Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
SecuriteInfo.com.Trojan.GenericKD.72211100.17568.13083.exe
|
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Local\Temp\21130707-67bd-4fd2-91d2-b9f759127e7b\GunaUIDotNetRT.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\SecuriteInfo.com.Trojan.GenericKD.72211100.17568.13083.exe
|
"C:\Users\user\Desktop\SecuriteInfo.com.Trojan.GenericKD.72211100.17568.13083.exe"
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://crl.thawte.com/ThawteTimestampingCA.crl0
|
unknown
|
||
|
http://www.symauth.com/cps0(
|
unknown
|
||
|
http://www.symauth.com/rpa00
|
unknown
|
||
|
https://github.com/dotnet/runtime/issues/24271YFailed
|
unknown
|
||
|
http://ocsp.thawte.com0
|
unknown
|
||
|
https://github.com/adamhathcock/sharpcompress
|
unknown
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
192000
|
unkown
|
page readonly
|
|
|
|
2651000
|
trusted library allocation
|
page read and write
|
|
|
|
5CDE000
|
heap
|
page read and write
|
||
|
289F000
|
trusted library allocation
|
page read and write
|
||
|
8150000
|
trusted library allocation
|
page read and write
|
||
|
27E8000
|
trusted library allocation
|
page read and write
|
||
|
737000
|
stack
|
page read and write
|
||
|
7780000
|
trusted library allocation
|
page read and write
|
||
|
6340000
|
trusted library allocation
|
page execute and read and write
|
||
|
27F8000
|
trusted library allocation
|
page read and write
|
||
|
7A00000
|
trusted library allocation
|
page read and write
|
||
|
2738000
|
trusted library allocation
|
page read and write
|
||
|
4B50000
|
trusted library allocation
|
page read and write
|
||
|
2770000
|
trusted library allocation
|
page read and write
|
||
|
7D72000
|
trusted library allocation
|
page read and write
|
||
|
2630000
|
trusted library allocation
|
page execute and read and write
|
||
|
78C0000
|
trusted library allocation
|
page execute and read and write
|
||
|
4B65000
|
trusted library allocation
|
page read and write
|
||
|
6E165000
|
unkown
|
page read and write
|
||
|
2893000
|
trusted library allocation
|
page read and write
|
||
|
295B000
|
trusted library allocation
|
page read and write
|
||
|
2732000
|
trusted library allocation
|
page read and write
|
||
|
2913000
|
trusted library allocation
|
page read and write
|
||
|
5850000
|
trusted library section
|
page read and write
|
||
|
5258000
|
heap
|
page read and write
|
||
|
2762000
|
trusted library allocation
|
page read and write
|
||
|
28FD000
|
trusted library allocation
|
page read and write
|
||
|
24EE000
|
stack
|
page read and write
|
||
|
2443000
|
trusted library allocation
|
page execute and read and write
|
||
|
7BC0000
|
heap
|
page read and write
|
||
|
27A6000
|
trusted library allocation
|
page read and write
|
||
|
6E169000
|
unkown
|
page readonly
|
||
|
27F0000
|
trusted library allocation
|
page read and write
|
||
|
293B000
|
trusted library allocation
|
page read and write
|
||
|
4F1A000
|
trusted library allocation
|
page read and write
|
||
|
24A0000
|
heap
|
page read and write
|
||
|
59E4000
|
trusted library section
|
page read and write
|
||
|
4CE5000
|
heap
|
page execute and read and write
|
||
|
76D7000
|
heap
|
page read and write
|
||
|
246A000
|
trusted library allocation
|
page execute and read and write
|
||
|
274C000
|
trusted library allocation
|
page read and write
|
||
|
2734000
|
trusted library allocation
|
page read and write
|
||
|
6E166000
|
unkown
|
page readonly
|
||
|
78D0000
|
trusted library allocation
|
page read and write
|
||
|
28A1000
|
trusted library allocation
|
