Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/tmp/botnt.arm.elf
|
/tmp/botnt.arm.elf
|
||
|
/tmp/botnt.arm.elf
|
-
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
a.cookiedough.lol
|
95.85.78.19
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
95.85.78.19
|
a.cookiedough.lol
|
Russian Federation
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
556077224000
|
page read and write
|
|||
|
7fa74951d000
|
page read and write
|
|||
|
7fa74a165000
|
page read and write
|
|||
|
7ffe6adef000
|
page execute read
|
|||
|
7fa74a189000
|
page read and write
|
|||
|
7fa644033000
|
page read and write
|
|||
|
7fa74987f000
|
page read and write
|
|||
|
55607a5c1000
|
page read and write
|
|||
|
7fa74a1ce000
|
page read and write
|
|||
|
556079222000
|
page execute and read and write
|
|||
|
7fa64402b000
|
page execute read
|
|||
|
7fa749b0d000
|
page read and write
|
|||
|
55607721b000
|
page read and write
|
|||
|
7fa748c83000
|
page read and write
|
|||
|
7fa749c79000
|
page read and write
|
|||
|
7ffe6adde000
|
page read and write
|
|||
|
7fa744021000
|
page read and write
|
|||
|
7fa644036000
|
page read and write
|
|||
|
7fa743fff000
|
page read and write
|
|||
|
556076fca000
|
page execute read
|
|||
|
7fa749aea000
|
page read and write
|
|||
|
7fa74948b000
|
page read and write
|
|||
|
556079239000
|
page read and write
|
|||
|
7fa74a03c000
|
page read and write
|
|||
|
7fa749e5b000
|
page read and write
|
There are 15 hidden memdumps, click here to show them.