Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/tmp/na.elf
|
/tmp/na.elf
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://upx.sf.net
|
unknown
|
 |
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
109.202.202.202
|
unknown
|
Switzerland
|
||
|
91.189.91.43
|
unknown
|
United Kingdom
|
||
|
91.189.91.42
|
unknown
|
United Kingdom
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
55d5a5d5c000
|
page read and write
|
|||
|
55d5a5d64000
|
page read and write
|
|||
|
7f3989697000
|
page read and write
|
|||
|
7fff68f4c000
|
page read and write
|
|||
|
7f398a189000
|
page read and write
|
|||
|
7f3989d0d000
|
page read and write
|
|||
|
7f398a058000
|
page read and write
|
|||
|
7f389400a000
|
page execute read
|
|||
|
55d5a7d62000
|
page execute and read and write
|
|||
|
7f398a181000
|
page read and write
|
|||
|
7f3989689000
|
page read and write
|
|||
|
55d5a5ad9000
|
page execute read
|
|||
|
7fff68fda000
|
page execute read
|
|||
|
7f3989926000
|
page read and write
|
|||
|
7f398a1ce000
|
page read and write
|
|||
|
7f3984000000
|
page read and write
|
|||
|
55d5a96da000
|
page read and write
|
|||
|
7f3989ce8000
|
page read and write
|
|||
|
7f3984021000
|
page read and write
|
|||
|
7f3894025000
|
page read and write
|
|||
|
7f39837ff000
|
page read and write
|
|||
|
55d5a7d78000
|
page read and write
|
|||
|
7f3988e86000
|
page read and write
|
There are 13 hidden memdumps, click here to show them.