Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/tmp/criptonize.armv4l.elf
|
/tmp/criptonize.armv4l.elf
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
109.202.202.202
|
unknown
|
Switzerland
|
||
|
91.189.91.43
|
unknown
|
United Kingdom
|
||
|
91.189.91.42
|
unknown
|
United Kingdom
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7f262da70000
|
page read and write
|
|||
|
555eb7b4f000
|
page read and write
|
|||
|
7f262e154000
|
page read and write
|
|||
|
7f262dde1000
|
page read and write
|
|||
|
7f262e0eb000
|
page read and write
|
|||
|
7f252803f000
|
page read and write
|
|||
|
555eb7b46000
|
page read and write
|
|||
|
7ffe6d3fb000
|
page execute read
|
|||
|
555eb9b64000
|
page read and write
|
|||
|
7f262d4a3000
|
page read and write
|
|||
|
555eb9b4d000
|
page execute and read and write
|
|||
|
7f262dbff000
|
page read and write
|
|||
|
555ebaac2000
|
page read and write
|
|||
|
7f262e10f000
|
page read and write
|
|||
|
7f2528044000
|
page read and write
|
|||
|
7f262cc09000
|
page read and write
|
|||
|
7f2628021000
|
page read and write
|
|||
|
7f262d805000
|
page read and write
|
|||
|
7f262da93000
|
page read and write
|
|||
|
7ffe6d3f4000
|
page read and write
|
|||
|
555eb78f5000
|
page execute read
|
|||
|
7f262d411000
|
page read and write
|
|||
|
7f2627fff000
|
page read and write
|
|||
|
7f262dfc2000
|
page read and write
|
|||
|
7f2528032000
|
page execute read
|
There are 15 hidden memdumps, click here to show them.