Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\LisectAVT_2403002A_138.exe
|
"C:\Users\user\Desktop\LisectAVT_2403002A_138.exe"
|
 |
|
|
C:\Users\user\Desktop\LisectAVT_2403002A_138.exe
|
"C:\Users\user\Desktop\LisectAVT_2403002A_138.exe"
|
|
|
|
C:\Users\user\Desktop\LisectAVT_2403002A_138.exe
|
"C:\Users\user\Desktop\LisectAVT_2403002A_138.exe"
|
|
|
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://t.me/
|
unknown
|
||
|
https://noc.social/eQ
|
unknown
|
||
|
https://t.me/hi20220412A
|
unknown
|
||
|
https://t.me/hi20220412i/
|
unknown
|
||
|
https://web.telegram.org
|
unknown
|
||
|
https://noc.social~
|
unknown
|
||
|
https://t.me/LI
|
unknown
|
||
|
https://telegram.org/img/t_logo.png
|
unknown
|
||
|
https://noc.social/@samal6
|
149.28.78.238
|
||
|
https://noc.social;
|
unknown
|
||
|
https://t.me/hi20220412j
|
unknown
|
||
|
https://t.me/hi20220412
|
149.154.167.99
|
||
|
https://noc.social/
|
unknown
|
||
|
https://noc.social
|
unknown
|
||
|
https://noc.social/5
|
unknown
|
There are 5 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
t.me
|
149.154.167.99
|
||
|
noc.social
|
149.28.78.238
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
149.28.78.238
|
noc.social
|
United States
|
||
|
149.154.167.99
|
t.me
|
United Kingdom
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
400000
|
remote allocation
|
page execute and read and write
|
|
|
|
11B40000
|
direct allocation
|
page execute and read and write
|
|
|
|
11930000
|
direct allocation
|
page read and write
|
|
|
|
1454000
|
heap
|
page read and write
|
||
|
57E000
|
unkown
|
page write copy
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
3343000
|
heap
|
page read and write
|
||
|
334EF000
|
stack
|
page read and write
|
||
|
14DE000
|
heap
|
page read and write
|
||
|
1512000
|
heap
|
page read and write
|
||
|
1380000
|
heap
|
page read and write
|
||
|
57E000
|
unkown
|
page write copy
|
||
|
1454000
|
heap
|
page read and write
|
||
|
142F000
|
heap
|
page read and write
|
||
|
3275000
|
heap
|
page read and write
|
||
|
305E000
|
stack
|
page read and write
|
||
|
1487000
|
heap
|
page read and write
|
||
|
133C000
|
stack
|
page read and write
|
||
|
179E000
|
stack
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
FE0D000
|
stack
|
page read and write
|
||
|
551000
|
unkown
|
page execute and read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1479000
|
heap
|
page read and write
|
||
|
31CB000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1460000
|
trusted library allocation
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
2F9E000
|
stack
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
12F7000
|
stack
|
page read and write
|
||
|
189E000
|
stack
|
page read and write
|
||
|
1435000
|
heap
|
page read and write
|
||
|
551000
|
unkown
|
page execute and write copy
|
||
|
765000
|
unkown
|
page execute and write copy
|
||
|
1454000
|
heap
|
page read and write
|
||
|
148E000
|
heap
|
page read and write
|
||
|
3312F000
|
stack
|
page read and write
|
||
|
1014F000
|
stack
|
page read and write
|
||
|
707000
|
unkown
|
page readonly
|
||
|
14DA000
|
heap
|
page read and write
|
||
|
1472000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1004E000
|
stack
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
707000
|
unkown
|
page readonly
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
F781000
|
heap
|
page read and write
|
||
|
1460000
|
trusted library allocation
|
page read and write
|
||
|
3270000
|
heap
|
page read and write
|
||
|
551000
|
unkown
|
page execute and write copy
|
||
|
1454000
|
heap
|
page read and write
|
||
|
12F9000
|
stack
|
page read and write
|
||
|
333EE000
|
stack
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
57E000
|
unkown
|
page read and write
|
||
|
FD0D000
|
stack
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
142F000
|
heap
|
page read and write
|
||
|
FF50000
|
direct allocation
|
page read and write
|
||
|
F90000
|
heap
|
page read and write
|
||
|
1239000
|
stack
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1414000
|
heap
|
page read and write
|
||
|
11930000
|
direct allocation
|
page execute and read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
765000
|
unkown
|
page execute and write copy
|
||
|
1454000
|
heap
|
page read and write
|
||
|
116AF000
|
stack
|
page read and write
|
||
|
1390000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
148E000
|
heap
|
page read and write
|
||
|
F781000
|
heap
|
page read and write
|
||
|
57E000
|
unkown
|
page write copy
|
||
|
765000
|
unkown
|
page execute and write copy
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1435000
|
heap
|
page read and write
|
||
|
707000
|
unkown
|
page readonly
|
||
|
1460000
|
trusted library allocation
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
14A0000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
765000
|
unkown
|
page execute and read and write
|
||
|
550000
|
unkown
|
page readonly
|
||
|
1454000
|
heap
|
page read and write
|
||
|
32E2F000
|
stack
