Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
na.elf
|
ELF 32-bit MSB executable, Motorola m68k, 68020, version 1 (SYSV), statically linked, stripped
|
initial sample
|
 |
|
|
/tmp/qemu-open.AjUjMZ (deleted)
|
ASCII text
|
dropped
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/tmp/na.elf
|
/tmp/na.elf
|
||
|
/tmp/na.elf
|
-
|
||
|
/tmp/na.elf
|
-
|
||
|
/tmp/na.elf
|
-
|
||
|
/tmp/na.elf
|
-
|
||
|
/usr/bin/dash
|
-
|
||
|
/usr/bin/rm
|
rm -f /tmp/tmp.A6AyV5HON9 /tmp/tmp.cVw9IblZMW /tmp/tmp.uOqyFwcRRv
|
||
|
/usr/bin/dash
|
-
|
||
|
/usr/bin/rm
|
rm -f /tmp/tmp.A6AyV5HON9 /tmp/tmp.cVw9IblZMW /tmp/tmp.uOqyFwcRRv
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
12.70.84.50
|
unknown
|
United States
|
||
|
23.109.110.105
|
unknown
|
Netherlands
|
||
|
18.110.204.79
|
unknown
|
United States
|
||
|
14.26.29.58
|
unknown
|
China
|
||
|
4.250.17.37
|
unknown
|
United States
|
||
|
8.168.189.30
|
unknown
|
Singapore
|
||
|
9.193.50.118
|
unknown
|
United States
|
||
|
19.117.204.29
|
unknown
|
United States
|
||
|
17.222.174.239
|
unknown
|
United States
|
||
|
19.88.233.132
|
unknown
|
United States
|
||
|
1.228.79.64
|
unknown
|
Korea Republic of
|
||
|
12.164.173.34
|
unknown
|
United States
|
||
|
1.186.123.112
|
unknown
|
India
|
||
|
9.254.39.237
|
unknown
|
United States
|
||
|
8.133.115.152
|
unknown
|
Singapore
|
||
|
8.186.115.126
|
unknown
|
Singapore
|
||
|
14.228.128.135
|
unknown
|
Viet Nam
|
||
|
18.119.192.57
|
unknown
|
United States
|
||
|
12.116.234.192
|
unknown
|
United States
|
||
|
5.174.175.5
|
unknown
|
Poland
|
||
|
17.160.124.68
|
unknown
|
United States
|
||
|
17.141.43.226
|
unknown
|
United States
|
||
|
9.66.236.186
|
unknown
|
United States
|
||
|
12.91.178.228
|
unknown
|
United States
|
||
|
13.203.29.125
|
unknown
|
United States
|
||
|
1.109.151.172
|
unknown
|
Korea Republic of
|
||
|
9.249.241.119
|
unknown
|
United States
|
||
|
14.253.249.224
|
unknown
|
Viet Nam
|
||
|
17.122.18.223
|
unknown
|
United States
|
||
|
9.147.16.181
|
unknown
|
United States
|
||
|
14.0.175.253
|
unknown
|
Hong Kong
|
||
|
18.237.116.228
|
unknown
|
United States
|
||
|
17.118.37.6
|
unknown
|
United States
|
||
|
17.88.89.197
|
unknown
|
United States
|
||
|
13.223.33.114
|
unknown
|
United States
|
||
|
12.245.113.85
|
unknown
|
United States
|
||
|
22.78.228.97
|
unknown
|
United States
|
||
|
19.122.87.100
|
unknown
|
United States
|
||
|
9.221.26.166
|
unknown
|
United States
|
||
|
14.108.128.90
|
unknown
|
China
|
||
|
20.10.177.101
|
unknown
|
United States
|
||
|
23.85.79.157
|
unknown
|
United States
|
||
|
17.196.177.45
|
unknown
|
United States
|
||
|
18.171.75.91
|
unknown
|
United States
|
||
|
12.244.58.122
|
unknown
|
United States
|
||
|
8.246.201.230
|
unknown
|
United States
|
||
|
1.95.22.255
|
unknown
|
China
|
||
|
1.95.46.26
|
unknown
|
China
|
||
|
5.154.156.156
|
unknown
|
United Kingdom
|
||
|
5.236.23.49
|
unknown
|
Iran (ISLAMIC Republic Of)
|
||
|
19.11.67.22
|
unknown
|
United States
|
||
|
5.194.181.35
|
unknown
|
United Arab Emirates
|
||
|
19.8.111.174
|
unknown
|
United States
|
||
|
17.142.240.232
|
unknown
|
United States
|
||
|
20.8.104.126
|
unknown
|
United States
|
||
|
17.165.122.115
|
unknown
|
United States
|
||
|
9.25.134.252
|
unknown
|
United States
|
||
|
12.94.51.43
|
unknown
|
United States
|
||
|
22.51.205.115
|
unknown
|
United States
|
||
|
20.5.221.80
|
unknown
|
United States
|
||
|
12.28.184.10
|
unknown
|
United States
|
||
|
12.159.24.5
|
unknown
|
United States
|
||
|
13.12.78.122
|
unknown
|
United States
|
||
|
18.2.225.235
|
unknown
|
United States
|
||
|
8.19.45.164
|
unknown
|
United States
|
||
|
18.223.161.99
|
unknown
|
United States
|
