Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
/tmp/na.elf
|
/tmp/na.elf
|
||
/tmp/na.elf
|
-
|
||
/proc/self/exe
|
/proc/self/exe
|
||
/proc/self/exe
|
-
|
||
/usr/bin/whoami
|
whoami
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
http://upx.sf.net
|
unknown
|
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
daisy.ubuntu.com
|
unknown
|
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
152.136.107.163
|
unknown
|
China
|
Memdumps
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
---|---|---|---|---|
c33000
|
page read and write
|
|||
7ffffdc96000
|
page execute read
|
|||
7f2a67e00000
|
page read and write
|
|||
7f2a8ceec000
|
page read and write
|
|||
7f2a67c00000
|
page read and write
|
|||
7f2a8ce0d000
|
page read and write
|
|||
7f2a7854a000
|
page read and write
|
|||
7f2a8a3fa000
|
page read and write
|
|||
7a9000
|
page execute read
|
|||
7f2a67fd0000
|
page read and write
|
|||
c000400000
|
page read and write
|
|||
7ffffdbfd000
|
page read and write
|
|||
7f2a8c7d0000
|
page read and write
|
|||
7f2a8cd8c000
|
page read and write
|
There are 4 hidden memdumps, click here to show them.