Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Nichiden Viet Nam - RFQ List & Specification..exe
|
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\Nichiden Viet Nam - RFQ List & Specification..exe.log
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\aspnet_compiler.exe.log
|
ASCII text, with CRLF line terminators
|
dropped
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\Nichiden Viet Nam - RFQ List & Specification..exe
|
"C:\Users\user\Desktop\Nichiden Viet Nam - RFQ List & Specification..exe"
|
|
|
|
C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_compiler.exe
|
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_compiler.exe"
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Text
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/sc/sct
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/04/security/sc/dk
|
unknown
|
||
|
http://tempuri.org/Entity/Id23ResponseD
|
unknown
|
||
|
http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#HexBinary
|
unknown
|
||
|
http://tempuri.org/Entity/Id12Response
|
unknown
|
||
|
http://tempuri.org/
|
unknown
|
||
|
http://tempuri.org/Entity/Id2Response
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/sc/dk/p_sha1
|
unknown
|
||
|
http://tempuri.org/Entity/Id21Response
|
unknown
|
||
|
http://schemas.xmlsoap.org/2005/02/trust/spnego#GSS_Wrap
|
unknown
|
||
|
http://tempuri.org/Entity/Id9
|
unknown
|
||
|
http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLID
|
unknown
|
||
|
http://tempuri.org/Entity/Id8
|
unknown
|
||
|
http://tempuri.org/Entity/Id5
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wsat/Prepare
|
unknown
|
||
|
http://tempuri.org/Entity/Id4
|
unknown
|
||
|
http://tempuri.org/Entity/Id7
|
unknown
|
||
|
http://tempuri.org/Entity/Id6
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust#BinarySecret
|
unknown
|
||
|
http://tempuri.org/Entity/Id19Response
|
unknown
|
||
|
http://docs.oasis-open.org/wss/oasis-wss-rel-token-profile-1.0.pdf#license
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust/RSTR/Issue
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wsat/Aborted
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/TerminateSequence
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wsat/fault
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wsat
|
unknown
|
||
|
http://docs.oasis-open.org/wss/oasis-wss-soap-message-security-1.1#EncryptedKey
|
unknown
|
||
|
https://fff.new-vlog.top
|
unknown
|
||
|
http://tempuri.org/Entity/Id15Response
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust/RSTR/SCT/Renew
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wscoor/Register
|
unknown
|
||
|
http://tempuri.org/Entity/Id6Response
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/04/trust/SymmetricKey
|
unknown
|
||
|
https://api.ip.sb/ip
|
unknown
|
||
|
https://stackoverflow.com/q/14436606/23354
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/04/sc
|
unknown
|
||
|
http://tempuri.org/Entity/Id1ResponseD
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wsat/Volatile2PC
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust/RSTR/SCT/Cancel
|
unknown
|
||
|
http://tempuri.org/Entity/Id9Response
|
unknown
|
||
|
http://tempuri.org/Entity/Id20
|
unknown
|
||
|
http://tempuri.org/Entity/Id21
|
unknown
|
||
|
http://tempuri.org/Entity/Id22
|
unknown
|
||
|
http://docs.oasis-open.org/wss/oasis-wss-kerberos-token-profile-1.1#Kerberosv5APREQSHA1
|
unknown
|
||
|
http://tempuri.org/Entity/Id23
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/04/security/trust/CK/PSHA1
|
unknown
|
||
|
http://tempuri.org/Entity/Id24
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/04/security/trust/RSTR/Issue
|
unknown
|
||
|
http://tempuri.org/Entity/Id24Response
|
unknown
|
||
|
http://tempuri.org/Entity/Id1Response
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/AckRequested
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wsat/ReadOnly
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wsat/Replay
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust/tlsnego
|
unknown
|
||
|
http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wsat/Durable2PC
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/04/security/trust/SymmetricKey
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/08/addressing
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Issue
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wsat/Completion
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/04/trust
|
unknown
|
||
|
http://tempuri.org/Entity/Id10