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
707000
|
unkown
|
page readonly
|
||
|
1454000
|
heap
|
page read and write
|
||
|
707000
|
unkown
|
page readonly
|
||
|
1480000
|
heap
|
page read and write
|
||
|
3302E000
|
stack
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
11BEB000
|
direct allocation
|
page execute and read and write
|
||
|
2F5E000
|
stack
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
551000
|
unkown
|
page execute and write copy
|
||
|
551000
|
unkown
|
page execute and write copy
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1192F000
|
stack
|
page read and write
|
||
|
4AB000
|
remote allocation
|
page execute and read and write
|
||
|
150E000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
333B0000
|
remote allocation
|
page read and write
|
||
|
1450000
|
heap
|
page read and write
|
||
|
32F2F000
|
stack
|
page read and write
|
||
|
1470000
|
heap
|
page read and write
|
||
|
3326D000
|
stack
|
page read and write
|
||
|
550000
|
unkown
|
page readonly
|
||
|
14D0000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
132A000
|
stack
|
page read and write
|
||
|
115AE000
|
stack
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
153E000
|
heap
|
page read and write
|
||
|
333B0000
|
remote allocation
|
page read and write
|
||
|
13B8000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
142E000
|
stack
|
page read and write
|
||
|
FF50000
|
direct allocation
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
14F9000
|
heap
|
page read and write
|
||
|
550000
|
unkown
|
page readonly
|
||
|
1513000
|
heap
|
page read and write
|
||
|
1420000
|
heap
|
page read and write
|
||
|
2FD0000
|
heap
|
page read and write
|
||
|
588000
|
unkown
|
page write copy
|
||
|
FA0000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
707000
|
unkown
|
page readonly
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
3322D000
|
stack
|
page read and write
|
||
|
F780000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
30C0000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
F781000
|
heap
|
page read and write
|
||
|
765000
|
unkown
|
page execute and write copy
|
||
|
1454000
|
heap
|
page read and write
|
||
|
117EF000
|
stack
|
page read and write
|
||
|
333B0000
|
remote allocation
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1479000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
550000
|
unkown
|
page readonly
|
||
|
550000
|
unkown
|
page readonly
|
||
|
147C000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
F2C000
|
stack
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
148B000
|
heap
|
page read and write
|
||
|
13F9000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
588000
|
unkown
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
550000
|
unkown
|
page readonly
|
||
|
1454000
|
heap
|
page read and write
|
||
|
551000
|
unkown
|
page execute and write copy
|
||
|
116EE000
|
stack
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
13EE000
|
stack
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1146E000
|
stack
|
page read and write
|
||
|
588000
|
unkown
|
page write copy
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1460000
|
trusted library allocation
|
page read and write
|
||
|
FF4F000
|
stack
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
FF0000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
FCC4000
|
heap
|
page read and write
|
||
|
1435000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
57E000
|
unkown
|
page write copy
|
||
|
588000
|
unkown
|
page write copy
|
||
|
1454000
|
heap
|
page read and write
|
||
|
3040000
|
direct allocation
|
page execute and read and write
|
||
|
588000
|
unkown
|
page write copy
|
||
|
FCC0000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1490000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1182E000
|
stack
|
page read and write
|
||
|
147D000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
150B000
|
heap
|
page read and write
|
||
|
1428000
|
heap
|
page read and write
|
||
|
765000
|
unkown
|
page execute and write copy
|
||
|
1454000
|
heap
|
page read and write
|
||
|
309D000
|
stack
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1460000
|
trusted library allocation
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
13A0000
|
direct allocation
|
page execute and read and write
|
||
|
1156F000
|
stack
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
146D000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
150E000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
588000
|
unkown
|
page write copy
|
||
|
1454000
|
heap
|
page read and write
|
||
|
FE4D000
|
stack
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
13B0000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
3336C000
|
stack
|
page read and write
|
||
|
57E000
|
unkown
|
page write copy
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
301E000
|
stack
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1537000
|
heap
|
page read and write
|
There are 255 hidden memdumps, click here to show them.