Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\Google_Chrome.exe
|
"C:\Users\user\Desktop\Google_Chrome.exe"
|
 |
|
|
C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe
|
"C:\Windows\BitLockerDiscoveryVolumeContents\BitLockerToGo.exe"
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
relaxatinownio.shop
|
|
||
|
keennylrwmqlw.shop
|
|
||
|
tendencctywop.shop
|
|
||
|
tryyudjasudqo.shop
|
|
||
|
https://steamcommunity.com/profiles/76561199724331900
|
104.102.49.254
|
|
|
|
https://steamcommunity.com/profiles/76561199724331900/inventory/
|
unknown
|
|
|
|
tesecuuweqo.shop
|
|
||
|
eemmbryequo.shop
|
|
||
|
reggwardssdqw.shop
|
|
||
|
licenseodqwmqn.shop
|
|
||
|
https://gravvitywio.store/api
|
172.67.209.193
|
|
|
|
https://player.vimeo.com
|
unknown
|
||
|
https://steamcommunity.com/?subsection=broadcasts
|
unknown
|
||
|
https://store.steampowered.com/subscriber_agreement/
|
unknown
|
||
|
https://www.gstatic.cn/recaptcha/
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/javascript/applications/community/libraries~b28b7af6
|
unknown
|
||
|
https://www.google.com/recaptc
|
unknown
|
||
|
http://www.valvesoftware.com/legal.htm
|
unknown
|
||
|
https://www.youtube.com
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/css/promo/summer2017/stickers.css?v=HA2Yr5oy3FFG&
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/shared/images/responsive/logo_valve_footer.png
|
unknown
|
||
|
https://gravvitywio.store/
|
unknown
|
||
|
https://steambroadcast-test.akamaized/
|
unknown
|
||
|
https://www.google.com
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/shared/images/responsive/header_menu_hamburger.png
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/shared/css/shared_responsive.css?v=sHIIcMzCffX6&
|
unknown
|
||
|
https://www.valvesoftware.com/en/contact?contact-person=Translation%20Team%20Feedback
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/javascript/scriptaculous/_combined.js?v=OeNIgrpEF8tL
|
unknown
|
||
|
https://avatars.akamai.steamstatic.com/fef49e7fa7e1997310d705b2a
|
unknown
|
||
|
https://s.ytimg.com;
|
unknown
|
||
|
https://steam.tv/
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/css/skin_1/header.css?v=NFoCa4OkAxRb&l=english
|
unknown
|
||
|
http://store.steampowered.com/privacy_agreement/
|
unknown
|
||
|
https://store.steampowered.com/points/shop/
|
unknown
|
||
|
https://sketchfab.com
|
unknown
|
||
|
https://lv.queniujq.cn
|
unknown
|
||
|
https://www.youtube.com/
|
unknown
|
||
|
https://avatars.akamai.steamstatic.com/fef49e7fa7e1997310d705b2a6158ff8dc1cdfeb_full.jpg
|
unknown
|
||
|
https://store.steampowered.com/privacy_agreement/
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/shared/css/shared_global.css?v=ezWS9te9Zwm9&l=en
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/shared/javascript/shared_global.js?v=REEGJU1hwkYl&am
|
unknown
|
||
|
https://www.google.com/recaptcha/
|
unknown
|
||
|
https://checkout.steampowered.com/
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/css/globalv2.css?v=PAcV2zMBzzSV&l=english
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/javascript/modalv2.js?v=dfMhuy-Lrpyo&l=english
|
unknown
|
||
|
https://cdn.akamai.
