Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\file.exe
|
"C:\Users\user\Desktop\file.exe"
|
 |
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
bathdoomgaz.store
|
|
||
|
https://bathdoomgaz.store:443/apiB
|
unknown
|
|
|
|
studennotediw.store
|
|
||
|
clearancek.site
|
|
||
|
dissapoiznw.store
|
|
||
|
https://steamcommunity.com/profiles/76561199724331900
|
104.102.49.254
|
|
|
|
spirittunek.store
|
|
||
|
licendfilteo.site
|
|
||
|
https://steamcommunity.com:443/profiles/76561199724331900
|
unknown
|
|
|
|
eaglepawnoy.store
|
|
||
|
https://studennotediw.store:443/api
|
unknown
|
|
|
|
https://spirittunek.store:443/api
|
unknown
|
|
|
|
mobbipenju.store
|
|
||
|
https://steamcommunity.com/my/wishlist/
|
unknown
|
||
|
https://player.vimeo.com
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/javascript/jquery-1.11.1.min.js?v=.isFTSRckeNhC&
|
unknown
|
||
|
https://steamcommunity.com/?subsection=broadcasts
|
unknown
|
||
|
https://store.steampowered.com/;Persistent-AuthWWW-AuthenticateVarysteamCountry=US%7Cbcfeb0e5371aba2
|
unknown
|
||
|
https://help.steampowered.com/en/
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/shared/javascript/shared_global.js?v=wJD9maDpDcV
|
unknown
|
||
|
https://steamcommunity.com/market/
|
unknown
|
||
|
https://store.steampowered.com/news/
|
unknown
|
||
|
https://store.steampowered.com/subscriber_agreement/
|
unknown
|
||
|
https://www.gstatic.cn/recaptcha/
|
unknown
|
||
|
http://store.steampowered.com/subscriber_agreement/
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/javascript/applications/community/manifest.js?v=
|
unknown
|
||
|
https://steamcommunity.com/linkfilter/?u=http%3A%2F%2Fwww.geonames.org
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/css/applications/community/main.css?v=ljhW-PbGuX
|
unknown
|
||
|
https://recaptcha.net/recaptcha/;
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/javascript/scriptaculous/_combined.js?v=OeNIgrpE
|
unknown
|
||
|
http://www.valvesoftware.com/legal.htm
|
unknown
|
||
|
https://steamcommunity.com/discussions/
|
unknown
|
||
|
https://www.youtube.com
|
unknown
|
||
|
https://www.google.com
|
unknown
|
||
|
https://store.steampowered.com/stats/
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/javascript/global.js?v=bOP7RorZq4_W&l=englis
|
unknown
|
||
|
https://medal.tv
|
unknown
|
||
|
https://broadcast.st.dl.eccdnx.com
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/shared/javascript/tooltip.js?v=.zYHOpI1L3Rt0&
|
unknown
|
||
|
https://store.steampowered.com/steam_refunds/
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/shared/javascript/shared_responsive_adapter.js?v
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/shared/images/responsive/header_menu_hamburger.p
|
unknown
|
||
|
https://www.valvesoftware.com/en/contact?contact-person=Translation%20Team%20Feedback
|
unknown
|
||
|
https://steamcommunity.com/login/home/?goto=profiles%2F76561199724331900
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/shared/javascript/auth_refresh.js?v=WgUxSlKTb3W1
|
unknown
|
||
|
https://s.ytimg.com;
|
unknown
|
||
|
https://steamcommunity.com/workshop/
|
unknown
|
||
|
https://login.steampowered.com/
|
unknown
|
||
|
https://store.steampowered.com/legal/
|
unknown
|
||
|
https://steam.tv/
|
unknown
|
||
|
https://licendfilteo.site:443/api
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/shared/css/buttons.css?v=tuNiaSwXwcYT&l=engl
