Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\Vh5fpQFekQ.exe
|
"C:\Users\user\Desktop\Vh5fpQFekQ.exe"
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://cert.ssl.com/SSLcom-SubCA-EV-codeSigning-ECC-384-R2.cer0
|
unknown
|
||
|
http://www.ssl.com/repository/SSLcom-RootCA-EV-ECC-384-R1.crt0
|
unknown
|
||
|
http://ocsps.ssl.com0
|
unknown
|
||
|
http://crls.ssl.com/ssl.com-EVecc-RootCA.crl0
|
unknown
|
||
|
http://crls.ssl.com/SSLcom-SubCA-EV-codeSigning-ECC-384-R2.crl0
|
unknown
|
||
|
http://www.indyproject.org/
|
unknown
|
||
|
https://www.ssl.com/repository0
|
unknown
|
||
|
http://ocsps.ssl.com0P
|
unknown
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
E35000
|
heap
|
page read and write
|
||
|
1A0000
|
heap
|
page read and write
|
||
|
2ABF000
|
direct allocation
|
page read and write
|
||
|
9D5000
|
unkown
|
page read and write
|
||
|
DE5000
|
heap
|
page read and write
|
||
|
A1F000
|
unkown
|
page read and write
|
||
|
29F3000
|
heap
|
page read and write
|
||
|
2AB8000
|
direct allocation
|
page read and write
|
||
|
2AE4000
|
direct allocation
|
page read and write
|
||
|
DE9000
|
heap
|
page read and write
|
||
|
115E000
|
stack
|
page read and write
|
||
|
DF1000
|
heap
|
page read and write
|
||
|
2A57000
|
direct allocation
|
page read and write
|
||
|
A4D000
|
unkown
|
page read and write
|
||
|
E37000
|
heap
|
page read and write
|
||
|
DC8000
|
heap
|
page read and write
|
||
|
A4E000
|
unkown
|
page readonly
|
||
|
2FB0000
|
heap
|
page read and write
|
||
|
9D2000
|
unkown
|
page read and write
|
||
|
A0B000
|
unkown
|
page read and write
|
||
|
2B36000
|
direct allocation
|
page read and write
|
||
|
32EF000
|
stack
|
page read and write
|
||
|
2B3D000
|
direct allocation
|
page read and write
|
||
|
C73000
|
unkown
|
page readonly
|
||
|
2A7C000
|
direct allocation
|
page read and write
|
||
|
A0D000
|
unkown
|
page read and write
|
||
|
A06000
|
unkown
|
page read and write
|
||
|
9E3000
|
unkown
|
page read and write
|
||
|
2A95000
|
direct allocation
|
page read and write
|
||
|
A10000
|
unkown
|
page read and write
|
||
|
D96000
|
heap
|
page read and write
|
||
|
2A55000
|
direct allocation
|
page read and write
|
||
|
9AE000
|
unkown
|
page read and write
|
||
|
A2B000
|
unkown
|
page read and write
|
||
|
E39000
|
heap
|
page read and write
|
||
|
2A6F000
|
direct allocation
|
page read and write
|
||
|
9C4000
|
unkown
|
page read and write
|
||
|
CC5000
|
unkown
|
page readonly
|
||
|
2ADD000
|
direct allocation
|
page read and write
|
||
|
A12000
|
unkown
|
page read and write
|
||
|
2AC6000
|
direct allocation
|
page read and write
|
||
|
2A25000
|
heap
|
page read and write
|
||
|
416000
|
unkown
|
page execute and read and write
|
||
|
2B5A000
|
direct allocation
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
9FF000
|
unkown
|
page read and write
|
||
|
2B2E000
|
direct allocation
|
page read and write
|
||
|
2AD6000
|
direct allocation
|
page read and write
|
||
|
435000
|
unkown
|
page execute and read and write
|
||
|
2AA8000
|
direct allocation
|
page read and write
|
||
|
2A47000
|
direct allocation
|
page read and write
|
||
|
2B0B000
|
direct allocation
|
page read and write
|
||
|
9D0000
|
unkown
|
page read and write
|
||
|
DF2000
|
heap
|
page read and write
|
||
|
9AB000
|
unkown
|
page read and write
|
||
|
E36000
|
heap
|
page read and write
|
||
|
D40000
|
heap
|
page read and write
|
||
|
9CB000
|
unkown
|
page read and write
|
||
|
2B61000
|
direct allocation
|
page read and write
|
||
|
A03000
|
unkown
|
page read and write
|
||
|
2B27000
|
direct allocation
|
page read and write
|
||
|
142000
|
stack
|
page read and write
|
||
|
A50000
|
unkown
|
page readonly
|
||
|
E45000
|
heap
|
page read and write
|
||
|
2B03000
|
direct allocation
|
page read and write
|
||
|
1D0000
|
heap
|
page read and write
|
||
|
9A8000
|
unkown
|
page read and write
|
||
|
A01000
|
unkown
|
page read and write
|
||
|
2A20000
|
heap
|
page read and write
|
||
|
2B44000
|
direct allocation
|
page read and write
|
||
|
A47000
|
unkown
|
page write copy
|
||
|
2A00000
|
direct allocation
|
page execute and read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
9A8000
|
unkown
|
page write copy
|
||
|
2A6D000
|
direct allocation
|
page read and write
|
||
|
2A5F000
|
direct allocation
|
page read and write
|
||
|
DE2000
|
heap
|
page read and write
|
||
|
29F0000
|
heap
|
page read and write
|
||
|
2AA0000
|
direct allocation
|
page read and write
|
||
|
9EE000
|
unkown
|
page read and write
|
||
|
E05000
|
heap
|
page read and write
|
||
|
DE5000
|
heap
|
page read and write
|
||
|
A14000
|
unkown
|
page read and write
|
||
|
DC4000
|
heap
|
page read and write
|
||
|
105E000
|
stack
|
page read and write
|
||
|
D9C000
|
heap
|
page read and write
|
||
|
190000
|
heap
|
page read and write
|
||
|
D90000
|
heap
|
page read and write
|
||
|
2A3E000
|
direct allocation
|
page read and write
|
||
|
2A85000
|
direct allocation
|
page read and write
|
||
|
C9A000
|
unkown
|
page readonly
|
||
|
E09000
|
heap
|
page read and write
|
||
|
E49000
|
heap
|
page read and write
|
||
|
DEF000
|
heap
|
page read and write
|
||
|
9F1000
|
unkown
|
page read and write
|
||
|
2B1B000
|
direct allocation
|
page read and write
|
||
|
E06000
|
heap
|
page read and write
|
||
|
9DC000
|
unkown
|
page read and write
|
||
|
9BE000
|
unkown
|
page read and write
|
||
|
A48000
|
unkown
|
page read and write
|
||
|
A27000
|
unkown
|
page read and write
|
||
|
31DE000
|
stack
|
page read and write
|
||
|
9CD000
|
unkown
|
page read and write
|
||
|
2AF3000
|
direct allocation
|
page read and write
|
||
|
A30000
|
unkown
|
page read and write
|
||
|
2AFC000
|
direct allocation
|
page read and write
|
||
|
E0A000
|
heap
|
page read and write
|
||
|
A45000
|
unkown
|
page read and write
|
||
|
C04000
|
unkown
|
page readonly
|
There are 99 hidden memdumps, click here to show them.