Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
mvSettings.ex#.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\Desktop\error.log
|
ASCII text, with CRLF line terminators
|
dropped
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\mvSettings.ex#.exe
|
"C:\Users\user\Desktop\mvSettings.ex#.exe"
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://pki-crl.symauth.com/ca_7a5c3a0c73117406add19312bc1bc23f/LatestCRL.crl07
|
unknown
|
||
|
http://cv.iptc.org/newscodes/digitalsourcetype/compositeWithTrainedAlgorithmicMedia
|
unknown
|
||
|
http://www.indyproject.org/
|
unknown
|
||
|
http://pki-ocsp.symauth.com0
|
unknown
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
574E000
|
direct allocation
|
page read and write
|
||
|
241B000
|
unkown
|
page execute and read and write
|
||
|
5C3F000
|
stack
|
page read and write
|
||
|
5261000
|
heap
|
page read and write
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
5B30000
|
heap
|
page read and write
|
||
|
5261000
|
heap
|
page read and write
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
5731000
|
direct allocation
|
page read and write
|
||
|
5261000
|
heap
|
page read and write
|
||
|
21E3000
|
unkown
|
page execute and read and write
|
||
|
5261000
|
heap
|
page read and write
|
||
|
E4C000
|
unkown
|
page readonly
|
||
|
1F19000
|
unkown
|
page execute and read and write
|
||
|
2411000
|
unkown
|
page execute and read and write
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
241D000
|
unkown
|
page execute and read and write
|
||
|
1F7A000
|
unkown
|
page execute and read and write
|
||
|
58F0000
|
direct allocation
|
page execute and read and write
|
||
|
F6B000
|
unkown
|
page readonly
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
35B0000
|
heap
|
page read and write
|
||
|
1D5B000
|
unkown
|
page execute and read and write
|
||
|
5360000
|
trusted library allocation
|
page read and write
|
||
|
579F000
|
direct allocation
|
page read and write
|
||
|
56A0000
|
direct allocation
|
page read and write
|
||
|
56A0000
|
direct allocation
|
page read and write
|
||
|
56F6000
|
direct allocation
|
page read and write
|
||
|
57B4000
|
direct allocation
|
page read and write
|
||
|
26B9000
|
unkown
|
page execute and read and write
|
||
|
5943000
|
heap
|
page read and write
|
||
|
1F0F000
|
unkown
|
page execute and read and write
|
||
|
286B000
|
unkown
|
page execute and read and write
|
||
|
1F11000
|
unkown
|
page execute and read and write
|
||
|
5261000
|
heap
|
page read and write
|
||
|
2B69000
|
unkown
|
page execute read
|
||
|
5261000
|
heap
|
page read and write
|
||
|
5773000
|
direct allocation
|
page read and write
|
||
|
3A80000
|
heap
|
page read and write
|
||
|
23FF000
|
unkown
|
page execute and read and write
|
||
|
56BA000
|
direct allocation
|
page read and write
|
||
|
56A0000
|
direct allocation
|
page read and write
|
||
|
1D71000
|
unkown
|
page execute and read and write
|
||
|
9F1000
|
unkown
|
page execute read
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
5F4000
|
heap
|
page read and write
|
||
|
1D65000
|
unkown
|
page execute and read and write
|
||
|
5261000
|
heap
|
page read and write
|
||
|
2409000
|
unkown
|
page execute and read and write
|
||
|
1D77000
|
unkown
|
page execute and read and write
|
||
|
D6B000
|
unkown
|
page write copy
|
||
|
240D000
|
unkown
|
page execute and read and write
|
||
|
E36000
|
unkown
|
page readonly
|
||
|
577B000
|
direct allocation
|
page read and write
|
||
|
9F0000
|
unkown
|
page readonly
|
||
|
3AB0000
|
heap
|
page read and write
|
||
|
5261000
|
heap
|
page read and write
|
||
|
1D63000
|
unkown
|
page execute and read and write
|
||
|
57A6000
|
direct allocation
|
page read and write
|
||
|
E75000
|
unkown
|
page readonly
|
||
|
5261000
|
heap
|
page read and write
|
||
|
57CA000
|
direct allocation
|
page read and write
|
||
|
2693000
|
unkown
|
page execute and read and write
|
||
|
5B0C000
|
stack
|
page read and write
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
F9F000
|
unkown
|
page readonly
|
||
|
575D000
|
direct allocation
|
page read and write
|
||
|
2405000
|
unkown
|
page execute and read and write
|
||
|
D6F000
|
unkown
|
page read and write
|
||
|
E90000
|
unkown
|
page readonly
|
||
|
1CBB000
|
unkown
|
page read and write
|
||
|
1EF1000
|
unkown
|
page execute and read and write
|
||
|
5789000
|
direct allocation
|
page read and write
|
||
|
2403000
|
unkown
|
page execute and read and write
|
||
|
5782000
|
direct allocation
|
page read and write
