Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/tmp/67sw1QD6Ew.elf
|
/tmp/67sw1QD6Ew.elf
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://schemas.xmlsoap.org/soap/encoding/
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/envelope/
|
unknown
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
daisy.ubuntu.com
|
162.213.35.25
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7fa6f8021000
|
page execute read
|
 |
||
|
7fa6f8029000
|
page read and write
|
|
||
|
5595f5c62000
|
page read and write
|
|||
|
7fa6f8031000
|
page read and write
|
|||
|
7fa800094000
|
page read and write
|
|||
|
7ffde4531000
|
page execute read
|
|||
|
7fa7ff3ba000
|
page read and write
|
|||
|
5595f3660000
|
page read and write
|
|||
|
7fa8000b8000
|
page read and write
|
|||
|
7fa7ffd8a000
|
page read and write
|
|||
|
7fa7febb2000
|
page read and write
|
|||
|
5595f567e000
|
page read and write
|
|||
|
7fa7ff7ae000
|
page read and write
|
|||
|
5595f340f000
|
page execute read
|
|||
|
7fa8000fd000
|
page read and write
|
|||
|
7ffde44bb000
|
page read and write
|
|||
|
5595f5668000
|
page execute and read and write
|
|||
|
7fa7fff6b000
|
page read and write
|
|||
|
7fa7ffba8000
|
page read and write
|
|||
|
5595f3669000
|
page read and write
|
|||
|
7fa7ffa19000
|
page read and write
|
|||
|
7fa7f8021000
|
page read and write
|
|||
|
7fa7ff44c000
|
page read and write
|
|||
|
7fa7f7fff000
|
page read and write
|
|||
|
7fa7ffa3c000
|
page read and write
|
There are 15 hidden memdumps, click here to show them.