Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
/tmp/boatnet.mips.elf
|
/tmp/boatnet.mips.elf
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://5.181.159.16/wget.sh;
|
unknown
|
||
|
http://upx.sf.net
|
unknown
|
||
|
http://5.181.159.16/idk/home.arm7;chmod
|
unknown
|
||
|
http://5.181.159.16/w.sh;
|
unknown
|
||
|
http://5.181.159.16/c.sh;
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/encoding/
|
unknown
|
||
|
http://5.181.159.16/idk/home.mips
|
unknown
|
||
|
http://5.181.159.16/idk/home.mips;
|
unknown
|
||
|
http://5.181.159.16/idk/home.x86
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/envelope/
|
unknown
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
daisy.ubuntu.com
|
162.213.35.25
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7f281041e000
|
page execute read
|
 |
||
|
7f28972ae000
|
page read and write
|
|||
|
55eec4d55000
|
page read and write
|
|||
|
7f28973d7000
|
page read and write
|
|||
|
7f2810460000
|
page read and write
|
|||
|
7f2890000000
|
page read and write
|
|||
|
7f2896d5c000
|
page read and write
|
|||
|
7ffef70a0000
|
page read and write
|
|||
|
55eec5d69000
|
page read and write
|
|||
|
7f289670b000
|
page read and write
|
|||
|
7f28966fd000
|
page read and write
|
|||
|
7f2895ef5000
|
page read and write
|
|||
|
7f28973df000
|
page read and write
|
|||
|
7f2890021000
|
page read and write
|
|||
|
55eec2d36000
|
page read and write
|
|||
|
55eec2aae000
|
page execute read
|
|||
|
7f2896d9c000
|
page read and write
|
|||
|
7f2897424000
|
page read and write
|
|||
|
55eec4d3e000
|
page execute and read and write
|
|||
|
7f28969bb000
|
page read and write
|
|||
|
7ffef71ad000
|
page execute read
|
|||
|
55eec2d40000
|
page read and write
|
|||
|
7f28970cd000
|
page read and write
|
|||
|
7f2810140000
|
page execute and read and write
|
|||
|
7f2896d7f000
|
page read and write
|
There are 15 hidden memdumps, click here to show them.