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/shared/css/motiva_sans.css?v=GfSjbGKcNYaQ&l=
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/javascript/applications/community/main.js?v=W9BX
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/javascript/prototype-1.7.js?v=.55t44gwuwgvw&
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/css/globalv2.css?v=pwVcIAtHNXwg&l=english&am
|
unknown
|
||
|
http://store.steampowered.com/privacy_agreement/
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/shared/css/shared_responsive.css?v=eghn9DNyCY67&
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/css/skin_1/header.css?v=vh4BMeDcNiCU&l=engli
|
unknown
|
||
|
https://store.steampowered.com/points/shop/
|
unknown
|
||
|
https://recaptcha.net
|
unknown
|
||
|
https://store.steampowered.com/
|
unknown
|
||
|
https://clearancek.site/api
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/css/skin_1/fatalerror.css?v=wctRWaBvNt2z&l=e
|
unknown
|
||
|
https://steamcommunity.com
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/shared/css/shared_global.css?v=Ff_1prscqzeu&
|
unknown
|
||
|
https://sketchfab.com
|
unknown
|
||
|
https://lv.queniujq.cn
|
unknown
|
||
|
https://www.youtube.com/
|
unknown
|
||
|
http://127.0.0.1:27060
|
unknown
|
||
|
https://store.steampowered.com/privacy_agreement/
|
unknown
|
||
|
https://cdn.cloudflare.steamstatic.com/steamcommunity/public/assets/
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/shared/images/responsive/logo_valve_footer.png
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/images/skin_1/footerLogo_valve.png?v=1
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/shared/images/header/logo_steam.svg?t=962016
|
unknown
|
||
|
https://www.google.com/recaptcha/
|
unknown
|
||
|
https://checkout.steampowered.com/
|
unknown
|
||
|
https://help.steampowered.com/
|
unknown
|
||
|
https://api.steampowered.com/
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/javascript/applications/community/libraries~b28b
|
unknown
|
||
|
http://store.steampowered.com/account/cookiepreferences/
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/public/shared/images/responsive/header_logo.png
|
unknown
|
||
|
https://store.steampowered.com/mobile
|
unknown
|
||
|
https://steamcommunity.com/
|
unknown
|
||
|
https://steamcommunity.com/profiles/76561199724331900#r
|
unknown
|
||
|
https://store.steampowered.com/;
|
unknown
|
||
|
https://store.steampowered.com/about/
|
unknown
|
||
|
https://clearancek.site:443/apibcryptPrimitives.dll
|
unknown
|
||
|
https://community.cloudflare.steamstatic.com/
|
unknown
|
There are 79 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
steamcommunity.com
|
104.102.49.254
|
|
|
|
eaglepawnoy.store
|
unknown
|
|
|
|
bathdoomgaz.store
|
unknown
|
|
|
|
spirittunek.store
|
unknown
|
|
|
|
licendfilteo.site
|
unknown
|
|
|
|
studennotediw.store
|
unknown
|
|
|
|
mobbipenju.store
|
unknown
|
|
|
|
clearancek.site
|
unknown
|
|
|
|
dissapoiznw.store
|
unknown
|
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
104.102.49.254
|
steamcommunity.com
|
United States
|
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
CA1000
|
unkown
|
page execute and read and write
|
|
|
|
46A0000
|
direct allocation
|
page read and write
|
||
|
F78000
|
unkown
|
page execute and read and write
|
||
|
281F000
|
stack
|
page read and write
|
||
|
26CE000
|
stack
|
