Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/tmp/x86_64.elf
|
/tmp/x86_64.elf
|
||
|
/tmp/x86_64.elf
|
-
|
||
|
/bin/sh
|
sh -c "rm -rf bin/busybox && mkdir bin; >\\xf7\\x96\\xfebin/busybox && mv /tmp/x86_64.elf bin/busybox; chmod 777 bin/busybox"
|
||
|
/bin/sh
|
-
|
||
|
/usr/bin/rm
|
rm -rf bin/busybox
|
||
|
/bin/sh
|
-
|
||
|
/usr/bin/mkdir
|
mkdir bin
|
||
|
/bin/sh
|
-
|
||
|
/usr/bin/chmod
|
chmod 777 bin/busybox
|
||
|
/tmp/x86_64.elf
|
-
|
||
|
/tmp/x86_64.elf
|
-
|
||
|
/tmp/x86_64.elf
|
-
|
There are 2 hidden processes, click here to show them.
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://schemas.xmlsoap.org/soap/encoding/
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/envelope/
|
unknown
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
net.tiktoka.cc
|
81.161.238.2
|
 |
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
109.147.77.244
|
unknown
|
United Kingdom
|
|
|
|
58.88.172.126
|
unknown
|
Japan
|
|
|
|
41.233.132.32
|
unknown
|
Egypt
|
|
|
|
197.153.48.74
|
unknown
|
Morocco
|
|
|
|
197.4.42.45
|
unknown
|
Tunisia
|
|
|
|
41.99.21.105
|
unknown
|
Algeria
|
|
|
|
41.14.226.5
|
unknown
|
South Africa
|
||
|
41.145.46.69
|
unknown
|
South Africa
|
||
|
197.237.113.198
|
unknown
|
Kenya
|
||
|
40.130.98.204
|
unknown
|
United States
|
||
|
1.18.64.175
|
unknown
|
Korea Republic of
|
||
|
197.180.120.83
|
unknown
|
Kenya
|
||
|
18.251.142.227
|
unknown
|
United States
|
||
|
157.91.221.226
|
unknown
|
United States
|
||
|
198.52.24.44
|
unknown
|
United States
|
||
|
157.172.185.185
|
unknown
|
France
|
||
|
197.179.217.60
|
unknown
|
Kenya
|
||
|
197.146.166.224
|
unknown
|
Morocco
|
||
|
41.97.63.119
|
unknown
|
Algeria
|
||
|
197.81.146.228
|
unknown
|
South Africa
|
||
|
194.178.167.43
|
unknown
|
Netherlands
|
||
|
141.72.98.13
|
unknown
|
Germany
|
||
|
41.234.146.138
|
unknown
|
Egypt
|
||
|
197.21.65.52
|
unknown
|
Tunisia
|
||
|
53.107.17.60
|
unknown
|
Germany
|
||
|
153.121.193.222
|
unknown
|
Japan
|
||
|
41.145.34.76
|
unknown
|
South Africa
|
||
|
48.148.228.44
|
unknown
|
United States
|
||
|
205.163.105.177
|
unknown
|
United States
|
||
|
59.29.14.103
|
unknown
|
Korea Republic of
|
||
|
157.228.219.4
|
unknown
|
United Kingdom
|
||
|
197.163.51.169
|
unknown
|
Egypt
|
||
|
210.61.68.130
|
unknown
|
Taiwan; Republic of China (ROC)
|
||
|
197.249.181.85
|
unknown
|
Mozambique
|
||
|
41.166.157.227
|
unknown
|
South Africa
|
||
|
157.92.211.114
|
unknown
|
Argentina
|
||
|
41.246.44.4
|
unknown
|
South Africa
|
||
|
157.2.250.217
|
unknown
|
Japan
|
||
|
197.223.62.36
|
unknown
|
Egypt
|
||
|
157.51.156.219
|
unknown
|
India
|
||
|
197.136.248.15
|
unknown
|
Kenya
|
||
|
41.242.201.204
|
unknown
|
South Africa
|
||
|
166.63.212.29
|
unknown
|
United States
|
||
|
197.56.13.214
|
