Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Users\user\Desktop\HOEcO4nqCT.exe
|
"C:\Users\user\Desktop\HOEcO4nqCT.exe"
|
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
s-part-0035.t-0009.t-msedge.net
|
13.107.246.63
|
Memdumps
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
---|---|---|---|---|
761000
|
unkown
|
page execute read
|
||
6BFE000
|
stack
|
page read and write
|
||
4D2C000
|
heap
|
page read and write
|
||
4D28000
|
heap
|
page read and write
|
||
4C60000
|
heap
|
page read and write
|
||
4CB0000
|
heap
|
page read and write
|
||
4D37000
|
heap
|
page read and write
|
||
4C50000
|
heap
|
page read and write
|
||
787000
|
unkown
|
page readonly
|
||
65D000
|
stack
|
page read and write
|
||
4D38000
|
heap
|
page read and write
|
||
4BE9000
|
stack
|
page read and write
|
||
660000
|
heap
|
page read and write
|
||
4CB9000
|
heap
|
page read and write
|
||
6BBF000
|
stack
|
page read and write
|
||
51EE000
|
stack
|
page read and write
|
||
4D37000
|
heap
|
page read and write
|
||
795000
|
unkown
|
page write copy
|
||
4D17000
|
heap
|
page read and write
|
||
610000
|
heap
|
page read and write
|
||
4D31000
|
heap
|
page read and write
|
||
4D38000
|
heap
|
page read and write
|
||
5A9000
|
stack
|
page read and write
|
||
79B000
|
unkown
|
page read and write
|
||
4FFE000
|
stack
|
page read and write
|
||
4D55000
|
heap
|
page read and write
|
||
4C54000
|
heap
|
page read and write
|
||
69CE000
|
stack
|
page read and write
|
||
4D25000
|
heap
|
page read and write
|
||
787000
|
unkown
|
page readonly
|
||
4D28000
|
heap
|
page read and write
|
||
761000
|
unkown
|
page execute read
|
||
79C000
|
unkown
|
page readonly
|
||
4C30000
|
heap
|
page read and write
|
||
79C000
|
unkown
|
page readonly
|
||
4D2D000
|
heap
|
page read and write
|
||
4D4D000
|
heap
|
page read and write
|
||
47EE000
|
stack
|
page read and write
|
||
760000
|
unkown
|
page readonly
|
||
6DEF000
|
stack
|
page read and write
|
||
4D3B000
|
heap
|
page read and write
|
||
4D4D000
|
heap
|
page read and write
|
||
9950000
|
trusted library allocation
|
page read and write
|
||
4D10000
|
heap
|
page read and write
|
||
760000
|
unkown
|
page readonly
|
||
4CB5000
|
heap
|
page read and write
|
||
680000
|
heap
|
page read and write
|
||
4D31000
|
heap
|
page read and write
|
||
4D3E000
|
heap
|
page read and write
|
||
795000
|
unkown
|
page read and write
|
There are 40 hidden memdumps, click here to show them.