFF000
|
stack
|
page read and write
|
||
|
6CC837B000
|
stack
|
page read and write
|
||
|
6CC857E000
|
stack
|
page read and write
|
||
|
26BE1294000
|
heap
|
page read and write
|
||
|
2DFE000
|
stack
|
page read and write
|
||
|
29FCFBE0000
|
remote allocation
|
page read and write
|
||
|
2FCEF9000
|
stack
|
page read and write
|
||
|
5D1547E000
|
stack
|
page read and write
|
||
|
2503AE3D000
|
heap
|
page read and write
|
||
|
7C190FD000
|
stack
|
page read and write
|
||
|
A0AD9FB000
|
stack
|
page read and write
|
||
|
29FCFC00000
|
heap
|
page read and write
|
||
|
1FD8EC02000
|
trusted library allocation
|
page read and write
|
||
|
26BE1254000
|
heap
|
page read and write
|
||
|
29FCFBE0000
|
remote allocation
|
page read and write
|
||
|
2503ACD0000
|
heap
|
page read and write
|
||
|
A0ADF7E000
|
stack
|
page read and write
|
||
|
25A6F682000
|
heap
|
page read and write
|
||
|
1DD06A02000
|
trusted library allocation
|
page read and write
|
||
|
25A6F63D000
|
heap
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
49F000
|
unkown
|
page readonly
|
||
|
A0AE17F000
|
stack
|
page read and write
|
||
|
29FCFAF0000
|
heap
|
page read and write
|
||
|
2DBAE7F000
|
stack
|
page read and write
|
||
|
7C1917E000
|
stack
|
page read and write
|
||
|
29FCFC49000
|
heap
|
page read and write
|
||
|
182F9A00000
|
heap
|
page read and write
|
||
|
1DD06213000
|
heap
|
page read and write
|
||
|
29FCFC8B000
|
heap
|
page read and write
|
||
|
25A6F657000
|
heap
|
page read and write
|
||
|
2503AE88000
|
heap
|
page read and write
|
||
|
2FD0FF000
|
stack
|
page read and write
|
||
|
4C5000
|
heap
|
page read and write
|
||
|
182F9A13000
|
heap
|
page read and write
|
||
|
5D1517C000
|
stack
|
page read and write
|
||
|
182F9800000
|
heap
|
page read and write
|
||
|
29FCFC13000
|
heap
|
page read and write
|
||
|
26BE1B4B000
|
heap
|
page read and write
|
||
|
25A6F600000
|
heap
|
page read and write
|
||
|
25A6F674000
|
heap
|
page read and write
|
||
|
26BE1BD3000
|
heap
|
page read and write
|
||
|
29FCFBB0000
|
trusted library allocation
|
page read and write
|
||
|
25A6F662000
|
heap
|
page read and write
|
||
|
26BE1C30000
|
heap
|
page read and write
|
||
|
2DBAC7D000
|
stack
|
page read and write
|
||
|
22B0000
|
heap
|
page read and write
|
||
|
7C1873C000
|
stack
|
page read and write
|
||
|
182F9A02000
|
heap
|
page read and write
|
||
|
26BE1313000
|
heap
|
page read and write
|
||
|
1A7ACFC0000
|
trusted library allocation
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
1A7AD03E000
|
heap
|
page read and write
|
||
|
2503AEBE000
|
heap
|
page read and write
|
||
|
40D000
|
unkown
|
page write copy
|
||
|
182F9860000
|
heap
|
page read and write
|
||
|
5D15A7F000
|
stack
|
page read and write
|
||
|
26BE1296000
|
heap
|
page read and write
|
||
|
7C18BFE000
|
stack
|
page read and write
|
||
|
29FCFC9B000
|
heap
|
page read and write
|
||
|
1DD06180000
|
trusted library allocation
|
page read and write
|
||
|
6CC847B000
|
stack
|
page read and write
|
||
|
1DD06302000
|
heap
|
page read and write
|
||
|
2DBB07E000
|
stack
|
page read and write
|
||
|
355A000
|
stack
|
page read and write
|
||
|
23FD000
|
stack
|
page read and write
|
||
|
2503AE6E000
|
heap
|
page read and write
|
||
|
26BE1BB3000
|
heap
|
page read and write
|
||
|
26BE1243000
|
heap
|
page read and write
|
||
|
4C0000
|
heap
|
page read and write
|
||
|
26BE1B0A000
|
heap
|
page read and write
|
||
|
1FD0000
|
direct allocation
|
page read and write
|
||
|
25A6F642000
|
heap
|
page read and write
|
||
|
26BE1C13000
|
heap
|
page read and write
|
||
|
2480000
|
heap
|
page read and write
|
||
|
9D000
|
stack
|
page read and write
|
||
|
E880B79000
|
stack
|
page read and write
|
||
|
5D14D0B000
|
stack
|
page read and write
|
||
|
28B0000
|
heap
|
page read and write
|
||
|
26BE1B5C000
|
heap
|
page read and write
|
||
|
CD7337F000
|
stack
|
page read and write
