Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\MFs7p6ab7w.exe
|
"C:\Users\user\Desktop\MFs7p6ab7w.exe"
|
 |
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
0.tcp.eu.ngrok.io
|
18.192.31.165
|
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
3.125.209.94
|
unknown
|
United States
|
|
|
|
18.192.31.165
|
0.tcp.eu.ngrok.io
|
United States
|
|
|
|
18.158.249.75
|
unknown
|
United States
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER
|
di
|
|
|
|
HKEY_CURRENT_USER\Environment
|
SEE_MASK_NOZONECHECKS
|
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
E82000
|
unkown
|
page readonly
|
|
|
|
6681000
|
heap
|
page read and write
|
||
|
302C000
|
stack
|
page read and write
|
||
|
698E000
|
stack
|
page read and write
|
||
|
31E9000
|
trusted library allocation
|
page read and write
|
||
|
322F000
|
trusted library allocation
|
page read and write
|
||
|
6697000
|
heap
|
page read and write
|
||
|
3090000
|
heap
|
page read and write
|
||
|
66C1000
|
heap
|
page read and write
|
||
|
5800000
|
trusted library allocation
|
page read and write
|
||
|
5D12000
|
trusted library allocation
|
page read and write
|
||
|
FD0000
|
heap
|
page read and write
|
||
|
51DE000
|
stack
|
page read and write
|
||
|
3241000
|
trusted library allocation
|
page read and write
|
||
|
1344000
|
heap
|
page read and write
|
||
|
3200000
|
trusted library allocation
|
page read and write
|
||
|
328E000
|
trusted library allocation
|
page read and write
|
||
|
165E000
|
stack
|
page read and write
|
||
|
1806000
|
heap
|
page read and write
|
||
|
32A6000
|
trusted library allocation
|
page read and write
|
||
|
17F0000
|
trusted library allocation
|
page read and write
|
||
|
6060000
|
trusted library allocation
|
page execute and read and write
|
||
|
F2A000
|
stack
|
page read and write
|
||
|
F90000
|
heap
|
page read and write
|
||
|
3050000
|
heap
|
page read and write
|
||
|
131A000
|
heap
|
page read and write
|
||
|
66CB000
|
heap
|
page read and write
|
||
|
17E0000
|
trusted library allocation
|
page execute and read and write
|
||
|
6040000
|
trusted library allocation
|
page read and write
|
||
|
1800000
|
heap
|
page read and write
|
||
|
41A9000
|
trusted library allocation
|
page read and write
|
||
|
57C4000
|
trusted library allocation
|
page read and write
|
||
|
E8E000
|
unkown
|
page readonly
|
||
|
66B5000
|
heap
|
page read and write
|
||
|
1424000
|
trusted library allocation
|
page read and write
|
||
|
586E000
|
stack
|
page read and write
|
||
|
142D000
|
trusted library allocation
|
page execute and read and write
|
||
|
32B8000
|
trusted library allocation
|
page read and write
|
||
|
5719000
|
trusted library allocation
|
page read and write
|
||
|
17BB000
|
trusted library allocation
|
page execute and read and write
|
||
|
13E5000
|
heap
|
page read and write
|
||
|
5820000
|
trusted library allocation
|
page read and write
|
||
|
56BC000
|
stack
|
page read and write
|
||
|
5808000
|
trusted library allocation
|
page read and write
|
||
|
32B1000
|
trusted library allocation
|
page read and write
|
||
|
138D000
|
heap
|
page read and write
|
||
|
1355000
|
heap
|
page read and write
|
||
|
5CFE000
|
stack
|
page read and write
|
||
|
66AA000
|
heap
|
page read and write
|
||
|
3218000
|
trusted library allocation
|
page read and write
|
||
|
1440000
|
heap
|
page read and write
|
||
|
5B3C000
|
stack
|
page read and write
|
||
|
6770000
|
heap
|
page read and write
|
||
|
3516000
|
trusted library allocation
|
page read and write
|
||
|
E80000
|
unkown
|
page readonly
|
||
|
131E000
|
heap
|
page read and write
|
||
|
1690000
|
heap
|
page read and write
|
||
|
66DF000
|
heap
|
page read and write
|
||
|
6686000
|
heap
|
page read and write
|
||
|
6A8F000
|
stack
|
page read and write
|
||
|
694A000
|
stack
|
page read and write
|
||
|
17B0000
|
trusted library allocation
|
page read and write
|
||
|
3269000
|
trusted library allocation
|
page read and write
|
||
|
4BA9000
|
trusted library allocation
|
page read and write
|
||
|
57C6000
|
trusted library allocation
|
page read and write
|
||
|
17D0000
|
trusted library allocation
|
page read and write
|
||
|
6030000
|
heap
|
page read and write
|
||
|
41A1000
|
trusted library allocation
|
page read and write
|
||
|
57C0000
|
trusted library allocation
|
page read and write