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/shared/images/responsive/header_logo.png
|
unknown
|
||
|
https://help.st
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/css/skin_1/profilev2.css?v=M_qL4gO2sKII&l=englis
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/javascript/jquery-1.11.1.min.js?v=.isFTSRckeNhC
|
unknown
|
||
|
https://store.steampowered.com/;
|
unknown
|
||
|
https://store.steampowered.com/about/
|
unknown
|
||
|
https://steamcommunity.com/my/wishlist/
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/javascript/global.js?v=9OzcxMXbaV84&l=english
|
unknown
|
||
|
https://checkout.steampow
|
unknown
|
||
|
https://help.steampowered.com/en/
|
unknown
|
||
|
https://cdn.akamai.steamstatic.com/steamcommunity/public/assets/
|
unknown
|
||
|
https://steamcommunity.com/market/
|
unknown
|
||
|
https://store.steampowered.com/news/
|
unknown
|
||
|
https://community.akamai.steamstatic.com/
|
unknown
|
||
|
http://store.steampowered.com/subscriber_agreement/
|
unknown
|
||
|
https://steamcommunity.com/linkfilter/?u=http%3A%2F%2Fwww.geonames.org
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/css/skin_1/modalContent.css?v=.VpiwkLAYt9r1
|
unknown
|
||
|
https://recaptcha.net/recaptcha/;
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/javascript/promo/stickers.js?v=upl9NJ5D2xkP&l=en
|
unknown
|
||
|
https://login.steamp
|
unknown
|
||
|
https://steamcommunity.com/discussions/
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/css/applications/community/main.css?v=nSnUuYf7g6U1&a
|
unknown
|
||
|
https://gravvitywio.store:443/api
|
unknown
|
||
|
https://store.steampowered.com/stats/
|
unknown
|
||
|
https://medal.tv
|
unknown
|
||
|
https://broadcast.st.dl.eccdnx.com
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/images/skin_1/footerLogo_valve.png?v=1
|
unknown
|
||
|
https://store.steampowered.com/steam_refunds/
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/javascript/applications/community/manifest.js?v=0qXC
|
unknown
|
||
|
https://steamcommunity.com/login/home/?goto=profiles%2F76561199724331900
|
unknown
|
||
|
https://steamcommunity.com/workshop/
|
unknown
|
||
|
https://gravvitywio.store/V
|
unknown
|
||
|
https://login.steampowered.com/
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/javascript/webui/clientcom.js?v=TlXuhKjTdHfu&l=e
|
unknown
|
||
|
https://store.steampowered.com/legal/
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/javascript/reportedcontent.js?v=dAtjbcZMWhSe&l=e
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/shared/javascript/shared_responsive_adapter.js?v=pSv
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/shared/css/motiva_sans.css?v=-DH0xTYpnVe2&l=engl
|
unknown
|
||
|
https://recaptcha.net
|
unknown
|
||
|
https://store.steampowered.com/
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/javascript/prototype-1.7.js?v=.55t44gwuwgvw
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/images/skin_1/arrowDn9x5.gif
|
unknown
|
||
|
http://127.0.0.1:27060
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/shared/images/header/logo_steam.svg?t=962016
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/javascript/applications/community/main.js?v=PzKBszTg
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/shared/css/buttons.css?v=PUJIfhtcQn7W&l=english
|
unknown
|
||
|
https://help.steampowered.com/
|
unknown
|
||
|
https://api.steampowered.com/
|
unknown
|
||
|
http://store.steampowered.com/account/cookiepreferences/
|
unknown
|
||
|
https://store.steampowered.com/mobile
|
unknown
|
||
|
https://steamcommunity.com/
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/javascript/profile.js?v=f3vWO7swdDqp&l=english
|
unknown
|
||
|
https://community.akamai.steamstatic.com/public/javascript/modalContent.js?v=f2hMA1v9Zkc8&l=engl
|
unknown
|
There are 90 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
gravvitywio.store
|
172.67.209.193
|
|
|
|
tryyudjasudqo.shop
|
unknown
|
|
|
|
keennylrwmqlw.shop
|
unknown
|
|
|
|
reggwardssdqw.shop
|
unknown
|
|
|
|
tesecuuweqo.shop
|
unknown
|
|
|
|
tendencctywop.shop
|
unknown
|
|
|
|
eemmbryequo.shop
|
unknown
|
|
|
|
licenseodqwmqn.shop
|
unknown
|
|
|
|
relaxatinownio.shop
|
unknown
|
|
|
|
steamcommunity.com
|
104.102.49.254
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
172.67.209.193
|
gravvitywio.store
|