page read and write
|
||
|
28D1000
|
trusted library allocation
|
page read and write
|
||
|
27CA000
|
trusted library allocation
|
page read and write
|
||
|
28B3000
|
trusted library allocation
|
page read and write
|
||
|
7940000
|
trusted library allocation
|
page read and write
|
||
|
2921000
|
trusted library allocation
|
page read and write
|
||
|
2973000
|
trusted library allocation
|
page read and write
|
||
|
63BB000
|
stack
|
page read and write
|
||
|
7696000
|
heap
|
page read and write
|
||
|
287B000
|
trusted library allocation
|
page read and write
|
||
|
2847000
|
trusted library allocation
|
page read and write
|
||
|
28B9000
|
trusted library allocation
|
page read and write
|
||
|
277E000
|
trusted library allocation
|
page read and write
|
||
|
767E000
|
heap
|
page read and write
|
||
|
28BD000
|
trusted library allocation
|
page read and write
|
||
|
9DE000
|
stack
|
page read and write
|
||
|
2440000
|
trusted library allocation
|
page read and write
|
||
|
639000
|
stack
|
page read and write
|
||
|
7A0000
|
heap
|
page read and write
|
||
|
272E000
|
trusted library allocation
|
page read and write
|
||
|
8330000
|
trusted library allocation
|
page execute and read and write
|
||
|
27D2000
|
trusted library allocation
|
page read and write
|
||
|
4B9E000
|
trusted library allocation
|
page read and write
|
||
|
2955000
|
trusted library allocation
|
page read and write
|
||
|
2823000
|
trusted library allocation
|
page read and write
|
||
|
2871000
|
trusted library allocation
|
page read and write
|
||
|
5B45000
|
trusted library allocation
|
page read and write
|
||
|
529E000
|
stack
|
page read and write
|
||
|
245D000
|
trusted library allocation
|
page execute and read and write
|
||
|
81F0000
|
trusted library allocation
|
page read and write
|
||
|
27A0000
|
trusted library allocation
|
page read and write
|
||
|
7770000
|
trusted library allocation
|
page execute and read and write
|
||
|
3CC5000
|
trusted library allocation
|
page read and write
|
||
|
4BC0000
|
trusted library allocation
|
page read and write
|
||
|
4F18000
|
trusted library allocation
|
page read and write
|
||
|
295F000
|
trusted library allocation
|
page read and write
|
||
|
A30000
|
heap
|
page read and write
|
||
|
B6E000
|
stack
|
page read and write
|
||
|
291B000
|
trusted library allocation
|
page read and write
|
||
|
A66000
|
heap
|
page read and write
|
||
|
2831000
|
trusted library allocation
|
page read and write
|
||
|
247B000
|
trusted library allocation
|
page execute and read and write
|
||
|
4C42000
|
trusted library allocation
|
page read and write
|
||
|
2881000
|
trusted library allocation
|
page read and write
|
||
|
6E151000
|
unkown
|
page execute read
|
||
|
8B0000
|
heap
|
page read and write
|
||
|
2460000
|
trusted library allocation
|
page read and write
|
||
|
2764000
|
trusted library allocation
|
page read and write
|
||
|
7890000
|
trusted library allocation
|
page read and write
|
||
|
2470000
|
trusted library allocation
|
page read and write
|
||
|
2466000
|
trusted library allocation
|
page execute and read and write
|
||
|
2748000
|
trusted library allocation
|
page read and write
|
||
|
4C30000
|
trusted library allocation
|
page execute and read and write
|
||
|
190000
|
unkown
|
page readonly
|
||
|
2977000
|
trusted library allocation
|
page read and write
|
||
|
5B41000
|
trusted library allocation
|
page read and write
|
||
|
2640000
|
heap
|
page execute and read and write
|
||
|
2989000
|
trusted library allocation
|
page read and write
|
||
|
2875000
|
trusted library allocation
|
