Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
/tmp/na.elf
|
/tmp/na.elf
|
||
/tmp/na.elf
|
-
|
||
/proc/self/exe
|
/proc/self/exe
|
||
/proc/self/exe
|
-
|
||
/usr/bin/whoami
|
whoami
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
http://upx.sf.net
|
unknown
|
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
daisy.ubuntu.com
|
162.213.35.25
|
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
111.229.211.161
|
unknown
|
China
|
Memdumps
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
---|---|---|---|---|
c000400000
|
page read and write
|
|||
b23000
|
page execute read
|
|||
7f19c27b3000
|
page read and write
|
|||
7ffd9cf2c000
|
page read and write
|
|||
7f19c52a9000
|
page read and write
|
|||
7f19c4b89000
|
page read and write
|
|||
7f19a0389000
|
page read and write
|
|||
7f19c5409000
|
page read and write
|
|||
7f19a0200000
|
page read and write
|
|||
1035000
|
page read and write
|
|||
7f19a0000000
|
page read and write
|
|||
7ffd9cfce000
|
page execute read
|
|||
7f19b0903000
|
page read and write
|
|||
7f19c532a000
|
page read and write
|
There are 4 hidden memdumps, click here to show them.