United States
|
|
|
|
104.102.49.254
|
steamcommunity.com
|
United States
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
2C75000
|
remote allocation
|
page readonly
|
|
|
|
D41000
|
unkown
|
page write copy
|
||
|
1502000
|
direct allocation
|
page read and write
|
||
|
506D000
|
stack
|
page read and write
|
||
|
1518000
|
direct allocation
|
page read and write
|
||
|
2E48000
|
heap
|
page read and write
|
||
|
14C4000
|
direct allocation
|
page read and write
|
||
|
151E000
|
direct allocation
|
page read and write
|
||
|
14C8000
|
direct allocation
|
page read and write
|
||
|
81D000
|
stack
|
page read and write
|
||
|
4F6D000
|
stack
|
page read and write
|
||
|
2CC0000
|
heap
|
page read and write
|
||
|
149A000
|
direct allocation
|
page read and write
|
||
|
4BEE000
|
stack
|
page read and write
|
||
|
151A000
|
direct allocation
|
page read and write
|
||
|
14D2000
|
direct allocation
|
page read and write
|
||
|
140E000
|
direct allocation
|
page read and write
|
||
|
780000
|
direct allocation
|
page read and write
|
||
|
ED0000
|
heap
|
page read and write
|
||
|
D6C000
|
unkown
|
page write copy
|
||
|
14F2000
|
direct allocation
|
page read and write
|
||
|
8B0000
|
unkown
|
page readonly
|
||
|
143F000
|
direct allocation
|
page read and write
|
||
|
2DB5000
|
heap
|
page read and write
|
||
|
313F000
|
stack
|
page read and write
|
||
|
14B2000
|
direct allocation
|
page read and write
|
||
|
150A000
|
direct allocation
|
page read and write
|
||
|
14BC000
|
direct allocation
|
page read and write
|
||
|
215FF000
|
stack
|
page read and write
|
||
|
50BE000
|
stack
|
page read and write
|
||
|
1404000
|
direct allocation
|
page read and write
|
||
|
1556000
|
direct allocation
|
page read and write
|
||
|
14C6000
|
direct allocation
|
page read and write
|
||
|
2E9A000
|
heap
|
page read and write
|
||
|
AD3000
|
unkown
|
page readonly
|
||
|
152C000
|
direct allocation
|
page read and write
|
||
|
1412000
|
direct allocation
|
page read and write
|
||
|
1486000
|
direct allocation
|
page read and write
|
||
|
51BF000
|
stack
|
page read and write
|
||
|
2E3E000
|
stack
|
page read and write
|
||
|
14F6000
|
direct allocation
|
page read and write
|
||
|
214FF000
|
stack
|
page read and write
|
||
|
1410000
|
direct allocation
|
page read and write
|
||
|
39D000
|
stack
|
page read and write
|
||
|
790000
|
direct allocation
|
page read and write
|
||
|
6E0000
|
heap
|
page read and write
|
||
|
2EFA000
|
heap
|
page read and write
|
||
|
1504000
|
direct allocation
|
page read and write
|
||
|
D28000
|
unkown
|
page read and write
|
||
|
2DFE000
|
stack
|
page read and write
|
||
|
14CA000
|
direct allocation
|
page read and write
|
||
|
48F0000
|
heap
|
page read and write
|
||
|
D64000
|
unkown
|
page read and write
|
||
|
14D4000
|
direct allocation
|
page read and write
|
||
|
1434000
|
direct allocation
|
page read and write
|
||
|
14AA000
|
direct allocation
|
page read and write
|
||
|
EDC000
|
heap
|
page read and write
|
||
|
2E8D000
|
heap
|
page read and write
|
||
|
1414000
|
direct allocation
|
page read and write
|
||
|
154E000
|
direct allocation
|
page read and write
|
||
|
303F000
|
stack
|
page read and write
|
||
|
4A8D000
|
stack
|
page read and write
|
||
|
8A0000
|
heap
|
page read and write
|
||
|
150C000
|
direct allocation
|
page read and write
|
||
|
2C31000
|
remote allocation
|
page execute read
|
||
|
D6C000
|
unkown
|
page write copy
|
||
|
6E5000
|
heap
|
page read and write
|
||
|
2C30000
|
remote allocation
|
page execute and read and write
|
||
|
149E000
|
direct allocation
|
page read and write
|
||
|
1498000
|
direct allocation
|
page read and write
|
||
|
14C2000
|
direct allocation
|
page read and write
|
||
|
C69000
|
unkown
|
page readonly
|
||
|
155E000
|
direct allocation
|
page read and write
|
||
|
D89000
|
unkown
|
page readonly
|
||
|
1482000
|
direct allocation
|
page read and write
|
||
|
D26000
|
unkown
|
page write copy
|
||
|
2E40000
|
heap
|
page read and write
|
||
|
29C000
|
stack
|
page read and write
|
||
|
14B6000
|
direct allocation
|
page read and write
|
||
|
4AB0000
|
remote allocation
|
page read and write
|
||
|
7DE000
|
stack
|
page read and write
|
||
|
153C000
|
direct allocation
|
page read and write
|
||
|
85E000
|
stack
|
page read and write
|
||
|
E8F000
|
stack
|
page read and write
|
||
|