|
unknown
|
||
|
http://tempuri.org/Entity/Id11
|
unknown
|
||
|
http://tempuri.org/Entity/Id12
|
unknown
|
||
|
http://tempuri.org/Entity/Id16Response
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wscoor/CreateCoordinationContextResponse
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust/RST/SCT/Cancel
|
unknown
|
||
|
http://tempuri.org/Entity/Id13
|
unknown
|
||
|
http://tempuri.org/Entity/Id14
|
unknown
|
||
|
http://tempuri.org/Entity/Id15
|
unknown
|
||
|
http://tempuri.org/Entity/Id16
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust/Nonce
|
unknown
|
||
|
http://tempuri.org/Entity/Id17
|
unknown
|
||
|
http://tempuri.org/Entity/Id18
|
unknown
|
||
|
http://tempuri.org/Entity/Id5Response
|
unknown
|
||
|
http://tempuri.org/Entity/Id19
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/dns
|
unknown
|
||
|
http://tempuri.org/Entity/Id10Response
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust/Renew
|
unknown
|
||
|
http://tempuri.org/Entity/Id8Response
|
unknown
|
||
|
https://github.com/mgravell/protobuf-netJ
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/04/trust/PublicKey
|
unknown
|
||
|
http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV2.0
|
unknown
|
||
|
http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.0#SAMLAssertionID
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/04/security/trust/RST/SCT
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2006/02/addressingidentity
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/envelope/
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust/PublicKey
|
unknown
|
||
|
http://docs.oasis-open.org/wss/oasis-wss-soap-message-security-1.1#EncryptedKeySHA1
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wsat/Rollback
|
unknown
|
||
|
http://tempuri.org/Entity/Id3ResponseD
|
unknown
|
||
|
http://tempuri.org/Entity/Id23Response
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/04/security/trust/RSTR/SCT
|
unknown
|
||
|
http://tempuri.org/D
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/06/addressingex
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wscoor
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/04/security/trust/Nonce
|
unknown
|
There are 90 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
fff.new-vlog.top
|
104.21.96.103
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
79.110.62.113
|
unknown
|
Germany
|
|
|
|
104.21.96.103
|
fff.new-vlog.top
|
United States
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Nichiden Viet Nam - RFQ List & Specification_RASAPI32
|
EnableFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Nichiden Viet Nam - RFQ List & Specification_RASAPI32
|
EnableAutoFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Nichiden Viet Nam - RFQ List & Specification_RASAPI32
|
EnableConsoleTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Nichiden Viet Nam - RFQ List & Specification_RASAPI32
|
FileTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Nichiden Viet Nam - RFQ List & Specification_RASAPI32
|
ConsoleTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Nichiden Viet Nam - RFQ List & Specification_RASAPI32
|
MaxFileSize
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Nichiden Viet Nam - RFQ List & Specification_RASAPI32
|
FileDirectory
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Nichiden Viet Nam - RFQ List & Specification_RASMANCS
|
EnableFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Nichiden Viet Nam - RFQ List & Specification_RASMANCS
|
EnableAutoFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Nichiden Viet Nam - RFQ List & Specification_RASMANCS
|
EnableConsoleTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Nichiden Viet Nam - RFQ List & Specification_RASMANCS
|
FileTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Nichiden Viet Nam - RFQ List & Specification_RASMANCS
|
ConsoleTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Nichiden Viet Nam - RFQ List & Specification_RASMANCS
|
MaxFileSize
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Nichiden Viet Nam - RFQ List & Specification_RASMANCS
|
FileDirectory
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\RestartManager\Session0000
|
Owner
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\RestartManager\Session0000
|
SessionHash
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\RestartManager\Session0000
|
Sequence
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\RestartManager\Session0000
|
RegFiles0000
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\RestartManager\Session0000
