Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\SecuriteInfo.com.Trojan.SuspectCRC.22408.10876.exe
|
"C:\Users\user\Desktop\SecuriteInfo.com.Trojan.SuspectCRC.22408.10876.exe" -install
|
||
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
||
|
C:\Users\user\Desktop\SecuriteInfo.com.Trojan.SuspectCRC.22408.10876.exe
|
"C:\Users\user\Desktop\SecuriteInfo.com.Trojan.SuspectCRC.22408.10876.exe" /install
|
||
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
||
|
C:\Users\user\Desktop\SecuriteInfo.com.Trojan.SuspectCRC.22408.10876.exe
|
"C:\Users\user\Desktop\SecuriteInfo.com.Trojan.SuspectCRC.22408.10876.exe" /load
|
||
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://windows.php.net/downloads/releases/archives/mallocgc
|
unknown
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
C000037000
|
direct allocation
|
page read and write
|
||
|
1A4C80D0000
|
heap
|
page read and write
|
||
|
77777FD000
|
stack
|
page read and write
|
||
|
C000020000
|
direct allocation
|
page read and write
|
||
|
B61000
|
unkown
|
page readonly
|
||
|
C00013A000
|
direct allocation
|
page read and write
|
||
|
254E39D0000
|
heap
|
page read and write
|
||
|
C000018000
|
direct allocation
|
page read and write
|
||
|
C000030000
|
direct allocation
|
page read and write
|
||
|
C00001A000
|
direct allocation
|
page read and write
|
||
|
600000
|
unkown
|
page readonly
|
||
|
85C000
|
unkown
|
page readonly
|
||
|
BF4000
|
unkown
|
page readonly
|
||
|
AC4000
|
unkown
|
page read and write
|
||
|
C000035000
|
direct allocation
|
page read and write
|
||
|
77781FF000
|
stack
|
page read and write
|
||
|
C000030000
|
direct allocation
|
page read and write
|
||
|
B32000
|
unkown
|
page read and write
|
||
|
C00001E000
|
direct allocation
|
page read and write
|
||
|
C00003C000
|
direct allocation
|
page read and write
|
||
|
601000
|
unkown
|
page execute read
|
||
|
C000045000
|
direct allocation
|
page read and write
|
||
|
C000054000
|
direct allocation
|
page read and write
|
||
|
D60000
|
unkown
|
page write copy
|
||
|
C000012000
|
direct allocation
|
page read and write
|
||
|
26C8E7EB000
|
direct allocation
|
page read and write
|
||
|
C000066000
|
direct allocation
|
page read and write
|
||
|
C000037000
|
direct allocation
|
page read and write
|
||
|
AC9000
|
unkown
|
page write copy
|
||
|
C000027000
|
direct allocation
|
page read and write
|
||
|
C000002000
|
direct allocation
|
page read and write
|
||
|
C00010E000
|
direct allocation
|
page read and write
|
||
|
B03000
|
unkown
|
page read and write
|
||
|
C00001A000
|
direct allocation
|
page read and write
|
||
|
1A4C81A0000
|
direct allocation
|
page read and write
|
||
|
D60000
|
unkown
|
page write copy
|
||
|
26C8EAE0000
|
heap
|
page read and write
|
||
|
C000050000
|
direct allocation
|
page read and write
|
||
|
AFD000
|
unkown
|
page write copy
|
||
|
AC4000
|
unkown
|
page write copy
|
||
|
C000014000
|
direct allocation
|
page read and write
|
||
|
26C8E790000
|
heap
|
page read and write
|
||
|
AF8000
|
unkown
|
page read and write
|
||
|
B00000
|
unkown
|
page read and write
|
||
|
C000118000
|
direct allocation
|
page read and write
|
||
|
ACB000
|
unkown
|
page read and write
|
||
|
C000140000
|
direct allocation
|
page read and write
|
||
|
254E8BB0000
|
direct allocation
|
page read and write
|