page read and write
|
||
|
EE2000
|
unkown
|
page execute and read and write
|
||
|
1FD000
|
stack
|
page read and write
|
||
|
30DE000
|
stack
|
page read and write
|
||
|
6E0000
|
direct allocation
|
page read and write
|
||
|
E6B000
|
unkown
|
page execute and write copy
|
||
|
F23000
|
unkown
|
page execute and read and write
|
||
|
4E3D000
|
stack
|
page read and write
|
||
|
2BDE000
|
stack
|
page read and write
|
||
|
F95000
|
unkown
|
page execute and write copy
|
||
|
35DE000
|
stack
|
page read and write
|
||
|
F8D000
|
unkown
|
page execute and read and write
|
||
|
F7E000
|
unkown
|
page execute and write copy
|
||
|
7BC000
|
heap
|
page read and write
|
||
|
EA0000
|
unkown
|
page execute and write copy
|
||
|
72E000
|
heap
|
page read and write
|
||
|
6E0000
|
direct allocation
|
page read and write
|
||
|
2E1F000
|
stack
|
page read and write
|
||
|
F95000
|
unkown
|
page execute and write copy
|
||
|
4B21000
|
trusted library allocation
|
page read and write
|
||
|
486E000
|
trusted library allocation
|
page read and write
|
||
|
575000
|
heap
|
page read and write
|
||
|
4EAE000
|
stack
|
page read and write
|
||
|
309F000
|
stack
|
page read and write
|
||
|
2710000
|
heap
|
page read and write
|
||
|
F80000
|
unkown
|
page execute and write copy
|
||
|
4810000
|
direct allocation
|
page execute and read and write
|
||
|
7C2000
|
heap
|
page read and write
|
||
|
570000
|
heap
|
page read and write
|
||
|
E7B000
|
unkown
|
page execute and write copy
|
||
|
4FAF000
|
stack
|
page read and write
|
||
|
4CDF000
|
stack
|
page read and write
|
||
|
4820000
|
direct allocation
|
page execute and read and write
|
||
|
4B37000
|
trusted library allocation
|
page read and write
|
||
|
6E0000
|
direct allocation
|
page read and write
|
||
|
4B9F000
|
stack
|
page read and write
|
||
|
381F000
|
stack
|
page read and write
|
||
|
4CF0000
|
remote allocation
|
page read and write
|
||
|
755000
|
heap
|
page read and write
|
||
|
2A9E000
|
stack
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
E84000
|
unkown
|
page execute and write copy
|
||
|
F41000
|
unkown
|
page execute and read and write
|
||
|
4230000
|
heap
|
page read and write
|
||
|
736000
|
heap
|
page read and write
|
||
|
268F000
|
stack
|
page read and write
|
||
|
7C1000
|
heap
|
page read and write
|
||
|
73F000
|
heap
|
page read and write
|
||
|
2B9F000
|
stack
|
page read and write
|
||
|
47DF000
|
stack
|
page read and write
|
||
|
482D000
|
stack
|
page read and write
|
||
|
3ADE000
|
stack
|
page read and write
|
||
|
4B2A000
|
trusted library allocation
|
page read and write
|
||
|
4840000
|
direct allocation
|
page execute and read and write
|
||
|
469D000
|
stack
|
page read and write
|
||
|
4221000
|
heap
|
page read and write
|
||
|
3D5E000
|
stack
|
page read and write
|
||
|
36DF000
|
stack
|
page read and write
|
||
|
4221000
|
heap
|
page read and write
|
||
|
B6E000
|
stack
|
page read and write
|
||
|
CA0000
|
unkown
|
page readonly
|
||
|
4221000
|
heap
|
page read and write
|
||
|
4221000
|
heap
|
page read and write
|
||
|
4320000
|
trusted library allocation
|
page read and write
|
||
|
92F000
|
stack
|
page read and write
|
||
|
EDF000
|
unkown
|
page execute and write copy
|
||
|
40DF000
|
stack
|
page read and write
|
||
|
270E000
|
stack
|
page read and write
|
||
|
C70000
|
heap
|
page read and write
|
||
|
6E0000
|
direct allocation
|
page read and write
|