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
D40000
|
unkown
|
page write copy
|
||
|
1F0D000
|
unkown
|
page execute and read and write
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
1D81000
|
unkown
|
page execute and read and write
|
||
|
5261000
|
heap
|
page read and write
|
||
|
5764000
|
direct allocation
|
page read and write
|
||
|
5260000
|
heap
|
page read and write
|
||
|
56D7000
|
direct allocation
|
page read and write
|
||
|
5261000
|
heap
|
page read and write
|
||
|
56F5000
|
direct allocation
|
page read and write
|
||
|
27FC000
|
unkown
|
page execute and read and write
|
||
|
571A000
|
direct allocation
|
page read and write
|
||
|
2689000
|
unkown
|
page execute and read and write
|
||
|
D78000
|
unkown
|
page readonly
|
||
|
5940000
|
heap
|
page read and write
|
||
|
21E9000
|
unkown
|
page execute and read and write
|
||
|
1F9A000
|
unkown
|
page execute and read and write
|
||
|
5755000
|
direct allocation
|
page read and write
|
||
|
57D1000
|
direct allocation
|
page read and write
|
||
|
26AD000
|
unkown
|
page execute and read and write
|
||
|
5F4000
|
heap
|
page read and write
|
||
|
57AD000
|
direct allocation
|
page read and write
|
||
|
9F0000
|
unkown
|
page readonly
|
||
|
1CBB000
|
unkown
|
page write copy
|
||
|
1D87000
|
unkown
|
page execute and read and write
|
||
|
1D83000
|
unkown
|
page execute and read and write
|
||
|
2673000
|
unkown
|
page execute and read and write
|
||
|
284D000
|
unkown
|
page execute and read and write
|
||
|
5B10000
|
heap
|
page read and write
|
||
|
1F07000
|
unkown
|
page execute and read and write
|
||
|
1FB0000
|
unkown
|
page execute and read and write
|
||
|
584B000
|
direct allocation
|
page read and write
|
||
|
1F13000
|
unkown
|
page execute and read and write
|
||
|
1CC3000
|
unkown
|
page execute and read and write
|
||
|
5261000
|
heap
|
page read and write
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
5798000
|
direct allocation
|
page read and write
|
||
|
5713000
|
direct allocation
|
page read and write
|
||
|
56C9000
|
direct allocation
|
page read and write
|
||
|
5738000
|
direct allocation
|
page read and write
|
||
|
5F4000
|
heap
|
page read and write
|
||
|
5261000
|
heap
|
page read and write
|
||
|
240B000
|
unkown
|
page execute and read and write
|
||
|
1F78000
|
unkown
|
page execute and read and write
|
||
|
DD5000
|
unkown
|
page readonly
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
5785000
|
direct allocation
|
page read and write
|
||
|
E42000
|
unkown
|
page readonly
|
||
|
1F88000
|
unkown
|
page execute and read and write
|
||
|
5740000
|
direct allocation
|
page read and write
|
||
|
1F1B000
|
unkown
|
page execute and read and write
|
||
|
930000
|
heap
|
page read and write
|
||
|
1D7F000
|
unkown
|
page execute and read and write
|
||
|
56A0000
|
direct allocation
|
page read and write
|
||
|
285B000
|
unkown
|
page execute and read and write
|
||
|
2831000
|
unkown
|
page execute and read and write
|
||
|
5F4000
|
heap
|
page read and write
|
||
|
35B8000
|
heap
|
page read and write
|
||
|
56A0000
|
direct allocation
|
page read and write
|
||
|
5712000
|
direct allocation
|
page read and write
|
||
|
2417000
|
unkown
|
page execute and read and write
|
||
|
5D3E000
|
stack
|
page read and write
|
||
|
284B000
|
unkown
|
page execute and read and write
|
||
|
D6F000
|
unkown
|
page write copy
|
||
|
5261000
|
heap
|
page read and write
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
1FAE000
|
unkown
|
page execute and read and write
|
||
|
1FAC000
|
unkown
|
page execute and read and write
|
||
|
1EFF000
|
unkown
|
page execute and read and write
|
||
|
E15000
|
unkown
|
page readonly
|
||
|
268B000
|
unkown
|
page execute and read and write
|
||
|
5261000
|
heap
|
page read and write
|
||
|
5A8D000
|
stack
|
page read and write
|
||
|
1F17000
|
unkown
|
page execute and read and write
|
||
|
1F72000
|
unkown
|
page execute and read and write
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
598B000
|
stack
|
page read and write
|
||
|
D40000
|
unkown
|
page read and write
|
||
|
58E0000
|
heap
|
page read and write
|
||
|
56B5000
|
direct allocation
|
page read and write
|
||
|
1CBD000
|
unkown
|
page readonly
|
||
|
56B3000
|
direct allocation
|
page read and write
|
||
|
5BBD000
|
direct allocation
|
page read and write
|
||
|
5722000
|
direct allocation
|
page read and write
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
5706000
|
direct allocation
|
page read and write
|
||
|
3AB6000
|
heap
|
page read and write