|
RegFilesHash
|
There are 9 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
2D3E000
|
trusted library allocation
|
page read and write
|
|
|
|
3106000
|
trusted library allocation
|
page read and write
|
|
|
|
2F44000
|
trusted library allocation
|
page read and write
|
|
|
|
2A40000
|
trusted library section
|
page read and write
|
|
|
|
2E75000
|
trusted library allocation
|
page read and write
|
|
|
|
65E1000
|
trusted library allocation
|
page read and write
|
|
|
|
6B3A000
|
trusted library allocation
|
page read and write
|
|
|
|
7730000
|
trusted library section
|
page read and write
|
|
|
|
3DF9000
|
trusted library allocation
|
page read and write
|
|
|
|
3EA4000
|
trusted library allocation
|
page read and write
|
|
|
|
48A4000
|
trusted library allocation
|
page read and write
|
|
|
|
402000
|
remote allocation
|
page execute and read and write
|
|
|
|
3E59000
|
trusted library allocation
|
page read and write
|
|
|
|
1158000
|
heap
|
page read and write
|
||
|
710E000
|
heap
|
page read and write
|
||
|
7956000
|
heap
|
page read and write
|
||
|
54F0000
|
trusted library allocation
|
page read and write
|
||
|
54D6000
|
trusted library allocation
|
page read and write
|
||
|
6230000
|
heap
|
page read and write
|
||
|
400000
|
remote allocation
|
page execute and read and write
|
||
|
70D0000
|
heap
|
page read and write
|
||
|
7970000
|
trusted library allocation
|
page read and write
|
||
|
63A0000
|
trusted library allocation
|
page execute and read and write
|
||
|
2BA0000
|
trusted library allocation
|
page read and write
|
||
|
40F2000
|
trusted library allocation
|
page read and write
|
||
|
C30000
|
heap
|
page read and write
|
||
|
4B34000
|
trusted library allocation
|
page read and write
|
||
|
5BEA000
|
trusted library allocation
|
page read and write
|
||
|
7B50000
|
trusted library allocation
|
page read and write
|
||
|
7C10000
|
trusted library allocation
|
page execute and read and write
|
||
|
5BFE000
|
trusted library allocation
|
page read and write
|
||
|
2FAE000
|
stack
|
page read and write
|
||
|
518D000
|
stack
|
page read and write
|
||
|
774E000
|
stack
|
page read and write
|
||
|
13E2000
|
trusted library allocation
|
page read and write
|
||
|
D70000
|
trusted library allocation
|
page read and write
|
||
|
65B8000
|
heap
|
page read and write
|
||
|
638E000
|
stack
|
page read and write
|
||
|
13C0000
|
trusted library allocation
|
page read and write
|
||
|
62D0000
|
trusted library allocation
|
page read and write
|
||
|
162E000
|
stack
|
page read and write
|
||
|
3518000
|
trusted library allocation
|
page read and write
|
||
|
7B70000
|
trusted library allocation
|
page read and write
|
||
|
7A20000
|
trusted library allocation
|
page read and write
|
||
|
70DD000
|
heap
|
page read and write
|
||
|
6320000
|
trusted library allocation
|
page read and write
|
||
|
3050000
|
trusted library allocation
|
page read and write
|
||
|
113E000
|
heap
|
page read and write
|
||
|
64F8000
|
heap
|
page read and write
|
||
|
59AF000
|
stack
|
page read and write
|
||
|
16E0000
|
heap
|
page read and write
|
||
|
79F0000
|
trusted library allocation
|
page read and write
|
||
|
7BE0000
|
trusted library allocation
|
page execute and read and write
|
||
|
62BF000
|
stack
|
page read and write
|
||
|
30C1000
|
trusted library allocation
|
page read and write
|
||
|
728F000
|
trusted library allocation
|
page read and write
|
||
|
6593000
|
heap
|
page read and write
|
||
|
79E5000
|
trusted library allocation
|
page read and write
|
||
|
653C000
|
heap
|
page read and write
|
||
|
5BDE000
|
trusted library allocation
|
page read and write
|
||
|
3C29000
|
trusted library allocation
|
page read and write
|
||
|
2AC0000
|
trusted library allocation
|
page execute and read and write
|
||
|
72A0000
|
trusted library allocation
|
page read and write
|
||
|
3520000
|
trusted library allocation
|
page read and write
|
||
|
432000
|
remote allocation
|
page execute and read and write
|
||
|
3421000
|
trusted library allocation
|
page read and write
|
||
|
5653000
|
heap
|
page read and write
|
||
|
13B3000
|
trusted library allocation
|
page execute and read and write
|
||
|
4B2F000
|
trusted library allocation
|
page read and write
|
||
|
5590000
|
trusted library allocation
|
page execute and read and write
|
||
|
30AC000
|
trusted library allocation
|
page read and write
|
||
|
7027000
|
trusted library allocation
|
page read and write
|
||
|
170E000
|
heap
|
page read and write
|
||
|
3591000
|
trusted library allocation