||
|
46DE000
|
stack
|
page read and write
|
||
|
3C1E000
|
stack
|
page read and write
|
||
|
3A9F000
|
stack
|
page read and write
|
||
|
E69000
|
unkown
|
page execute and read and write
|
||
|
6E0000
|
direct allocation
|
page read and write
|
||
|
6E0000
|
direct allocation
|
page read and write
|
||
|
4221000
|
heap
|
page read and write
|
||
|
385E000
|
stack
|
page read and write
|
||
|
752000
|
heap
|
page read and write
|
||
|
4221000
|
heap
|
page read and write
|
||
|
F07000
|
unkown
|
page execute and write copy
|
||
|
4820000
|
direct allocation
|
page execute and read and write
|
||
|
EA1000
|
unkown
|
page execute and read and write
|
||
|
6FA000
|
heap
|
page read and write
|
||
|
6E0000
|
direct allocation
|
page read and write
|
||
|
530000
|
heap
|
page read and write
|
||
|
4221000
|
heap
|
page read and write
|
||
|
4D3E000
|
stack
|
page read and write
|
||
|
4221000
|
heap
|
page read and write
|
||
|
46A0000
|
direct allocation
|
page read and write
|
||
|
EF3000
|
unkown
|
page execute and read and write
|
||
|
6E0000
|
direct allocation
|
page read and write
|
||
|
7C1000
|
heap
|
page read and write
|
||
|
6F0000
|
heap
|
page read and write
|
||
|
47F0000
|
direct allocation
|
page execute and read and write
|
||
|
345F000
|
stack
|
page read and write
|
||
|
3E5F000
|
stack
|
page read and write
|
||
|
6E0000
|
direct allocation
|
page read and write
|
||
|
EEE000
|
unkown
|
page execute and read and write
|
||
|
295E000
|
stack
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
4221000
|
heap
|
page read and write
|
||
|
4221000
|
heap
|
page read and write
|
||
|
76E000
|
heap
|
page read and write
|
||
|
4820000
|
direct allocation
|
page execute and read and write
|
||
|
4221000
|
heap
|
page read and write
|
||
|
6E0000
|
direct allocation
|
page read and write
|
||
|
359F000
|
stack
|
page read and write
|
||
|
335E000
|
stack
|
page read and write
|
||
|
2D1E000
|
stack
|
page read and write
|
||
|
F22000
|
unkown
|
page execute and write copy
|
||
|
3BDF000
|
stack
|
page read and write
|
||
|
6FE000
|
heap
|
page read and write
|
||
|
D00000
|
unkown
|
page execute and read and write
|
||
|
4800000
|
direct allocation
|
page execute and read and write
|
||
|
76D000
|
heap
|
page read and write
|
||
|
E84000
|
unkown
|
page execute and read and write
|
||
|
4221000
|
heap
|
page read and write
|
||
|
C6F000
|
stack
|
page read and write
|
||
|
EC0000
|
unkown
|
page execute and write copy
|
||
|
CA0000
|
unkown
|
page read and write
|
||
|
F3C000
|
unkown
|
page execute and write copy
|
||
|
82E000
|
stack
|
page read and write
|
||
|
E7C000
|
unkown
|
page execute and read and write
|
||
|
76F000
|
heap
|
page read and write
|
||
|
46A0000
|
direct allocation
|
page read and write
|
||
|
729000
|
heap
|
page read and write
|
||
|
CA1000
|
unkown
|
page execute and write copy
|
||
|
F17000
|
unkown
|
page execute and write copy
|
||
|
2A5F000
|
stack
|
page read and write
|
||
|
4221000
|
heap
|
page read and write
|
||
|
3F9F000
|
stack
|
page read and write
|
||
|
6E0000
|
direct allocation
|
page read and write
|
||
|
F09000
|
unkown
|
page execute and write copy
|
||
|
EEF000
|
unkown
|
page execute and write copy
|
||
|
ECB000
|
unkown
|
page execute and read and write
|
||
|
3FDE000
|
stack
|
page read and write
|
||
|
2F9E000
|
stack
|
page read and write
|
||
|
4820000
|
direct allocation
|
page execute and read and write
