Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\PI_20052024.exe
|
"C:\Users\user\Desktop\PI_20052024.exe"
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://nsis.sf.net/NSIS_Error
|
unknown
|
||
|
http://nsis.sf.net/NSIS_ErrorError
|
unknown
|
||
|
http://nsis.sf.ne
|
unknown
|
||
|
http://nsis.sf.net/NSIS_Error(
|
unknown
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
4D1000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
42A000
|
unkown
|
page read and write
|
||
|
4D1000
|
heap
|
page read and write
|
||
|
2174000
|
heap
|
page read and write
|
||
|
625000
|
heap
|
page read and write
|
||
|
21D0000
|
heap
|
page read and write
|
||
|
4BF000
|
heap
|
page read and write
|
||
|
99000
|
stack
|
page read and write
|
||
|
40A000
|
unkown
|
page write copy
|
||
|
4A0000
|
heap
|
page read and write
|
||
|
4E4000
|
heap
|
page read and write
|
||
|
4DF000
|
heap
|
page read and write
|
||
|
470000
|
heap
|
page read and write
|
||
|
4A8000
|
heap
|
page read and write
|
||
|
7FF000
|
stack
|
page read and write
|
||
|
4E9000
|
heap
|
page read and write
|
||
|
620000
|
heap
|
page read and write
|
||
|
408000
|
unkown
|
page readonly
|
||
|
5DE000
|
stack
|
page read and write
|
||
|
4E9000
|
heap
|
page read and write
|
||
|
4FC000
|
heap
|
page read and write
|
||
|
4D6000
|
heap
|
page read and write
|
||
|
212E000
|
stack
|
page read and write
|
||
|
4F4000
|
heap
|
page read and write
|
||
|
40A000
|
unkown
|
page read and write
|
||
|
4D5000
|
heap
|
page read and write
|
||
|
271F000
|
stack
|
page read and write
|
||
|
408000
|
unkown
|
page readonly
|
||
|
480000
|
heap
|
page read and write
|
||
|
4FC000
|
heap
|
page read and write
|
||
|
4E6000
|
heap
|
page read and write
|
||
|
261F000
|
stack
|
page read and write
|
||
|
8FF000
|
stack
|
page read and write
|
||
|
4FC000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
21BE000
|
stack
|
page read and write
|
||
|
949000
|
heap
|
page read and write
|
||
|
4D9000
|
heap
|
page read and write
|
||
|
43B000
|
unkown
|
page readonly
|
||
|
423000
|
unkown
|
page read and write
|
||
|
940000
|
heap
|
page read and write
|
||
|
4E6000
|
heap
|
page read and write
|
||
|
19A000
|
stack
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
4E9000
|
heap
|
page read and write
|
||
|
4E4000
|
heap
|
page read and write
|
||
|
920000
|
heap
|
page read and write
|
||
|
4E4000
|
heap
|
page read and write
|
||
|
4E6000
|
heap
|
page read and write
|
||
|
43B000
|
unkown
|
page readonly
|
||
|
3FA0000
|
heap
|
page read and write
|
||
|
61E000
|
stack
|
page read and write
|
||
|
945000
|
heap
|
page read and write
|
||
|
2170000
|
heap
|
page read and write
|
||
|
3FB0000
|
heap
|
page read and write
|
||
|
4090000
|
trusted library allocation
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
4D6000
|
heap
|
page read and write
|
There are 49 hidden memdumps, click here to show them.