Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\0yGDYqDKv5.exe
|
"C:\Users\user\Desktop\0yGDYqDKv5.exe"
|
 |
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://154.12.36.162/BOT2/LDvar.exe
|
unknown
|
||
|
http://cacerts.pki.jemmylovejenny.tk/SHA2TimeStampingServicesCA.crt0
|
unknown
|
||
|
https://scripts.sil.org/OFLThis
|
unknown
|
||
|
http://www.eyuyan.com)DVarFileInfo$
|
unknown
|
||
|
https://pki.jemmylovejenny.tk/rpa0
|
unknown
|
||
|
http://crl.thawte.com/ThawteTimestampingCA.crl0
|
unknown
|
||
|
https://www.thawte.com/cps0/
|
unknown
|
||
|
http://154.12.36.162/BOT2/Var
|
154.12.36.162
|
||
|
https://scripts.sil.org/OFLhttps://www.katatrad.comhttps://cadsondemak.comKatatrad
|
unknown
|
||
|
http://ocsp.thawte.com0
|
unknown
|
||
|
http://crls.pki.jemmylovejenny.tk/SHA2TimeStampingServicesCA.crl0
|
unknown
|
||
|
http://cacerts.pki.jemmylovejenny.tk/SHA1TimeStampingServicesCA.crt0
|
unknown
|
||
|
http://ocsp.pki.jemmylovejenny.tk/EVRootCA0=
|
unknown
|
||
|
https://pki.jemmylovejenny.tk/cps0/
|
unknown
|
||
|
https://www.thawte.com/repository0
|
unknown
|
||
|
http://cacerts.pki.jemmylovejenny.tk/EVRootCA.crt0?
|
unknown
|
||
|
http://ocsp.pki.jemmylovejenny.tk/SHA2TimeStampingServicesCA0O
|
unknown
|
||
|
http://103.239.244.218:8898/600006030021.00
|
unknown
|
||
|
http://ocsp.pki.jemmylovejenny.tk/SHA1TimeStampingServicesCA0O
|
unknown
|
||
|
http://crls.pki.jemmylovejenny.tk/EVRootCA.crl0
|
unknown
|
||
|
https://github.com/cadsondemak/kanit)
|
unknown
|
||
|
http://103.239.244.218:8898/
|
unknown
|
||
|
http://crls.pki.jemmylovejenny.tk/SHA1TimeStampingServicesCA.crl0
|
unknown
|
There are 13 hidden URLs, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
154.12.36.162
|
unknown
|
United States
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
5DB000
|
unkown
|
page readonly
|
|
|
|
A7D000
|
unkown
|
page readonly
|
|
|
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
BA5000
|
unkown
|
page read and write
|
||
|
1F95000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
FA4000
|
unkown
|
page execute read
|
||
|
3874000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
36E0000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
98000
|
stack
|
page read and write
|
||
|
1844000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
3B78000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
3740000
|
heap
|
page read and write
|
||
|
B49000
|
unkown
|
page readonly
|
||
|
1A33000
|
heap
|
page read and write
|
||
|
1A33000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
C32000
|
unkown
|
page execute read
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35D0000
|
heap
|
page read and write
|
||
|
1A33000
|
heap
|
page read and write
|
||
|
506000
|
unkown
|
page readonly
|
||
|
401000
|
unkown
|
page execute read
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
42EF000
|
stack
|
page read and write
|
||
|
3A60000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
4840000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
3B86000
|
heap
|
page read and write
|
||
|
41EE000
|
stack
|
page read and write
|
||
|
3A2E000
|
stack
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
46FE000
|
stack
|
page read and write
|
||
|
3775000
|
heap
|
page read and write
|
||
|
1A1E000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
C2C000
|
unkown
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
50E000
|
unkown
|
page readonly
|
||
|
40AD000
|
stack
|
page read and write
|
||
|
3750000
|
trusted library allocation
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
1980000
|
heap
|
page read and write
|
||
|
50A000
|
unkown
|
page readonly
|
||
|
FA4000
|
unkown
|
page execute read
|
||
|
180A000
|
unkown
|
page readonly
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
BFF000
|
unkown
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
5120000
|
trusted library section
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
39AC000
|
stack
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
180A000
|
unkown
|
page readonly
|
||
|
1844000
|
heap
|
page read and write
|
||
|
3B6E000
|
stack
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
485A000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
3B8E000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
B7B000
|
unkown
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
1810000
|
heap
|
page read and write
|
||
|
3B89000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
19E7000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
19C000
|
stack
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
513B000
|
trusted library section
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
5130000
|
trusted library section
|
page read and write
|
||
|
512B000
|
trusted library section
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
1A36000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
39EC000
|
stack
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
198A000
|
heap
|
page read and write
|
||
|
19FB000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
1844000
|
heap
|
page read and write
|
||
|
1844000
|
heap
|
page read and write
|
||
|
442F000
|
stack
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
46AF000
|
stack
|
page read and write
|
||
|
1A2C000
|
heap
|
page read and write
|
||
|
3A65000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
523B000
|
heap
|
page read and write
|
||
|
3770000
|
heap
|
page read and write
|
||
|
1F90000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
3730000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
C07000
|
unkown
|
page execute read
|
||
|
511B000
|
trusted library section
|
page read and write
|
||
|
3B84000
|
heap
|
page read and write
|
||
|
51A000
|
unkown
|
page readonly
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
5010000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
3750000
|
heap
|
page read and write
|
||
|
3820000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
1F9E000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
BB2000
|
unkown
|
page read and write
|
||
|
C05000
|
unkown
|
page read and write
|
||
|
35C0000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
3B70000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
1A24000
|
heap
|
page read and write
|
||
|
B44000
|
unkown
|
page readonly
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
5110000
|
trusted library section
|
page read and write
|
||
|
47FF000
|
stack
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
377D000
|
heap
|
page read and write
|
||
|
45AE000
|
stack
|
page read and write
|
||
|
198E000
|
heap
|
page read and write
|
||
|
446E000
|
stack
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
377B000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
1840000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
3870000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
1A27000
|
heap
|
page read and write
|
||
|
515C000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
456F000
|
stack
|
page read and write
|
||
|
BE0000
|
unkown
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
432E000
|
stack
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
36C0000
|
trusted library allocation
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
41AB000
|
stack
|
page read and write
|
||
|
4F10000
|
trusted library allocation
|
page read and write
|
||
|
1820000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
1A24000
|
heap
|
page read and write
|
||
|
35C1000
|
heap
|
page read and write
|
||
|
A0B000
|
unkown
|
page readonly
|
||
|
35C1000
|
heap
|
page read and write
|
There are 202 hidden memdumps, click here to show them.