Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Ke5ufWcgxp.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
initial sample
|
 |
|
|
C:\ProgramData\MPGPH131\MPGPH131.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\ProgramData\MPGPH131\MPGPH131.exe:Zone.Identifier
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\RageMP131\RageMP131.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\RageMP131\RageMP131.exe:Zone.Identifier
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\rage131MP.tmp
|
ASCII text, with no line terminators
|
modified
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\Ke5ufWcgxp.exe
|
"C:\Users\user\Desktop\Ke5ufWcgxp.exe"
|
|
|
|
C:\Windows\SysWOW64\schtasks.exe
|
schtasks /create /f /RU "user" /tr "C:\ProgramData\MPGPH131\MPGPH131.exe" /tn "MPGPH131 HR" /sc HOURLY /rl HIGHEST
|
|
|
|
C:\Windows\SysWOW64\schtasks.exe
|
schtasks /create /f /RU "user" /tr "C:\ProgramData\MPGPH131\MPGPH131.exe" /tn "MPGPH131 LG" /sc ONLOGON /rl HIGHEST
|
|
|
|
C:\ProgramData\MPGPH131\MPGPH131.exe
|
C:\ProgramData\MPGPH131\MPGPH131.exe
|
|
|
|
C:\ProgramData\MPGPH131\MPGPH131.exe
|
C:\ProgramData\MPGPH131\MPGPH131.exe
|
|
|
|
C:\Users\user\AppData\Local\RageMP131\RageMP131.exe
|
"C:\Users\user\AppData\Local\RageMP131\RageMP131.exe"
|
|
|
|
C:\Users\user\AppData\Local\RageMP131\RageMP131.exe
|
"C:\Users\user\AppData\Local\RageMP131\RageMP131.exe"
|
|
|
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
||
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://ipinfo.io/widget/demo/8.46.123.33%Um
|
unknown
|
||
|
https://ipinfo.io/
|
unknown
|
||
|
https://ipinfo.io/widget/demo/8.46.123.33
|
unknown
|
||
|
https://ipinfo.io/ameSpace/
|
unknown
|
||
|
https://www.maxmind.com/en/locate-my-ip-address
|
unknown
|
||
|
https://t.me/RiseProSUPPORTzn
|
unknown
|
||
|
https://ipinfo.io/https://www.maxmind.com/en/locate-my-ip-addressWs2_32.dll
|
unknown
|
||
|
https://ipinfo.io/widget/demo/8.46.123.33t
|
unknown
|
||
|
https://ipinfo.io/h
|
unknown
|
||
|
https://t.me/RiseProSUPPORT(
|
unknown
|
||
|
http://www.winimage.com/zLibDll
|
unknown
|
||
|
https://ipinfo.io/d0
|
unknown
|
||
|
https://t.me/RiseProSUPPORT
|
unknown
|
||
|
https://ipinfo.io/widget/demo/8.46.123.33x
|
unknown
|
||
|
https://ipinfo.io/l
|
unknown
|
||
|
https://ipinfo.io/widget/demo/8.46.123.330c
|
unknown
|
||
|
https://ipinfo.io/Namespace
|
unknown
|
There are 7 hidden URLs, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
77.91.77.66
|
unknown
|
Russian Federation
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
|
RageMP131
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
4BB1000
|
heap
|
page read and write
|
||
|
4D80000
|
direct allocation
|
page execute and read and write
|
||
|
2B9E000
|
stack
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
2CAF000
|
stack
|
page read and write
|
||
|
581000
|
unkown
|
page execute and write copy
|
||
|
701000
|
unkown
|
page execute and read and write
|
||
|
5C2000
|
unkown
|
page execute and write copy
|
||
|
52D3000
|
heap
|
page read and write
|
||
|
4A70000
|
direct allocation
|
page read and write
|
||
|
3EAF000
|
stack
|
page read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
11C7000
|
heap
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
D4A000
|
heap
|
page read and write
|
||
|
52C0000
|
direct allocation
|
page execute and read and write
|
||
|
4C30000
|
direct allocation
|
page execute and read and write
|
||
|
7DB000
|
heap
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
27AF000
|
stack
|
page read and write
|
||
|
401F000
|
stack
|
page read and write
|
||
|
5000000
|
direct allocation
|
page execute and read and write
|
||
|
1210000
|
heap
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
42AE000
|
stack
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
160F000
|
stack
|
page read and write
|
||
|
D8F000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
5270000
|
direct allocation
|
page execute and read and write
|
||
|
3EDF000
|
stack
|
page read and write
|
||
|
73CE000
|
stack
|
page read and write
|
||
|
424E000
|
stack
|
page read and write
|
||
|
D52000
|
heap
|
page read and write
|
||
|
3C0000
|
heap
|
page read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
4EF0000
|
direct allocation
|
page execute and read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
11F3000
|
heap
|
page read and write
|
||
|
2DDB000
|
stack
|
page read and write
|
||
|
1299000
|
heap
|
page read and write
|
||
|
180000
|
unkown
|
page readonly
|
||
|
37DE000
|
stack
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
181000
|
unkown
|
page execute and read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
4BF0000
|
direct allocation
|
page execute and read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
88D000
|
unkown
|
page execute and read and write
|
||
|
5010000
|
direct allocation
|
page execute and read and write
|
||
|
5220000
|
direct allocation
|
page execute and read and write
|
||
|
376E000
|
stack
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
F1E000
|
heap
|
page read and write
|
||
|
4EE0000
|
direct allocation
|
page execute and read and write
|
||
|
B34000
|
unkown
|
page execute and read and write
|
||
|
75EF000
|
stack
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
4BA0000
|
direct allocation
|
page read and write
|
||
|
465F000
|
stack
|
page read and write
|
||
|
4DC0000
|
direct allocation
|
page execute and read and write
|
||
|
F05000
|
heap
|
page read and write
|
||
|
46DE000
|
stack
|
page read and write
|
||
|
30D000
|
stack
|
page read and write
|
||
|
78FE000
|
stack
|
page read and write
|
||
|
2A3F000
|
stack
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
2C27000
|
heap
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
51EE000
|
stack
|
page read and write
|
||
|
4F00000
|
direct allocation
|
page execute and read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
B5B000
|
unkown
|
page execute and write copy
|
||
|
1217000
|
heap
|
page read and write
|
||
|
C70000
|
heap
|
page read and write
|
||
|
545E000
|
stack
|
page read and write
|
||
|
CDB000
|
unkown
|
page execute and write copy
|
||
|
52DC000
|
heap
|
page read and write
|
||
|
782F000
|
stack
|
page read and write
|
||
|
D3C000
|
heap
|
page read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
2D9F000
|
unkown
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
5240000
|
direct allocation
|
page execute and read and write
|
||
|
2E3E000
|
stack
|
page read and write
|
||
|
312F000
|
stack
|
page read and write
