Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\SecuriteInfo.com.Trojan.Siggen28.43392.25240.5571.exe
|
"C:\Users\user\Desktop\SecuriteInfo.com.Trojan.Siggen28.43392.25240.5571.exe"
|
 |
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
russia978.sytes.net
|
45.94.31.53
|
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
45.94.31.53
|
russia978.sytes.net
|
Netherlands
|
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
401000
|
unkown
|
page execute read
|
|
|
|
401000
|
unkown
|
page execute read
|
|
|
|
2050000
|
heap
|
page read and write
|
||
|
47C000
|
stack
|
page read and write
|
||
|
503000
|
heap
|
page read and write
|
||
|
2F6E000
|
stack
|
page read and write
|
||
|
2070000
|
trusted library allocation
|
page execute read
|
||
|
4C3000
|
heap
|
page read and write
|
||
|
9A000
|
stack
|
page read and write
|
||
|
20F0000
|
heap
|
page read and write
|
||
|
514000
|
heap
|
page read and write
|
||
|
8AF000
|
stack
|
page read and write
|
||
|
20B0000
|
heap
|
page read and write
|
||
|
50E000
|
heap
|
page read and write
|
||
|
2080000
|
heap
|
page read and write
|
||
|
2F2F000
|
stack
|
page read and write
|
||
|
4A0000
|
heap
|
page read and write
|
||
|
522000
|
heap
|
page read and write
|
||
|
486000
|
heap
|
page read and write
|
||
|
28A0000
|
heap
|
page read and write
|
||
|
416000
|
unkown
|
page readonly
|
||
|
19C000
|
stack
|
page read and write
|
||
|
306F000
|
stack
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
2156000
|
heap
|
page read and write
|
||
|
2140000
|
heap
|
page read and write
|
||
|
420000
|
heap
|
page read and write
|
||
|
20E0000
|
heap
|
page read and write
|
||
|
4DE000
|
heap
|
page read and write
|
||
|
4AE000
|
heap
|
page read and write
|
||
|
2AE4000
|
heap
|
page read and write
|
||
|
480000
|
heap
|
page read and write
|
||
|
2160000
|
trusted library allocation
|
page read and write
|
||
|
29B0000
|
heap
|
page read and write
|
||
|
430000
|
heap
|
page read and write
|
||
|
414000
|
unkown
|
page read and write
|
||
|
2150000
|
heap
|
page read and write
|
||
|
2E2E000
|
stack
|
page read and write
|
||
|
7AE000
|
stack
|
page read and write
|
||
|
29B9000
|
heap
|
page read and write
|
||
|
76F000
|
stack
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
4AA000
|
heap
|
page read and write
|
||
|
416000
|
unkown
|
page readonly
|
||
|
2AE0000
|
heap
|
page read and write
|
||
|
50D000
|
heap
|
page read and write
|
||
|
2DEF000
|
stack
|
page read and write
|
||
|
2CEE000
|
stack
|
page read and write
|
There are 38 hidden memdumps, click here to show them.