Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\auDkRkE2iJ.exe
|
"C:\Users\user\Desktop\auDkRkE2iJ.exe"
|
 |
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
213.21.220.222:8080
|
|
||
|
https://api.ip.sb/ip
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/SequenceAcknowledgement
|
unknown
|
||
|
http://tempuri.org/RestAPI/TreeObject1LR
|
unknown
|
||
|
http://tempuri.org/RestAPI/TreeObject2LR
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/08/addressing/role/anonymous
|
unknown
|
||
|
http://tempuri.org/RestAPI/TreeObject2ResponseXx$
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/envelope/
|
unknown
|
||
|
http://tempuri.org/RestAPI/TreeObject3ResponseXx$
|
unknown
|
||
|
https://api.ip.s
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/05/identity/right/possesspropertyl
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/AckRequested
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/CreateSequenceResponse
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/08/addressing
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/08/addressing/fault
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/TerminateSequence
|
unknown
|
||
|
http://tempuri.org/RestAPI/TreeObject2
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/LastMessage
|
unknown
|
||
|
http://tempuri.org/8)
|
unknown
|
||
|
http://tempuri.org/RestAPI/TreeObject3LR
|
unknown
|
||
|
http://tempuri.org/RestAPI/
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/CreateSequence
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/actor/next
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/dns
|
unknown
|
||
|
http://tempuri.org/RestAPI/TreeObject1ResponseXx$
|
unknown
|
There are 16 hidden URLs, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
213.21.220.222
|
unknown
|
Latvia
|
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
9C2000
|
unkown
|
page readonly
|
|
|
|
5580000
|
trusted library allocation
|
page read and write
|
||
|
5290000
|
trusted library allocation
|
page read and write
|
||
|
12B0000
|
trusted library allocation
|
page read and write
|
||
|
3CD1000
|
trusted library allocation
|
page read and write
|
||
|
51E1000
|
trusted library allocation
|
page read and write
|
||
|
2BB8000
|
trusted library allocation
|
page read and write
|
||
|
1360000
|
trusted library allocation
|
page execute and read and write
|
||
|
1370000
|
heap
|
page read and write
|
||
|
10BA000
|
heap
|
page read and write
|
||
|
12C0000
|
trusted library allocation
|
page read and write
|
||
|
51D2000
|
trusted library allocation
|
page read and write
|
||
|
12E2000
|
trusted library allocation
|
page read and write
|
||
|
51DE000
|
trusted library allocation
|
page read and write
|
||
|
2BB5000
|
trusted library allocation
|
page read and write
|
||
|
12E0000
|
trusted library allocation
|
page read and write
|
||
|
2B80000
|
trusted library allocation
|
page read and write
|
||
|
1310000
|
heap
|
page read and write
|
||
|
12B3000
|
trusted library allocation
|
page execute and read and write
|
||
|
10B0000
|
heap
|
page read and write
|
||
|
5280000
|
trusted library allocation
|
page execute and read and write
|
||
|
2F2C000
|
trusted library allocation
|
page read and write
|
||
|
51C6000
|
trusted library allocation
|
page read and write
|
||
|
2B90000
|
trusted library allocation
|
page read and write
|
||
|
523E000
|
trusted library allocation
|
page read and write
|
||
|
1300000
|
trusted library allocation
|
page read and write
|
||
|
12E7000
|
trusted library allocation
|
page execute and read and write
|
||
|
12DA000
|
trusted library allocation
|
page execute and read and write
|
||
|
2EEA000
|
trusted library allocation
|
page read and write
|
||
|
F0E000
|
stack
|
page read and write
|
||
|
5230000
|
trusted library allocation
|
page read and write
|
||
|
51F0000
|
trusted library allocation
|
page read and write
|
||
|
12D2000
|
trusted library allocation
|
page read and write
|
||
|
5330000
|
heap
