IOC Report
zerarm7.elf

loading gif

Processes

Path
Cmdline
Malicious
/tmp/zerarm7.elf
/tmp/zerarm7.elf
/tmp/zerarm7.elf
-
/tmp/zerarm7.elf
-

Domains

Name
IP
Malicious
serisontop.dyn
154.216.16.250
serisbot.geek
209.38.192.73
serisbot.geek. [malformed]
unknown

IPs

IP
Domain
Country
Malicious
154.216.16.250
serisontop.dyn
Seychelles
209.38.192.73
serisbot.geek
United States

Memdumps

Base Address
Regiontype
Protect
Malicious
7f871498c000
page read and write
7fffb67ce000
page read and write
560b2d1d8000
page read and write
7f8715070000
page read and write
7f860c028000
page execute read
7f871502b000
page read and write
7f860c031000
page read and write
560b2cf7e000
page execute read
7f8713b25000
page read and write
7f860c036000
page read and write
7f87143bf000
page read and write
560b2fa17000
page read and write
7f87149af000
page read and write
7fffb67f9000
page execute read
7f870bfff000
page read and write
7f871432d000
page read and write
7f8715007000
page read and write
560b2d1cf000
page read and write
560b2f1ed000
page read and write
7f8714721000
page read and write
7f8714cfd000
page read and write
560b2f1d6000
page execute and read and write
7f8714b1b000
page read and write
7f8714ede000
page read and write
7f870c021000
page read and write
There are 15 hidden memdumps, click here to show them.