Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\file.exe
|
"C:\Users\user\Desktop\file.exe"
|
 |
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://secure.globalsign.net/cacert/PrimObject.crt0
|
unknown
|
||
|
http://secure.globalsign.net/cacert/ObjectSign.crt09
|
unknown
|
||
|
http://www.globalsign.net/repository09
|
unknown
|
||
|
http://www.autoitscript.com/autoit3/0
|
unknown
|
||
|
http://www.globalsign.net/repository/0
|
unknown
|
||
|
http://www.globalsign.net/repository/03
|
unknown
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ComDlg32\LastVisitedPidlMRU
|
MRUListEx
|
||
|
HKEY_CURRENT_USER_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU
|
MRUListEx
|
||
|
HKEY_CURRENT_USER_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU\3
|
MRUListEx
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
1A09000
|
heap
|
page read and write
|
||
|
4958000
|
heap
|
page read and write
|
||
|
3E1C000
|
stack
|
page read and write
|
||
|
1A0D000
|
heap
|
page read and write
|
||
|
46B000
|
unkown
|
page readonly
|
||
|
1941000
|
heap
|
page read and write
|
||
|
18FD000
|
heap
|
page read and write
|
||
|
1954000
|
heap
|
page read and write
|
||
|
8C66000
|
heap
|
page read and write
|
||
|
8C77000
|
heap
|
page read and write
|
||
|
8C28000
|
heap
|
page read and write
|
||
|
1926000
|
heap
|
page read and write
|
||
|
4957000
|
heap
|
page read and write
|
||
|
493B000
|
stack
|
page read and write
|
||
|
4923000
|
heap
|
page read and write
|
||
|
1951000
|
heap
|
page read and write
|
||
|
18FD000
|
heap
|
page read and write
|
||
|
3DA0000
|
heap
|
page read and write
|
||
|
8C7F000
|
heap
|
page read and write
|
||
|
1A76000
|
heap
|
page read and write
|
||
|
19E3000
|
heap
|
page read and write
|
||
|
4B9E000
|
stack
|
page read and write
|
||
|
1A09000
|
heap
|
page read and write
|
||
|
881A000
|
stack
|
page read and write
|
||
|
86E0000
|
heap
|
page read and write
|
||
|
194F000
|
heap
|
page read and write
|
||
|
4940000
|
heap
|
page read and write
|
||
|
9879000
|
heap
|
page read and write
|
||
|
19CC000
|
heap
|
page read and write
|
||
|
494F000
|
heap
|
page read and write
|
||
|
1929000
|
heap
|
page read and write
|
||
|
8C27000
|
heap
|
page read and write
|
||
|
1929000
|
heap
|
page read and write
|
||
|
1951000
|
heap
|
page read and write
|
||
|
8C77000
|
heap
|
page read and write
|
||
|
442000
|
unkown
|
page readonly
|
||
|
18FD000
|
heap
|
page read and write
|
||
|
19CC000
|
heap
|
page read and write
|
||
|
1941000
|
heap
|
page read and write
|
||
|
86FD000
|
heap
|
page read and write
|
||
|
3C0000
|
unkown
|
page readonly
|
||
|
192C000
|
heap
|
page read and write
|
||
|
B449000
|
stack
|
page read and write
|
||
|
784B000
|
stack
|
page read and write
|
||
|
73FF000
|
stack
|
page read and write
|
||
|
192C000
|
heap
|
page read and write
|
||
|
1926000
|
heap
|
page read and write
|
||
|
194F000
|
heap
|
page read and write
|
||
|
192C000
|
heap
|
page read and write
|
||
|
18FD000
|
heap
|
page read and write
|
||
|
17C0000
|
heap
|
page read and write
|
||
|
1926000
|
heap
|
page read and write
|
||
|
1954000
|
heap
|
page read and write
|
||
|
1A09000
|
heap
|
page read and write
|
||
|
19CD000
|
heap
|
page read and write
|
||
|
194F000
|
heap
|