|
||
|
774F000
|
stack
|
page read and write
|
||
|
11D7000
|
heap
|
page read and write
|
||
|
1140000
|
direct allocation
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
1140000
|
direct allocation
|
page read and write
|
||
|
1219000
|
heap
|
page read and write
|
||
|
B2C000
|
unkown
|
page execute and read and write
|
||
|
2D00000
|
direct allocation
|
page read and write
|
||
|
4BE0000
|
direct allocation
|
page execute and read and write
|
||
|
4BF0000
|
direct allocation
|
page execute and read and write
|
||
|
11F6000
|
heap
|
page read and write
|
||
|
293F000
|
stack
|
page read and write
|
||
|
35EE000
|
stack
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
45D0000
|
direct allocation
|
page read and write
|
||
|
3FBE000
|
stack
|
page read and write
|
||
|
72FE000
|
stack
|
page read and write
|
||
|
426F000
|
stack
|
page read and write
|
||
|
481E000
|
stack
|
page read and write
|
||
|
52A0000
|
direct allocation
|
page execute and read and write
|
||
|
4C20000
|
direct allocation
|
page execute and read and write
|
||
|
44CE000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
CD9000
|
unkown
|
page execute and read and write
|
||
|
40CF000
|
stack
|
page read and write
|
||
|
BBD000
|
stack
|
page read and write
|
||
|
3D3E000
|
stack
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
302F000
|
stack
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
45E0000
|
heap
|
page read and write
|
||
|
420F000
|
stack
|
page read and write
|
||
|
580000
|
unkown
|
page read and write
|
||
|
4BA0000
|
direct allocation
|
page read and write
|
||
|
3D0000
|
heap
|
page read and write
|
||
|
516E000
|
stack
|
page read and write
|
||
|
34AF000
|
stack
|
page read and write
|
||
|
4FA0000
|
direct allocation
|
page execute and read and write
|
||
|
4D00000
|
direct allocation
|
page execute and read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
4910000
|
heap
|
page read and write
|
||
|
181000
|
unkown
|
page execute and write copy
|
||
|
48B5000
|
heap
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
347E000
|
stack
|
page read and write
|
||
|
B50000
|
heap
|
page read and write
|
||
|
3F1E000
|
stack
|
page read and write
|
||
|
1210000
|
heap
|
page read and write
|
||
|
4D00000
|
direct allocation
|
page execute and read and write
|
||
|
4700000
|
heap
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
4C40000
|
direct allocation
|
page execute and read and write
|
||
|
88A000
|
unkown
|
page write copy
|
||
|
2CEE000
|
stack
|
page read and write
|
||
|
301F000
|
stack
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
325F000
|
stack
|
page read and write
|
||
|
3BFD000
|
stack
|
page read and write
|
||
|
4F10000
|
direct allocation
|
page execute and read and write
|
||
|
48B1000
|
heap
|
page read and write
|
||
|
75AE000
|
stack
|
page read and write
|
||
|
4E80000
|
direct allocation
|
page execute and read and write
|
||
|
74CA000
|
heap
|
page read and write
|
||
|
30A000
|
unkown
|
page write copy
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
118B000
|
stack
|
page read and write
|
||
|
122C000
|
heap
|
page read and write
|
||
|
4E70000
|
direct allocation
|
page execute and read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
3B0000
|
heap
|
page read and write
|
||
|
357F000
|
stack
|
page read and write
|
||
|
2D00000
|
direct allocation
|
page read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
2CF0000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
4F10000
|
direct allocation
|
page execute and read and write
|
||
|
386F000
|
stack
|
page read and write
|
||
|
343F000
|
stack
|
page read and write
|
||
|
54B0000
|
heap
|
page read and write
|
||
|
9AC000
|
unkown
|
page execute and read and write
|
||
|
117E000
|
heap
|
page read and write
|
||
|
51C0000
|
direct allocation
|
page execute and read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
11E1000
|
heap
|
page read and write
|
||
|
1140000
|
heap
|
page read and write
|
||
|
B2C000
|
unkown
|
page execute and read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
4BAF000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2AD0000
|
direct allocation
|
page read and write
|
||
|
4BD0000
|
direct allocation
|
page execute and read and write
|
||
|
361F000
|
stack
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
4DA0000
|
direct allocation
|
page execute and read and write
|
||
|
500E000
|
stack
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
51C0000
|
direct allocation
|
page execute and read and write
|
||
|
37FF000
|
stack
|
page read and write
|
||
|
2ABE000
|
stack
|
page read and write
|
||
|
4B9F000
|
stack
|
page read and write
|
||
|
88A000
|
unkown
|
page write copy
|
||
|
4901000
|
heap
|
page read and write
|
||
|
45D0000
|
direct allocation
|
page read and write
|
||
|
11C1000
|
heap
|
page read and write
|
||
|
2D00000
|
direct allocation
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
282C000
|
stack
|
page read and write
|
||
|
4D90000
|
direct allocation
|
page read and write
|
||
|
4EA0000
|
direct allocation
|
page execute and read and write
|
||
|
1209000
|
heap
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
4F10000
|
direct allocation
|
page execute and read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
419E000
|
stack
|
page read and write
|
||
|
5020000
|
direct allocation
|
page execute and read and write
|
||
|
441E000
|
stack
|
page read and write
|
||
|
2D00000
|
direct allocation
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
4C10000
|
direct allocation
|
page execute and read and write
|
||
|
4B80000
|
direct allocation
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
4E10000
|
direct allocation
|
page execute and read and write
|
||
|
11CB000
|
heap
|
page read and write
|
||
|
113E000
|
stack
|
page read and write
|
||
|
7CF000
|
stack
|
page read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
1212000
|
heap
|
page read and write
|
||
|
1261000
|
heap
|
page read and write
|
||
|
41DE000
|
stack
|
page read and write
|
||
|
4F10000
|
direct allocation
|
page execute and read and write
|
||
|
2AD0000
|
direct allocation
|
page read and write
|
||
|
45D0000
|
direct allocation
|
page read and write
|
||
|
4F80000
|
direct allocation
|
page execute and read and write
|
||
|
459E000
|
stack
|
page read and write
|
||
|
3A7F000
|
stack
|
page read and write
|
||
|
4D50000
|
direct allocation
|
page execute and read and write
|
||
|
305000
|
unkown
|
page execute and read and write
|
||
|
1295000
|
heap
