Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/tmp/python.elf
|
/tmp/python.elf
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://678.hw10376.top:4399input
|
unknown
|
||
|
http://door4399.h52l.com:4399integer
|
unknown
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
c000400000
|
page read and write
|
|||
|
984000
|
page read and write
|
|||
|
7ffc18bbe000
|
page execute read
|
|||
|
69a000
|
page execute read
|
|||
|
7f0259ba4000
|
page read and write
|
|||
|
7f02577ce000
|
page read and write
|
|||
|
7f025a01e000
|
page read and write
|
|||
|
7f02353a4000
|
page read and write
|
|||
|
7f0235000000
|
page read and write
|
|||
|
94e000
|
page read and write
|
|||
|
7f024591e000
|
page read and write
|
|||
|
7f0235200000
|
page read and write
|
|||
|
7f025a0fd000
|
page read and write
|
|||
|
7ffc18a31000
|
page read and write
|
There are 4 hidden memdumps, click here to show them.