Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/tmp/m68k.elf
|
/tmp/m68k.elf
|
||
|
/tmp/m68k.elf
|
-
|
||
|
/bin/sh
|
sh -c "rm -rf bin/busybox && mkdir bin; >bin/busybox\\xff\\xec@\\x80 && mv /tmp/m68k.elf\\xecX bin/busybox; chmod 777 \\x80bin/busybox\\xff\\xff\\xecX"
|
||
|
/bin/sh
|
-
|
||
|
/usr/bin/rm
|
rm -rf bin/busybox
|
||
|
/bin/sh
|
-
|
||
|
/usr/bin/mkdir
|
mkdir bin
|
||
|
/bin/sh
|
-
|
||
|
/usr/bin/mv
|
mv /tmp/m68k.elf\\xecX bin/busybox
|
||
|
/bin/sh
|
-
|
||
|
/usr/bin/chmod
|
chmod 777 \\x80bin/busybox\\xff\\xff\\xecX
|
||
|
/tmp/m68k.elf
|
-
|
||
|
/tmp/m68k.elf
|
-
|
||
|
/tmp/m68k.elf
|
-
|
||
|
/usr/bin/dash
|
-
|
||
|
/usr/bin/rm
|
rm -f /tmp/tmp.fOv6Tq2GWG /tmp/tmp.V1T09MoH86 /tmp/tmp.zZUI8qqBuX
|
||
|
/usr/bin/dash
|
-
|
||
|
/usr/bin/cat
|
cat /tmp/tmp.fOv6Tq2GWG
|
||
|
/usr/bin/dash
|
-
|
||
|
/usr/bin/head
|
head -n 10
|
||
|
/usr/bin/dash
|
-
|
||
|
/usr/bin/tr
|
tr -d \\000-\\011\\013\\014\\016-\\037
|
||
|
/usr/bin/dash
|
-
|
||
|
/usr/bin/cut
|
cut -c -80
|
||
|
/usr/bin/dash
|
-
|
||
|
/usr/bin/cat
|
cat /tmp/tmp.fOv6Tq2GWG
|
||
|
/usr/bin/dash
|
-
|
||
|
/usr/bin/head
|
head -n 10
|
||
|
/usr/bin/dash
|
-
|
||
|
/usr/bin/tr
|
tr -d \\000-\\011\\013\\014\\016-\\037
|
||
|
/usr/bin/dash
|
-
|
||
|
/usr/bin/cut
|
cut -c -80
|
||
|
/usr/bin/dash
|
-
|
||
|
/usr/bin/rm
|
rm -f /tmp/tmp.fOv6Tq2GWG /tmp/tmp.V1T09MoH86 /tmp/tmp.zZUI8qqBuX
|
There are 24 hidden processes, click here to show them.
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://schemas.xmlsoap.org/soap/encoding/
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/envelope/
|
unknown
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
net.tiktoka.cc
|
81.161.238.2
|
 |
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
41.224.35.103
|
unknown
|
Tunisia
|
|
|
|
61.22.203.47
|
unknown
|
Japan
|
|
|
|
41.93.16.139
|
unknown
|
Tanzania United Republic of
|
||
|
157.86.23.62
|
unknown
|
Brazil
|
||
|
197.59.217.47
|
unknown
|
Egypt
|
||
|
197.234.167.184
|
unknown
|
South Africa
|
||
|
42.10.16.36
|
unknown
|
Korea Republic of
|
||
|
41.215.4.48
|
unknown
|
Kenya
|
||
|
41.96.24.38
|
unknown
|
Algeria
|
||
|
197.122.223.248
|
unknown
|
Egypt
|
||
|
157.84.5.12
|
unknown
|
United Kingdom
|
||
|
41.19.200.100
|
unknown
|
South Africa
|
||
|
157.94.173.83
|
unknown
|
Finland
|
||
|
41.179.133.13
|
unknown
|
Egypt
|
||
|
41.96.24.34
|
unknown
|
Algeria
|
||
|
197.71.86.135
|
unknown
|
South Africa
|
||
|
218.135.247.195
|
unknown
|
Japan
|
||
|
197.48.170.251
|
unknown
|
Egypt
|
||
|
197.225.163.165
|
unknown
|
Mauritius
|
||
|
157.53.160.237
|
unknown
|
United States
|
||
|
157.82.96.143
|
unknown
|
Japan
|
||
|
157.217.179.205
|
unknown
|
United States
|
||
|
115.24.186.162
|
unknown
|
China
|
||
|
197.235.109.176
|
unknown
|
Mozambique
|
||
|
197.219.240.165
|
unknown
|
Mozambique
|
||
|
41.145.142.95
|
unknown
|
South Africa
|
||
|
197.21.53.76
|
unknown
|
Tunisia
|
||
|
157.217.5.119
|
unknown
|
United States
|
||
|
41.34.215.111
|
unknown
|
Egypt
|
||
|
137.183.191.104
|
unknown
|
United States
|
||
|
41.188.184.69
|
unknown
|
Tanzania United Republic of
|
||
|
157.135.154.118
|
unknown
|
United States
|
||
|
41.0.209.186
|
unknown
|
South Africa
|
||
|
157.24.20.236
|
unknown
|
Finland
|
||
|
157.203.74.39
|
unknown
|
United Kingdom
|
||
|
157.4.229.117
|
unknown
|
Japan
|
||
|
41.184.166.147
|
unknown
|
Nigeria
|
||
|
157.114.152.216
|
unknown
|
Japan
|
||
|
157.169.59.54
|
unknown
|
France
|
||
|
197.73.219.40
|
unknown
|
South Africa
|
||
|
157.66.124.0
|
unknown
|
unknown
|
||
|
157.252.112.212
|
unknown
|
United States
|
||
|
41.60.86.32
|
unknown
|
Mauritius
