Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/usr/bin/dash
|
-
|
||
|
/usr/bin/rm
|
rm -f /tmp/tmp.Duf7dMRnM8 /tmp/tmp.Pp0WR8WFhI /tmp/tmp.W7DJxaUg61
|
||
|
/usr/bin/dash
|
-
|
||
|
/usr/bin/rm
|
rm -f /tmp/tmp.Duf7dMRnM8 /tmp/tmp.Pp0WR8WFhI /tmp/tmp.W7DJxaUg61
|
||
|
/tmp/SecuriteInfo.com.ELF.Mirai-CVD.12952.14309.elf
|
/tmp/SecuriteInfo.com.ELF.Mirai-CVD.12952.14309.elf
|
||
|
/tmp/SecuriteInfo.com.ELF.Mirai-CVD.12952.14309.elf
|
-
|
||
|
/tmp/SecuriteInfo.com.ELF.Mirai-CVD.12952.14309.elf
|
-
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
iranistrash.libre
|
unknown
|
 |
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
5.230.122.81
|
unknown
|
Germany
|
|
|
|
5.230.228.46
|
unknown
|
Germany
|
|
|
|
5.230.228.23
|
unknown
|
Germany
|
|
|
|
5.230.229.84
|
unknown
|
Germany
|
|
|
|
5.230.171.9
|
unknown
|
Germany
|
||
|
5.230.171.8
|
unknown
|
Germany
|
||
|
5.230.122.82
|
unknown
|
Germany
|
||
|
109.202.202.202
|
unknown
|
Switzerland
|
||
|
5.230.122.80
|
unknown
|
Germany
|
||
|
172.217.192.127
|
unknown
|
United States
|
||
|
94.131.118.154
|
unknown
|
Ukraine
|
||
|
5.230.228.44
|
unknown
|
Germany
|
||
|
5.230.228.62
|
unknown
|
Germany
|
||
|
194.156.98.15
|
unknown
|
Russian Federation
|
||
|
5.230.118.247
|
unknown
|
Germany
|
||
|
91.189.91.43
|
unknown
|
United Kingdom
|
||
|
91.189.91.42
|
unknown
|
United Kingdom
|
There are 7 hidden IPs, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
558cd74de000
|
page read and write
|
|||
|
7fb6c83a3000
|
page read and write
|
|||
|
558cd74d4000
|
page read and write
|
|||
|
558cd94f3000
|
page read and write
|
|||
|
7fb640416000
|
page execute read
|
|||
|
7ffe92ddd000
|
page read and write
|
|||
|
7fb6c86ad000
|
page read and write
|
|||
|
7fb6c8055000
|
page read and write
|
|||
|
7fb6c86b5000
|
page read and write
|
|||
|
7fb6c0021000
|
page read and write
|
|||
|
7fb6c71cb000
|
page read and write
|
|||
|
7fb6c8584000
|
page read and write
|
|||
|
7fb6c0000000
|
page read and write
|
|||
|
7fb6c86fa000
|
page read and write
|
|||
|
7fb6c8072000
|
page read and write
|
|||
|
558cd724c000
|
page execute read
|
|||
|
558cdab4a000
|
page read and write
|
|||
|
7fb640457000
|
page read and write
|
|||
|
7fb6c8032000
|
page read and write
|
|||
|
558cd94dc000
|
page execute and read and write
|
|||
|
7fb6c79d3000
|
page read and write
|
|||
|
7ffe92df4000
|
page execute read
|
|||
|
7fb6c79e1000
|
page read and write
|
|||
|
7fb64045a000
|
page read and write
|
|||
|
7fb6c7c91000
|
page read and write
|
There are 15 hidden memdumps, click here to show them.