||
|
C000076000
|
direct allocation
|
page read and write
|
||
|
254E3A2B000
|
direct allocation
|
page read and write
|
||
|
C00014A000
|
direct allocation
|
page read and write
|
||
|
15DFFF000
|
stack
|
page read and write
|
||
|
C00010C000
|
direct allocation
|
page read and write
|
||
|
AC8000
|
unkown
|
page read and write
|
||
|
C000116000
|
direct allocation
|
page read and write
|
||
|
C00011E000
|
direct allocation
|
page read and write
|
||
|
15D5FD000
|
stack
|
page read and write
|
||
|
BF4000
|
unkown
|
page readonly
|
||
|
D60000
|
unkown
|
page write copy
|
||
|
C00010A000
|
direct allocation
|
page read and write
|
||
|
D61000
|
unkown
|
page readonly
|
||
|
C00001C000
|
direct allocation
|
page read and write
|
||
|
26C8EA10000
|
direct allocation
|
page read and write
|
||
|
254E3A29000
|
direct allocation
|
page read and write
|
||
|
ACC000
|
unkown
|
page write copy
|
||
|
1A4C812B000
|
direct allocation
|
page read and write
|
||
|
C000025000
|
direct allocation
|
page read and write
|
||
|
C000112000
|
direct allocation
|
page read and write
|
||
|
C000100000
|
direct allocation
|
page read and write
|
||
|
254E3A20000
|
direct allocation
|
page read and write
|
||
|
C00006E000
|
direct allocation
|
page read and write
|
||
|
15D7FE000
|
stack
|
page read and write
|
||
|
C000152000
|
direct allocation
|
page read and write
|
||
|
C000130000
|
direct allocation
|
page read and write
|
||
|
B61000
|
unkown
|
page readonly
|
||
|
601000
|
unkown
|
page execute read
|
||
|
C000088000
|
direct allocation
|
page read and write
|
||
|
BF4000
|
unkown
|
page readonly
|
||
|
C00010A000
|
direct allocation
|
page read and write
|
||
|
AF8000
|
unkown
|
page read and write
|
||
|
B5A000
|
unkown
|
page read and write
|
||
|
1A4C8230000
|
heap
|
page read and write
|
||
|
C000004000
|
direct allocation
|
page read and write
|
||
|
C000150000
|
direct allocation
|
page read and write
|
||
|
C000006000
|
direct allocation
|
page read and write
|
||
|
26C8EA20000
|
direct allocation
|
page read and write
|
||
|
1A4C8129000
|
direct allocation
|
page read and write
|
||
|
C000116000
|
direct allocation
|
page read and write
|
||
|
C000035000
|
direct allocation
|
page read and write
|
||
|
C00001A000
|
direct allocation
|
page read and write
|
||
|
D60000
|
unkown
|
page write copy
|
||
|
C000022000
|
direct allocation
|
page read and write
|
||
|
C000010000
|
direct allocation
|
page read and write
|
||
|
C000144000
|
direct allocation
|
page read and write
|
||
|
C00015A000
|
direct allocation
|
page read and write
|
||
|
D61000
|
unkown
|
page readonly
|
||
|
AC7000
|
unkown
|
page write copy
|
||
|
600000
|
unkown
|
page readonly
|
||
|
C00006B000
|
direct allocation
|
page read and write
|
||
|
C000050000
|
direct allocation
|
page read and write
|
||
|
600000
|
unkown
|
page readonly
|
||
|
7777BFF000
|
stack
|
page read and write
|
||
|
1A4C8124000
|
direct allocation
|
page read and write
|
||
|
1A4C8180000
|
direct allocation
|
page read and write
|
||
|
1A4ED440000
|
direct allocation
|
page read and write
|
||
|
AC8000
|
unkown
|
page read and write
|
||
|
254E39F0000
|
heap
|
page read and write
|
||
|
F5E35FF000
|
stack
|
page read and write
|
||
|
15DDFF000
|
stack
|
page read and write
|
||
|
C00003C000
|
direct allocation
|
page read and write
|