unknown
|
Egypt
|
||
|
131.16.71.10
|
unknown
|
United States
|
||
|
197.90.74.53
|
unknown
|
South Africa
|
||
|
197.89.73.99
|
unknown
|
South Africa
|
||
|
41.236.237.213
|
unknown
|
Egypt
|
||
|
197.204.137.19
|
unknown
|
Algeria
|
||
|
41.96.84.102
|
unknown
|
Algeria
|
||
|
111.24.180.234
|
unknown
|
China
|
||
|
197.211.162.103
|
unknown
|
South Africa
|
||
|
41.20.20.162
|
unknown
|
South Africa
|
||
|
101.128.179.9
|
unknown
|
Japan
|
||
|
221.171.174.198
|
unknown
|
Japan
|
||
|
197.100.220.32
|
unknown
|
South Africa
|
||
|
41.85.124.41
|
unknown
|
South Africa
|
||
|
157.235.141.120
|
unknown
|
United States
|
||
|
41.11.78.78
|
unknown
|
South Africa
|
||
|
185.121.90.242
|
unknown
|
United Kingdom
|
||
|
139.232.104.2
|
unknown
|
United States
|
||
|
161.94.69.10
|
unknown
|
Japan
|
||
|
197.218.26.158
|
unknown
|
Mozambique
|
||
|
157.96.37.237
|
unknown
|
United Kingdom
|
||
|
219.186.132.19
|
unknown
|
Japan
|
||
|
96.162.12.234
|
unknown
|
United States
|
||
|
41.156.139.112
|
unknown
|
South Africa
|
||
|
120.237.196.66
|
unknown
|
China
|
||
|
197.118.187.114
|
unknown
|
Algeria
|
||
|
41.148.113.189
|
unknown
|
South Africa
|
||
|
197.161.93.161
|
unknown
|
Egypt
|
||
|
160.126.35.218
|
unknown
|
United States
|
||
|
157.88.4.111
|
unknown
|
Spain
|
||
|
157.49.47.72
|
unknown
|
India
|
||
|
24.73.129.22
|
unknown
|
United States
|
||
|
197.189.60.16
|
unknown
|
Congo The Democratic Republic of The
|
||
|
197.51.152.177
|
unknown
|
Egypt
|
||
|
157.125.200.86
|
unknown
|
Sweden
|
||
|
159.3.171.88
|
unknown
|
United States
|
||
|
17.185.134.197
|
unknown
|
United States
|
||
|
157.203.25.78
|
unknown
|
United Kingdom
|
||
|
41.82.8.142
|
unknown
|
Senegal
|
||
|
211.6.170.205
|
unknown
|
Japan
|
||
|
157.94.77.99
|
unknown
|
Finland
|
||
|
9.159.196.102
|
unknown
|
United States
|
||
|
41.140.123.196
|
unknown
|
Morocco
|
||
|
197.169.244.0
|
unknown
|
South Africa
|
||
|
41.117.228.101
|
unknown
|
South Africa
|
||
|
197.237.196.230
|
unknown
|
Kenya
|
||
|
41.82.47.248
|
unknown
|
Senegal
|
||
|
197.129.247.55
|
unknown
|
Morocco
|
||
|
197.131.139.238
|
unknown
|
Morocco
|
||
|
14.75.13.23
|
unknown
|
Korea Republic of
|
||
|
197.198.141.181
|
unknown
|
Egypt
|
||
|
187.26.98.233
|
unknown
|
Brazil
|
||
|
157.243.207.168
|
unknown
|
France
|
||
|
157.153.115.112
|
unknown
|
United States
|
||
|
197.92.206.190
|
unknown
|
South Africa
|
||
|
197.95.147.232
|
unknown
|
South Africa
|
||
|
41.84.170.197
|
unknown
|
unknown
|
There are 90 hidden IPs, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
40f000
|
page execute read
|
|
||
|
510000
|
page read and write
|
|||
|
7ffe96f7d000
|
page read and write
|
|||
|
7ffe96fe5000
|
page execute read
|
|||
|
2008000
|
page read and write
|
|||
|
512000
|
page read and write
|