|
page read and write
|
||
|
3F7F000
|
stack
|
page read and write
|
||
|
5280000
|
direct allocation
|
page execute and read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
4F10000
|
direct allocation
|
page execute and read and write
|
||
|
347E000
|
stack
|
page read and write
|
||
|
11F4000
|
heap
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
506D000
|
stack
|
page read and write
|
||
|
31BF000
|
stack
|
page read and write
|
||
|
4BF0000
|
direct allocation
|
page execute and read and write
|
||
|
E9B000
|
stack
|
page read and write
|
||
|
2C5E000
|
stack
|
page read and write
|
||
|
51A0000
|
direct allocation
|
page execute and read and write
|
||
|
2B5F000
|
stack
|
page read and write
|
||
|
405E000
|
stack
|
page read and write
|
||
|
375F000
|
stack
|
page read and write
|
||
|
1214000
|
heap
|
page read and write
|
||
|
60C000
|
stack
|
page read and write
|
||
|
452E000
|
stack
|
page read and write
|
||
|
137D000
|
stack
|
page read and write
|
||
|
2F2F000
|
stack
|
page read and write
|
||
|
4BA0000
|
direct allocation
|
page read and write
|
||
|
2F7E000
|
stack
|
page read and write
|
||
|
885000
|
unkown
|
page execute and read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
3B9E000
|
stack
|
page read and write
|
||
|
181000
|
unkown
|
page execute and read and write
|
||
|
4BF0000
|
direct allocation
|
page execute and read and write
|
||
|
4CBF000
|
stack
|
page read and write
|
||
|
76EF000
|
stack
|
page read and write
|
||
|
45D0000
|
direct allocation
|
page read and write
|
||
|
764E000
|
stack
|
page read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
4D00000
|
direct allocation
|
page execute and read and write
|
||
|
389F000
|
stack
|
page read and write
|
||
|
4F30000
|
direct allocation
|
page execute and read and write
|
||
|
4CD0000
|
direct allocation
|
page execute and read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
4710000
|
heap
|
page read and write
|
||
|
70A000
|
unkown
|
page write copy
|
||
|
5AC000
|
unkown
|
page execute and read and write
|
||
|
51C0000
|
direct allocation
|
page execute and read and write
|
||
|
4A9E000
|
stack
|
page read and write
|
||
|
56F000
|
unkown
|
page execute and read and write
|
||
|
48B1000
|
heap
|
page read and write
|
||
|
38DE000
|
stack
|
page read and write
|
||
|
F1C000
|
heap
|
page read and write
|
||
|
1297000
|
heap
|
page read and write
|
||
|
4D00000
|
direct allocation
|
page execute and read and write
|
||
|
4FE0000
|
direct allocation
|
page execute and read and write
|
||
|
743F000
|
stack
|
page read and write
|
||
|
507B000
|
stack
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
48B1000
|
heap
|
page read and write
|
||
|
2A7E000
|
stack
|
page read and write
|
||
|
EEA000
|
heap
|
page read and write
|
||
|
119E000
|
stack
|
page read and write
|
||
|
742F000
|
stack
|
page read and write
|
||
|
3FCE000
|
stack
|
page read and write
|
||
|
4EA0000
|
direct allocation
|
page execute and read and write
|
||
|
B34000
|
unkown
|
page execute and read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
42DE000
|
stack
|
page read and write
|
||
|
43AF000
|
stack
|
page read and write
|
||
|
37FF000
|
stack
|
page read and write
|
||
|
433F000
|
stack
|
page read and write
|
||
|
4D40000
|
trusted library allocation
|
page read and write
|
||
|
4F30000
|
direct allocation
|
page execute and read and write
|
||
|
5040000
|
direct allocation
|
page read and write
|
||
|
11B0000
|
direct allocation
|
page read and write
|
||
|
4EA0000
|
direct allocation
|
page execute and read and write
|
||
|
3D6F000
|
stack
|
page read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
35BE000
|
stack
|
page read and write
|
||
|
4BF0000
|
direct allocation
|
page execute and read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
7B3F000
|
stack
|
page read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
491F000
|
stack
|
page read and write
|
||
|
48D000
|
unkown
|
page execute and read and write
|
||
|
4BF0000
|
direct allocation
|
page execute and read and write
|
||
|
757F000
|
stack
|
page read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
48D000
|
unkown
|
page execute and read and write
|
||
|
4DF0000
|
direct allocation
|
page execute and read and write
|
||
|
4CF0000
|
direct allocation
|
page execute and read and write
|
||
|
51C0000
|
direct allocation
|
page execute and read and write
|
||
|
D9E000
|
stack
|
page read and write
|
||
|
750E000
|
stack
|
page read and write
|
||
|
6F4D000
|
stack
|
page read and write
|
||
|
BC0000
|
heap
|
page read and write
|
||
|
51C0000
|
direct allocation
|
page execute and read and write
|
||
|
3DAE000
|
stack
|
page read and write
|
||
|
301F000
|
stack
|
page read and write
|
||
|
5250000
|
direct allocation
|
page execute and read and write
|
||
|
DD5000
|
heap
|
page read and write
|
||
|
2E2F000
|
stack
|
page read and write
|
||
|
4BF0000
|
direct allocation
|
page execute and read and write
|
||
|
540E000
|
stack
|
page read and write
|
||
|
5190000
|
direct allocation
|
page execute and read and write
|
||
|
34A000
|
stack
|
page read and write
|
||
|
4F40000
|
direct allocation
|
page execute and read and write
|
||
|
3E1E000
|
stack
|
page read and write
|
||
|
123F000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
462F000
|
stack
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
4EA0000
|
direct allocation
|
page execute and read and write
|
||
|
4BA0000
|
direct allocation
|
page read and write
|
||
|
39EE000
|
stack
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
DEE000
|
stack
|
page read and write
|
||
|
AFC000
|
stack
|
page read and write
|
||
|
CDD000
|
stack
|
page read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
33AE000
|
stack
|
page read and write
|
||
|
738E000
|
stack
|
page read and write
|
||
|
4BF0000
|
direct allocation
|
page execute and read and write
|
||
|
329F000
|
stack
|
page read and write
|
||
|
3E3F000
|
stack
|
page read and write
|
||
|
45FE000
|
stack
|
page read and write
|
||
|
4A20000
|
trusted library allocation
|
page read and write
|
||
|
2CFF000
|
stack
|
page read and write
|
||
|
4BB000
|
stack
|
page read and write
|
||
|
397E000
|
stack
|
page read and write
|
||
|
4F10000
|
direct allocation
|
page execute and read and write
|
||
|
10FF000
|
stack
|
page read and write
|
||
|
4F90000
|
direct allocation
|
page execute and read and write
|
||
|
2AD0000
|
direct allocation
|
page read and write
|
||
|
4F70000
|
direct allocation
|
page execute and read and write
|
||
|