|
||
|
1D73000
|
unkown
|
page execute and read and write
|
||
|
576B000
|
direct allocation
|
page read and write
|
||
|
5261000
|
heap
|
page read and write
|
||
|
21E1000
|
unkown
|
page execute and read and write
|
||
|
F3F000
|
unkown
|
page readonly
|
||
|
5F4000
|
heap
|
page read and write
|
||
|
5F4000
|
heap
|
page read and write
|
||
|
1EF5000
|
unkown
|
page execute and read and write
|
||
|
2407000
|
unkown
|
page execute and read and write
|
||
|
56DE000
|
direct allocation
|
page read and write
|
||
|
56A7000
|
direct allocation
|
page read and write
|
||
|
581F000
|
direct allocation
|
page read and write
|
||
|
D53000
|
unkown
|
page read and write
|
||
|
57D8000
|
direct allocation
|
page read and write
|
||
|
1F01000
|
unkown
|
page execute and read and write
|
||
|
D78000
|
unkown
|
page readonly
|
||
|
5F4000
|
heap
|
page read and write
|
||
|
5F0000
|
heap
|
page read and write
|
||
|
DC0000
|
unkown
|
page readonly
|
||
|
E32000
|
unkown
|
page readonly
|
||
|
1F76000
|
unkown
|
page execute and read and write
|
||
|
D3D000
|
unkown
|
page execute read
|
||
|
DC0000
|
unkown
|
page readonly
|
||
|
56ED000
|
direct allocation
|
page read and write
|
||
|
5721000
|
direct allocation
|
page read and write
|
||
|
97E000
|
stack
|
page read and write
|
||
|
35D8000
|
heap
|
page read and write
|
||
|
D78000
|
unkown
|
page readonly
|
||
|
282D000
|
unkown
|
page execute and read and write
|
||
|
5700000
|
direct allocation
|
page read and write
|
||
|
1F6E000
|
unkown
|
page execute and read and write
|
||
|
5862000
|
direct allocation
|
page read and write
|
||
|
5261000
|
heap
|
page read and write
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
26B7000
|
unkown
|
page execute and read and write
|
||
|
EA5000
|
unkown
|
page readonly
|
||
|
8FB000
|
stack
|
page read and write
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
D68000
|
unkown
|
page read and write
|
||
|
1CBA000
|
unkown
|
page readonly
|
||
|
DC7000
|
unkown
|
page readonly
|
||
|
1F74000
|
unkown
|
page execute and read and write
|
||
|
5261000
|
heap
|
page read and write
|
||
|
56D0000
|
direct allocation
|
page read and write
|
||
|
1D89000
|
unkown
|
page execute and read and write
|
||
|
1F15000
|
unkown
|
page execute and read and write
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
1D85000
|
unkown
|
page execute and read and write
|
||
|
5716000
|
direct allocation
|
page read and write
|
||
|
2691000
|
unkown
|
page execute and read and write
|
||
|
57BC000
|
direct allocation
|
page read and write
|
||
|
5790000
|
direct allocation
|
page read and write
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
5261000
|
heap
|
page read and write
|
||
|
5747000
|
direct allocation
|
page read and write
|
||
|
14BC000
|
unkown
|
page readonly
|
||
|
5F4000
|
heap
|
page read and write
|
||
|
E20000
|
unkown
|
page readonly
|
||
|
D76000
|
unkown
|
page readonly
|
||
|
57C3000
|
direct allocation
|
page read and write
|
||
|
5F5000
|
heap
|
page read and write
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
2B69000
|
unkown
|
page execute read
|
||
|
387F000
|
stack
|
page read and write
|
||
|
1D8B000
|
unkown
|
page execute and read and write
|
||
|
1D75000
|
unkown
|
page execute and read and write
|
||
|
1CBD000
|
unkown
|
page readonly
|
||
|
5755000
|
direct allocation
|
page read and write
|
||
|
2896000
|
unkown
|
page execute and read and write
|
||
|
283C000
|
unkown
|
page execute and read and write
|
||
|
572C000
|
direct allocation
|
page read and write
|
||
|
9F1000
|
unkown
|
page execute read
|
||
|
5F4000
|
heap
|
page read and write
|
||
|
5B7000
|
stack
|
page read and write
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
1F64000
|
unkown
|
page execute and read and write
|
||
|
2891000
|
unkown
|
page execute and read and write
|
||
|
56FD000
|
direct allocation
|
page read and write
|
||
|
56C2000
|
direct allocation
|
page read and write
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
5F4000
|
heap
|
page read and write
|
||
|
D76000
|
unkown
|
page readonly
|
||
|
5261000
|
heap
|
page read and write
|
||
|
5ACC000
|
stack
|
page read and write
|
||
|
240F000
|
unkown
|
page execute and read and write
|
||
|
5770000
|
direct allocation
|
page read and write
|
||
|
3580000
|
direct allocation
|
page read and write
|
||
|
1F7C000
|
unkown
|
page execute and read and write
|
||
|
F82000
|
unkown
|
page readonly
|
||
|
9C0000
|
heap
|
page read and write
|
There are 245 hidden memdumps, click here to show them.