Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\e8pLA1OhWt.exe
|
"C:\Users\user\Desktop\e8pLA1OhWt.exe"
|
 |
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
213.21.220.222:8080
|
|
||
|
http://tempuri.org/RestAPI/TreeObject2Response
|
unknown
|
||
|
https://api.ip.sb/ip
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/SequenceAcknowledgement
|
unknown
|
||
|
http://tempuri.org/RestAPI/TreeObject1LR
|
unknown
|
||
|
http://tempuri.org/RestAPI/TreeObject2LR
|
unknown
|
||
|
http://tempuri.org/RestAPI/TreeObject3Response
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/08/addressing/role/anonymous
|
unknown
|
||
|
http://tempuri.org/RestAPI/TreeObject1Response
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/envelope/
|
unknown
|
||
|
https://api.ip.s
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/AckRequested
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/CreateSequenceResponse
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/08/addressing
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/08/addressing/fault
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/TerminateSequence
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/LastMessage
|
unknown
|
||
|
http://tempuri.org/8)
|
unknown
|
||
|
http://tempuri.org/RestAPI/TreeObject3LR
|
unknown
|
||
|
http://tempuri.org/RestAPI/
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/CreateSequence
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/actor/next
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/dns
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/05/identity/right/possessproperty
|
unknown
|
There are 15 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
s-part-0035.t-0009.t-msedge.net
|
13.107.246.63
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
213.21.220.222
|
unknown
|
Latvia
|
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
602000
|
unkown
|
page readonly
|
|
|
|
7FB60000
|
trusted library allocation
|
page execute and read and write
|
||
|
28E5000
|
trusted library allocation
|
page read and write
|
||
|
2AC7000
|
trusted library allocation
|
page read and write
|
||
|
D17000
|
heap
|
page read and write
|
||
|
D31000
|
heap
|
page read and write
|
||
|
FFE000
|
stack
|
page read and write
|
||
|
4FC0000
|
trusted library allocation
|
page read and write
|
||
|
103E000
|
stack
|
page read and write
|
||
|
2C8C000
|
trusted library allocation
|
page read and write
|
||
|
4E6B000
|
trusted library allocation
|
page read and write
|
||
|
F20000
|
trusted library allocation
|
page read and write
|
||
|
5010000
|
trusted library allocation
|
page read and write
|
||
|
5C9F000
|
stack
|
page read and write
|
||
|
4FD0000
|
trusted library allocation
|
page read and write
|
||
|
28E0000
|
trusted library allocation
|
page read and write
|
||
|
2CCE000
|
trusted library allocation
|
page read and write
|
||
|
4F40000
|
trusted library allocation
|
page execute and read and write
|
||
|
2AF2000
|
trusted library allocation
|
page read and write
|
||
|
F6B000
|
trusted library allocation
|
page execute and read and write
|
||
|
F50000
|
trusted library allocation
|
page read and write
|
||
|
4EC0000
|
trusted library allocation
|
page read and write
|
||
|
4E76000
|
trusted library allocation
|
page read and write
|
||
|
F52000
|
trusted library allocation
|
page read and write
|
||
|
2A6C000
|
trusted library allocation
|
page read and write
|
||
|
F34000
|
trusted library allocation
|
page read and write
|
||
|
28EB000
|
trusted library allocation
|
page read and write
|
||
|
F3D000
|
trusted library allocation
|
page execute and read and write
|
||
|
4ED0000
|
trusted library allocation
|
page read and write
|
||
|
F56000
|
trusted library allocation
|
page execute and read and write
|
||
|
4EC8000
|
trusted library allocation
|
page read and write
|
||
|
28F0000
|
trusted library allocation
|
page read and write
|
||
|
F65000
|
trusted library allocation
|
page execute and read and write
|
||
|
CFE000
|
heap
|
page read and write
|
||
|
4ECE000
|
trusted library allocation
|
page read and write
|
||
|
F67000
|
trusted library allocation
|
page execute and read and write
|
||
|
F30000
|
trusted library allocation
|
page read and write
|
||
