Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
/tmp/na.elf
|
/tmp/na.elf
|
||
/tmp/na.elf
|
-
|
||
/proc/self/exe
|
/proc/self/exe
|
||
/proc/self/exe
|
-
|
||
/usr/bin/whoami
|
whoami
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
http://upx.sf.net
|
unknown
|
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
daisy.ubuntu.com
|
162.213.35.24
|
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
20.2.223.147
|
unknown
|
United States
|
Memdumps
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
---|---|---|---|---|
7f76c1559000
|
page read and write
|
|||
7f769c5b8000
|
page read and write
|
|||
c000400000
|
page read and write
|
|||
7fffc7366000
|
page execute read
|
|||
7f76acb32000
|
page read and write
|
|||
1035000
|
page read and write
|
|||
7f76c14d8000
|
page read and write
|
|||
7fffc726e000
|
page read and write
|
|||
7f769c200000
|
page read and write
|
|||
b23000
|
page execute read
|
|||
7f76be9e2000
|
page read and write
|
|||
7f76c1638000
|
page read and write
|
|||
7f769c400000
|
page read and write
|
|||
7f76c0db8000
|
page read and write
|
There are 4 hidden memdumps, click here to show them.