78E000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
3CFF000
|
stack
|
page read and write
|
||
|
2F7E000
|
stack
|
page read and write
|
||
|
4E6F000
|
stack
|
page read and write
|
||
|
7ED000
|
stack
|
page read and write
|
||
|
3CDE000
|
stack
|
page read and write
|
||
|
44EF000
|
stack
|
page read and write
|
||
|
51C4000
|
direct allocation
|
page read and write
|
||
|
39AF000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
437E000
|
stack
|
page read and write
|
||
|
48B1000
|
heap
|
page read and write
|
||
|
760F000
|
stack
|
page read and write
|
||
|
5210000
|
direct allocation
|
page execute and read and write
|
||
|
79FF000
|
stack
|
page read and write
|
||
|
365F000
|
stack
|
page read and write
|
||
|
4F50000
|
direct allocation
|
page execute and read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
8A0000
|
heap
|
page read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
75B000
|
unkown
|
page execute and write copy
|
||
|
1140000
|
direct allocation
|
page read and write
|
||
|
4F00000
|
heap
|
page read and write
|
||
|
F15000
|
heap
|
page read and write
|
||
|
3F80000
|
heap
|
page read and write
|
||
|
48B1000
|
heap
|
page read and write
|
||
|
129C000
|
heap
|
page read and write
|
||
|
2BBE000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
EAD000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
391E000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
1235000
|
heap
|
page read and write
|
||
|
30A000
|
unkown
|
page write copy
|
||
|
4BA0000
|
direct allocation
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
1170000
|
heap
|
page read and write
|
||
|
33DF000
|
stack
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
1140000
|
direct allocation
|
page read and write
|
||
|
1140000
|
direct allocation
|
page read and write
|
||
|
2D5E000
|
unkown
|
page read and write
|
||
|
38DF000
|
stack
|
page read and write
|
||
|
4D6C000
|
stack
|
page read and write
|
||
|
4BB0000
|
heap
|
page read and write
|
||
|
2E1F000
|
stack
|
page read and write
|
||
|
4CE0000
|
direct allocation
|
page execute and read and write
|
||
|
C60000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
11CB000
|
heap
|
page read and write
|
||
|
4F90000
|
direct allocation
|
page execute and read and write
|
||
|
4F40000
|
direct allocation
|
page execute and read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
4EA0000
|
direct allocation
|
page execute and read and write
|
||
|
4A70000
|
direct allocation
|
page read and write
|
||
|
3DDF000
|
stack
|
page read and write
|
||
|
D60000
|
heap
|
page read and write
|
||
|
B42000
|
unkown
|
page execute and read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
47AE000
|
stack
|
page read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
3BBF000
|
stack
|
page read and write
|
||
|
4C60000
|
direct allocation
|
page execute and read and write
|
||
|
4FB0000
|
direct allocation
|
page execute and read and write
|
||
|
4BA0000
|
direct allocation
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
466E000
|
stack
|
page read and write
|
||
|
1140000
|
direct allocation
|
page read and write
|
||
|
4FD0000
|
direct allocation
|
page execute and read and write
|
||
|
980000
|
heap
|
page read and write
|
||
|
3C2F000
|
stack
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
31FE000
|
stack
|
page read and write
|
||
|
680000
|
heap
|
page read and write
|
||
|
3B1F000
|
stack
|
page read and write
|
||
|
351E000
|
stack
|
page read and write
|
||
|
4C50000
|
direct allocation
|
page execute and read and write
|
||
|
43DF000
|
stack
|
page read and write
|
||
|
1204000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
2D17000
|
heap
|
page read and write
|
||
|
45D0000
|
direct allocation
|
page read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
746E000
|
stack
|
page read and write
|
||
|
890000
|
heap
|
page read and write
|
||
|
33DE000
|
stack
|
page read and write
|
||
|
479F000
|
stack
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
45E8000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
393F000
|
stack
|
page read and write
|
||
|
30BE000
|
stack
|
page read and write
|
||
|
2DDE000
|
stack
|
page read and write
|
||
|
30D000
|
unkown
|
page execute and read and write
|
||
|
3C9F000
|
stack
|
page read and write
|
||
|
469F000
|
stack
|
page read and write
|
||
|
2AD0000
|
direct allocation
|
page read and write
|
||
|
2D9E000
|
stack
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
2DFF000
|
stack
|
page read and write
|
||
|
3A5E000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
51C0000
|
direct allocation
|
page execute and read and write
|
||
|
EF9000
|
heap
|
page read and write
|
||
|
4CF0000
|
direct allocation
|
page execute and read and write
|
||
|
4F10000
|
direct allocation
|
page execute and read and write
|
||
|
11EC000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
48B2000
|
heap
|
page read and write
|
||
|
2AD0000
|
direct allocation
|
page read and write
|
||
|
2E17000
|
heap
|
page read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
D87000
|
heap
|
page read and write
|
||
|
4F10000
|
direct allocation
|
page execute and read and write
|
||
|
1140000
|
direct allocation
|
page read and write
|
||
|
7A3E000
|
stack
|
page read and write
|
||
|
4E90000
|
direct allocation
|
page execute and read and write
|
||
|
A0D000
|
unkown
|
page execute and read and write
|
||
|
126B000
|
heap
|
page read and write
|
||
|
121C000
|
heap
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
4BC0000
|
direct allocation
|
page execute and read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
119F000
|
stack
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
44BE000
|
stack
|
page read and write
|
||
|
307F000
|
stack
|
page read and write
|
||
|
4D70000
|
direct allocation
|
page execute and read and write
|
||
|
4D10000
|
direct allocation
|
page execute and read and write
|
||
|
2D5F000
|
stack
|
page read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
B59000
|
unkown
|
page execute and read and write
|
||
|
9B4000
|
unkown
|
page execute and read and write
|
||
|
307F000
|
stack
|
page read and write
|
||
|
333E000
|
stack
|
page read and write
|
||
|
51C0000
|
direct allocation
|
page execute and read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
F2C000
|
heap
|
page read and write
|
||
|
2830000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
127A000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4C80000
|
direct allocation
|
page execute and read and write
