Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/tmp/maucl6PmW8.elf
|
/tmp/maucl6PmW8.elf
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://upx.sf.net
|
unknown
|
 |
|
|
http://185.196.10.215/bins/mips;
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/encoding/
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/envelope/
|
unknown
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
daisy.ubuntu.com
|
162.213.35.25
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7f238c02a000
|
page execute read
|
|
||
|
7ffdd3384000
|
page execute read
|
|||
|
7ffdd3234000
|
page read and write
|
|||
|
7f2492b49000
|
page read and write
|
|||
|
7f2493453000
|
page read and write
|
|||
|
7f2493125000
|
page read and write
|
|||
|
55cdd7f49000
|
page read and write
|
|||
|
7f248bfff000
|
page read and write
|
|||
|
7f248c021000
|
page read and write
|
|||
|
7f2492755000
|
page read and write
|
|||
|
7f2492db4000
|
page read and write
|
|||
|
55cdd9f50000
|
page execute and read and write
|
|||
|
7f2491f4d000
|
page read and write
|
|||
|
7f249342f000
|
page read and write
|
|||
|
7f2492dd7000
|
page read and write
|
|||
|
55cdd9f67000
|
page read and write
|
|||
|
7f2493498000
|
page read and write
|
|||
|
55cdda4a7000
|
page read and write
|
|||
|
7f238c03c000
|
page read and write
|
|||
|
7f2492f43000
|
page read and write
|
|||
|
7f2493306000
|
page read and write
|
|||
|
7f24927e7000
|
page read and write
|
|||
|
55cdd7f52000
|
page read and write
|
|||
|
55cdd7cf8000
|
page execute read
|
There are 14 hidden memdumps, click here to show them.