||
|
C000072000
|
direct allocation
|
page read and write
|
||
|
C000018000
|
direct allocation
|
page read and write
|
||
|
1A4C7EF0000
|
heap
|
page read and write
|
||
|
B00000
|
unkown
|
page read and write
|
||
|
C00001C000
|
direct allocation
|
page read and write
|
||
|
D60000
|
unkown
|
page write copy
|
||
|
26C8E7E4000
|
direct allocation
|
page read and write
|
||
|
7777DFF000
|
stack
|
page read and write
|
||
|
B32000
|
unkown
|
page read and write
|
||
|
600000
|
unkown
|
page readonly
|
||
|
ACC000
|
unkown
|
page write copy
|
||
|
C00000E000
|
direct allocation
|
page read and write
|
||
|
C000006000
|
direct allocation
|
page read and write
|
||
|
C000076000
|
direct allocation
|
page read and write
|
||
|
D61000
|
unkown
|
page readonly
|
||
|
B61000
|
unkown
|
page readonly
|
||
|
AC4000
|
unkown
|
page write copy
|
||
|
C000025000
|
direct allocation
|
page read and write
|
||
|
1A4C80F0000
|
heap
|
page read and write
|
||
|
D61000
|
unkown
|
page readonly
|
||
|
C000016000
|
direct allocation
|
page read and write
|
||
|
C000116000
|
direct allocation
|
page read and write
|
||
|
C00000A000
|
direct allocation
|
page read and write
|
||
|
C00004E000
|
direct allocation
|
page read and write
|
||
|
AFD000
|
unkown
|
page write copy
|
||
|
C000118000
|
direct allocation
|
page read and write
|
||
|
AF8000
|
unkown
|
page read and write
|
||
|
600000
|
unkown
|
page readonly
|
||
|
601000
|
unkown
|
page execute read
|
||
|
254E8BA0000
|
direct allocation
|
page read and write
|
||
|
C000148000
|
direct allocation
|
page read and write
|
||
|
85C000
|
unkown
|
page readonly
|
||
|
C000124000
|
direct allocation
|
page read and write
|
||
|
C000078000
|
direct allocation
|
page read and write
|
||
|
C000030000
|
direct allocation
|
page read and write
|
||
|
C000002000
|
direct allocation
|
page read and write
|
||
|
AC7000
|
unkown
|
page write copy
|
||
|
254E3A24000
|
direct allocation
|
page read and write
|
||
|
C000045000
|
direct allocation
|
page read and write
|
||
|
C000054000
|
direct allocation
|
page read and write
|
||
|
C000126000
|
direct allocation
|
page read and write
|
||
|
85C000
|
unkown
|
page readonly
|
||
|
BF4000
|
unkown
|
page readonly
|
||
|
C000114000
|
direct allocation
|
page read and write
|
||
|
AC4000
|
unkown
|
page write copy
|
||
|
254E8CD1000
|
direct allocation
|
page read and write
|
||
|
C000120000
|
direct allocation
|
page read and write
|
||
|
26C8E780000
|
heap
|
page read and write
|
||
|
BF4000
|
unkown
|
page readonly
|
||
|
85C000
|
unkown
|
page readonly
|
||
|
F5E33FF000
|
stack
|
page read and write
|
||
|
F5E3BFE000
|
stack
|
page read and write
|
||
|
C000048000
|
direct allocation
|
page read and write
|
||
|
C000056000
|
direct allocation
|
page read and write
|
||
|
C000010000
|
direct allocation
|
page read and write
|
||
|
ACC000
|
unkown
|
page write copy
|
||
|
C000048000
|
direct allocation
|
page read and write
|
||
|
C00010E000
|
direct allocation
|
page read and write
|
||
|
254E37F0000
|
heap
|
page read and write
|
||
|
B61000
|
unkown
|
page readonly
|
||
|
254E3A80000
|
direct allocation
|
page read and write
|
||
|
C00011C000
|
direct allocation
|
page read and write
|
||
|
C000006000
|
direct allocation
|
page read and write
|
||
|
C000052000
|
direct allocation
|
page read and write