|
||
|
197.86.191.178
|
unknown
|
South Africa
|
||
|
102.173.5.122
|
unknown
|
Tunisia
|
||
|
41.41.97.188
|
unknown
|
Egypt
|
||
|
197.20.179.187
|
unknown
|
Tunisia
|
||
|
41.27.27.16
|
unknown
|
South Africa
|
||
|
41.84.41.16
|
unknown
|
South Africa
|
||
|
197.6.68.8
|
unknown
|
Tunisia
|
||
|
157.248.0.72
|
unknown
|
United States
|
||
|
157.133.26.162
|
unknown
|
United States
|
||
|
129.25.89.104
|
unknown
|
United States
|
||
|
197.48.192.99
|
unknown
|
Egypt
|
||
|
19.94.244.134
|
unknown
|
United States
|
||
|
197.193.207.28
|
unknown
|
Egypt
|
||
|
197.175.82.118
|
unknown
|
South Africa
|
||
|
197.189.11.24
|
unknown
|
Congo The Democratic Republic of The
|
||
|
157.14.248.43
|
unknown
|
Japan
|
||
|
197.122.135.251
|
unknown
|
Egypt
|
||
|
157.146.202.204
|
unknown
|
United States
|
||
|
197.180.70.237
|
unknown
|
Kenya
|
||
|
71.161.139.66
|
unknown
|
United States
|
||
|
41.136.103.69
|
unknown
|
Mauritius
|
||
|
41.37.179.69
|
unknown
|
Egypt
|
||
|
157.137.25.238
|
unknown
|
United States
|
||
|
207.155.42.164
|
unknown
|
United States
|
||
|
197.89.196.40
|
unknown
|
South Africa
|
||
|
197.206.187.29
|
unknown
|
Algeria
|
||
|
177.250.246.119
|
unknown
|
Paraguay
|
||
|
41.224.199.206
|
unknown
|
Tunisia
|
||
|
41.76.119.114
|
unknown
|
South Africa
|
||
|
157.9.149.22
|
unknown
|
Japan
|
||
|
203.198.86.222
|
unknown
|
Hong Kong
|
||
|
157.171.75.210
|
unknown
|
Sweden
|
||
|
157.105.160.56
|
unknown
|
Japan
|
||
|
41.206.0.77
|
unknown
|
Nigeria
|
||
|
157.190.28.142
|
unknown
|
Ireland
|
||
|
157.120.215.117
|
unknown
|
Japan
|
||
|
157.188.96.180
|
unknown
|
United States
|
||
|
41.20.67.198
|
unknown
|
South Africa
|
||
|
41.51.170.62
|
unknown
|
South Africa
|
||
|
59.202.176.155
|
unknown
|
China
|
||
|
157.215.239.29
|
unknown
|
United States
|
||
|
18.176.7.241
|
unknown
|
United States
|
||
|
197.152.252.78
|
unknown
|
Tanzania United Republic of
|
||
|
157.245.145.66
|
unknown
|
United States
|
||
|
197.190.198.192
|
unknown
|
Ghana
|
||
|
157.77.107.242
|
unknown
|
Japan
|
||
|
157.108.93.56
|
unknown
|
Japan
|
||
|
54.214.132.50
|
unknown
|
United States
|
||
|
157.215.240.13
|
unknown
|
United States
|
||
|
41.98.42.166
|
unknown
|
Algeria
|
||
|
157.78.133.207
|
unknown
|
Japan
|
||
|
69.20.29.202
|
unknown
|
United States
|
||
|
157.66.235.172
|
unknown
|
unknown
|
||
|
157.25.181.145
|
unknown
|
Poland
|
||
|
12.36.238.129
|
unknown
|
United States
|
||
|
197.132.187.95
|
unknown
|
Egypt
|
||
|
197.237.196.202
|
unknown
|
Kenya
|
There are 90 hidden IPs, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7f8400012000
|
page execute read
|
|
||
|
5617641da000
|
page read and write
|
|||
|
5617628b0000
|
page read and write
|
|||
|
7f8485f92000
|
page read and write
|
|||
|
7fffff4a2000
|
page read and write
|
|||
|
561762819000
|
page execute and read and write
|
|||
|
7fffff550000
|
page execute read
|
|||
|
7f8487295000
|
page read and write
|
|||
|
7f8486795000
|
page read and write
|
|||
|
7f848728d000
|
page read and write
|
|||
|
7f8487164000
|
page read and write
|
|||
|
7f8400014000
|
page read and write
|
|||
|
561760813000
|
page read and write
|
|||
|
7f8480021000
|
page read and write
|
|||
|
7f8400017000
|
page read and write
|
|||
|
5617605e1000
|
page execute read
|
|||
|
7f8486e19000
|
page read and write
|
|||
|
7f84872da000
|
page read and write
|
|||
|
56176081b000
|
page read and write
|
|||
|
7f8480000000
|
page read and write
|
|||
|
7f84867a3000
|
page read and write
|
|||
|
7f8486df4000
|
page read and write
|
|||
|
7f8486a32000
|
page read and write
|
There are 13 hidden memdumps, click here to show them.