|
||
|
48B0000
|
heap
|
page read and write
|
||
|
F26000
|
heap
|
page read and write
|
||
|
9FC000
|
stack
|
page read and write
|
||
|
9C3000
|
unkown
|
page execute and write copy
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
4906000
|
heap
|
page read and write
|
||
|
1274000
|
heap
|
page read and write
|
||
|
47DF000
|
stack
|
page read and write
|
||
|
4D60000
|
direct allocation
|
page execute and read and write
|
||
|
469E000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4EA0000
|
direct allocation
|
page execute and read and write
|
||
|
4F00000
|
direct allocation
|
page execute and read and write
|
||
|
32DE000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4CA0000
|
direct allocation
|
page execute and read and write
|
||
|
5C2000
|
unkown
|
page execute and read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
2AD0000
|
direct allocation
|
page read and write
|
||
|
EFE000
|
heap
|
page read and write
|
||
|
3BFE000
|
stack
|
page read and write
|
||
|
4F20000
|
direct allocation
|
page execute and read and write
|
||
|
D5C000
|
heap
|
page read and write
|
||
|
4EC0000
|
direct allocation
|
page execute and read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4F10000
|
direct allocation
|
page execute and read and write
|
||
|
2DF0000
|
heap
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
11B9000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
12A1000
|
heap
|
page read and write
|
||
|
45CF000
|
stack
|
page read and write
|
||
|
EFC000
|
heap
|
page read and write
|
||
|
4C70000
|
direct allocation
|
page execute and read and write
|
||
|
3B5E000
|
stack
|
page read and write
|
||
|
700000
|
unkown
|
page readonly
|
||
|
2A7E000
|
stack
|
page read and write
|
||
|
10FB000
|
stack
|
page read and write
|
||
|
D40000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
F30000
|
heap
|
page read and write
|
||
|
3E7E000
|
stack
|
page read and write
|
||
|
581000
|
unkown
|
page execute and read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
4F50000
|
direct allocation
|
page execute and read and write
|
||
|
88D000
|
unkown
|
page execute and read and write
|
||
|
3BBF000
|
stack
|
page read and write
|
||
|
5040000
|
direct allocation
|
page read and write
|
||
|
4D00000
|
direct allocation
|
page execute and read and write
|
||
|
372F000
|
stack
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
319E000
|
stack
|
page read and write
|
||
|
455E000
|
stack
|
page read and write
|
||
|
120E000
|
stack
|
page read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
50B000
|
stack
|
page read and write
|
||
|
32FF000
|
stack
|
page read and write
|
||
|
D83000
|
heap
|
page read and write
|
||
|
517F000
|
stack
|
page read and write
|
||
|
1110000
|
heap
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
580000
|
unkown
|
page readonly
|
||
|
4F10000
|
direct allocation
|
page execute and read and write
|
||
|
121E000
|
heap
|
page read and write
|
||
|
3F1F000
|
stack
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
5B4000
|
unkown
|
page execute and read and write
|
||
|
4D00000
|
direct allocation
|
page execute and read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
B42000
|
unkown
|
page execute and write copy
|
||
|
1154000
|
heap
|
page read and write
|
||
|
326E000
|
stack
|
page read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
147E000
|
stack
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
3D3E000
|
stack
|
page read and write
|
||
|
412F000
|
stack
|
page read and write
|
||
|
2D10000
|
heap
|
page read and write
|
||
|
2AD0000
|
direct allocation
|
page read and write
|
||
|
1237000
|
heap
|
page read and write
|
||
|
180000
|
unkown
|
page read and write
|
||
|
D1A000
|
heap
|
page read and write
|
||
|
341E000
|
stack
|
page read and write
|
||
|
700000
|
unkown
|
page read and write
|
||
|
45D0000
|
direct allocation
|
page read and write
|
||
|
4BA0000
|
direct allocation
|
page read and write
|
||
|
333E000
|
stack
|
page read and write
|
||
|
4BF0000
|
direct allocation
|
page execute and read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
D6C000
|
heap
|
page read and write
|
||
|
700000
|
unkown
|
page readonly
|
||
|
4701000
|
heap
|
page read and write
|
||
|
355E000
|
stack
|
page read and write
|
||
|
1145000
|
heap
|
page read and write
|
||
|
36FE000
|
stack
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
30A000
|
unkown
|
page write copy
|
||
|
311F000
|
stack
|
page read and write
|
||
|
70A000
|
unkown
|
page write copy
|
||
|
2F3F000
|
stack
|
page read and write
|
||
|
4BA0000
|
direct allocation
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
3EEE000
|
stack
|
page read and write
|
||
|
5C3000
|
unkown
|
page execute and write copy
|
||
|
2BDE000
|
stack
|
page read and write
|
||
|
D10000
|
heap
|
page read and write
|
||
|
4D0E000
|
stack
|
page read and write
|
||
|
70BE000
|
stack
|
page read and write
|
||
|
DF0000
|
heap
|
page read and write
|
||
|
4D14000
|
heap
|
page read and write
|
||
|
431E000
|
stack
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
8FB000
|
stack
|
page read and write
|
||
|
B42000
|
unkown
|
page execute and write copy
|
||
|
2DE0000
|
heap
|
page read and write
|
||
|
2E1F000
|
stack
|
page read and write
|
||
|
48DF000
|
stack
|
page read and write
|
||
|
76AF000
|
stack
|
page read and write
|
||
|
1140000
|
direct allocation
|
page read and write
|
||
|
495E000
|
stack
|
page read and write
|
||
|
393F000
|
stack
|
page read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
34DF000
|
stack
|
page read and write
|
||
|
410E000
|
stack
|
page read and write
|
||
|
5040000
|
direct allocation
|
page read and write
|
||
|
1283000
|
heap
|
page read and write
|
||
|
74EE000
|
stack
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
48B1000
|
heap
|
page read and write
|
||
|
2D00000
|
direct allocation
|
page read and write
|
||
|
F08000
|
heap
|
page read and write
|
||
|
48AF000
|
stack
|
page read and write
|
||
|
4CC0000
|
direct allocation
|
page execute and read and write
|
||
|
11CE000
|
stack
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
6ED000
|
stack
|
page read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
2F3F000
|
stack
|
page read and write
|
||
|
11D0000
|
heap
|
page read and write
|
||
|
10FF000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
EAA000
|
heap
|
page read and write
|
||
|
383E000
|
stack
|
page read and write
|
||
|
125C000
|
heap
|
page read and write
|
||
|
2DFF000
|
stack
|
