Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/usr/bin/dash
|
-
|
||
|
/usr/bin/rm
|
rm -f /tmp/tmp.8XdmNNwT1M /tmp/tmp.tOkt8QfLSy /tmp/tmp.BFzqVQDLVz
|
||
|
/usr/bin/dash
|
-
|
||
|
/usr/bin/rm
|
rm -f /tmp/tmp.8XdmNNwT1M /tmp/tmp.tOkt8QfLSy /tmp/tmp.BFzqVQDLVz
|
||
|
/tmp/SecuriteInfo.com.ELF.Mirai-CVD.17384.13664.elf
|
/tmp/SecuriteInfo.com.ELF.Mirai-CVD.17384.13664.elf
|
||
|
/tmp/SecuriteInfo.com.ELF.Mirai-CVD.17384.13664.elf
|
-
|
||
|
/tmp/SecuriteInfo.com.ELF.Mirai-CVD.17384.13664.elf
|
-
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
iranistrash.libre
|
unknown
|
 |
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
5.230.171.8
|
unknown
|
Germany
|
|
|
|
5.230.122.82
|
unknown
|
Germany
|
|
|
|
5.230.228.47
|
unknown
|
Germany
|
|
|
|
5.230.228.42
|
unknown
|
Germany
|
|
|
|
5.230.228.23
|
unknown
|
Germany
|
|
|
|
5.230.228.45
|
unknown
|
Germany
|
|
|
|
5.230.228.44
|
unknown
|
Germany
|
|
|
|
5.230.228.62
|
unknown
|
Germany
|
|
|
|
5.230.229.84
|
unknown
|
Germany
|
|
|
|
5.230.171.9
|
unknown
|
Germany
|
||
|
5.230.122.81
|
unknown
|
Germany
|
||
|
5.230.122.80
|
unknown
|
Germany
|
||
|
172.217.192.127
|
unknown
|
United States
|
||
|
94.131.118.154
|
unknown
|
Ukraine
|
||
|
185.248.144.209
|
unknown
|
France
|
||
|
5.230.229.83
|
unknown
|
Germany
|
||
|
5.230.118.247
|
unknown
|
Germany
|
There are 7 hidden IPs, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
5639e3dae000
|
page read and write
|
|||
|
7ffc2a68e000
|
page read and write
|
|||
|
7f3418de8000
|
page read and write
|
|||
|
7f3410021000
|
page read and write
|
|||
|
7f34182c9000
|
page read and write
|
|||
|
7f3418f7a000
|
page read and write
|
|||
|
7f341862b000
|
page read and write
|
|||
|
7f3418f35000
|
page read and write
|
|||
|
7f3310032000
|
page read and write
|
|||
|
7f3418896000
|
page read and write
|
|||
|
7f3418f11000
|
page read and write
|
|||
|
7ffc2a69f000
|
page execute read
|
|||
|
5639e10fc000
|
page read and write
|
|||
|
5639e3111000
|
page read and write
|
|||
|
5639e0ea2000
|
page execute read
|
|||
|
7f340ffff000
|
page read and write
|
|||
|
7f3418c07000
|
page read and write
|
|||
|
7f3418a25000
|
page read and write
|
|||
|
5639e30fa000
|
page execute and read and write
|
|||
|
7f331002a000
|
page execute read
|
|||
|
7f3417a2f000
|
page read and write
|
|||
|
7f34188b9000
|
page read and write
|
|||
|
7f3418237000
|
page read and write
|
|||
|
7f3310037000
|
page read and write
|
|||
|
5639e10f3000
|
page read and write
|
There are 15 hidden memdumps, click here to show them.