|
4EE0000
|
trusted library allocation
|
page read and write
|
||
|
EF0000
|
heap
|
page read and write
|
||
|
F5A000
|
trusted library allocation
|
page execute and read and write
|
||
|
4E9A000
|
trusted library allocation
|
page read and write
|
||
|
1090000
|
heap
|
page read and write
|
||
|
2A78000
|
trusted library allocation
|
page read and write
|
||
|
2ACB000
|
trusted library allocation
|
page read and write
|
||
|
4F20000
|
trusted library allocation
|
page read and write
|
||
|
4FB0000
|
trusted library allocation
|
page execute and read and write
|
||
|
4FA0000
|
trusted library allocation
|
page execute and read and write
|
||
|
28E8000
|
trusted library allocation
|
page read and write
|
||
|
B00000
|
heap
|
page read and write
|
||
|
D24000
|
heap
|
page read and write
|
||
|
F33000
|
trusted library allocation
|
page execute and read and write
|
||
|
2B37000
|
trusted library allocation
|
page read and write
|
||
|
A60000
|
heap
|
page read and write
|
||
|
4FF0000
|
trusted library allocation
|
page execute and read and write
|
||
|
A50000
|
heap
|
page read and write
|
||
|
526E000
|
stack
|
page read and write
|
||
|
4E71000
|
trusted library allocation
|
page read and write
|
||
|
53EE000
|
stack
|
page read and write
|
||
|
4F30000
|
trusted library allocation
|
page read and write
|
||
|
2BBB000
|
trusted library allocation
|
page read and write
|
||
|
2C07000
|
trusted library allocation
|
page read and write
|
||
|
DEE000
|
heap
|
page read and write
|
||
|
5B9E000
|
stack
|
page read and write
|
||
|
FA0000
|
trusted library allocation
|
page read and write
|
||
|
4E82000
|
trusted library allocation
|
page read and write
|
||
|
AAE000
|
stack
|
page read and write
|
||
|
CDF000
|
stack
|
page read and write
|
||
|
2C49000
|
trusted library allocation
|
page read and write
|
||
|
4F10000
|
trusted library allocation
|
page read and write
|
||
|
4E8E000
|
trusted library allocation
|
page read and write
|
||
|
2910000
|
heap
|
page read and write
|
||
|
5151000
|
heap
|
page read and write
|
||
|
1080000
|
heap
|
page execute and read and write
|
||
|
1060000
|
heap
|
page execute and read and write
|
||
|
1070000
|
trusted library allocation
|
page execute and read and write
|
||
|
5132000
|
heap
|
page read and write
|
||
|
F62000
|
trusted library allocation
|
page read and write
|
||
|
6EC000
|
stack
|
page read and write
|
||
|
2B43000
|
trusted library allocation
|
page read and write
|
||
|
FB0000
|
heap
|
page read and write
|
||
|
4E60000
|
trusted library allocation
|
page read and write
|
||
|
2900000
|
trusted library allocation
|
page read and write
|
||
|
2B24000
|
trusted library allocation
|
page read and write
|
||
|
5130000
|
heap
|
page read and write
|
||
|
4EB1000
|
trusted library allocation
|
page read and write
|
||
|
5000000
|
trusted library allocation
|
page read and write
|
||
|
2A70000
|
trusted library allocation
|
page read and write
|
||
|
2AEE000
|
trusted library allocation
|
page read and write
|
||
|
2A21000
|
trusted library allocation
|
page read and write
|
||
|
4EA1000
|
trusted library allocation
|
page read and write
|
||
|
CF8000
|
heap
|
page read and write
|
||
|
F4D000
|
trusted library allocation
|
page execute and read and write
|
||
|
2B3C000
|
trusted library allocation
|
page read and write
|
||
|
3A21000
|
trusted library allocation
|
page read and write
|
||
|
536E000
|
stack
|
page read and write
|
||
|
2A1F000
|
stack
|
page read and write
|
||
|
53AE000
|
stack
|
page read and write
|
||
|
4B1E000
|
stack
|
page read and write
|
||
|
4E91000
|
trusted library allocation
|
page read and write
|
||
|
600000
|
unkown
|
page readonly
|
||
|
F90000
|
trusted library allocation
|
page execute and read and write
|
||
|
1040000
|
trusted library allocation
|
page read and write
|
||
|
4FE0000
|
trusted library allocation
|
page read and write
|
||
|
7E7000
|
stack
|
page read and write
|
||
|
B05000
|
heap
|
page read and write
|
||
|
F43000
|
trusted library allocation
|
page read and write
|
||
|
CF0000
|
heap
|
page read and write
|
||
|
4F90000
|
trusted library allocation
|
page execute and read and write
|
||
|
5140000
|
heap
|
page read and write
|
There are 99 hidden memdumps, click here to show them.