134D000
|
stack
|
page read and write
|
||
|
D89000
|
unkown
|
page readonly
|
||
|
14B4000
|
direct allocation
|
page read and write
|
||
|
148E000
|
direct allocation
|
page read and write
|
||
|
D42000
|
unkown
|
page read and write
|
||
|
14A2000
|
direct allocation
|
page read and write
|
||
|
1492000
|
direct allocation
|
page read and write
|
||
|
14D0000
|
direct allocation
|
page read and write
|
||
|
600000
|
heap
|
page read and write
|
||
|
1402000
|
direct allocation
|
page read and write
|
||
|
8B1000
|
unkown
|
page execute read
|
||
|
1418000
|
direct allocation
|
page read and write
|
||
|
14A8000
|
direct allocation
|
page read and write
|
||
|
1496000
|
direct allocation
|
page read and write
|
||
|
138E000
|
stack
|
page read and write
|
||
|
D4C000
|
unkown
|
page read and write
|
||
|
D50000
|
unkown
|
page read and write
|
||
|
148A000
|
direct allocation
|
page read and write
|
||
|
29BC000
|
stack
|
page read and write
|
||
|
C69000
|
unkown
|
page readonly
|
||
|
1416000
|
direct allocation
|
page read and write
|
||
|
2E81000
|
heap
|
page read and write
|
||
|
2EF1000
|
heap
|
page read and write
|
||
|
FD0000
|
direct allocation
|
page read and write
|
||
|
14A0000
|
direct allocation
|
page read and write
|
||
|
217FF000
|
stack
|
page read and write
|
||
|
4AE0000
|
heap
|
page read and write
|
||
|
2DA0000
|
heap
|
page read and write
|
||
|
13F0000
|
heap
|
page read and write
|
||
|
14DA000
|
direct allocation
|
page read and write
|
||
|
4AB0000
|
remote allocation
|
page read and write
|
||
|
D6D000
|
unkown
|
page readonly
|
||
|
216FE000
|
stack
|
page read and write
|
||
|
218FF000
|
stack
|
page read and write
|
||
|
708000
|
direct allocation
|
page read and write
|
||
|
14C0000
|
direct allocation
|
page read and write
|
||
|
29FC000
|
stack
|
page read and write
|
||
|
2E5B000
|
heap
|
page read and write
|
||
|
1500000
|
direct allocation
|
page read and write
|
||
|
14A4000
|
direct allocation
|
page read and write
|
||
|
D22000
|
unkown
|
page read and write
|
||
|
2EE1000
|
heap
|
page read and write
|
||
|
89D000
|
stack
|
page read and write
|
||
|
8B1000
|
unkown
|
page execute read
|
||
|
1542000
|
direct allocation
|
page read and write
|
||
|
140C000
|
direct allocation
|
page read and write
|
||
|
14D6000
|
direct allocation
|
page read and write
|
||
|
2DB0000
|
heap
|
page read and write
|
||
|
1488000
|
direct allocation
|
page read and write
|
||
|
D39000
|
unkown
|
page read and write
|
||
|
1558000
|
direct allocation
|
page read and write
|
||
|
4AB0000
|
remote allocation
|
page read and write
|
||
|
1921000
|
direct allocation
|
page read and write
|
||
|
183E000
|
direct allocation
|
page read and write
|
||
|
21900000
|
direct allocation
|
page read and write
|
||
|
153E000
|
direct allocation
|
page read and write
|
||
|
1432000
|
direct allocation
|
page read and write
|
||
|
D29000
|
unkown
|
page write copy
|
||
|
14E2000
|
direct allocation
|
page read and write
|
||
|
1494000
|
direct allocation
|
page read and write
|
||
|
13D0000
|
heap
|
page read and write
|
||
|
8B0000
|
unkown
|
page readonly
|
||
|
143A000
|
direct allocation
|
page read and write
|
||
|
151C000
|
direct allocation
|
page read and write
|
||
|
D22000
|
unkown
|
page write copy
|
||
|
2E6D000
|
heap
|
page read and write
|
||
|
1438000
|
direct allocation
|
page read and write
|
||
|
AD3000
|
unkown
|
page readonly
|
||
|
700000
|
direct allocation
|
page read and write
|
||
|
1554000
|
direct allocation
|
page read and write
|
||
|
2EAE000
|
heap
|
page read and write
|
||
|
130F000
|
stack
|
page read and write
|
||
|
159A000
|
direct allocation
|
page read and write
|
||
|
2C88000
|
remote allocation
|
page readonly
|
||
|
ECD000
|
stack
|
page read and write
|
||
|
1480000
|
direct allocation
|
page read and write
|
||
|
4A4D000
|
stack
|
page read and write
|
||
|
142C000
|
direct allocation
|
page read and write
|
||
|
494D000
|
stack
|
page read and write
|
||
|
2C78000
|
remote allocation
|
page execute and read and write
|
||
|
D6D000
|
unkown
|
page readonly
|
||
|
141A000
|
direct allocation
|
page read and write
|
||
|
1560000
|
direct allocation
|
page read and write
|
||
|
D68000
|
unkown
|
page read and write
|
||
|
14BE000
|
direct allocation
|
page read and write
|
There are 159 hidden memdumps, click here to show them.