IOC Report
0a62b9ae89b4be4e8d40c0035c83a72cb6776f4b62fe53553981a57f0f4ff73d#U007e

loading gif

Processes

Path
Cmdline
Malicious
C:\Windows\System32\wscript.exe
C:\Windows\System32\WScript.exe "C:\Users\user\Desktop\0a62b9ae89b4be4e8d40c0035c83a72cb6776f4b62fe53553981a57f0f4ff73d#U007e.vbs"
 malicious

URLs

Name
IP
Malicious
http://oliveryang.net/2015/09/pitfalls-of-TSC-usage
unknown
https://redis.io/commands.
unknown
https://github.com/devnexen)
unknown
https://redis.io/topics/client-side-caching
unknown
http://github.com/antirez/linenoise
unknown
http://creativecommons.org/licenses/by/3.0/deed.en_US.
unknown
https://github.com/smmir-cent.png
unknown
https://github.com/redis/hiredis/pull/789)
unknown
https://github.com/redis/hiredis/pull/632)
unknown
https://github.com/redis/hiredis/pull/644)
unknown
https://github.com/redis/hiredis/pull/901))
unknown
https://github.com/redis/hiredis/pull/620)
unknown
https://github.com/redis/hiredis/pull/850)
unknown
https://github.com/bugwz.png
unknown
https://github.com/redis/hiredis/pull/741)
unknown
https://redis.io/topics/notifications
unknown
https://github.com/redis/hiredis/pull/1016))
unknown
https://github.com/redis/hiredis/pull/1092))
unknown
https://github.com/redis/hiredis/pull/1125))
unknown
http://www.reddit.com/r/redis)
unknown
http://www.opensource.org/licenses/mit-license.php
unknown
https://github.com/heronr))
unknown
https://github.com/autoantwort.png
unknown
https://github.com/noxiouz)
unknown
https://github.com/redis/redis/issues/12207
unknown
https://github.com/redis/hiredis/security/advisories/GHSA-hfm9-39pp-55p2)
unknown
https://github.com/justinbrewer))
unknown
https://github.com/redis/hiredis/pull/764)
unknown
https://github.com/zhangtaoXT5
unknown
https://github.com/redis/hiredis/pull/776)
unknown
https://github.com/redis/hiredis/pull/1004))
unknown
https://github.com/redis/hiredis/pull/1027))
unknown
https://github.com/pizhenwei.png
unknown
http://www.lua.org/manual/5.1/
unknown
https://github.com/redis/hiredis/pull/1080))
unknown
https://github.com/pizhenwei
unknown
https://help.github.com/github/administering-a-repository/configuration-options-for-dependency-updat
unknown
https://github.com/filipecosta90
unknown
https://github.com/ithewei.png
unknown
http://www.cyberz.org/blog/2009/12/08/svgpan-a-javascript-svg-panzoomdrag-library/
unknown
https://github.com/redis/hiredis/pull/1136))
unknown
https://github.com/Lipraxde.png
unknown
https://github.com/antirez/RESP3/blob/master/spec.md)
unknown
http://download.redis.io/releases/redis-$
unknown
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=53119
unknown
https://github.com/redis/hiredis/issues/794)
unknown
https://github.com/zuiderkwast
unknown
https://github.com/redis/hiredis/pull/1038))
unknown
https://github.com/kevin1018)
unknown
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=80922
unknown
https://github.com/redis/hiredis/pull/1091))
unknown
https://github.com/Oipo.png
unknown
https://github.com/redis/hiredis/pull/1124))
unknown
https://github.com/redis/hiredis/pull/1101))
unknown
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=86488
unknown
https://github.com/valentinogeron)
unknown
https://github.com/movebean)
unknown
https://github.com/ghost))
unknown
http://pyropus.ca/software/memtester/
unknown
https://github.com/hudayou
unknown
https://github.com/redis/hiredis/pull/665)
unknown
https://github.com/pbtummillo
unknown
https://github.com/redis/hiredis/pull/959))
unknown
https://github.com/redis/hiredis/pull/653)
unknown
http://www.math.hiroshima-u.ac.jp/~m-mat/MT/emt.html
unknown
https://github.com/redis/hiredis/pull/1026))
unknown
https://github.com/valentinogeron))
unknown
https://github.com/bugwz)
unknown
https://github.com/devnexen))
unknown
https://github.com/redis/hiredis/pull/1135))
unknown
https://sourceware.org/bugzilla/show_bug.cgi?id=206
unknown
https://github.com/pbotros))
unknown
https://github.com/redis/hiredis/issues/687)
unknown
https://github.com/redis/hiredis/pull/797)
unknown