page read and write
|
||
|
27FA000
|
trusted library allocation
|
page read and write
|
||
|
5B30000
|
trusted library allocation
|
page read and write
|
||
|
282F000
|
trusted library allocation
|
page read and write
|
||
|
27BE000
|
trusted library allocation
|
page read and write
|
||
|
7960000
|
trusted library allocation
|
page execute and read and write
|
||
|
78A0000
|
trusted library allocation
|
page execute and read and write
|
||
|
515F000
|
stack
|
page read and write
|
||
|
293F000
|
trusted library allocation
|
page read and write
|
||
|
296B000
|
trusted library allocation
|
page read and write
|
||
|
5CF3000
|
heap
|
page read and write
|
||
|
27EC000
|
trusted library allocation
|
page read and write
|
||
|
64C0000
|
heap
|
page read and write
|
||
|
27AA000
|
trusted library allocation
|
page read and write
|
||
|
5D05000
|
heap
|
page read and write
|
||
|
27D4000
|
trusted library allocation
|
page read and write
|
||
|
3651000
|
trusted library allocation
|
page read and write
|
||
|
A60000
|
heap
|
page read and write
|
||
|
27C0000
|
trusted library allocation
|
page read and write
|
||
|
2917000
|
trusted library allocation
|
page read and write
|
||
|
5CC9000
|
heap
|
page read and write
|
||
|
768E000
|
heap
|
page read and write
|
||
|
4C20000
|
heap
|
page read and write
|
||
|
7880000
|
trusted library allocation
|
page read and write
|
||
|
25EF000
|
stack
|
page read and write
|
||
|
244D000
|
trusted library allocation
|
page execute and read and write
|
||
|
7910000
|
trusted library allocation
|
page execute and read and write
|
||
|
37A2000
|
trusted library allocation
|
page read and write
|
||
|
285D000
|
trusted library allocation
|
page read and write
|
||
|
2768000
|
trusted library allocation
|
page read and write
|
||
|
5B47000
|
trusted library allocation
|
page read and write
|
||
|
28DF000
|
trusted library allocation
|
page read and write
|
||
|
4F30000
|
trusted library allocation
|
page execute and read and write
|
||
|
274E000
|
trusted library allocation
|
page read and write
|
||
|
6370000
|
heap
|
page read and write
|
||
|
297D000
|
trusted library allocation
|
page read and write
|
||
|
2444000
|
trusted library allocation
|
page read and write
|
||
|
2475000
|
trusted library allocation
|
page execute and read and write
|
||
|
2895000
|
trusted library allocation
|
page read and write
|
||
|
27F4000
|
trusted library allocation
|
page read and write
|
||
|
5D39000
|
heap
|
page read and write
|
||
|
5C52000
|
heap
|
page read and write
|
||
|
2811000
|
trusted library allocation
|
page read and write
|
||
|
28B5000
|
trusted library allocation
|
page read and write
|
||
|
4F10000
|
trusted library allocation
|
page read and write
|
||
|
282B000
|
trusted library allocation
|
page read and write
|
||
|
2851000
|
trusted library allocation
|
page read and write
|
||
|
521D000
|
heap
|
page read and write
|
||
|
2477000
|
trusted library allocation
|
page execute and read and write
|
||
|
2490000
|
trusted library allocation
|
page read and write
|
||
|
2933000
|
trusted library allocation
|
page read and write
|
||
|
26C8000
|
trusted library allocation
|
page read and write
|
||
|
6375000
|
heap
|
page read and write
|
||
|
5C4A000
|
heap
|
page read and write
|
||
|
28F9000
|
trusted library allocation
|
page read and write
|
||
|
7D5000
|
heap
|
page read and write
|
||
|
27E0000
|
trusted library allocation
|
page read and write
|
||
|
6650000
|
heap
|
page read and write
|
||
|
7699000
|
heap
|
page read and write
|
||
|
280B000
|
trusted library allocation
|
page read and write