||
|
17.32.131.196
|
unknown
|
United States
|
||
|
19.78.137.75
|
unknown
|
United States
|
||
|
19.180.21.107
|
unknown
|
United States
|
||
|
8.173.30.152
|
unknown
|
Singapore
|
||
|
17.180.225.58
|
unknown
|
United States
|
||
|
22.153.26.207
|
unknown
|
United States
|
||
|
22.134.192.149
|
unknown
|
United States
|
||
|
17.188.215.171
|
unknown
|
United States
|
||
|
23.118.97.115
|
unknown
|
United States
|
||
|
5.17.100.63
|
unknown
|
Russian Federation
|
||
|
1.238.242.166
|
unknown
|
Korea Republic of
|
||
|
13.214.81.27
|
unknown
|
United States
|
||
|
1.248.72.126
|
unknown
|
Korea Republic of
|
||
|
17.34.234.108
|
unknown
|
United States
|
||
|
18.223.80.138
|
unknown
|
United States
|
||
|
19.8.158.187
|
unknown
|
United States
|
||
|
20.246.77.238
|
unknown
|
United States
|
||
|
20.166.5.0
|
unknown
|
United States
|
||
|
14.13.242.241
|
unknown
|
Japan
|
||
|
23.1.146.23
|
unknown
|
United States
|
||
|
23.37.155.83
|
unknown
|
United States
|
||
|
5.3.110.208
|
unknown
|
Russian Federation
|
||
|
19.201.169.93
|
unknown
|
United States
|
||
|
17.160.77.95
|
unknown
|
United States
|
||
|
4.66.185.176
|
unknown
|
United States
|
||
|
22.255.111.6
|
unknown
|
United States
|
||
|
19.190.117.149
|
unknown
|
United States
|
||
|
1.160.213.10
|
unknown
|
Taiwan; Republic of China (ROC)
|
||
|
18.8.223.16
|
unknown
|
United States
|
||
|
17.78.52.242
|
unknown
|
United States
|
||
|
18.20.136.44
|
unknown
|
United States
|
||
|
14.174.217.165
|
unknown
|
Viet Nam
|
||
|
9.64.253.3
|
unknown
|
United States
|
||
|
1.49.127.51
|
unknown
|
China
|
There are 90 hidden IPs, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7f25cc013000
|
page execute read
|
|
||
|
7f25cc013000
|
page execute read
|
|
||
|
7f2651a9d000
|
page read and write
|
|||
|
7f25cc019000
|
page read and write
|
|||
|
7ffdfdd89000
|
page read and write
|
|||
|
7f2651aa5000
|
page read and write
|
|||
|
7ffdfddb9000
|
page execute read
|
|||
|
7f264c000000
|
page read and write
|
|||
|
7f2651242000
|
page read and write
|
|||
|
7f2651aa5000
|
page read and write
|
|||
|
7f264c000000
|
page read and write
|
|||
|
563da61df000
|
page read and write
|
|||
|
7f2650fa5000
|
page read and write
|
|||
|
7f2651629000
|
page read and write
|
|||
|
7f264c021000
|
page read and write
|
|||
|
563da5fad000
|
page execute read
|
|||
|
563da81e5000
|
page execute and read and write
|
|||
|
563da61df000
|
page read and write
|
|||
|
7f2651974000
|
page read and write
|
|||
|
7f2651242000
|
page read and write
|
|||
|
7f2651aea000
|
page read and write
|
|||
|
7f2650fb3000
|
page read and write
|
|||
|
563da5fad000
|
page execute read
|
|||
|
7f2651604000
|
page read and write
|
|||
|
7f2651629000
|
page read and write
|
|||
|
7f2651974000
|
page read and write
|
|||
|
7f25cc015000
|
page read and write
|
|||
|
7f2650fa5000
|
page read and write
|
|||
|
7ffdfdd89000
|
page read and write
|
|||
|
7f2651604000
|
page read and write
|
|||
|
7f2651a9d000
|
page read and write
|
|||
|
7f264c021000
|
page read and write
|
|||
|
7ffdfddb9000
|
page execute read
|
|||
|
7f25cc019000
|
page read and write
|
|||
|
7f25cc015000
|
page read and write
|
|||
|
563da9485000
|
page read and write
|
|||
|
563da827c000
|
page read and write
|
|||
|
7f26507a2000
|
page read and write
|
|||
|
563da61e7000
|
page read and write
|
|||
|
7f2650fb3000
|
page read and write
|
|||
|
7f26507a2000
|
page read and write
|
|||
|
563da9485000
|
page read and write
|
|||
|
563da61e7000
|
page read and write
|
|||
|
7f2651aea000
|
page read and write
|
|||
|
563da81e5000
|
page execute and read and write
|
|||
|
563da827c000
|
page read and write
|
There are 36 hidden memdumps, click here to show them.