|
||
|
399E000
|
stack
|
page read and write
|
||
|
F8C000
|
unkown
|
page execute and write copy
|
||
|
4B15000
|
trusted library allocation
|
page read and write
|
||
|
4A5D000
|
stack
|
page read and write
|
||
|
4B13000
|
trusted library allocation
|
page read and write
|
||
|
421F000
|
stack
|
page read and write
|
||
|
7BD000
|
heap
|
page read and write
|
||
|
4BDE000
|
stack
|
page read and write
|
||
|
3E9E000
|
stack
|
page read and write
|
||
|
4221000
|
heap
|
page read and write
|
||
|
31DF000
|
stack
|
page read and write
|
||
|
4850000
|
direct allocation
|
page execute and read and write
|
||
|
4221000
|
heap
|
page read and write
|
||
|
EFA000
|
unkown
|
page execute and write copy
|
||
|
4830000
|
direct allocation
|
page execute and read and write
|
||
|
2CDF000
|
stack
|
page read and write
|
||
|
6BF000
|
stack
|
page read and write
|
||
|
258C000
|
stack
|
page read and write
|
||
|
4CF0000
|
remote allocation
|
page read and write
|
||
|
3D1F000
|
stack
|
page read and write
|
||
|
F10000
|
unkown
|
page execute and read and write
|
||
|
495D000
|
stack
|
page read and write
|
||
|
D0C000
|
unkown
|
page execute and write copy
|
||
|
4A9E000
|
stack
|
page read and write
|
||
|
F1A000
|
unkown
|
page execute and read and write
|
||
|
2E5E000
|
stack
|
page read and write
|
||
|
D00000
|
unkown
|
page execute and write copy
|
||
|
2717000
|
heap
|
page read and write
|
||
|
6E0000
|
direct allocation
|
page read and write
|
||
|
FA3000
|
unkown
|
page execute and write copy
|
||
|
2F5F000
|
stack
|
page read and write
|
||
|
4221000
|
heap
|
page read and write
|
||
|
4221000
|
heap
|
page read and write
|
||
|
6D0000
|
heap
|
page read and write
|
||
|
F8C000
|
unkown
|
page execute and write copy
|
||
|
FA3000
|
unkown
|
page execute and read and write
|
||
|
F08000
|
unkown
|
page execute and read and write
|
||
|
E8F000
|
unkown
|
page execute and write copy
|
||
|
4220000
|
heap
|
page read and write
|
||
|
EE3000
|
unkown
|
page execute and write copy
|
||
|
F60000
|
unkown
|
page execute and read and write
|
||
|
F77000
|
unkown
|
page execute and write copy
|
||
|
EFB000
|
unkown
|
page execute and read and write
|
||
|
4820000
|
direct allocation
|
page execute and read and write
|
||
|
FC000
|
stack
|
page read and write
|
||
|
411E000
|
stack
|
page read and write
|
||
|
E91000
|
unkown
|
page execute and read and write
|
||
|
371E000
|
stack
|
page read and write
|
||
|
4820000
|
direct allocation
|
page execute and read and write
|
||
|
F8E000
|
unkown
|
page execute and write copy
|
||
|
5BE000
|
stack
|
page read and write
|
||
|
321E000
|
stack
|
page read and write
|
||
|
349E000
|
stack
|
page read and write
|
||
|
4A19000
|
trusted library allocation
|
page read and write
|
||
|
6E0000
|
direct allocation
|
page read and write
|
||
|
4221000
|
heap
|
page read and write
|
||
|
4CF0000
|
remote allocation
|
page read and write
|
||
|
291F000
|
stack
|
page read and write
|
||
|
4221000
|
heap
|
page read and write
|
||
|
7C1000
|
heap
|
page read and write
|
||
|
6E0000
|
direct allocation
|
page read and write
|
||
|
450000
|
heap
|
page read and write
|
||
|
331F000
|
stack
|
page read and write
|
||
|
395E000
|
stack
|
page read and write
|
||
|
FA4000
|
unkown
|
page execute and write copy
|
||
|
E79000
|
unkown
|
page execute and read and write
|
There are 199 hidden memdumps, click here to show them.