|
||
|
5C7C000
|
heap
|
page read and write
|
||
|
276C000
|
trusted library allocation
|
page read and write
|
||
|
2853000
|
trusted library allocation
|
page read and write
|
||
|
4B70000
|
heap
|
page read and write
|
||
|
28D9000
|
trusted library allocation
|
page read and write
|
||
|
27FE000
|
trusted library allocation
|
page read and write
|
||
|
272A000
|
trusted library allocation
|
page read and write
|
||
|
78B0000
|
heap
|
page execute and read and write
|
||
|
7E6000
|
heap
|
page read and write
|
||
|
7790000
|
trusted library allocation
|
page read and write
|
||
|
2987000
|
trusted library allocation
|
page read and write
|
||
|
28BF000
|
trusted library allocation
|
page read and write
|
||
|
5CBF000
|
heap
|
page read and write
|
||
|
7AE000
|
heap
|
page read and write
|
||
|
278A000
|
trusted library allocation
|
page read and write
|
||
|
5160000
|
heap
|
page read and write
|
||
|
95A0000
|
trusted library allocation
|
page read and write
|
||
|
285F000
|
trusted library allocation
|
page read and write
|
||
|
4F00000
|
trusted library allocation
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
2453000
|
trusted library allocation
|
page read and write
|
||
|
4658000
|
trusted library allocation
|
page read and write
|
||
|
27DA000
|
trusted library allocation
|
page read and write
|
||
|
78F0000
|
trusted library allocation
|
page read and write
|
||
|
4C40000
|
trusted library allocation
|
page read and write
|
||
|
7AA000
|
heap
|
page read and write
|
||
|
279E000
|
trusted library allocation
|
page read and write
|
||
|
2935000
|
trusted library allocation
|
page read and write
|
||
|
289B000
|
trusted library allocation
|
page read and write
|
||
|
27C4000
|
trusted library allocation
|
page read and write
|
||
|
7660000
|
heap
|
page read and write
|
||
|
298B000
|
trusted library allocation
|
page read and write
|
||
|
6E163000
|
unkown
|
page readonly
|
||
|
2472000
|
trusted library allocation
|
page read and write
|
||
|
5B2F000
|
stack
|
page read and write
|
||
|
4B40000
|
trusted library allocation
|
page read and write
|
||
|
287D000
|
trusted library allocation
|
page read and write
|
||
|
7870000
|
trusted library allocation
|
page read and write
|
||
|
262C000
|
stack
|
page read and write
|
||
|
2462000
|
trusted library allocation
|
page read and write
|
||
|
5CAD000
|
heap
|
page read and write
|
||
|
3B31000
|
trusted library allocation
|
page read and write
|
||
|
4EFE000
|
stack
|
page read and write
|
||
|
4BA1000
|
trusted library allocation
|
page read and write
|
||
|
780000
|
heap
|
page read and write
|
||
|
5BC0000
|
heap
|
page read and write
|
||
|
4BA6000
|
trusted library allocation
|
page read and write
|
||
|
2841000
|
trusted library allocation
|
page read and write
|
||
|
2782000
|
trusted library allocation
|
page read and write
|
||
|
388000
|
unkown
|
page readonly
|
||
|
2901000
|
trusted library allocation
|
page read and write
|
||
|
7A10000
|
trusted library allocation
|
page execute and read and write
|
||
|
5D1C000
|
heap
|
page read and write
|
||
|
E20000
|
heap
|
page read and write
|
||
|
2450000
|
trusted library allocation
|
page read and write
|
||
|
4BAD000
|
trusted library allocation
|
page read and write
|
||
|
3683000
|
trusted library allocation
|
page read and write
|
||
|
6350000
|
trusted library allocation
|
page read and write
|
||
|
28F1000
|
trusted library allocation
|
page read and write
|
||
|
4F20000
|
trusted library allocation
|
page read and write
|
||
|
2971000
|
trusted library allocation
|
page read and write
|
||
|
5C42000
