Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\DTOmEgnQPL.exe
|
"C:\Users\user\Desktop\DTOmEgnQPL.exe"
|
 |
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
213.21.220.222:8080
|
|
||
|
https://api.ip.sb/ip
|
unknown
|
||
|
http://tempuri.org/Contract/MSValue2LR
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/CreateSequenceResponse
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/SequenceAcknowledgement
|
unknown
|
||
|
http://tempuri.org/Contract/MSValue1LR
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/08/addressing
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/08/addressing/fault
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/08/addressing/role/anonymous
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/TerminateSequence
|
unknown
|
||
|
http://tempuri.org/Contract/MSValue3LR
|
unknown
|
||
|
http://tempuri.org/Contract/
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/envelope/
|
unknown
|
||
|
http://tempuri.org/Contract/MSValue1Response
|
unknown
|
||
|
http://tempuri.org/Contract/MSValue2Response
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm
|
unknown
|
||
|
http://tempuri.org/
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/LastMessage
|
unknown
|
||
|
http://tempuri.org/Contract/MSValue3Response
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/AckRequested
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/CreateSequence
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/actor/next
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/dns
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/05/identity/right/possessproperty
|
unknown
|
There are 14 hidden URLs, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
213.21.220.222
|
unknown
|
Latvia
|
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
30BB000
|
trusted library allocation
|
page read and write
|
|
|
|
D72000
|
unkown
|
page readonly
|
|
|
|
D70000
|
unkown
|
page readonly
|
||
|
16E0000
|
trusted library allocation
|
page read and write
|
||
|
1768000
|
trusted library allocation
|
page read and write
|
||
|
1157000
|
stack
|
page read and write
|
||
|
56DE000
|
trusted library allocation
|
page read and write
|
||
|
7EC0000
|
trusted library allocation
|
page read and write
|
||
|
7C7D000
|
trusted library allocation
|
page read and write
|
||
|
15C0000
|
heap
|
page read and write
|
||
|
7E20000
|
trusted library allocation
|
page execute and read and write
|
||
|
11C0000
|
heap
|
page read and write
|
||
|
315F000
|
trusted library allocation
|
page read and write
|
||
|
16E7000
|
trusted library allocation
|
page execute and read and write
|
||
|
7AB0000
|
trusted library allocation
|
page read and write
|
||
|
7E90000
|
trusted library allocation
|
page read and write
|
||
|
7C50000
|
trusted library allocation
|
page read and write
|
||
|
7DC0000
|
heap
|
page read and write
|
||
|
1710000
|
trusted library allocation
|
page execute and read and write
|
||
|
7ED0000
|
trusted library allocation
|
page read and write
|
||
|
804E000
|
stack
|
page read and write
|
||
|
56CE000
|
stack
|
page read and write
|
||
|
1490000
|
heap
|
page read and write
|
||
|
7B3B000
|
trusted library allocation
|
page read and write
|
||
|
15AF000
|
stack
|
page read and write
|
||
|
13A0000
|
trusted library allocation
|
page read and write
|
||
|
883E000
|
stack
|
page read and write
|
||
|
2F9E000
|
stack
|
page read and write
|
||
|
7B38000
|
trusted library allocation
|
page read and write
|
||
|
13AD000
|
trusted library allocation
|
page execute and read and write
|
||
|
7DF0000
|
trusted library allocation
|
page read and write
|
||
|
7E10000
|
trusted library allocation
|
page read and write
|
||
|
31FE000
|
trusted library allocation
|
page read and write
|
||
|
16E5000
|
trusted library allocation
|
page execute and read and write
|
||
|
56D0000
|
trusted library allocation
|
page read and write
|
||
|
7EA0000
|
trusted library allocation
|
page execute and read and write
|
||
|
7E00000
|
trusted library allocation
|
page execute and read and write
|
||
|
7C00000
|
trusted library allocation
|
page read and write
|
||
|
7AA5000
|
trusted library allocation
|
page read and write
|
||
|
7EE0000
|
trusted library allocation
|
page execute and read and write
|
||
|
7BE0000
|
trusted library allocation
|
page execute and read and write
|
||
|
2FA0000
|
heap
|
page read and write
|
||
|
56D4000
|
trusted library allocation
|
page read and write
|
||
|
12C0000
|
heap
|
page read and write
|
||
|
56F6000
|
trusted library allocation
|
page read and write
|
||
|
7B22000
|
trusted library allocation
|
page read and write
|
||
|
16DA000
|
trusted library allocation
|
