Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/tmp/la.bot.sh4.elf
|
/tmp/la.bot.sh4.elf
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http:///wget.sh
|
unknown
|
||
|
http:///curl.sh
|
unknown
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
daisy.ubuntu.com
|
162.213.35.24
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
563497123000
|
page execute and read and write
|
|||
|
7fa32643f000
|
page read and write
|
|||
|
7fa326826000
|
page read and write
|
|||
|
7fa2a0420000
|
page read and write
|
|||
|
7fa3261a2000
|
page read and write
|
|||
|
7fa32599f000
|
page read and write
|
|||
|
7fa326ca2000
|
page read and write
|
|||
|
7fa326b71000
|
page read and write
|
|||
|
7fa326ce7000
|
page read and write
|
|||
|
563495125000
|
page read and write
|
|||
|
7fa2a0427000
|
page read and write
|
|||
|
563498336000
|
page read and write
|
|||
|
7fa326c9a000
|
page read and write
|
|||
|
7fa320021000
|
page read and write
|
|||
|
7fa326801000
|
page read and write
|
|||
|
56349713a000
|
page read and write
|
|||
|
563494f07000
|
page execute read
|
|||
|
7ffe74a3c000
|
page read and write
|
|||
|
56349511d000
|
page read and write
|
|||
|
7fa2a0410000
|
page execute read
|
|||
|
7fa3261b0000
|
page read and write
|
|||
|
7ffe74be3000
|
page execute read
|
|||
|
7fa320000000
|
page read and write
|
There are 13 hidden memdumps, click here to show them.