Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\SecuriteInfo.com.Trojan.Siggen28.43392.13729.12160.exe
|
"C:\Users\user\Desktop\SecuriteInfo.com.Trojan.Siggen28.43392.13729.12160.exe"
|
 |
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
127.0.0.1
|
unknown
|
unknown
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
401000
|
unkown
|
page execute read
|
|
|
|
401000
|
unkown
|
page execute read
|
|
|
|
414000
|
unkown
|
page read and write
|
||
|
506000
|
heap
|
page read and write
|
||
|
2A14000
|
heap
|
page read and write
|
||
|
21C0000
|
trusted library allocation
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
2A10000
|
heap
|
page read and write
|
||
|
510000
|
heap
|
page read and write
|
||
|
5B0000
|
heap
|
page read and write
|
||
|
416000
|
unkown
|
page readonly
|
||
|
5BA000
|
heap
|
page read and write
|
||
|
20F0000
|
heap
|
page read and write
|
||
|
5BE000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
2060000
|
trusted library allocation
|
page execute read
|
||
|
500000
|
heap
|
page read and write
|
||
|
19C000
|
stack
|
page read and write
|
||
|
2090000
|
heap
|
page read and write
|
||
|
5D3000
|
heap
|
page read and write
|
||
|
416000
|
unkown
|
page readonly
|
||
|
20D0000
|
heap
|
page read and write
|
||
|
20C0000
|
heap
|
page read and write
|
||
|
2A99000
|
heap
|
page read and write
|
||
|
2A90000
|
heap
|
page read and write
|
||
|
9A000
|
stack
|
page read and write
|
||
|
2BE0000
|
heap
|
page read and write
|
||
|
420000
|
heap
|
page read and write
|
||
|
21B0000
|
heap
|
page read and write
|
||
|
2900000
|
heap
|
page read and write
|
There are 20 hidden memdumps, click here to show them.