|
heap
|
page read and write
|
||
|
64DB000
|
heap
|
page read and write
|
||
|
64BD000
|
stack
|
page read and write
|
||
|
2740000
|
trusted library allocation
|
page read and write
|
||
|
27FC000
|
trusted library allocation
|
page read and write
|
||
|
4B30000
|
trusted library allocation
|
page read and write
|
||
|
64FA000
|
heap
|
page read and write
|
||
|
839000
|
heap
|
page read and write
|
||
|
28D5000
|
trusted library allocation
|
page read and write
|
||
|
87B000
|
heap
|
page read and write
|
||
|
64F6000
|
heap
|
page read and write
|
||
|
882000
|
heap
|
page read and write
|
||
|
78F6000
|
trusted library allocation
|
page read and write
|
||
|
2941000
|
trusted library allocation
|
page read and write
|
||
|
4B80000
|
trusted library allocation
|
page read and write
|
||
|
E10000
|
trusted library allocation
|
page read and write
|
||
|
2953000
|
trusted library allocation
|
page read and write
|
||
|
27AC000
|
trusted library allocation
|
page read and write
|
||
|
28DD000
|
trusted library allocation
|
page read and write
|
||
|
47ED000
|
stack
|
page read and write
|
||
|
2728000
|
trusted library allocation
|
page read and write
|
||
|
291F000
|
trusted library allocation
|
page read and write
|
||
|
78F2000
|
trusted library allocation
|
page read and write
|
||
|
27BA000
|
trusted library allocation
|
page read and write
|
||
|
27EE000
|
trusted library allocation
|
page read and write
|
||
|
2698000
|
trusted library allocation
|
page read and write
|
||
|
2827000
|
trusted library allocation
|
page read and write
|
||
|
2961000
|
trusted library allocation
|
page read and write
|
||
|
297B000
|
trusted library allocation
|
page read and write
|
||
|
7E2000
|
heap
|
page read and write
|
||
|
7860000
|
trusted library allocation
|
page execute and read and write
|
||
|
4F50000
|
heap
|
page read and write
|
||
|
4B60000
|
trusted library allocation
|
page read and write
|
||
|
2859000
|
trusted library allocation
|
page read and write
|
||
|
7C8000
|
heap
|
page read and write
|
||
|
78E0000
|
trusted library allocation
|
page read and write
|
||
|
6E150000
|
unkown
|
page readonly
|
||
|
4BE0000
|
trusted library allocation
|
page read and write
|
||
|
3A45000
|
trusted library allocation
|
page read and write
|
||
|
27DE000
|
trusted library allocation
|
page read and write
|
||
|
64D0000
|
heap
|
page read and write
|
||
|
4B73000
|
heap
|
page read and write
|
||
|
27C8000
|
trusted library allocation
|
page read and write
|
||
|
990000
|
heap
|
page read and write
|
||
|
2742000
|
trusted library allocation
|
page read and write
|
||
|
5C97000
|
heap
|
page read and write
|
||
|
2845000
|
trusted library allocation
|
page read and write
|
||
|
280F000
|
trusted library allocation
|
page read and write
|
||
|
7670000
|
heap
|
page read and write
|
||
|
278C000
|
trusted library allocation
|
page read and write
|
||
|
5CE3000
|
heap
|
page read and write
|
||
|
E28000
|
heap
|
page read and write
|
||
|
296F000
|
trusted library allocation
|
page read and write
|
||
|
6E167000
|
unkown
|
page write copy
|
||
|
7900000
|
trusted library allocation
|
page read and write
|
||
|
28F5000
|
trusted library allocation
|
page read and write
|
||
|
2786000
|
trusted library allocation
|
page read and write
|
||
|
2849000
|
trusted library allocation
|
page read and write
|
||
|
789A000
|
trusted library allocation
|
page read and write
|
||
|
2736000
|
trusted library allocation
|
page read and write
|
||
|
4CE0000
|
heap
|
page execute and read and write
|
There are 274 hidden memdumps, click here to show them.