page read and write
|
||
|
180000
|
unkown
|
page read and write
|
||
|
51C0000
|
direct allocation
|
page execute and read and write
|
||
|
51E0000
|
direct allocation
|
page execute and read and write
|
||
|
11FC000
|
heap
|
page read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
51C0000
|
direct allocation
|
page execute and read and write
|
||
|
74F000
|
unkown
|
page read and write
|
||
|
362E000
|
stack
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
772E000
|
stack
|
page read and write
|
||
|
45D0000
|
direct allocation
|
page read and write
|
||
|
2F1F000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
40FE000
|
stack
|
page read and write
|
||
|
4F70000
|
heap
|
page read and write
|
||
|
4BA0000
|
direct allocation
|
page read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
3E7E000
|
stack
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
447F000
|
stack
|
page read and write
|
||
|
D4D000
|
heap
|
page read and write
|
||
|
329E000
|
stack
|
page read and write
|
||
|
51C0000
|
direct allocation
|
page execute and read and write
|
||
|
F39000
|
heap
|
page read and write
|
||
|
322F000
|
stack
|
page read and write
|
||
|
4FA0000
|
direct allocation
|
page execute and read and write
|
||
|
445E000
|
stack
|
page read and write
|
||
|
CDB000
|
unkown
|
page execute and write copy
|
||
|
82A000
|
stack
|
page read and write
|
||
|
AEF000
|
unkown
|
page execute and read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
3B5F000
|
stack
|
page read and write
|
||
|
2AD0000
|
direct allocation
|
page read and write
|
||
|
369E000
|
stack
|
page read and write
|
||
|
455F000
|
stack
|
page read and write
|
||
|
39DF000
|
stack
|
page read and write
|
||
|
4D20000
|
direct allocation
|
page execute and read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2AD0000
|
direct allocation
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
434F000
|
stack
|
page read and write
|
||
|
4D00000
|
direct allocation
|
page execute and read and write
|
||
|
36BF000
|
stack
|
page read and write
|
||
|
3CFF000
|
stack
|
page read and write
|
||
|
3DDE000
|
stack
|
page read and write
|
||
|
88A000
|
unkown
|
page write copy
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
4CF0000
|
trusted library allocation
|
page read and write
|
||
|
51C0000
|
direct allocation
|
page execute and read and write
|
||
|
D87000
|
heap
|
page read and write
|
||
|
4EA0000
|
direct allocation
|
page execute and read and write
|
||
|
EF2000
|
heap
|
page read and write
|
||
|
701000
|
unkown
|
page execute and read and write
|
||
|
305E000
|
stack
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
1120000
|
heap
|
page read and write
|
||
|
45D0000
|
direct allocation
|
page read and write
|
||
|
180000
|
unkown
|
page readonly
|
||
|
B43000
|
unkown
|
page execute and write copy
|
||
|
1140000
|
direct allocation
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
38AE000
|
stack
|
page read and write
|
||
|
181000
|
unkown
|
page execute and write copy
|
||
|
4B40000
|
trusted library allocation
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
336F000
|
stack
|
page read and write
|
||
|
F3F000
|
heap
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
4BC0000
|
heap
|
page read and write
|
||
|
415F000
|
stack
|
page read and write
|
||
|
11A7000
|
heap
|
page read and write
|
||
|
620000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
885000
|
unkown
|
page execute and read and write
|
||
|
4EB4000
|
direct allocation
|
page read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
4ECF000
|
stack
|
page read and write
|
||
|
F44000
|
heap
|
page read and write
|
||
|
3A1E000
|
stack
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
27EE000
|
stack
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
1248000
|
heap
|
page read and write
|
||
|
31FE000
|
stack
|
page read and write
|
||
|
51F0000
|
heap
|
page read and write
|
||
|
48C0000
|
heap
|
page read and write
|
||
|
4D90000
|
direct allocation
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
4F14000
|
direct allocation
|
page read and write
|
||
|
71BF000
|
stack
|
page read and write
|
||
|
756F000
|
stack
|
page read and write
|
||
|
2D00000
|
direct allocation
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
120C000
|
heap
|
page read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
5230000
|
direct allocation
|
page execute and read and write
|
||
|
9C2000
|
unkown
|
page execute and write copy
|
||
|
5C2000
|
unkown
|
page execute and read and write
|
||
|
51B0000
|
direct allocation
|
page execute and read and write
|
||
|
4D90000
|
direct allocation
|
page execute and read and write
|
||
|
4DCC000
|
stack
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
5290000
|
direct allocation
|
page execute and read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4B80000
|
direct allocation
|
page read and write
|
||
|
45D0000
|
direct allocation
|
page read and write
|
||
|
4BF4000
|
direct allocation
|
page read and write
|
||
|
48B1000
|
heap
|
page read and write
|
||
|
D85000
|
heap
|
page read and write
|
||
|
CE0000
|
heap
|
page read and write
|
||
|
11EE000
|
heap
|
page read and write
|
||
|
549E000
|
stack
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
45D0000
|
direct allocation
|
page read and write
|
||
|
4F60000
|
direct allocation
|
page execute and read and write
|
||
|
4FC0000
|
direct allocation
|
page execute and read and write
|
||
|
3ABE000
|
stack
|
page read and write
|
||
|
4D40000
|
direct allocation
|
page execute and read and write
|
||
|
4F60000
|
direct allocation
|
page execute and read and write
|
||
|
F26000
|
heap
|
page read and write
|
||
|
7206000
|
heap
|
page read and write
|
||
|
46FF000
|
stack
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
4DE0000
|
direct allocation
|
page execute and read and write
|
||
|
34EE000
|
stack
|
page read and write
|
||
|
36BF000
|
stack
|
page read and write
|
||
|
409E000
|
stack
|
page read and write
|
||
|
2CFE000
|
stack
|
page read and write
|
||
|
343F000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4FCE000
|
stack
|
page read and write
|
||
|
510E000
|
stack
|
page read and write
|
||
|
7EB000
|
stack
|
page read and write
|
||
|
2AD0000
|
direct allocation
|
page read and write
|
||
|
315F000
|
stack
|
page read and write
|
||
|
D3E000
|
stack
|
page read and write
|
||
|
700000
|
unkown
|
page read and write
|
||
|
36FE000
|
stack
|
page read and write
|
||
|
365E000
|
stack
|
page read and write
|
||
|
2AF7000
|
heap
|