|
page read and write
|
||
|
1275000
|
heap
|
page read and write
|
||
|
5500000
|
trusted library allocation
|
page read and write
|
||
|
7F950000
|
trusted library allocation
|
page execute and read and write
|
||
|
3586000
|
trusted library allocation
|
page read and write
|
||
|
E20000
|
heap
|
page execute and read and write
|
||
|
356E000
|
trusted library allocation
|
page read and write
|
||
|
D4B000
|
trusted library allocation
|
page execute and read and write
|
||
|
7088000
|
heap
|
page read and write
|
||
|
11AA000
|
heap
|
page read and write
|
||
|
357E000
|
trusted library allocation
|
page read and write
|
||
|
1217000
|
heap
|
page read and write
|
||
|
7A50000
|
trusted library allocation
|
page read and write
|
||
|
62C0000
|
trusted library allocation
|
page read and write
|
||
|
63A0000
|
heap
|
page read and write
|
||
|
30DA000
|
trusted library allocation
|
page read and write
|
||
|
308D000
|
trusted library allocation
|
page read and write
|
||
|
3066000
|
trusted library allocation
|
page read and write
|
||
|
CDD000
|
stack
|
page read and write
|
||
|
5BC1000
|
trusted library allocation
|
page read and write
|
||
|
5BBB000
|
trusted library allocation
|
page read and write
|
||
|
7A40000
|
trusted library allocation
|
page read and write
|
||
|
734E000
|
stack
|
page read and write
|
||
|
13E7000
|
trusted library allocation
|
page execute and read and write
|
||
|
588E000
|
stack
|
page read and write
|
||
|
125D000
|
stack
|
page read and write
|
||
|
D20000
|
trusted library allocation
|
page read and write
|
||
|
5BB0000
|
trusted library allocation
|
page read and write
|
||
|
8C6E000
|
stack
|
page read and write
|
||
|
D30000
|
trusted library allocation
|
page read and write
|
||
|
EA7000
|
heap
|
page read and write
|
||
|
E3E000
|
heap
|
page read and write
|
||
|
30F5000
|
trusted library allocation
|
page read and write
|
||
|
6529000
|
heap
|
page read and write
|
||
|
7930000
|
heap
|
page read and write
|
||
|
564A000
|
trusted library allocation
|
page read and write
|
||
|
5650000
|
heap
|
page read and write
|
||
|
7279000
|
trusted library allocation
|
page read and write
|
||
|
DFC000
|
stack
|
page read and write
|
||
|
34BB000
|
trusted library allocation
|
page read and write
|
||
|
35DE000
|
trusted library allocation
|
page read and write
|
||
|
30EF000
|
trusted library allocation
|
page read and write
|
||
|
7275000
|
trusted library allocation
|
page read and write
|
||
|
3193000
|
trusted library allocation
|
page read and write
|
||
|
356C000
|
trusted library allocation
|
page read and write
|
||
|
584E000
|
stack
|
page read and write
|
||
|
2C1B000
|
trusted library allocation
|
page read and write
|
||
|
2BD1000
|
trusted library allocation
|
page read and write
|
||
|
30FB000
|
trusted library allocation
|
page read and write
|
||
|
79CE000
|
trusted library allocation
|
page read and write
|
||
|
6310000
|
trusted library allocation
|
page read and write
|
||
|
3070000
|
trusted library allocation
|
page read and write
|
||
|
562E000
|
stack
|
page read and write
|
||
|
30E0000
|
trusted library allocation
|
page read and write
|
||
|
3383000
|
trusted library allocation
|
page read and write
|
||
|
306A000
|
trusted library allocation
|
page read and write
|
||
|
122F000
|
stack
|
page read and write
|
||
|
79F9000
|
trusted library allocation
|
page read and write
|
||
|
2FD9000
|
trusted library allocation
|
page read and write
|
||
|
7A70000
|
trusted library allocation
|
page read and write
|
||
|
7D00000
|
trusted library allocation
|
page read and write
|
||
|
56AE000
|
stack
|
page read and write
|
||
|
79BE000
|
trusted library allocation
|
page read and write
|
||
|
1420000
|
heap
|
page read and write
|
||
|
72D0000
|
trusted library allocation
|
page read and write
|
||
|
DBE000
|
stack
|
page read and write
|
||
|
516B000
|
stack
|
page read and write
|
||
|
407F000
|
trusted library allocation
|
page read and write
|
||
|
7041000
|
heap
|
page read and write
|
||
|
7420000
|
trusted library allocation
|
page read and write
|
||
|
645A000
|
heap
|
page read and write
|
||
|
3074000
|
trusted library allocation
|
page read and write
|
||
|
7101000
|
heap
|
page read and write
|
||
|
446000
|
remote allocation
|
page execute and read and write
|
||
|
3385000
|
trusted library allocation
|
page read and write
|
||
|
13EB000
|
trusted library allocation
|
page execute and read and write
|
||
|
30C3000
|
trusted library allocation
|
page read and write
|
||
|
64F4000
|
heap
|
page read and write
