Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Windows\System32\loaddll32.exe
|
loaddll32.exe "C:\Users\user\Desktop\SecuriteInfo.com.Riskware.Application.2939.9339.dll"
|
||
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
||
|
C:\Windows\SysWOW64\cmd.exe
|
cmd.exe /C rundll32.exe "C:\Users\user\Desktop\SecuriteInfo.com.Riskware.Application.2939.9339.dll",#1
|
||
|
C:\Windows\SysWOW64\rundll32.exe
|
rundll32.exe "C:\Users\user\Desktop\SecuriteInfo.com.Riskware.Application.2939.9339.dll",#1
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://cdn.pixabay.com/photo/2013/07/12/12/56/home-146585_640.png
|
unknown
|
||
|
https://www.krqe.com/wp-content/uploads/sites/12/2022/12/AdobeStock_81556974.jpeg?w=2560&h=1440&crop
|
unknown
|
||
|
https://dm0qx8t0i9gc9.cloudfront.net/thumbnails/image/rDtN98Qoishumwih/cemented-wall-seamless-textur
|
unknown
|
||
|
https://i.pinimg.com/736x/58/72/db/5872dbc337cee578532d0bd784924c94.jpg
|
unknown
|
||
|
https://static-00.iconduck.com/assets.00/person-icon-1901x2048-a9h70k71.png
|
unknown
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
s-part-0017.t-0009.t-msedge.net
|
13.107.246.45
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
C2F000
|
heap
|
page read and write
|
||
|
69E000
|
stack
|
page read and write
|
||
|
71C000
|
heap
|
page read and write
|
||
|
706000
|
heap
|
page read and write
|
||
|
700000
|
heap
|
page read and write
|
||
|
52E000
|
stack
|
page read and write
|
||
|
65F000
|
stack
|
page read and write
|
||
|
6DA000
|
heap
|
page read and write
|
||
|
702000
|
heap
|
page read and write
|
||
|
4A0000
|
heap
|
page read and write
|
||
|
8FA000
|
heap
|
page read and write
|
||
|
718000
|
heap
|
page read and write
|
||
|
6EF000
|
heap
|
page read and write
|
||
|
540000
|
heap
|
page read and write
|
||
|
8F7000
|
heap
|
page read and write
|
||
|
59D000
|
stack
|
page read and write
|
||
|
1120000
|
heap
|
page read and write
|
||
|
A04000
|
heap
|
page read and write
|
||
|
700000
|
heap
|
page read and write
|
||
|
6F8000
|
heap
|
page read and write
|
||
|
A60000
|
heap
|
page read and write
|
||
|
703000
|
heap
|
page read and write
|
||
|
701000
|
heap
|
page read and write
|
||
|
C37000
|
heap
|
page read and write
|
||
|
43C000
|
stack
|
page read and write
|
||
|
810000
|
heap
|
page read and write
|
||
|
6A0000
|
heap
|
page read and write
|
||
|
F50000
|
heap
|
page read and write
|
||
|
A00000
|
heap
|
page read and write
|
||
|
706000
|
heap
|
page read and write
|
||
|
49D000
|
stack
|
page read and write
|
||
|
6F8000
|
heap
|
page read and write
|
||
|
701000
|
heap
|
page read and write
|
||
|
C20000
|
heap
|
page read and write
|
||
|
6EE000
|
heap
|
page read and write
|
||
|
B6F000
|
stack
|
page read and write
|
||
|
80E000
|
stack
|
page read and write
|
||
|
8F0000
|
heap
|
page read and write
|
||
|
85E000
|
stack
|
page read and write
|
||
|
5CD0000
|
trusted library allocation
|
page read and write
|
||
|
840000
|
heap
|
page read and write
|
||
|
C2B000
|
heap
|
page read and write
|
||
|
6D0000
|
heap
|
page read and write
|
||
|
700000
|
heap
|
page read and write
|
||
|
708000
|
heap
|
page read and write
|
||
|
E1F000
|
stack
|
page read and write
|
||
|
8D0000
|
heap
|
page read and write
|
||
|
830000
|
heap
|
page read and write
|
||
|
6F4000
|
heap
|
page read and write
|
||
|
724000
|
heap
|
page read and write
|
||
|
4B0000
|
heap
|
page read and write
|
||
|
9CE000
|
stack
|
page read and write
|
||
|
6FB000
|
heap
|
page read and write
|
||
|
1F9000
|
stack
|
page read and write
|
||
|
546000
|
heap
|
page read and write
|
||
|
800000
|
heap
|
page read and write
|
||
|
C3D000
|
heap
|
page read and write
|
There are 47 hidden memdumps, click here to show them.