IOC Report
SecuriteInfo.com.ELF.Mirai-COW.15022.10577.elf

loading gif

Processes

Path
Cmdline
Malicious
/tmp/SecuriteInfo.com.ELF.Mirai-COW.15022.10577.elf
/tmp/SecuriteInfo.com.ELF.Mirai-COW.15022.10577.elf
/tmp/SecuriteInfo.com.ELF.Mirai-COW.15022.10577.elf
-
/tmp/SecuriteInfo.com.ELF.Mirai-COW.15022.10577.elf
-

Domains

Name
IP
Malicious
iranistrash.libre
unknown
 malicious

IPs

IP
Domain
Country
Malicious
5.230.228.47
unknown
Germany
malicious
5.230.228.46
unknown
Germany
malicious
5.230.228.42
unknown
Germany
malicious
5.230.228.45
unknown
Germany
malicious
5.230.228.44
unknown
Germany
malicious
5.230.228.62
unknown
Germany
malicious
5.230.118.247
unknown
Germany
malicious
5.230.171.9
unknown
Germany
5.230.122.81
unknown
Germany
109.202.202.202
unknown
Switzerland
5.230.122.80
unknown
Germany
172.217.192.127
unknown
United States
94.131.118.154
unknown
Ukraine
194.156.98.15
unknown
Russian Federation
91.189.91.43
unknown
United Kingdom
91.189.91.42
unknown
United Kingdom
There are 6 hidden IPs, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
7f0e0befc000
page read and write
7f0d04027000
page execute read
7f0e0b7a0000
page read and write
7f0e03fff000
page read and write
7f0e0c0de000
page read and write
7f0e0c3e8000
page read and write
7f0d04028000
page read and write
7f0e0c451000
page read and write
7f0e04021000
page read and write
7f0e0bb02000
page read and write
55ff52508000
page read and write
7f0e0bd6d000
page read and write
7f0e0c2bf000
page read and write
7f0d0402b000
page read and write
55ff524ff000
page read and write
7ffc94d7a000
page execute read
7f0e0bd90000
page read and write
7f0e0b70e000
page read and write
7f0e0c40c000
page read and write
55ff5451d000
page read and write
55ff54506000
page execute and read and write
55ff5551d000
page read and write
7ffc94cb6000
page read and write
7f0e0af06000
page read and write
55ff522ae000
page execute read
There are 15 hidden memdumps, click here to show them.