page read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
2AD0000
|
direct allocation
|
page read and write
|
||
|
4BA0000
|
direct allocation
|
page read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
77BF000
|
stack
|
page read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
920000
|
heap
|
page read and write
|
||
|
703B000
|
heap
|
page read and write
|
||
|
45D0000
|
direct allocation
|
page read and write
|
||
|
4EE0000
|
direct allocation
|
page execute and read and write
|
||
|
4CB0000
|
direct allocation
|
page execute and read and write
|
||
|
4EF0000
|
direct allocation
|
page execute and read and write
|
||
|
4F80000
|
direct allocation
|
page execute and read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
2E10000
|
heap
|
page read and write
|
||
|
2D00000
|
direct allocation
|
page read and write
|
||
|
2CBF000
|
stack
|
page read and write
|
||
|
CA0000
|
heap
|
page read and write
|
||
|
2E3E000
|
stack
|
page read and write
|
||
|
11EC000
|
heap
|
page read and write
|
||
|
2B7F000
|
stack
|
page read and write
|
||
|
AEF000
|
unkown
|
page execute and read and write
|
||
|
70D000
|
unkown
|
page execute and read and write
|
||
|
88A000
|
unkown
|
page write copy
|
||
|
4EB0000
|
direct allocation
|
page execute and read and write
|
||
|
2D2F000
|
stack
|
page read and write
|
||
|
4900000
|
heap
|
page read and write
|
||
|
47DE000
|
stack
|
page read and write
|
||
|
4FF0000
|
trusted library allocation
|
page read and write
|
||
|
48E0000
|
heap
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
4BA0000
|
direct allocation
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
305000
|
unkown
|
page execute and read and write
|
||
|
3F5E000
|
stack
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
11E3000
|
heap
|
page read and write
|
||
|
D9B000
|
stack
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
2D00000
|
direct allocation
|
page read and write
|
||
|
4BF0000
|
direct allocation
|
page execute and read and write
|
||
|
747E000
|
stack
|
page read and write
|
||
|
5110000
|
heap
|
page read and write
|
||
|
4EA0000
|
direct allocation
|
page execute and read and write
|
||
|
DD0000
|
heap
|
page read and write
|
||
|
EA0000
|
heap
|
page read and write
|
||
|
D9A000
|
heap
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
357F000
|
stack
|
page read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
2D00000
|
direct allocation
|
page read and write
|
||
|
3C5F000
|
stack
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
5C2000
|
unkown
|
page execute and write copy
|
||
|
4F10000
|
direct allocation
|
page execute and read and write
|
||
|
2BFF000
|
stack
|
page read and write
|
||
|
5020000
|
heap
|
page read and write
|
||
|
4903000
|
heap
|
page read and write
|
||
|
3E3F000
|
stack
|
page read and write
|
||
|
4F10000
|
direct allocation
|
page execute and read and write
|
||
|
4FF0000
|
direct allocation
|
page execute and read and write
|
||
|
379E000
|
stack
|
page read and write
|
||
|
4ED0000
|
direct allocation
|
page execute and read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
45D0000
|
direct allocation
|
page read and write
|
||
|
4A5F000
|
stack
|
page read and write
|
||
|
2C2B000
|
heap
|
page read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
701000
|
unkown
|
page execute and write copy
|
||
|
109F000
|
stack
|
page read and write
|
||
|
705000
|
unkown
|
page execute and read and write
|
||
|
4DD0000
|
direct allocation
|
page execute and read and write
|
||
|
F0D000
|
heap
|
page read and write
|
||
|
1202000
|
heap
|
page read and write
|
||
|
1140000
|
direct allocation
|
page read and write
|
||
|
423E000
|
stack
|
page read and write
|
||
|
4F10000
|
direct allocation
|
page execute and read and write
|
||
|
42DE000
|
stack
|
page read and write
|
||
|
31BF000
|
stack
|
page read and write
|
||
|
30BE000
|
stack
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
3FEE000
|
stack
|
page read and write
|
||
|
45D0000
|
direct allocation
|
page read and write
|
||
|
315E000
|
stack
|
page read and write
|
||
|
4EA0000
|
direct allocation
|
page execute and read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
5AC000
|
unkown
|
page execute and read and write
|
||
|
1272000
|
heap
|
page read and write
|
||
|
1150000
|
heap
|
page read and write
|
||
|
A0D000
|
unkown
|
page execute and read and write
|
||
|
48B1000
|
heap
|
page read and write
|
||
|
B42000
|
unkown
|
page execute and read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
30A000
|
unkown
|
page write copy
|
||
|
1212000
|
heap
|
page read and write
|
||
|
4F70000
|
direct allocation
|
page execute and read and write
|
||
|
51F0000
|
direct allocation
|
page execute and read and write
|
||
|
4C00000
|
direct allocation
|
page execute and read and write
|
||
|
4BF0000
|
direct allocation
|
page execute and read and write
|
||
|
2D00000
|
direct allocation
|
page read and write
|
||
|
451F000
|
stack
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
51C0000
|
direct allocation
|
page execute and read and write
|
||
|
1140000
|
direct allocation
|
page read and write
|
||
|
405F000
|
stack
|
page read and write
|
||
|
5BC000
|
stack
|
page read and write
|
||
|
4EAD000
|
stack
|
page read and write
|
||
|
7050000
|
heap
|
page read and write
|
||
|
5C3000
|
unkown
|
page execute and write copy
|
||
|
1154000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
117A000
|
heap
|
page read and write
|
||
|
530D000
|
stack
|
page read and write
|
||
|
3ABE000
|
stack
|
page read and write
|
||
|
704E000
|
stack
|
page read and write
|
||
|
438E000
|
stack
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
F12000
|
heap
|
page read and write
|
||
|
78BF000
|
stack
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
4D90000
|
direct allocation
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
70A5000
|
heap
|
page read and write
|
||
|
4B80000
|
direct allocation
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
3C6E000
|
stack
|
page read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
E5E000
|
stack
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
339F000
|
stack
|
page read and write
|
||
|
2D00000
|
direct allocation
|
page read and write
|
||
|
778E000
|
stack
|
page read and write
|
||
|
397E000
|
stack
|
page read and write
|
||
|
51D0000
|
direct allocation
|
page execute and read and write
|
||
|
4D00000
|
direct allocation
|
page execute and read and write
|
||
|
45D0000
|
direct allocation
|
page read and write
|
||
|
402E000
