Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\decode_6ec70947443cc64628fe11013d0e752591680ef46c9a78ec1409313d6669bdf9.exe
|
"C:\Users\user\Desktop\decode_6ec70947443cc64628fe11013d0e752591680ef46c9a78ec1409313d6669bdf9.exe"
|
 |
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
xworm1120.duckdns.org
|
|
||
|
http://exmple.com/Uploader.php
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
|
unknown
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
xworm1120.duckdns.org
|
192.169.69.26
|
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
192.169.69.26
|
xworm1120.duckdns.org
|
United States
|
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
332000
|
unkown
|
page readonly
|
|
|
|
A80000
|
heap
|
page execute and read and write
|
||
|
1AE2D000
|
heap
|
page read and write
|
||
|
1ADF0000
|
heap
|
page read and write
|
||
|
251E000
|
stack
|
page read and write
|
||
|
A50000
|
trusted library allocation
|
page read and write
|
||
|
330000
|
unkown
|
page readonly
|
||
|
2598000
|
trusted library allocation
|
page read and write
|
||
|
7FFD9B810000
|
trusted library allocation
|
page execute and read and write
|
||
|
1B0FE000
|
stack
|
page read and write
|
||
|
AE0000
|
heap
|
page read and write
|
||
|
772000
|
heap
|
page read and write
|
||
|
A30000
|
trusted library allocation
|
page read and write
|
||
|
75A000
|
heap
|
page read and write
|
||
|
1B550000
|
heap
|
page read and write
|
||
|
A75000
|
heap
|
page read and write
|
||
|
7FFD9B762000
|
trusted library allocation
|
page read and write
|
||
|
25A6000
|
trusted library allocation
|
page read and write
|
||
|
76F000
|
heap
|
page read and write
|
||
|
1AE32000
|
heap
|
page read and write
|
||
|
23E0000
|
heap
|
page read and write
|
||
|
1252D000
|
trusted library allocation
|
page read and write
|
||
|
1AE30000
|
heap
|
page read and write
|
||
|
1AAAC000
|
stack
|
page read and write
|
||
|
7FFD9B768000
|
trusted library allocation
|
page read and write
|
||
|
7FFD9B76D000
|
trusted library allocation
|
page execute and read and write
|
||
|
7FFD9B836000
|
trusted library allocation
|
page execute and read and write
|
||
|
9FF000
|
stack
|
page read and write
|
||
|
7FFD9B80C000
|
trusted library allocation
|
page execute and read and write
|
||
|
7FFD9B800000
|
trusted library allocation
|
page read and write
|
||
|
BEF000
|
stack
|
page read and write
|
||
|
1AEF3000
|
heap
|
page read and write
|
||
|
2569000
|
trusted library allocation
|
page read and write
|
||
|
259C000
|
trusted library allocation
|
page read and write
|
||
|
7FFD9B77B000
|
trusted library allocation
|
page execute and read and write
|
||
|
7FFD9B8F0000
|
trusted library allocation
|
page read and write
|
||
|
2521000
|
trusted library allocation
|
page read and write
|
||
|
79B000
|
heap
|
page read and write
|
||
|
7FFD9B753000
|
trusted library allocation
|
page execute and read and write
|
||
|
73C000
|
heap
|
page read and write
|
||
|
7FFD9B75D000
|
trusted library allocation
|
page execute and read and write
|
||
|
12521000
|
trusted library allocation
|
page read and write
|
||
|
7FF4806C0000
|
trusted library allocation
|
page execute and read and write
|
||
|
7FFD9B770000
|
trusted library allocation
|
page read and write
|
||
|
7FFD9B77D000
|
trusted library allocation
|
page execute and read and write
|
||
|
763000
|
heap
|
page read and write
|
||
|
A70000
|
heap
|
page read and write
|
||
|
A63000
|
trusted library allocation
|
page read and write
|
||
|
7FFD9B754000
|
trusted library allocation
|
page read and write
|
||
|
12528000
|
trusted library allocation
|
page read and write
|
||
|
A60000
|
trusted library allocation
|
page read and write
|
||
|
2566000
|
trusted library allocation
|
page read and write
|
||
|
AE5000
|
heap
|
page read and write
|
||
|
7A4000
|
heap
|
page read and write
|
||
|
6F2000
|
stack
|
page read and write
|
||
|
7FFD9B760000
|
trusted library allocation
|
page read and write
|
||
|
A00000
|
heap
|
page read and write
|
||
|
1AEF0000
|
heap
|
page read and write
|
||
|
7FFD9B7AC000
|
trusted library allocation
|
page execute and read and write
|
||
|
1B75A000
|
stack
|
page read and write
|
||
|
76D000
|
heap
|
page read and write
|
||
|
3C0000
|
heap
|
page read and write
|
||
|
3D0000
|
heap
|
page read and write
|
||
|
A90000
|
heap
|
page read and write
|
||
|
700000
|
heap
|
page read and write
|
||
|
1B2FE000
|
stack
|
page read and write
|
||
|
760000
|
heap
|
page read and write
|
||
|
2410000
|
heap
|
page execute and read and write
|
||
|
7FFD9B870000
|
trusted library allocation
|
page execute and read and write
|
||
|
7FFD9B806000
|
trusted library allocation
|
page read and write
|
||
|
730000
|
heap
|
page read and write
|
||
|
330000
|
unkown
|
page readonly
|
||
|
80F000
|
heap
|
page read and write
|
||
|
1A520000
|
trusted library allocation
|
page read and write
|
||
|
1AFF9000
|
stack
|
page read and write
|
There are 65 hidden memdumps, click here to show them.