Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/usr/bin/dash
|
-
|
||
|
/usr/bin/rm
|
rm -f /tmp/tmp.iU1SEy0i9P /tmp/tmp.G57otRedo4 /tmp/tmp.sO0jyoNh1s
|
||
|
/usr/bin/dash
|
-
|
||
|
/usr/bin/rm
|
rm -f /tmp/tmp.iU1SEy0i9P /tmp/tmp.G57otRedo4 /tmp/tmp.sO0jyoNh1s
|
||
|
/tmp/SecuriteInfo.com.ELF.Mirai-COW.6055.9040.elf
|
/tmp/SecuriteInfo.com.ELF.Mirai-COW.6055.9040.elf
|
||
|
/tmp/SecuriteInfo.com.ELF.Mirai-COW.6055.9040.elf
|
-
|
||
|
/tmp/SecuriteInfo.com.ELF.Mirai-COW.6055.9040.elf
|
-
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
iranistrash.libre
|
unknown
|
 |
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
5.230.228.46
|
unknown
|
Germany
|
|
|
|
5.230.228.42
|
unknown
|
Germany
|
|
|
|
5.230.228.23
|
unknown
|
Germany
|
|
|
|
5.230.228.45
|
unknown
|
Germany
|
|
|
|
5.230.228.44
|
unknown
|
Germany
|
|
|
|
5.230.228.62
|
unknown
|
Germany
|
|
|
|
5.230.171.9
|
unknown
|
Germany
|
||
|
5.230.171.8
|
unknown
|
Germany
|
||
|
5.230.122.80
|
unknown
|
Germany
|
||
|
172.217.192.127
|
unknown
|
United States
|
||
|
94.131.118.154
|
unknown
|
Ukraine
|
||
|
185.248.144.209
|
unknown
|
France
|
||
|
5.230.229.84
|
unknown
|
Germany
|
||
|
194.156.98.15
|
unknown
|
Russian Federation
|
||
|
5.230.118.247
|
unknown
|
Germany
|
There are 5 hidden IPs, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7f1287b3a000
|
page read and write
|
|||
|
7f1287332000
|
page read and write
|
|||
|
7f1180027000
|
page execute read
|
|||
|
55ebeed12000
|
page read and write
|
|||
|
7fffa67d0000
|
page execute read
|
|||
|
7f1180028000
|
page read and write
|
|||
|
7f12886eb000
|
page read and write
|
|||
|
7f127ffff000
|
page read and write
|
|||
|
7f1287bcc000
|
page read and write
|
|||
|
7f118002b000
|
page read and write
|
|||
|
7f1288814000
|
page read and write
|
|||
|
7f128887d000
|
page read and write
|
|||
|
55ebeccf4000
|
page read and write
|
|||
|
7f128850a000
|
page read and write
|
|||
|
7fffa67c1000
|
page read and write
|
|||
|
7f1288838000
|
page read and write
|
|||
|
7f12881bc000
|
page read and write
|
|||
|
7f1280021000
|
page read and write
|
|||
|
7f1288328000
|
page read and write
|
|||
|
55ebeecfb000
|
page execute and read and write
|
|||
|
7f1287f2e000
|
page read and write
|
|||
|
55ebecaa3000
|
page execute read
|
|||
|
7f1288199000
|
page read and write
|
|||
|
55ebeccfd000
|
page read and write
|
|||
|
55ebf0981000
|
page read and write
|
There are 15 hidden memdumps, click here to show them.