page read and write
|
||
|
8C2D000
|
heap
|
page read and write
|
||
|
1951000
|
heap
|
page read and write
|
||
|
4930000
|
heap
|
page read and write
|
||
|
8C67000
|
heap
|
page read and write
|
||
|
180B000
|
heap
|
page read and write
|
||
|
8C76000
|
heap
|
page read and write
|
||
|
1A0D000
|
heap
|
page read and write
|
||
|
192C000
|
heap
|
page read and write
|
||
|
192C000
|
heap
|
page read and write
|
||
|
19B8000
|
heap
|
page read and write
|
||
|
192C000
|
heap
|
page read and write
|
||
|
1954000
|
heap
|
page read and write
|
||
|
8C2D000
|
heap
|
page read and write
|
||
|
194F000
|
heap
|
page read and write
|
||
|
1A86000
|
heap
|
page read and write
|
||
|
8C77000
|
heap
|
page read and write
|
||
|
1941000
|
heap
|
page read and write
|
||
|
194F000
|
heap
|
page read and write
|
||
|
18FD000
|
heap
|
page read and write
|
||
|
442000
|
unkown
|
page readonly
|
||
|
7E5B000
|
stack
|
page read and write
|
||
|
B94E000
|
stack
|
page read and write
|
||
|
18FD000
|
heap
|
page read and write
|
||
|
AB49000
|
stack
|
page read and write
|
||
|
19DE000
|
heap
|
page read and write
|
||
|
17D0000
|
heap
|
page read and write
|
||
|
1926000
|
heap
|
page read and write
|
||
|
8C67000
|
heap
|
page read and write
|
||
|
188D000
|
heap
|
page read and write
|
||
|
19BF000
|
heap
|
page read and write
|
||
|
1951000
|
heap
|
page read and write
|
||
|
1894000
|
heap
|
page read and write
|
||
|
1853000
|
heap
|
page read and write
|
||
|
19B8000
|
heap
|
page read and write
|
||
|
8C7F000
|
heap
|
page read and write
|
||
|
1926000
|
heap
|
page read and write
|
||
|
3F90000
|
heap
|
page read and write
|
||
|
18FD000
|
heap
|
page read and write
|
||
|
6FFF000
|
stack
|
page read and write
|
||
|
95CB000
|
stack
|
page read and write
|
||
|
3DD0000
|
heap
|
page read and write
|
||
|
18FD000
|
heap
|
page read and write
|
||
|
9E49000
|
stack
|
page read and write
|
||
|
1951000
|
heap
|
page read and write
|
||
|
4B5E000
|
stack
|
page read and write
|
||
|
3C1000
|
unkown
|
page execute read
|
||
|
18E1000
|
heap
|
page read and write
|
||
|
1929000
|
heap
|
page read and write
|
||
|
19CD000
|
heap
|
page read and write
|
||
|
1951000
|
heap
|
page read and write
|
||
|
4952000
|
heap
|
page read and write
|
||
|
192C000
|
heap
|
page read and write
|
||
|
8700000
|
heap
|
page read and write
|
||
|
18F6000
|
heap
|
page read and write
|
||
|
3C1000
|
unkown
|
page execute read
|
||
|
86DA000
|
stack
|
page read and write
|
||
|
192C000
|
heap
|
page read and write
|
||
|
18D7000
|
heap
|
page read and write
|
||
|
1A6E000
|
heap
|
page read and write
|
||
|
19C7000
|
heap
|
page read and write
|
||
|
18FD000
|
heap
|
page read and write
|
||
|
1AC0000
|
heap
|
page read and write
|
||
|
1941000
|
heap
|
page read and write
|
||
|
82CB000
|
stack
|
page read and write
|
||
|
1A0D000
|
heap
|
page read and write
|
||
|
19B8000
|
heap
|
page read and write
|
||
|
8D8B000
|
stack
|
page read and write
|
||
|
9869000
|
heap
|
page read and write
|
||
|
3DD6000
|
heap
|
page read and write
|
||
|
4948000
|
heap
|
page read and write
|
||
|
3DB0000
|
heap
|
page read and write
|
||
|
18F0000
|
heap
|
page read and write
|
||
|
439F000
|
stack
|
page read and write
|
||
|
182C000
|
heap
|
page read and write
|
||
|