|
||
|
1A4C8120000
|
direct allocation
|
page read and write
|
||
|
254E3A90000
|
heap
|
page read and write
|
||
|
F5E37FE000
|
stack
|
page read and write
|
||
|
C000100000
|
direct allocation
|
page read and write
|
||
|
1A4C7FD0000
|
heap
|
page read and write
|
||
|
C000158000
|
direct allocation
|
page read and write
|
||
|
C000037000
|
direct allocation
|
page read and write
|
||
|
C000066000
|
direct allocation
|
page read and write
|
||
|
C000012000
|
direct allocation
|
page read and write
|
||
|
C000128000
|
direct allocation
|
page read and write
|
||
|
C00000E000
|
direct allocation
|
page read and write
|
||
|
C000108000
|
direct allocation
|
page read and write
|
||
|
C000016000
|
direct allocation
|
page read and write
|
||
|
C00000E000
|
direct allocation
|
page read and write
|
||
|
C00001E000
|
direct allocation
|
page read and write
|
||
|
F5E39FE000
|
stack
|
page read and write
|
||
|
AFD000
|
unkown
|
page write copy
|
||
|
C00006E000
|
direct allocation
|
page read and write
|
||
|
1A4C7FD7000
|
heap
|
page read and write
|
||
|
C000035000
|
direct allocation
|
page read and write
|
||
|
C000118000
|
direct allocation
|
page read and write
|
||
|
C000114000
|
direct allocation
|
page read and write
|
||
|
C00000C000
|
direct allocation
|
page read and write
|
||
|
C00011E000
|
direct allocation
|
page read and write
|
||
|
254E38D0000
|
heap
|
page read and write
|
||
|
601000
|
unkown
|
page execute read
|
||
|
C00000A000
|
direct allocation
|
page read and write
|
||
|
C000022000
|
direct allocation
|
page read and write
|
||
|
C000110000
|
direct allocation
|
page read and write
|
||
|
254E8BA4000
|
direct allocation
|
page read and write
|
||
|
26C8E834000
|
heap
|
page read and write
|
||
|
C000018000
|
direct allocation
|
page read and write
|
||
|
C000014000
|
direct allocation
|
page read and write
|
||
|
C000112000
|
direct allocation
|
page read and write
|
||
|
1A4C8235000
|
heap
|
page read and write
|
||
|
B03000
|
unkown
|
page read and write
|
||
|
254E38DF000
|
heap
|
page read and write
|
||
|
B2C000
|
unkown
|
page read and write
|
||
|
C00006B000
|
direct allocation
|
page read and write
|
||
|
85C000
|
unkown
|
page readonly
|
||
|
26C8EA51000
|
direct allocation
|
page read and write
|
||
|
7777FFF000
|
stack
|
page read and write
|
||
|
D61000
|
unkown
|
page readonly
|
||
|
B00000
|
unkown
|
page read and write
|
||
|
C000016000
|
direct allocation
|
page read and write
|
||
|
C00003C000
|
direct allocation
|
page read and write
|
||
|
254E3A95000
|
heap
|
page read and write
|
||
|
C000012000
|
direct allocation
|
page read and write
|
||
|
C000114000
|
direct allocation
|
page read and write
|
||
|
B2C000
|
unkown
|
page read and write
|
||
|
ACB000
|
unkown
|
page read and write
|
||
|
C000120000
|
direct allocation
|
page read and write
|
||
|
26C8EA30000
|
direct allocation
|
page read and write
|
||
|
77779FE000
|
stack
|
page read and write
|
||
|
B01000
|
unkown
|
page write copy
|
||
|
B61000
|
unkown
|
page readonly
|
||
|
B01000
|
unkown
|
page write copy
|
||
|
C00010A000
|
direct allocation
|
page read and write
|
||
|
C000010000
|
direct allocation
|
page read and write
|
||
|
26C8E7E0000
|
direct allocation
|
page read and write
|
||
|
C00008C000
|
direct allocation
|
page read and write
|
||
|
B2C000
|
unkown
