IOC Report
na.elf

loading gif

Processes

Path
Cmdline
Malicious
/tmp/na.elf
/tmp/na.elf
/tmp/na.elf
-
/tmp/na.elf
-
/tmp/na.elf
-
/tmp/na.elf
-
/tmp/na.elf
-
/tmp/na.elf
-
/tmp/na.elf
-

Domains

Name
IP
Malicious
catvision.dyn
212.60.5.153
shitrocket.dyn
176.32.32.113
catlovingfools.geek
212.192.13.95
hikvision.geek
80.78.26.121
catlovingfools.geek. [malformed]
unknown
shitrocket.dyn. [malformed]
unknown
hikvision.geek. [malformed]
unknown
catvision.dyn. [malformed]
unknown

IPs

IP
Domain
Country
Malicious
194.208.11.109
unknown
Austria
122.40.141.206
unknown
Korea Republic of
18.195.78.68
unknown
United States
218.52.46.228
unknown
Korea Republic of
184.29.182.57
unknown
United States
128.234.234.229
unknown
Saudi Arabia
219.99.225.50
unknown
Japan
53.81.196.248
unknown
Germany
215.91.43.12
unknown
United States
139.251.141.62
unknown
United States
133.155.43.121
unknown
Japan
189.152.3.179
unknown
Mexico
151.172.231.98
unknown
unknown
15.236.15.75
unknown
United States
163.245.19.47
unknown
United States
147.175.228.89
unknown
Slovakia (SLOVAK Republic)
176.110.4.10
unknown
Ukraine
206.62.82.43
unknown
United States
158.121.83.246
unknown
United States
112.205.13.4
unknown
Philippines
20.201.109.42
unknown
United States
153.118.89.203
unknown
China
167.129.232.194
unknown
Canada
148.188.66.139
unknown
United States
152.121.32.132
unknown
United States
57.50.158.65
unknown
Belgium
184.134.59.195
unknown
United States
114.134.127.123
unknown
Japan
175.209.232.90
unknown
Korea Republic of
56.55.47.44
unknown
United States
142.166.65.22
unknown
Canada
52.63.235.185
unknown
United States
28.91.39.130
unknown
United States
73.98.141.255
unknown
United States
198.210.56.59
unknown
United States
82.115.89.248
unknown
Poland
105.210.251.68
unknown
South Africa
9.170.73.43
unknown
United States
192.117.120.136
unknown
Israel
8.188.166.169
unknown
Singapore
42.2.200.145
unknown
Hong Kong
15.59.170.252
unknown
United States
178.81.128.40
unknown
Saudi Arabia
1.82.8.34
unknown
China
194.37.136.202
unknown
Austria
5.5.54.220
unknown
Germany
23.82.106.113
unknown
United States
167.135.191.204
unknown
United States
12.202.107.55
unknown
United States
215.33.97.207
unknown
United States
172.50.129.164
unknown
United States
37.186.250.137
unknown
Italy
59.79.11.118
unknown
China
180.232.89.109
unknown
Philippines
166.26.105.203
unknown
United States
220.79.61.205
unknown
Korea Republic of
86.208.210.157
unknown
France
111.168.156.47
unknown
Japan
171.133.159.157
unknown
United States
194.209.37.110
unknown
Switzerland
193.84.18.113
unknown
France
92.72.223.227
unknown
Germany
98.126.6.69
unknown
United States
15.150.109.39
unknown
United States
186.101.109.127
unknown
Ecuador
4.238.127.42
unknown
United States
186.98.225.135
unknown
Colombia
12.197.10.151
unknown
United States
195.25.119.136
unknown
France
120.189.11.193
unknown
Indonesia
45.5.248.128
unknown
unknown
173.202.160.108
unknown
United States
206.64.5.153
unknown
United States
166.178.53.245
unknown
United States
80.241.105.151
unknown
Switzerland
208.160.70.24
unknown
United States
130.230.236.19
unknown
Finland
107.199.244.143
unknown
United States
13.112.203.36
unknown
United States
2.37.157.74
unknown
Italy
16.238.26.220
unknown
United States
52.238.75.110
unknown
United States
71.203.217.150
unknown
United States
35.210.89.38
unknown
United States
48.130.121.236
unknown
United States
132.181.181.223
unknown
New Zealand
132.250.112.174
unknown
United States
163.109.89.172
unknown
France
174.103.238.36
unknown
United States
205.23.44.13
unknown
United States
221.98.182.176
unknown
Japan
189.4.141.113
unknown
Brazil
94.67.1.225
unknown
Greece
116.5.97.68
unknown
China
60.38.90.44
unknown
Japan
125.218.94.77
unknown
China
34.5.25.79
unknown
United States
79.196.146.241
unknown
Germany
181.61.167.19
unknown
Colombia
94.15.123.89
unknown
United Kingdom
There are 90 hidden IPs, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
7fb32c417000
page execute read
 malicious
7fb32c417000
page execute read
 malicious
7fb32c417000
page execute read
 malicious
7fb3b517b000
page read and write
7fb3ac000000
page read and write
55a335d83000
page execute and read and write
55a3360cb000
page read and write
7fb3b4462000
page read and write
7fb3ac021000
page read and write
7fb3b5136000
page read and write
7fb3ac021000
page read and write
55a335d9a000
page read and write
7fb3b4712000
page read and write
7fb32c45e000
page read and write
7fb3b512e000
page read and write
7fb32c460000
page read and write
7fb3b3c4c000
page read and write
55a333d7b000
page read and write
55a335d9a000
page read and write
7fb3b517b000
page read and write
7ffe90fde000
page execute read
7fb3b4712000
page read and write
55a333d85000
page read and write
55a333af3000
page execute read
7fb32c458000
page read and write
7fb32c45e000
page read and write
55a335d83000
page execute and read and write
7fb3b512e000
page read and write
7fb3b4ab3000
page read and write
7ffe90e6b000
page read and write
7fb3b5136000
page read and write
7fb3b4ad6000
page read and write
7fb3b4ad6000
page read and write
55a333d85000
page read and write
7fb3b517b000
page read and write
7fb3b5136000
page read and write
7fb3b4af3000
page read and write
7fb32c458000
page read and write
7fb32c458000
page read and write
7ffe90fde000
page execute read
55a3360cb000
page read and write
55a333d7b000
page read and write
7fb3b4ab3000
page read and write
7fb3b4ab3000
page read and write
7fb3b4454000
page read and write
7fb3b4e24000
page read and write
7fb3b4e24000
page read and write
7fb3b3c4c000
page read and write
7fb3ac021000
page read and write
7fb3b4af3000
page read and write
7fb32c45e000
page read and write
7ffe90e6b000
page read and write
7fb3b4454000
page read and write
55a333d85000
page read and write
55a333af3000
page execute read
7ffe90fde000
page execute read
55a335d9a000
page read and write
55a333af3000
page execute read
7fb3ac000000
page read and write
7fb3b4e24000
page read and write
7fb3b5005000
page read and write
7fb3b5005000
page read and write
7ffe90e6b000
page read and write
7fb3ac000000
page read and write
55a3360cb000
page read and write
7fb3b512e000
page read and write
7fb3b3c4c000
page read and write
55a333d7b000
page read and write
7fb3b4712000
page read and write
7fb3b4ad6000
page read and write
7fb3b4462000
page read and write
7fb3b5005000
page read and write
7fb3b4462000
page read and write
55a335d83000
page execute and read and write
7fb3b4454000
page read and write
7fb3b4af3000
page read and write
There are 66 hidden memdumps, click here to show them.