|
||
|
728A000
|
trusted library allocation
|
page read and write
|
||
|
652D000
|
heap
|
page read and write
|
||
|
65E0000
|
trusted library allocation
|
page execute and read and write
|
||
|
3305000
|
trusted library allocation
|
page read and write
|
||
|
3189000
|
trusted library allocation
|
page read and write
|
||
|
7A80000
|
trusted library allocation
|
page read and write
|
||
|
738E000
|
stack
|
page read and write
|
||
|
E30000
|
heap
|
page read and write
|
||
|
357B000
|
trusted library allocation
|
page read and write
|
||
|
D42000
|
trusted library allocation
|
page read and write
|
||
|
7C20000
|
trusted library allocation
|
page read and write
|
||
|
34A2000
|
trusted library allocation
|
page read and write
|
||
|
EE3000
|
heap
|
page read and write
|
||
|
6240000
|
heap
|
page read and write
|
||
|
704B000
|
heap
|
page read and write
|
||
|
30A0000
|
trusted library allocation
|
page read and write
|
||
|
5891000
|
trusted library allocation
|
page read and write
|
||
|
3391000
|
trusted library allocation
|
page read and write
|
||
|
13E5000
|
trusted library allocation
|
page execute and read and write
|
||
|
2DAA000
|
trusted library allocation
|
page read and write
|
||
|
343E000
|
trusted library allocation
|
page read and write
|
||
|
514E000
|
stack
|
page read and write
|
||
|
7780000
|
trusted library allocation
|
page read and write
|
||
|
138E000
|
stack
|
page read and write
|
||
|
30BF000
|
trusted library allocation
|
page read and write
|
||
|
2C1F000
|
trusted library allocation
|
page read and write
|
||
|
7A1B000
|
trusted library allocation
|
page read and write
|
||
|
655D000
|
heap
|
page read and write
|
||
|
58D0000
|
trusted library allocation
|
page read and write
|
||
|
782B000
|
stack
|
page read and write
|
||
|
6330000
|
trusted library allocation
|
page read and write
|
||
|
344B000
|
trusted library allocation
|
page read and write
|
||
|
C50000
|
heap
|
page read and write
|
||
|
6581000
|
heap
|
page read and write
|
||
|
6569000
|
heap
|
page read and write
|
||
|
344E000
|
trusted library allocation
|
page read and write
|
||
|
34DC000
|
trusted library allocation
|
page read and write
|
||
|
13D2000
|
trusted library allocation
|
page read and write
|
||
|
628E000
|
stack
|
page read and write
|
||
|
6546000
|
heap
|
page read and write
|
||
|
7430000
|
trusted library allocation
|
page execute and read and write
|
||
|
35D2000
|
trusted library allocation
|
page read and write
|
||
|
3456000
|
trusted library allocation
|
page read and write
|
||
|
114A000
|
heap
|
page read and write
|
||
|
13DA000
|
trusted library allocation
|
page execute and read and write
|
||
|
34D4000
|
trusted library allocation
|
page read and write
|
||
|
2C0D000
|
trusted library allocation
|
page read and write
|
||
|
35E1000
|
trusted library allocation
|
page read and write
|
||
|
1297000
|
heap
|
page read and write
|
||
|
127E000
|
stack
|
page read and write
|
||
|
5C00000
|
trusted library allocation
|
page read and write
|
||
|
359F000
|
trusted library allocation
|
page read and write
|
||
|
7030000
|
heap
|
page read and write
|
||
|
552F000
|
stack
|
page read and write
|
||
|
35D4000
|
trusted library allocation
|
page read and write
|
||
|
5BF5000
|
trusted library allocation
|
page read and write
|
||
|
7990000
|
trusted library allocation
|
page read and write
|
||
|
5570000
|
heap
|
page read and write
|
||
|
79BB000
|
trusted library allocation
|
page read and write
|
||
|
3303000
|
trusted library allocation
|
page read and write
|
||
|
5BD2000
|
trusted library allocation
|
page read and write
|
||
|
1270000
|
heap
|
page read and write
|
||
|
666C000
|
stack
|
page read and write
|
||
|
3D83000
|
trusted library allocation
|
page read and write
|
||
|
3387000
|
trusted library allocation
|
page read and write
|
||
|
641C000
|
heap
|
page read and write
|
||
|
62E0000
|
trusted library allocation
|
page execute and read and write
|
||
|
792D000
|
stack
|
page read and write
|
||
|
7BA0000
|
trusted library allocation
|
page execute and read and write
|
||
|
35EC000
|
trusted library allocation
|
page read and write
|
||
|
32FD000
|
trusted library allocation
|
page read and write
|
||
|
52EE000
|
stack
|
page read and write
|
||
|
2FB8000
|
trusted library allocation
|
page read and write
|
||
|
54B0000
|
trusted library allocation
|
page read and write
|
||
|
5D0E000
|
stack
|
page read and write
|
||
|
102E000
|
stack
|
page read and write
|
||
|
65BE000
|
heap
|
page read and write
|
||
|
5640000
|
trusted library allocation
