Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\mS9Dzx612m.exe
|
"C:\Users\user\Desktop\mS9Dzx612m.exe"
|
 |
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
seznam.zapto.org
|
34.102.5.126
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
34.102.5.126
|
seznam.zapto.org
|
United States
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER
|
di
|
||
|
HKEY_CURRENT_USER\SOFTWARE\76c8ec7d474b4123895
|
[kl]
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
2601000
|
trusted library allocation
|
page read and write
|
|
|
|
25B0000
|
trusted library section
|
page read and write
|
|
|
|
663000
|
heap
|
page read and write
|
||
|
4CAC000
|
stack
|
page read and write
|
||
|
5879000
|
heap
|
page read and write
|
||
|
A96000
|
trusted library allocation
|
page execute and read and write
|
||
|
4B60000
|
heap
|
page read and write
|
||
|
2545000
|
trusted library allocation
|
page read and write
|
||
|
2430000
|
trusted library allocation
|
page read and write
|
||
|
62E000
|
heap
|
page read and write
|
||
|
5A0000
|
heap
|
page read and write
|
||
|
4D71000
|
trusted library allocation
|
page read and write
|
||
|
4D1B000
|
stack
|
page read and write
|
||
|
A7D000
|
trusted library allocation
|
page execute and read and write
|
||
|
5A30000
|
heap
|
page read and write
|
||
|
A60000
|
trusted library allocation
|
page read and write
|
||
|
F0000
|
unkown
|
page readonly
|
||
|
505E000
|
stack
|
page read and write
|
||
|
4D60000
|
heap
|
page read and write
|
||
|
250B000
|
trusted library allocation
|
page read and write
|
||
|
2550000
|
trusted library allocation
|
page read and write
|
||
|
2504000
|
trusted library allocation
|
page read and write
|
||
|
B0E000
|
stack
|
page read and write
|
||
|
590000
|
heap
|
page read and write
|
||
|
8EF000
|
stack
|
page read and write
|
||
|
B46000
|
heap
|
page read and write
|
||
|
AC0000
|
trusted library allocation
|
page read and write
|
||
|
A90000
|
trusted library allocation
|
page read and write
|
||
|
3608000
|
trusted library allocation
|
page read and write
|
||
|
2450000
|
heap
|
page read and write
|
||
|
43A000
|
stack
|
page read and write
|
||
|
2526000
|
trusted library allocation
|
page read and write
|
||
|
660000
|
heap
|
page read and write
|
||
|
361A000
|
trusted library allocation
|
page read and write
|
||
|
697000
|
heap
|
page read and write
|
||
|
25E0000
|
trusted library allocation
|
page read and write
|
||
|
4C6E000
|
stack
|
page read and write
|
||
|
A74000
|
trusted library allocation
|
page read and write
|
||
|
A66000
|
trusted library allocation
|
page read and write
|
||
|
2440000
|
trusted library allocation
|
page read and write
|
||
|
647000
|
heap
|
page read and write
|
||
|
654000
|
heap
|
page read and write
|
||
|
252D000
|
trusted library allocation
|
page read and write
|
||
|
2A6E000
|
trusted library allocation
|
page read and write
|
||
|
600000
|
heap
|
page read and write
|
||
|
244C000
|
trusted library allocation
|
page read and write
|
||
|
3618000
|
trusted library allocation
|
page read and write
|
||
|
251E000
|
trusted library allocation
|
page read and write
|
||
|
F2000
|
unkown
|
page readonly
|
||
|
B10000
|
trusted library allocation
|
page execute and read and write
|
||
|
2500000
|
trusted library allocation
|
page read and write
|
||
|
5840000
|
heap
|
page read and write
|
||
|
2521000
|
trusted library allocation
|
page read and write
|
||
|
3644000
|
trusted library allocation
|
page read and write
|
||
|
4F1F000
|
stack
|
page read and write
|
||
|
3615000
|
trusted library allocation
|
page read and write
|
||
|
A73000
|
trusted library allocation
|
page execute and read and write
|
||
|
242C000
|
stack
|
page read and write
|
||
|
4D5E000
|
stack
|
page read and write
|
||
|
4B63000
|
heap
|
page read and write
|
||
|
2506000
|
trusted library allocation
|
page read and write
|
||
|
2530000
|
trusted library allocation
|
page read and write
|
||
|
141000
|
unkown
|
page readonly
|
||
|
560000
|
heap
|
page read and write
|
||
|
3634000
|
trusted library allocation
|
page read and write
|
||
|
AA2000
|
trusted library allocation
|
page read and write
|
||
|
95E000
|
stack
|
page read and write
|
||
|
25D0000
|
trusted library allocation
|
page execute and read and write
|
||
|
3631000
|
trusted library allocation
|
page read and write
|
||
|
628000
|
heap
|
page read and write
|
||
|
4CD0000
|
heap
|
page execute and read and write
|
||
|
AAB000
|
trusted library allocation
|
page execute and read and write
|
||
|
3649000
|
trusted library allocation
|
page read and write
|
||
|
4F5E000
|
stack
|
page read and write
|
||
|
46FE000
|
stack
|
page read and write
|
||
|
2468000
|
trusted library allocation
|
page read and write
|
||
|
565000
|
heap
|
page read and write
|
||
|
13F000
|
unkown
|
page readonly
|
||
|
250E000
|
trusted library allocation
|
page read and write
|
||
|
B20000
|
trusted library allocation
|
page read and write
|
||
|
25C0000
|
trusted library allocation
|
page read and write
|
||
|
5960000
|
trusted library allocation
|
page read and write
|
||
|
3601000
|
trusted library allocation
|
page read and write
|
||
|
B40000
|
heap
|
page read and write
|
||
|
2532000
|
trusted library allocation
|
page read and write
|
||
|
AA7000
|
trusted library allocation
|
page execute and read and write
|
||
|
537000
|
stack
|
page read and write
|
||
|
910000
|
heap
|
page read and write
|
||
|
7FD30000
|
trusted library allocation
|
page execute and read and write
|
||
|
144000
|
unkown
|
page readonly
|
||
|
251A000
|
trusted library allocation
|
page read and write
|
||
|
23EE000
|
stack
|
page read and write
|
||
|
A8D000
|
trusted library allocation
|
page execute and read and write
|
||
|
A9A000
|
trusted library allocation
|
page execute and read and write
|
||
|
4B1C000
|
stack
|
page read and write
|
||
|
A80000
|
trusted library allocation
|
page read and write
|
||
|
25AE000
|
stack
|
page read and write
|
||
|
620000
|
heap
|
page read and write
|
||
|
4B59000
|
stack
|
page read and write
|
||
|
3646000
|
trusted library allocation
|
page read and write
|
||
|
2512000
|
trusted library allocation
|
page read and write
|
||
|
A5E000
|
stack
|
page read and write
|
||
|
5950000
|
trusted library allocation
|
page execute and read and write
|
||
|
5990000
|
heap
|
page read and write
|
||
|
5EE000
|
stack
|
page read and write
|
||
|
2667000
|
trusted library allocation
|
page read and write
|
||
|
2540000
|
trusted library allocation
|
page read and write
|
||
|
25F0000
|
heap
|
page execute and read and write
|
||
|
A70000
|
trusted library allocation
|
page read and write
|
There are 99 hidden memdumps, click here to show them.