IOC Report
file.exe

loading gif

Processes

Path
Cmdline
Malicious
C:\Users\user\Desktop\file.exe
"C:\Users\user\Desktop\file.exe"
malicious

URLs

Name
IP
Malicious
http://185.215.113.206/c4becf79229cb002.php
185.215.113.206
http://185.215.113.206/c4becf79229cb002.php/
unknown
http://185.215.113.206/c4becf79229cb002.phpft
unknown
http://185.215.113.206/
185.215.113.206
http://185.215.113.206
unknown
http://185.215.113.206/c4becf79229cb002.php8
unknown
http://185.215.113.206/c4becf79229cb002.phph
unknown

IPs

IP
Domain
Country
Malicious
185.215.113.206
unknown
Portugal
malicious

Memdumps

Base Address
Regiontype
Protect
Malicious
185E000
heap
page read and write
malicious
B01000
unkown
page execute and read and write
malicious
54D0000
direct allocation
page read and write
malicious
5031000
heap
page read and write
43CE000
stack
page read and write
3ECE000
stack
page read and write
3330000
direct allocation
page read and write
1D69E000
stack
page read and write
5680000
direct allocation
page execute and read and write
3330000
direct allocation
page read and write
34CE000
stack
page read and write
16D5000
heap
page read and write
5031000
heap
page read and write
FEF000
unkown
page execute and write copy
334B000
heap
page read and write
322E000
stack
page read and write
FEE000
unkown
page execute and read and write
BAF000
unkown
page execute and read and write
5031000
heap
page read and write
5031000
heap
page read and write
1535000
stack
page read and write
1D80F000
stack
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
3B0E000
stack
page read and write
3330000
direct allocation
page read and write
185A000
heap
page read and write
5031000
heap
page read and write
4C8E000
stack
page read and write
5050000
heap
page read and write
450E000
stack
page read and write
118A000
unkown
page execute and read and write
5040000
heap
page read and write
3330000
direct allocation
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
1D59D000
stack
page read and write
49CF000
stack
page read and write
5031000
heap
page read and write
5620000
direct allocation
page execute and read and write
5031000
heap
page read and write
5031000
heap
page read and write
143C000
stack
page read and write
1D45E000
stack
page read and write
16D0000
heap
page read and write
5031000
heap
page read and write
428E000
stack
page read and write
388E000
stack
page read and write
400E000
stack
page read and write
398F000
stack
page read and write
1D94C000
stack
page read and write
5031000
heap
page read and write
4DCE000
stack
page read and write
5031000
heap
page read and write
181E000
stack
page read and write
3FCF000
stack
page read and write
5031000
heap
page read and write
1D70E000
stack
page read and write
18CB000
heap
page read and write
48CE000
stack
page read and write
5031000
heap
page read and write
54C0000
direct allocation
page read and write
18BA000
heap
page read and write
500F000
stack
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
1660000
heap
page read and write
5660000
direct allocation
page execute and read and write
5630000
direct allocation
page execute and read and write
B00000
unkown
page readonly
5031000
heap
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
D4A000
unkown
page write copy
4A0E000
stack
page read and write
384F000
stack
page read and write
5506000
direct allocation
page read and write
488F000
stack
page read and write
4C4F000
stack
page read and write
18E1000
heap
page read and write
3C4E000
stack
page read and write
5650000
direct allocation
page execute and read and write
5470000
trusted library allocation
page read and write
5640000
direct allocation
page execute and read and write
1A4F000
stack
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
B00000
unkown
page read and write
1840000
heap
page read and write
5670000
direct allocation
page execute and read and write
565E000
stack
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
3330000
direct allocation
page read and write
3330000
direct allocation
page read and write
360E000
stack
page read and write
5031000
heap
page read and write
1D41F000
stack
page read and write
5010000
heap
page read and write
4D8F000
stack
page read and write
338C000
stack
page read and write
5031000
heap
page read and write
B01000
unkown
page execute and write copy
5031000
heap
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
153E000
stack
page read and write
3330000
direct allocation
page read and write
5031000
heap
page read and write
4ECF000
stack
page read and write
3340000
heap
page read and write
3347000
heap
page read and write
5031000
heap
page read and write
FD7000
unkown
page execute and read and write
D4A000
unkown
page read and write
5031000
heap
page read and write
FEE000
unkown
page execute and write copy
1850000
heap
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
5030000
heap
page read and write
5650000
direct allocation
page execute and read and write
3D8E000
stack
page read and write
5031000
heap
page read and write
118B000
unkown
page execute and write copy
460F000
stack
page read and write
FE0000
unkown
page execute and read and write
5031000
heap
page read and write
16CD000
stack
page read and write
3330000
direct allocation
page read and write
5031000
heap
page read and write
18D3000
heap
page read and write
4F0E000
stack
page read and write
5031000
heap
page read and write
438F000
stack
page read and write
414E000
stack
page read and write
370F000
stack
page read and write
ED2000
unkown
page execute and read and write
1DA8F000
stack
page read and write
348F000
stack
page read and write
1580000
heap
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
FAE000
unkown
page execute and read and write
3330000
direct allocation
page read and write
1D55F000
stack
page read and write
54C0000
direct allocation
page read and write
464E000
stack
page read and write
332F000
stack
page read and write
3ACF000
stack
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
35CF000
stack
page read and write
4B4E000
stack
page read and write
3330000
direct allocation
page read and write
1D98D000
stack
page read and write
17DE000
stack
page read and write
D38000
unkown
page execute and read and write
1D84D000
stack
page read and write
3330000
direct allocation
page read and write
18A4000
heap
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
374E000
stack
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
3330000
direct allocation
page read and write
5031000
heap
page read and write
3C0F000
stack
page read and write
3E8F000
stack
page read and write
3330000
direct allocation
page read and write
424F000
stack
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
410F000
stack
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
39CE000
stack
page read and write
B96000
unkown
page execute and read and write
5031000
heap
page read and write
478E000
stack
page read and write
D4C000
unkown
page execute and read and write
54C0000
direct allocation
page read and write
3330000
direct allocation
page read and write
474F000
stack
page read and write
B8E000
unkown
page execute and read and write
5031000
heap
page read and write
5031000
heap
page read and write
B37000
unkown
page execute and read and write
44CF000
stack
page read and write
4B0F000
stack
page read and write
560F000
stack
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
5031000
heap
page read and write
550E000
stack
page read and write
3D4F000
stack
page read and write
5031000
heap
page read and write
There are 200 hidden memdumps, click here to show them.