|
page read and write
|
||
|
C000014000
|
direct allocation
|
page read and write
|
||
|
AC7000
|
unkown
|
page write copy
|
||
|
BF4000
|
unkown
|
page readonly
|
||
|
F5E31FD000
|
stack
|
page read and write
|
||
|
D60000
|
unkown
|
page write copy
|
||
|
C000004000
|
direct allocation
|
page read and write
|
||
|
1A4C81C3000
|
direct allocation
|
page read and write
|
||
|
AC4000
|
unkown
|
page read and write
|
||
|
C000052000
|
direct allocation
|
page read and write
|
||
|
C000045000
|
direct allocation
|
page read and write
|
||
|
C00006B000
|
direct allocation
|
page read and write
|
||
|
C000002000
|
direct allocation
|
page read and write
|
||
|
15DBFE000
|
stack
|
page read and write
|
||
|
601000
|
unkown
|
page execute read
|
||
|
1A4C81C1000
|
direct allocation
|
page read and write
|
||
|
AC4000
|
unkown
|
page read and write
|
||
|
C000020000
|
direct allocation
|
page read and write
|
||
|
C000100000
|
direct allocation
|
page read and write
|
||
|
26C8E820000
|
heap
|
page read and write
|
||
|
AC8000
|
unkown
|
page read and write
|
||
|
26C8EAE5000
|
heap
|
page read and write
|
||
|
B01000
|
unkown
|
page write copy
|
||
|
B5A000
|
unkown
|
page read and write
|
||
|
ACB000
|
unkown
|
page read and write
|
||
|
C000102000
|
direct allocation
|
page read and write
|
||
|
C00014C000
|
direct allocation
|
page read and write
|
||
|
B5A000
|
unkown
|
page read and write
|
||
|
C000066000
|
direct allocation
|
page read and write
|
||
|
26C8E7B0000
|
heap
|
page read and write
|
||
|
D61000
|
unkown
|
page readonly
|
||
|
C000025000
|
direct allocation
|
page read and write
|
||
|
B32000
|
unkown
|
page read and write
|
||
|
C00000C000
|
direct allocation
|
page read and write
|
||
|
C000020000
|
direct allocation
|
page read and write
|
||
|
26C8E829000
|
heap
|
page read and write
|
||
|
C000052000
|
direct allocation
|
page read and write
|
||
|
C000122000
|
direct allocation
|
page read and write
|
||
|
601000
|
unkown
|
page execute read
|
||
|
600000
|
unkown
|
page readonly
|
||
|
1A4C8190000
|
direct allocation
|
page read and write
|
||
|
C000120000
|
direct allocation
|
page read and write
|
||
|
C000078000
|
direct allocation
|
page read and write
|
||
|
C000022000
|
direct allocation
|
page read and write
|
||
|
B61000
|
unkown
|
page readonly
|
||
|
26C8EA14000
|
direct allocation
|
page read and write
|
||
|
C000056000
|
direct allocation
|
page read and write
|
||
|
26C8E82C000
|
heap
|
page read and write
|
||
|
AC9000
|
unkown
|
page write copy
|
||
|
C000056000
|
direct allocation
|
page read and write
|
||
|
C000004000
|
direct allocation
|
page read and write
|
||
|
15D9FF000
|
stack
|
page read and write
|
||
|
85C000
|
unkown
|
page readonly
|
||
|
C000072000
|
direct allocation
|
page read and write
|
||
|
C000112000
|
direct allocation
|
page read and write
|
||
|
C00000C000
|
direct allocation
|
page read and write
|
||
|
254E38D7000
|
heap
|
page read and write
|
||
|
B03000
|
unkown
|
page read and write
|
||
|
1A4C7FDF000
|
heap
|
page read and write
|
||
|
26C8E7E9000
|
direct allocation
|
page read and write
|
||
|
AC9000
|
unkown
|
page write copy
|
||
|
C00010E000
|
direct allocation
|
page read and write
|
||
|
1A4C8184000
|
direct allocation
|
page read and write
|
There are 288 hidden memdumps, click here to show them.