Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/tmp/la.bot.powerpc.elf
|
/tmp/la.bot.powerpc.elf
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http:///wget.sh
|
unknown
|
||
|
http:///curl.sh
|
unknown
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
daisy.ubuntu.com
|
162.213.35.24
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7f6768019000
|
page execute read
|
 |
||
|
7f685c7be000
|
page read and write
|
|||
|
7f6858021000
|
page read and write
|
|||
|
556d3a36f000
|
page read and write
|
|||
|
7f685cfc1000
|
page read and write
|
|||
|
556d3c38b000
|
page read and write
|
|||
|
7ffc959ee000
|
page read and write
|
|||
|
7f685dab9000
|
page read and write
|
|||
|
7f685d25e000
|
page read and write
|
|||
|
7f685d620000
|
page read and write
|
|||
|
556d3a0ec000
|
page execute read
|
|||
|
7f685dac1000
|
page read and write
|
|||
|
7f685d990000
|
page read and write
|
|||
|
7f685d645000
|
page read and write
|
|||
|
7ffc959f7000
|
page execute read
|
|||
|
7f685db06000
|
page read and write
|
|||
|
7f6768029000
|
page read and write
|
|||
|
556d3a377000
|
page read and write
|
|||
|
556d3d7cd000
|
page read and write
|
|||
|
7f685cfcf000
|
page read and write
|
|||
|
7f6768032000
|
page read and write
|
|||
|
7f6858000000
|
page read and write
|
|||
|
556d3c375000
|
page execute and read and write
|
There are 13 hidden memdumps, click here to show them.