|
||
|
3280000
|
trusted library allocation
|
page read and write
|
||
|
3227000
|
trusted library allocation
|
page read and write
|
||
|
3053000
|
heap
|
page read and write
|
||
|
2FEE000
|
stack
|
page read and write
|
||
|
323B000
|
trusted library allocation
|
page read and write
|
||
|
57E6000
|
trusted library allocation
|
page read and write
|
||
|
1410000
|
trusted library allocation
|
page read and write
|
||
|
31A1000
|
trusted library allocation
|
page read and write
|
||
|
1401000
|
heap
|
page read and write
|
||
|
1423000
|
trusted library allocation
|
page execute and read and write
|
||
|
1351000
|
heap
|
page read and write
|
||
|
134F000
|
heap
|
page read and write
|
||
|
1433000
|
trusted library allocation
|
page read and write
|
||
|
3726000
|
trusted library allocation
|
page read and write
|
||
|
5ABC000
|
stack
|
page read and write
|
||
|
12F9000
|
stack
|
page read and write
|
||
|
31F6000
|
trusted library allocation
|
page read and write
|
||
|
3060000
|
heap
|
page execute and read and write
|
||
|
66BA000
|
heap
|
page read and write
|
||
|
17AA000
|
trusted library allocation
|
page execute and read and write
|
||
|
17B7000
|
trusted library allocation
|
page execute and read and write
|
||
|
1445000
|
heap
|
page read and write
|
||
|
6660000
|
heap
|
page read and write
|
||
|
3291000
|
trusted library allocation
|
page read and write
|
||
|
3070000
|
trusted library allocation
|
page read and write
|
||
|
6670000
|
heap
|
page read and write
|
||
|
31FA000
|
trusted library allocation
|
page read and write
|
||
|
3288000
|
trusted library allocation
|
page read and write
|
||
|
17B2000
|
trusted library allocation
|
page read and write
|
||
|
3203000
|
trusted library allocation
|
page read and write
|
||
|
6C00000
|
trusted library allocation
|
page read and write
|
||
|
3040000
|
trusted library allocation
|
page read and write
|
||
|
143D000
|
trusted library allocation
|
page execute and read and write
|
||
|
1310000
|
heap
|
page read and write
|
||
|
66A1000
|
heap
|
page read and write
|
||
|
58B0000
|
heap
|
page execute and read and write
|
||
|
FA0000
|
heap
|
page read and write
|
||
|
7D1E000
|
stack
|
page read and write
|
||
|
533D000
|
stack
|
page read and write
|
||
|
31E4000
|
trusted library allocation
|
page read and write
|
||
|
5F39000
|
stack
|
page read and write
|
||
|
6650000
|
heap
|
page read and write
|
||
|
6C10000
|
trusted library allocation
|
page execute and read and write
|
||
|
5700000
|
trusted library allocation
|
page execute and read and write
|
||
|
59B5000
|
stack
|
page read and write
|
||
|
31DA000
|
trusted library allocation
|
page read and write
|
||
|
56FC000
|
stack
|
page read and write
|
||
|
155E000
|
stack
|
page read and write
|
||
|
3080000
|
trusted library allocation
|
page read and write
|
||
|
3731000
|
trusted library allocation
|
page read and write
|
||
|
17A0000
|
trusted library allocation
|
page read and write
|
||
|
57ED000
|
trusted library allocation
|
page read and write
|
||
|
319F000
|
stack
|
page read and write
|
||
|
6760000
|
heap
|
page read and write
|
||
|
3224000
|
trusted library allocation
|
page read and write
|
||
|
7FCF0000
|
trusted library allocation
|
page execute and read and write
|
||
|
1680000
|
heap
|
page read and write
|
||
|
57DE000
|
trusted library allocation
|
page read and write
|
||
|
57CB000
|
trusted library allocation
|
page read and write
|
||
|
17A6000
|
trusted library allocation
|
page execute and read and write
|
||
|
1430000
|
trusted library allocation
|
page read and write
|
||
|
FE0000
|
heap
|
page read and write
|
||
|
1420000
|
trusted library allocation
|
page read and write
|
||
|
57E1000
|
trusted library allocation
|
page read and write
|
||
|
5710000
|
trusted library allocation
|
page read and write
|
||
|
57DA000
|
trusted library allocation
|
page read and write
|
||
|
57D2000
|
trusted library allocation
|
page read and write
|
||
|
5810000
|
trusted library allocation
|
page read and write
|
||
|
57CE000
|
trusted library allocation
|
page read and write
|
||
|
3276000
|
trusted library allocation
|
page read and write
|
||
|
32BC000
|
trusted library allocation
|
page read and write
|
||
|
684C000
|
stack
|
page read and write
|
There are 131 hidden memdumps, click here to show them.