|
page read and write
|
||
|
5505000
|
trusted library allocation
|
page read and write
|
||
|
338D000
|
trusted library allocation
|
page read and write
|
||
|
7AAE000
|
stack
|
page read and write
|
||
|
10F7000
|
stack
|
page read and write
|
||
|
3072000
|
trusted library allocation
|
page read and write
|
||
|
58F0000
|
trusted library section
|
page read and write
|
||
|
3071000
|
trusted library allocation
|
page read and write
|
||
|
7DE0000
|
trusted library allocation
|
page execute and read and write
|
||
|
777C000
|
trusted library allocation
|
page read and write
|
||
|
6340000
|
trusted library allocation
|
page read and write
|
||
|
510E000
|
stack
|
page read and write
|
||
|
1207000
|
heap
|
page read and write
|
||
|
5510000
|
trusted library allocation
|
page read and write
|
||
|
338B000
|
trusted library allocation
|
page read and write
|
||
|
6424000
|
heap
|
page read and write
|
||
|
30D6000
|
trusted library allocation
|
page read and write
|
||
|
346F000
|
trusted library allocation
|
page read and write
|
||
|
2AB0000
|
trusted library allocation
|
page read and write
|
||
|
352C000
|
trusted library allocation
|
page read and write
|
||
|
1410000
|
trusted library allocation
|
page execute and read and write
|
||
|
7B60000
|
trusted library allocation
|
page read and write
|
||
|
7750000
|
trusted library allocation
|
page read and write
|
||
|
30E3000
|
trusted library allocation
|
page read and write
|
||
|
65AB000
|
heap
|
page read and write
|
||
|
3087000
|
trusted library allocation
|
page read and write
|
||
|
65F0000
|
trusted library allocation
|
page read and write
|
||
|
54BB000
|
trusted library allocation
|
page read and write
|
||
|
70FF000
|
heap
|
page read and write
|
||
|
30BD000
|
trusted library allocation
|
page read and write
|
||
|
D10000
|
trusted library allocation
|
page read and write
|
||
|
1100000
|
heap
|
page read and write
|
||
|
5530000
|
trusted library allocation
|
page read and write
|
||
|
30D4000
|
trusted library allocation
|
page read and write
|
||
|
6390000
|
trusted library allocation
|
page execute and read and write
|
||
|
7AEE000
|
stack
|
page read and write
|
||
|
7020000
|
trusted library allocation
|
page read and write
|
||
|
7394000
|
trusted library allocation
|
page read and write
|
||
|
2B5D000
|
stack
|
page read and write
|
||
|
7036000
|
heap
|
page read and write
|
||
|
34AD000
|
trusted library allocation
|
page read and write
|
||
|
2AD0000
|
trusted library allocation
|
page read and write
|
||
|
5AAE000
|
stack
|
page read and write
|
||
|
63C0000
|
trusted library allocation
|
page read and write
|
||
|
7272000
|
trusted library allocation
|
page read and write
|
||
|
7C00000
|
trusted library allocation
|
page read and write
|
||
|
8650000
|
trusted library allocation
|
page execute and read and write
|
||
|
72B0000
|
trusted library allocation
|
page read and write
|
||
|
7C30000
|
trusted library allocation
|
page execute and read and write
|
||
|
30F3000
|
trusted library allocation
|
page read and write
|
||
|
D2D000
|
trusted library allocation
|
page execute and read and write
|
||
|
658B000
|
heap
|
page read and write
|
||
|
7B90000
|
trusted library allocation
|
page read and write
|
||
|
30A4000
|
trusted library allocation
|
page read and write
|
||
|
13CD000
|
trusted library allocation
|
page execute and read and write
|
||
|
7270000
|
trusted library allocation
|
page read and write
|
||
|
79C4000
|
trusted library allocation
|
page read and write
|
||
|
73DE000
|
stack
|
page read and write
|
||
|
5BE1000
|
trusted library allocation
|
page read and write
|
||
|
169E000
|
stack
|
page read and write
|
||
|
D3A000
|
trusted library allocation
|
page execute and read and write
|
||
|
4071000
|
trusted library allocation
|
page read and write
|
||
|
40A0000
|
trusted library allocation
|
page read and write
|
||
|
3578000
|
trusted library allocation
|
page read and write
|
||
|
5580000
|
trusted library allocation
|
page read and write
|
||
|
7B80000
|
trusted library allocation
|
page read and write
|
||
|
6585000
|
heap
|
page read and write
|
||
|
2B9E000
|
stack
|
page read and write
|
||
|
708C000
|
heap
|
page read and write
|
||
|
E00000
|
trusted library allocation
|
page execute and read and write
|
||
|
5C0E000
|
stack
|
page read and write
|
||
|
54D1000
|
trusted library allocation
|
page read and write
|
||
|
5FEC000
|
stack
|
page read and write
|
||
|
D32000
|
trusted library allocation
|
page read and write
|
||
|
8690000
|
trusted library allocation