194F000
|
heap
|
page read and write
|
||
|
86F8000
|
heap
|
page read and write
|
||
|
19BF000
|
heap
|
page read and write
|
||
|
187E000
|
heap
|
page read and write
|
||
|
451000
|
unkown
|
page write copy
|
||
|
9F50000
|
trusted library allocation
|
page read and write
|
||
|
452000
|
unkown
|
page read and write
|
||
|
19BF000
|
heap
|
page read and write
|
||
|
1954000
|
heap
|
page read and write
|
||
|
192C000
|
heap
|
page read and write
|
||
|
192C000
|
heap
|
page read and write
|
||
|
19CF000
|
heap
|
page read and write
|
||
|
8C20000
|
heap
|
page read and write
|
||
|
182C000
|
heap
|
page read and write
|
||
|
8C77000
|
heap
|
page read and write
|
||
|
4920000
|
heap
|
page read and write
|
||
|
192C000
|
heap
|
page read and write
|
||
|
1954000
|
heap
|
page read and write
|
||
|
495B000
|
heap
|
page read and write
|
||
|
1680000
|
heap
|
page read and write
|
||
|
2410000
|
heap
|
page read and write
|
||
|
192C000
|
heap
|
page read and write
|
||
|
8C77000
|
heap
|
page read and write
|
||
|
8C27000
|
heap
|
page read and write
|
||
|
19CF000
|
heap
|
page read and write
|
||
|
2460000
|
heap
|
page read and write
|
||
|
17D8000
|
heap
|
page read and write
|
||
|
8C1C000
|
stack
|
page read and write
|
||
|
1635000
|
stack
|
page read and write
|
||
|
8C66000
|
heap
|
page read and write
|
||
|
8C2A000
|
heap
|
page read and write
|
||
|
18FD000
|
heap
|
page read and write
|
||
|
17C5000
|
heap
|
page read and write
|
||
|
4943000
|
heap
|
page read and write
|
||
|
4933000
|
heap
|
page read and write
|
||
|
7C4B000
|
stack
|
page read and write
|
||
|
1813000
|
heap
|
page read and write
|
||
|
8C76000
|
heap
|
page read and write
|
||
|
17DE000
|
heap
|
page read and write
|
||
|
3C0000
|
unkown
|
page readonly
|
||
|
19C7000
|
heap
|
page read and write
|
||
|
468000
|
unkown
|
page read and write
|
||
|
192C000
|
heap
|
page read and write
|
||
|
9859000
|
heap
|
page read and write
|
||
|
450000
|
unkown
|
page write copy
|
||
|
1973000
|
heap
|
page read and write
|
||
|
9891000
|
heap
|
page read and write
|
||
|
825A000
|
stack
|
page read and write
|
||
|
1A34000
|
heap
|
page read and write
|
||
|
3F94000
|
heap
|
page read and write
|
||
|
46B000
|
unkown
|
page readonly
|
||
|
8C66000
|
heap
|
page read and write
|
||
|
972E000
|
stack
|
page read and write
|
||
|
122E000
|
stack
|
page read and write
|
||
|
2505000
|
heap
|
page read and write
|
||
|
19C7000
|
heap
|
page read and write
|
||
|
1760000
|
heap
|
page read and write
|
||
|
192C000
|
heap
|
page read and write
|
||
|
450000
|
unkown
|
page read and write
|
||
|
4BDE000
|
stack
|
page read and write
|
||
|
77FF000
|
stack
|
page read and write
|
||
|
18FD000
|
heap
|
page read and write
|
||
|
2500000
|
heap
|
page read and write
|
||
|
18FD000
|
heap
|
page read and write
|
||
|
8C67000
|
heap
|
page read and write
|
||
|
1929000
|
heap
|
page read and write
|
||
|
1A11000
|
heap
|
page read and write
|
||
|
18FD000
|
heap
|
page read and write
|
||
|
1954000
|
heap
|
page read and write
|
||
|
1929000
|
heap
|
page read and write
|
||
|
18FD000
|
heap
|
page read and write
|
||
|
192C000
|
heap
|
page read and write
|
||
|
192C000
|
heap
|
page read and write
|
There are 193 hidden memdumps, click here to show them.