|
page execute and read and write
|
||
|
2B7E000
|
stack
|
page read and write
|
||
|
584E000
|
stack
|
page read and write
|
||
|
10BE000
|
heap
|
page read and write
|
||
|
2DE4000
|
trusted library allocation
|
page read and write
|
||
|
5345000
|
heap
|
page read and write
|
||
|
2BC0000
|
heap
|
page execute and read and write
|
||
|
109E000
|
stack
|
page read and write
|
||
|
2BB0000
|
trusted library allocation
|
page read and write
|
||
|
4E6E000
|
stack
|
page read and write
|
||
|
10A0000
|
trusted library allocation
|
page read and write
|
||
|
5358000
|
heap
|
page read and write
|
||
|
570E000
|
stack
|
page read and write
|
||
|
2F6E000
|
trusted library allocation
|
page read and write
|
||
|
55CE000
|
stack
|
page read and write
|
||
|
56CF000
|
stack
|
page read and write
|
||
|
2CCE000
|
stack
|
page read and write
|
||
|
12D6000
|
trusted library allocation
|
page execute and read and write
|
||
|
F95000
|
heap
|
page read and write
|
||
|
5211000
|
trusted library allocation
|
page read and write
|
||
|
5560000
|
trusted library allocation
|
page read and write
|
||
|
2D14000
|
trusted library allocation
|
page read and write
|
||
|
F90000
|
heap
|
page read and write
|
||
|
135E000
|
stack
|
page read and write
|
||
|
52B0000
|
trusted library allocation
|
page read and write
|
||
|
5221000
|
trusted library allocation
|
page read and write
|
||
|
5300000
|
trusted library allocation
|
page read and write
|
||
|
12D0000
|
trusted library allocation
|
page read and write
|
||
|
2D18000
|
trusted library allocation
|
page read and write
|
||
|
5320000
|
trusted library allocation
|
page read and write
|
||
|
5950000
|
trusted library allocation
|
page read and write
|
||
|
10F8000
|
heap
|
page read and write
|
||
|
51B0000
|
trusted library allocation
|
page read and write
|
||
|
2BBB000
|
trusted library allocation
|
page read and write
|
||
|
3CD9000
|
trusted library allocation
|
page read and write
|
||
|
12CD000
|
trusted library allocation
|
page execute and read and write
|
||
|
EC0000
|
heap
|
page read and write
|
||
|
7EF90000
|
trusted library allocation
|
page execute and read and write
|
||
|
D77000
|
stack
|
page read and write
|
||
|
2DDF000
|
trusted library allocation
|
page read and write
|
||
|
594F000
|
stack
|
page read and write
|
||
|
5340000
|
heap
|
page read and write
|
||
|
12E5000
|
trusted library allocation
|
page execute and read and write
|
||
|
12B4000
|
trusted library allocation
|
page read and write
|
||
|
2EA8000
|
trusted library allocation
|
page read and write
|
||
|
51EA000
|
trusted library allocation
|
page read and write
|
||
|
F80000
|
heap
|
page read and write
|
||
|
DE0000
|
heap
|
page read and write
|
||
|
2CD1000
|
trusted library allocation
|
page read and write
|
||
|
51BB000
|
trusted library allocation
|
page read and write
|
||
|
5570000
|
trusted library allocation
|
page read and write
|
||
|
9C0000
|
unkown
|
page readonly
|
||
|
5240000
|
trusted library allocation
|
page read and write
|
||
|
5250000
|
trusted library allocation
|
page read and write
|
||
|
12BD000
|
trusted library allocation
|
page execute and read and write
|
||
|
2D96000
|
trusted library allocation
|
page read and write
|
||
|
1390000
|
heap
|
page read and write
|
||
|
5238000
|
trusted library allocation
|
page read and write
|
||
|
2E5B000
|
trusted library allocation
|
page read and write
|
||
|
5310000
|
trusted library allocation
|
page execute and read and write
|
||
|
51C1000
|
trusted library allocation
|
page read and write
|
||
|
5440000
|
trusted library allocation
|
page execute and read and write
|
||
|
5200000
|
trusted library allocation
|
page read and write
|
||
|
52A0000
|
trusted library allocation
|
page execute and read and write
|
||
|
12EB000
|
trusted library allocation
|
page execute and read and write
|
||
|
C7C000
|
stack
|
page read and write
|
||
|
580E000
|
stack
|
page read and write
|
There are 90 hidden memdumps, click here to show them.