https://github.com/redis/hiredis/pull/688)
unknown
https://github.com/vturchenko.png
unknown
https://github.com/redis/hiredis/pull/1014))
unknown
https://github.com/redis/hiredis/pull/652)
unknown
https://github.com/michael-grunder
unknown
https://github.com/ffontaine
unknown
https://github.com/redis/hiredis/pull/1090))
unknown
https://github.com/redis/hiredis/issues/421)
unknown
https://redis.io/topics/command-tips.
unknown
http://www.lua.org/about.html
unknown
https://github.com/tezc.png
unknown
http://jemalloc.net/jemalloc.3.html#opt.metadata_thp)
unknown
https://github.com/redis/redis/commit/%H%n%n%b
unknown
https://www.tty1.net/pycrc/
unknown
https://github.com/yossigo))
unknown
https://www.contributor-covenant.org/translations.
unknown
https://github.com/redis/hiredis/pull/578)
unknown
https://github.com/redis/hiredis/pull/699)
unknown
https://github.com/yossigo
unknown
https://github.com/redis/hiredis/pull/663)
unknown
https://github.com/redis/hiredis/pull/784)
unknown
http://www.lua.org/manual/
unknown
https://github.com/redis/hiredis/pull/796)
unknown
http://www.lua.org/uses.html
unknown
https://redis.io/topics/modules-intro.
unknown
http://www.lua.org/download.html
unknown
There are 90 hidden URLs, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
1F1FA8F3000
heap
page read and write
1F1FC464000
heap
page read and write
1F1FA8B6000
heap
page read and write
7AAC9FF000
stack
page read and write
1F1FA8FC000
heap
page read and write
1F1FA8CE000
heap
page read and write
1F1FA850000
heap
page read and write
1F1FA8D7000
heap
page read and write
1F1FA8B6000
heap
page read and write
1F1FA8AE000
heap
page read and write
1F1FA8BD000
heap
page read and write
1F1FA8A8000
heap
page read and write
1F1FA8FB000
heap
page read and write
1F1FA8CE000
heap
page read and write
1F1FE1B2000
heap
page read and write
1F183E00000
heap
page read and write
1F1FA8B6000
heap
page read and write
1F1FAAEB000
heap
page read and write
1F1FA8FB000
heap
page read and write
1F1FA8F3000
heap
page read and write
1F181E09000
heap
page read and write
1F1FA8DE000
heap
page read and write
1F1FA8CE000
heap
page read and write
1F1FA8CE000
heap
page read and write
7AAC6FE000
stack
page read and write
1F1FA8DD000
heap
page read and write
1F1FA8D8000
heap
page read and write
1F183400000
heap
page read and write
1F1FA8FC000
heap
page read and write
1F180A09000
heap
page read and write
1F1FA8AE000
heap
page read and write
1F1FAAE0000
heap
page read and write
1F1FA8AD000
heap
page read and write
1F180009000
heap
page read and write
1F1FC7B6000
heap
page read and write
1F1FA8B6000
heap
page read and write
1F1FA8E1000
heap
page read and write
1F1FAAE5000
heap
page read and write
1F1FEBB2000
heap
page read and write
7AAC8FE000
stack
page read and write
1F1FA750000
heap
page read and write
1F1FA89C000
heap
page read and write
1F1FA887000
heap
page read and write
1F182000000
heap
page read and write
1F1FA8A8000
heap
page read and write
1F1820C2000
heap
page read and write
1F1FA8A1000
heap
page read and write
1F1FA8A8000
heap
page read and write
1F182A00000
heap
page read and write
1F1FA8AE000
heap
page read and write
1F1FA8BC000
heap
page read and write
7AAC5FE000
stack
page read and write
1F1FA8B6000
heap
page read and write
1F1FA8E1000
heap
page read and write
7AAC4FA000
stack
page read and write
1F1FA880000
heap
page read and write
1F1818C0000
trusted library allocation
page read and write
1F1FA8A1000
heap
page read and write
1F1820C0000
heap
page read and write
7AACBFF000
stack
page read and write
1F1FA830000
heap
page read and write
1F1FD7B2000
heap
page read and write
1F1FF5B2000
heap
page read and write
1F1FD1B6000
heap
page read and write
1F1FA8A7000
heap
page read and write
7AACAFE000
stack
page read and write
1F1FA8B6000
heap
page read and write
1F1FA8CE000
heap
page read and write
1F1FA8D3000
heap
page read and write
1F1817A0000
heap
page read and write
1F1FC460000
heap
page read and write
1F181409000
heap
page read and write
There are 62 hidden memdumps, click here to show them.