|
page read and write
|
||
|
6F30000
|
heap
|
page read and write
|
||
|
6F20000
|
heap
|
page read and write
|
||
|
E72000
|
heap
|
page read and write
|
||
|
7770000
|
trusted library allocation
|
page read and write
|
||
|
3091000
|
trusted library allocation
|
page read and write
|
||
|
6539000
|
heap
|
page read and write
|
||
|
7EB000
|
stack
|
page read and write
|
||
|
79AF000
|
trusted library allocation
|
page read and write
|
||
|
587F000
|
stack
|
page read and write
|
||
|
1700000
|
heap
|
page read and write
|
||
|
30BB000
|
trusted library allocation
|
page read and write
|
||
|
3605000
|
trusted library allocation
|
page read and write
|
||
|
56C0000
|
trusted library allocation
|
page read and write
|
||
|
64E0000
|
heap
|
page read and write
|
||
|
30B9000
|
trusted library allocation
|
page read and write
|
||
|
7A60000
|
trusted library allocation
|
page execute and read and write
|
||
|
7A10000
|
trusted library allocation
|
page read and write
|
||
|
51E0000
|
heap
|
page execute and read and write
|
||
|
34B3000
|
trusted library allocation
|
page read and write
|
||
|
6610000
|
trusted library allocation
|
page execute and read and write
|
||
|
D67000
|
heap
|
page read and write
|
||
|
7295000
|
trusted library allocation
|
page read and write
|
||
|
5BF0000
|
trusted library allocation
|
page read and write
|
||
|
13B4000
|
trusted library allocation
|
page read and write
|
||
|
343C000
|
trusted library allocation
|
page read and write
|
||
|
11AD000
|
heap
|
page read and write
|
||
|
30DC000
|
trusted library allocation
|
page read and write
|
||
|
2FB0000
|
trusted library allocation
|
page read and write
|
||
|
650E000
|
heap
|
page read and write
|
||
|
7B9F000
|
trusted library allocation
|
page read and write
|
||
|
1400000
|
trusted library allocation
|
page read and write
|
||
|
58A0000
|
heap
|
page read and write
|
||
|
7AA0000
|
trusted library allocation
|
page read and write
|
||
|
D00000
|
trusted library allocation
|
page read and write
|
||
|
437000
|
remote allocation
|
page execute and read and write
|
||
|
13B0000
|
trusted library allocation
|
page read and write
|
||
|
30DE000
|
trusted library allocation
|
page read and write
|
||
|
79D1000
|
trusted library allocation
|
page read and write
|
||
|
7EE50000
|
trusted library allocation
|
page execute and read and write
|
||
|
13D0000
|
trusted library allocation
|
page read and write
|
||
|
B50000
|
heap
|
page read and write
|
||
|
63B0000
|
trusted library allocation
|
page read and write
|
||
|
729A000
|
trusted library allocation
|
page read and write
|
||
|
6464000
|
heap
|
page read and write
|
||
|
3BD8000
|
trusted library allocation
|
page read and write
|
||
|
770E000
|
stack
|
page read and write
|
||
|
C9E000
|
stack
|
page read and write
|
||
|
3507000
|
trusted library allocation
|
page read and write
|
||
|
3077000
|
trusted library allocation
|
page read and write
|
||
|
D60000
|
heap
|
page read and write
|
||
|
7390000
|
trusted library allocation
|
page read and write
|
||
|
D8A000
|
stack
|
page read and write
|
||
|
702D000
|
trusted library allocation
|
page read and write
|
||
|
308F000
|
trusted library allocation
|
page read and write
|
||
|
6536000
|
heap
|
page read and write
|
||
|
3541000
|
trusted library allocation
|
page read and write
|
||
|
7F50000
|
heap
|
page read and write
|
||
|
306E000
|
trusted library allocation
|
page read and write
|
||
|
1630000
|
trusted library allocation
|
page read and write
|
||
|
5645000
|
trusted library allocation
|
page read and write
|
||
|
8B6E000
|
stack
|
page read and write
|
||
|
2E44000
|
trusted library allocation
|
page read and write
|
||
|
E10000
|
trusted library allocation
|
page read and write
|
||
|
6552000
|
heap
|
page read and write
|
||
|
79A0000
|
trusted library allocation
|
page read and write
|
||
|
F25000
|
heap
|
page read and write
|
||
|
306C000
|
trusted library allocation
|
page read and write
|
||
|
75F2000
|
trusted library allocation
|
page read and write
|
||
|
3060000
|
heap
|
page read and write
|
||
|
30F1000
|
trusted library allocation
|
page read and write
|
||
|
65AE000
|
heap
|
page read and write
|
||
|
56B0000
|
trusted library allocation
|
page read and write
|
||
|
79B6000
|
trusted library allocation
|
page read and write
|
||
|
7790000
|
heap
|
page read and write
|
||
|
7067000
|
heap
|
page read and write
|
||
|
4091000
|
trusted library allocation
|
page read and write
|
||
|
656D000
|
heap
|
page read and write
|
||
|
1202000
|
heap
|
page read and write
