Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/tmp/na.elf
|
/tmp/na.elf
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://upx.sf.net
|
unknown
|
 |
|
|
http://ipinfo.io/ip
|
unknown
|
||
|
http://127.0.0.1
|
unknown
|
||
|
http://baidu.com/%s/%s/%d/%s/%s/%s/%s)
|
unknown
|
||
|
http://127.0.0.1sendcmd
|
unknown
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
daisy.ubuntu.com
|
162.213.35.25
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
5555f4219000
|
page execute and read and write
|
|||
|
7f6d561a1000
|
page read and write
|
|||
|
7f6d567dc000
|
page read and write
|
|||
|
7f6d566b3000
|
page read and write
|
|||
|
7f6d55dc0000
|
page read and write
|
|||
|
7f6d50000000
|
page read and write
|
|||
|
7f6d564d2000
|
page read and write
|
|||
|
7f6d50021000
|
page read and write
|
|||
|
7f6cd0422000
|
page execute read
|
|||
|
7f6d552fa000
|
page read and write
|
|||
|
7f6d56161000
|
page read and write
|
|||
|
7f6d55b02000
|
page read and write
|
|||
|
5555f1f89000
|
page execute read
|
|||
|
5555f2211000
|
page read and write
|
|||
|
5555f221b000
|
page read and write
|
|||
|
5555f5c0f000
|
page read and write
|
|||
|
7ffca3beb000
|
page execute read
|
|||
|
7f6d567e4000
|
page read and write
|
|||
|
7ffca3be0000
|
page read and write
|
|||
|
5555f4230000
|
page read and write
|
|||
|
7f6d4f7ff000
|
page read and write
|
|||
|
7f6d56829000
|
page read and write
|
|||
|
7f6cd04c3000
|
page read and write
|
|||
|
7f6d55b10000
|
page read and write
|
|||
|
7f6d56184000
|
page read and write
|
There are 15 hidden memdumps, click here to show them.