IOC Report
nklarm6.elf

loading gif

Processes

Path
Cmdline
Malicious
/tmp/nklarm6.elf
/tmp/nklarm6.elf

URLs

Name
IP
Malicious
http:///wget.sh
unknown
http:///curl.sh
unknown

IPs

IP
Domain
Country
Malicious
109.202.202.202
unknown
Switzerland
91.189.91.43
unknown
United Kingdom
91.189.91.42
unknown
United Kingdom

Memdumps

Base Address
Regiontype
Protect
Malicious
7fdd0c03a000
page read and write
7fde12fb2000
page read and write
7fde0c021000
page read and write
7fde13504000
page read and write
557eecf5d000
page read and write
7fde13696000
page read and write
7fdd0c028000
page execute read
557eee237000
page read and write
7fde13651000
page read and write
7fde0bfff000
page read and write
7fff3e452000
page read and write
557eecf46000
page execute and read and write
557eeacee000
page execute read
7fde12953000
page read and write
7fdd0c030000
page read and write
7fde1362d000
page read and write
7fde1214b000
page read and write
557eeaf3f000
page read and write
7fde13141000
page read and write
7fde12fd5000
page read and write
7fde12d47000
page read and write
557eeaf48000
page read and write
7fff3e50c000
page execute read
7fde13323000
page read and write
7fde129e5000
page read and write
There are 15 hidden memdumps, click here to show them.