|
||
|
25A6F5B0000
|
heap
|
page read and write
|
||
|
26BE1A02000
|
heap
|
page read and write
|
||
|
1FD8E402000
|
heap
|
page read and write
|
||
|
1A7AD024000
|
heap
|
page read and write
|
||
|
26BE1270000
|
heap
|
page read and write
|
||
|
CD736FF000
|
stack
|
page read and write
|
||
|
26BE1C27000
|
heap
|
page read and write
|
||
|
25A6F65E000
|
heap
|
page read and write
|
||
|
1DD06020000
|
heap
|
page read and write
|
||
|
29FCFD00000
|
heap
|
page read and write
|
||
|
25A6F632000
|
heap
|
page read and write
|
||
|
25A6F667000
|
heap
|
page read and write
|
||
|
2503AE00000
|
heap
|
page read and write
|
||
|
25A6F67A000
|
heap
|
page read and write
|
||
|
29FCFB00000
|
heap
|
page read and write
|
||
|
5D1537F000
|
stack
|
page read and write
|
||
|
5D155FD000
|
stack
|
page read and write
|
||
|
182F9A7B000
|
heap
|
page read and write
|
||
|
1A7ADA02000
|
trusted library allocation
|
page read and write
|
||
|
2503B93A000
|
heap
|
page read and write
|
||
|
E8808FB000
|
stack
|
page read and write
|
||
|
1FD8E502000
|
heap
|
page read and write
|
||
|
5D1587E000
|
stack
|
page read and write
|
||
|
25A6F66B000
|
heap
|
page read and write
|
||
|
E880F7E000
|
stack
|
page read and write
|
||
|
29FD1802000
|
trusted library allocation
|
page read and write
|
||
|
7C18E7D000
|
stack
|
page read and write
|
||
|
25A6F679000
|
heap
|
page read and write
|
||
|
182FA202000
|
trusted library allocation
|
page read and write
|
||
|
1FD8E466000
|
heap
|
page read and write
|
||
|
25A6F673000
|
heap
|
page read and write
|
||
|
1A7ACFF0000
|
remote allocation
|
page read and write
|
||
|
26BE1C00000
|
heap
|
page read and write
|
||
|
25A6F66E000
|
heap
|
page read and write
|
||
|
25A6F676000
|
heap
|
page read and write
|
||
|
26BE123C000
|
heap
|
page read and write
|
||
|
2503AD30000
|
heap
|
page read and write
|
||
|
1FD8E220000
|
heap
|
page read and write
|
||
|
29FCFB60000
|
heap
|
page read and write
|
||
|
1A7AD102000
|
heap
|
page read and write
|
||
|
1A7ACF20000
|
heap
|
page read and write
|
||
|
7C18FFD000
|
stack
|
page read and write
|
||
|
25A6F63B000
|
heap
|
page read and write
|
||
|
335F000
|
stack
|
page read and write
|
||
|
545000
|
heap
|
page read and write
|
||
|
1FD8E513000
|
heap
|
page read and write
|
||
|
25A6F66C000
|
heap
|
page read and write
|
||
|
E8804FC000
|
stack
|
page read and write
|
||
|
1FD8E43D000
|
heap
|
page read and write
|
||
|
1DD06202000
|
heap
|
page read and write
|
||
|
25A6F65A000
|
heap
|
page read and write
|
||
|
26BE1213000
|
heap
|
page read and write
|
||
|
26BE1B2A000
|
heap
|
page read and write
|
||
|
A0AE07E000
|
stack
|
page read and write
|
||
|
49F000
|
unkown
|
page readonly
|
||
|
420000
|
unkown
|
page read and write
|
||
|
2FC95B000
|
stack
|
page read and write
|
||
|
243E000
|
stack
|
page read and write
|
||
|
2FCD7E000
|
stack
|
page read and write
|
||
|
26BE10D0000
|
heap
|
page read and write
|
||
|
CD733FE000
|
stack
|
page read and write
|
||
|
26BE1229000
|
heap
|
page read and write
|
||
|
25A6F613000
|
heap
|
page read and write
|
||
|
1DD0623B000
|
heap
|
page read and write
|
||
|
A0AE27C000
|
stack
|
page read and write
|
||
|
E880D7A000
|
stack
|
page read and write
|
||
|
29FCFD02000
|
heap
|
page read and write
|
||
|
26BE1264000
|
heap
|
page read and write
|
||
|
25A6F65F000
|
heap
|
page read and write
|
||
|
25A6F658000
|
heap
|
page read and write
|
||
|
22AE000
|
stack
|
page read and write
|
||
|
29FCFC2A000
|
heap
|
page read and write
|
||
|
7C18EFF000
|
stack
|
page read and write
|
||
|
2DBAF7F000
|
stack
|
page read and write
|
||
|
2503B802000
|
heap
|
page read and write
|
||
|
5D1577C000
|
stack
|
page read and write
|
||
|
2DBB17E000
|
stack
|
page read and write
|
||
|
1DD0624A000
|
heap
|
page read and write
|
||
|
202C000
|
unclassified section
|
page readonly
|
There are 322 hidden memdumps, click here to show them.