page execute and read and write
|
||
|
7AD0000
|
trusted library allocation
|
page read and write
|
||
|
15B3000
|
trusted library allocation
|
page read and write
|
||
|
15BD000
|
trusted library allocation
|
page execute and read and write
|
||
|
16E2000
|
trusted library allocation
|
page read and write
|
||
|
13B8000
|
heap
|
page read and write
|
||
|
13BE000
|
heap
|
page read and write
|
||
|
7C61000
|
trusted library allocation
|
page read and write
|
||
|
7B30000
|
trusted library allocation
|
page read and write
|
||
|
56DB000
|
trusted library allocation
|
page read and write
|
||
|
50B8000
|
trusted library allocation
|
page read and write
|
||
|
1700000
|
trusted library allocation
|
page read and write
|
||
|
16D2000
|
trusted library allocation
|
page read and write
|
||
|
30AE000
|
stack
|
page read and write
|
||
|
7C81000
|
trusted library allocation
|
page read and write
|
||
|
319B000
|
trusted library allocation
|
page read and write
|
||
|
56D6000
|
trusted library allocation
|
page read and write
|
||
|
7E80000
|
trusted library allocation
|
page read and write
|
||
|
1730000
|
trusted library allocation
|
page read and write
|
||
|
1760000
|
trusted library allocation
|
page read and write
|
||
|
7C40000
|
trusted library allocation
|
page read and write
|
||
|
7CA0000
|
heap
|
page execute and read and write
|
||
|
5710000
|
heap
|
page read and write
|
||
|
31CC000
|
trusted library allocation
|
page read and write
|
||
|
1740000
|
heap
|
page execute and read and write
|
||
|
13F4000
|
heap
|
page read and write
|
||
|
56EE000
|
trusted library allocation
|
page read and write
|
||
|
13B0000
|
heap
|
page read and write
|
||
|
7C77000
|
trusted library allocation
|
page read and write
|
||
|
7AA0000
|
trusted library allocation
|
page read and write
|
||
|
7C0B000
|
trusted library allocation
|
page read and write
|
||
|
7C90000
|
trusted library allocation
|
page execute and read and write
|
||
|
12C5000
|
heap
|
page read and write
|
||
|
7DA0000
|
trusted library allocation
|
page read and write
|
||
|
7E70000
|
trusted library allocation
|
page read and write
|
||
|
7C2E000
|
trusted library allocation
|
page read and write
|
||
|
1390000
|
trusted library allocation
|
page read and write
|
||
|
13A4000
|
trusted library allocation
|
page read and write
|
||
|
2F5E000
|
stack
|
page read and write
|
||
|
86FF000
|
stack
|
page read and write
|
||
|
130E000
|
stack
|
page read and write
|
||
|
16D0000
|
trusted library allocation
|
page read and write
|
||
|
40B1000
|
trusted library allocation
|
page read and write
|
||
|
7B20000
|
trusted library allocation
|
page read and write
|
||
|
7F9C0000
|
trusted library allocation
|
page execute and read and write
|
||
|
1722000
|
trusted library allocation
|
page read and write
|
||
|
7B10000
|
heap
|
page read and write
|
||
|
1750000
|
trusted library allocation
|
page read and write
|
||
|
56FD000
|
trusted library allocation
|
page read and write
|
||
|
322F000
|
trusted library allocation
|
page read and write
|
||
|
7C31000
|
trusted library allocation
|
page read and write
|
||
|
56F1000
|
trusted library allocation
|
page read and write
|
||
|
7DB0000
|
trusted library allocation
|
page read and write
|
||
|
7C70000
|
trusted library allocation
|
page read and write
|
||
|
55CE000
|
stack
|
page read and write
|
||
|
7C11000
|
trusted library allocation
|
page read and write
|
||
|
1770000
|
heap
|
page read and write
|
||
|
12A0000
|
heap
|
page read and write
|
||
|
56E2000
|
trusted library allocation
|
page read and write
|
||
|
1350000
|
heap
|
page read and write
|
||
|
30B1000
|
trusted library allocation
|
page read and write
|
||
|
873E000
|
stack
|
page read and write
|
||
|
13E4000
|
heap
|
page read and write
|
||
|
7C3A000
|
trusted library allocation
|
page read and write
|
||
|
13A3000
|
trusted library allocation
|
page execute and read and write
|
||
|
7EB0000
|
trusted library allocation
|
page read and write
|
||
|
1720000
|
trusted library allocation
|
page read and write
|
||
|
16EB000
|
trusted library allocation
|
page execute and read and write
|
||
|
16D6000
|
trusted library allocation
|
page execute and read and write
|
||
|
7C16000
|
trusted library allocation
|
page read and write
|
||
|
524E000
|
stack
|
page read and write
|
||
|
1482000
|
heap
|
page read and write
|
||
|
48B5000
|
trusted library allocation
|
page read and write
|
||
|
7C22000
|
trusted library allocation
|
page read and write
|
||
|
5713000
|
heap
|
page read and write
|
||
|
105A000
|
stack
|
page read and write
|
||
|
7B35000
|
trusted library allocation
|
page read and write
|
There are 113 hidden memdumps, click here to show them.