|
stack
|
page read and write
|
||
|
7D0000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
35BE000
|
stack
|
page read and write
|
||
|
2F1F000
|
stack
|
page read and write
|
||
|
476F000
|
stack
|
page read and write
|
||
|
1210000
|
heap
|
page read and write
|
||
|
2C20000
|
heap
|
page read and write
|
||
|
11D2000
|
heap
|
page read and write
|
||
|
4D30000
|
direct allocation
|
page execute and read and write
|
||
|
4D30000
|
direct allocation
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
DEE000
|
stack
|
page read and write
|
||
|
1140000
|
direct allocation
|
page read and write
|
||
|
2AD0000
|
direct allocation
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
5260000
|
direct allocation
|
page execute and read and write
|
||
|
5090000
|
heap
|
page read and write
|
||
|
3C9E000
|
stack
|
page read and write
|
||
|
D44000
|
heap
|
page read and write
|
||
|
2837000
|
heap
|
page read and write
|
||
|
56F000
|
unkown
|
page execute and read and write
|
||
|
DFE000
|
stack
|
page read and write
|
||
|
11C0000
|
heap
|
page read and write
|
||
|
351F000
|
stack
|
page read and write
|
||
|
4F20000
|
direct allocation
|
page execute and read and write
|
||
|
2AD0000
|
direct allocation
|
page read and write
|
||
|
701000
|
unkown
|
page execute and write copy
|
||
|
3B2E000
|
stack
|
page read and write
|
||
|
4FB0000
|
direct allocation
|
page execute and read and write
|
||
|
F00000
|
heap
|
page read and write
|
||
|
48B1000
|
heap
|
page read and write
|
||
|
2D00000
|
direct allocation
|
page read and write
|
||
|
4D00000
|
direct allocation
|
page execute and read and write
|
||
|
D67000
|
heap
|
page read and write
|
||
|
2AF0000
|
heap
|
page read and write
|
||
|
B43000
|
unkown
|
page execute and write copy
|
||
|
759000
|
unkown
|
page execute and read and write
|
||
|
5B4000
|
unkown
|
page execute and read and write
|
||
|
4EA0000
|
direct allocation
|
page execute and read and write
|
||
|
88D000
|
unkown
|
page execute and read and write
|
||
|
75B000
|
unkown
|
page execute and write copy
|
||
|
113C000
|
stack
|
page read and write
|
||
|
70E000
|
unkown
|
page read and write
|
||
|
4BBB000
|
stack
|
page read and write
|
||
|
419F000
|
stack
|
page read and write
|
||
|
4F6E000
|
stack
|
page read and write
|
||
|
74CF000
|
stack
|
page read and write
|
||
|
4CE0000
|
direct allocation
|
page execute and read and write
|
||
|
3A1F000
|
stack
|
page read and write
|
||
|
3A7F000
|
stack
|
page read and write
|
||
|
379F000
|
stack
|
page read and write
|
||
|
732F000
|
stack
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
45E1000
|
heap
|
page read and write
|
||
|
2D00000
|
direct allocation
|
page read and write
|
||
|
5200000
|
direct allocation
|
page execute and read and write
|
||
|
52B0000
|
direct allocation
|
page execute and read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
11B0000
|
direct allocation
|
page read and write
|
||
|
11FD000
|
heap
|
page read and write
|
||
|
4DB0000
|
direct allocation
|
page execute and read and write
|
||
|
4EA0000
|
direct allocation
|
page execute and read and write
|
||
|
441F000
|
stack
|
page read and write
|
||
|
1154000
|
heap
|
page read and write
|
||
|
1299000
|
heap
|
page read and write
|
||
|
51AE000
|
stack
|
page read and write
|
||
|
4701000
|
heap
|
page read and write
|
||
|
11BD000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
2AC0000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
1140000
|
direct allocation
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
4AAC000
|
stack
|
page read and write
|
||
|
4D04000
|
direct allocation
|
page read and write
|
||
|
4C90000
|
direct allocation
|
page execute and read and write
|
||
|
3D9F000
|
stack
|
page read and write
|
||
|
4BA0000
|
direct allocation
|
page read and write
|
||
|
30D000
|
unkown
|
page execute and read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
429F000
|
stack
|
page read and write
|
||
|
3AEF000
|
stack
|
page read and write
|
||
|
96F000
|
unkown
|
page execute and read and write
|
||
|
4D00000
|
direct allocation
|
page execute and read and write
|
||
|
4EA0000
|
direct allocation
|
page execute and read and write
|
||
|
670000
|
heap
|
page read and write
|
||
|
1140000
|
direct allocation
|
page read and write
|
||
|
4D00000
|
direct allocation
|
page execute and read and write
|
||
|
1286000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
121A000
|
heap
|
page read and write
|
||
|
4D00000
|
direct allocation
|
page execute and read and write
|
||
|
4CD0000
|
direct allocation
|
page execute and read and write
|
||
|
1235000
|
heap
|
page read and write
|
||
|
2C20000
|
heap
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
71FE000
|
stack
|
page read and write
|
||
|
2D00000
|
direct allocation
|
page read and write
|
||
|
CD9000
|
unkown
|
page execute and read and write
|
||
|
448F000
|
stack
|
page read and write
|
||
|
759000
|
unkown
|
page execute and read and write
|
||
|
383E000
|
stack
|
page read and write
|
||
|
4BA0000
|
direct allocation
|
page read and write
|
||
|
733E000
|
stack
|
page read and write
|
||
|
40BF000
|
stack
|
page read and write
|
||
|
2C1E000
|
stack
|
page read and write
|
||
|
CFE000
|
stack
|
page read and write
|
||
|
D62000
|
heap
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
788F000
|
stack
|
page read and write
|
||
|
4BF0000
|
direct allocation
|
page execute and read and write
|
||
|
43EE000
|
stack
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
||
|
9C2000
|
unkown
|
page execute and read and write
|
||
|
2E40000
|
heap
|
page read and write
|
||
|
41FF000
|
stack
|
page read and write
|
||
|
4A70000
|
direct allocation
|
page read and write
|
||
|
4BA0000
|
direct allocation
|
page read and write
|
||
|
3F7F000
|
stack
|
page read and write
|
||
|
4D00000
|
direct allocation
|
page execute and read and write
|
||
|
11CD000
|
heap
|
page read and write
|
||
|
EEF000
|
heap
|
page read and write
|
||
|
2A3F000
|
stack
|
page read and write
|
||
|
45BF000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4BB1000
|
heap
|
page read and write
|
||
|
4E00000
|
direct allocation
|
page execute and read and write
|
||
|
F0F000
|
stack
|
page read and write
|
||
|
416E000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
32FF000
|
stack
|
page read and write
|
||
|
BC4000
|
heap
|
page read and write
|
||
|
2AD0000
|
direct allocation
|
page read and write
|
||
|
CE4000
|
heap
|
page read and write
|
There are 1098 hidden memdumps, click here to show them.