|
||
|
13BD000
|
trusted library allocation
|
page execute and read and write
|
||
|
65DE000
|
heap
|
page read and write
|
||
|
40A5000
|
trusted library allocation
|
page read and write
|
||
|
68DC000
|
stack
|
page read and write
|
||
|
30A6000
|
trusted library allocation
|
page read and write
|
||
|
6F00000
|
trusted library allocation
|
page read and write
|
||
|
64E7000
|
heap
|
page read and write
|
||
|
2C01000
|
trusted library allocation
|
page read and write
|
||
|
7A90000
|
trusted library allocation
|
page read and write
|
||
|
3416000
|
trusted library allocation
|
page read and write
|
||
|
7CB0000
|
trusted library section
|
page read and write
|
||
|
6680000
|
trusted library allocation
|
page execute and read and write
|
||
|
7A01000
|
trusted library allocation
|
page read and write
|
||
|
35F7000
|
trusted library allocation
|
page read and write
|
||
|
58E0000
|
trusted library allocation
|
page execute and read and write
|
||
|
720000
|
unkown
|
page readonly
|
||
|
72C0000
|
trusted library allocation
|
page read and write
|
||
|
40AF000
|
trusted library allocation
|
page read and write
|
||
|
63B6000
|
heap
|
page read and write
|
||
|
572E000
|
stack
|
page read and write
|
||
|
342D000
|
trusted library allocation
|
page read and write
|
||
|
34C7000
|
trusted library allocation
|
page read and write
|
||
|
3512000
|
trusted library allocation
|
page read and write
|
||
|
54B4000
|
trusted library allocation
|
page read and write
|
||
|
65C9000
|
heap
|
page read and write
|
||
|
AF7000
|
stack
|
page read and write
|
||
|
70E5000
|
heap
|
page read and write
|
||
|
112E000
|
stack
|
page read and write
|
||
|
3448000
|
trusted library allocation
|
page read and write
|
||
|
D47000
|
trusted library allocation
|
page execute and read and write
|
||
|
726000
|
unkown
|
page readonly
|
||
|
6555000
|
heap
|
page read and write
|
||
|
79C0000
|
trusted library allocation
|
page read and write
|
||
|
1640000
|
trusted library allocation
|
page read and write
|
||
|
741E000
|
stack
|
page read and write
|
||
|
35E4000
|
trusted library allocation
|
page read and write
|
||
|
722000
|
unkown
|
page readonly
|
||
|
72A4000
|
trusted library allocation
|
page read and write
|
||
|
1707000
|
heap
|
page read and write
|
||
|
13E0000
|
trusted library allocation
|
page read and write
|
||
|
3539000
|
trusted library allocation
|
page read and write
|
||
|
7A30000
|
trusted library allocation
|
page read and write
|
||
|
7940000
|
heap
|
page read and write
|
||
|
729F000
|
trusted library allocation
|
page read and write
|
||
|
EE6000
|
heap
|
page read and write
|
||
|
5BAE000
|
stack
|
page read and write
|
||
|
67DE000
|
stack
|
page read and write
|
||
|
D36000
|
trusted library allocation
|
page execute and read and write
|
||
|
DF0000
|
heap
|
page read and write
|
||
|
3477000
|
trusted library allocation
|
page read and write
|
||
|
2BC0000
|
heap
|
page read and write
|
||
|
3CB4000
|
trusted library allocation
|
page read and write
|
||
|
7A60000
|
trusted library allocation
|
page execute and read and write
|
||
|
6600000
|
trusted library allocation
|
page read and write
|
||
|
30A8000
|
trusted library allocation
|
page read and write
|
||
|
30C5000
|
trusted library allocation
|
page read and write
|
||
|
72B5000
|
trusted library allocation
|
page read and write
|
||
|
D1D000
|
trusted library allocation
|
page execute and read and write
|
||
|
30AA000
|
trusted library allocation
|
page read and write
|
||
|
72E0000
|
trusted library allocation
|
page execute and read and write
|
||
|
54E2000
|
trusted library allocation
|
page read and write
|
||
|
11CD000
|
heap
|
page read and write
|
||
|
79B0000
|
trusted library allocation
|
page read and write
|
||
|
152E000
|
stack
|
page read and write
|
||
|
13A0000
|
trusted library allocation
|
page read and write
|
||
|
3515000
|
trusted library allocation
|
page read and write
|
||
|
D14000
|
trusted library allocation
|
page read and write
|
||
|
580E000
|
stack
|
page read and write
|
||
|
34B0000
|
trusted library allocation
|
page read and write
|
||
|
13D6000
|
trusted library allocation
|
page execute and read and write
|
||
|
11B5000
|
heap
|
page read and write
|
||
|
5BC6000
|
trusted library allocation
|
page read and write
|
||
|
56D0000
|
heap
|
page execute and read and write
|
||
|
51CE000
|
stack
|
page read and write
|
||
|
4CCE000
|
stack
|
page read and write
|
||
|
2F3A000
|
trusted library allocation
|
page read and write
|
||
|
577E000
|
stack
|
page read and write
|
||
|
11A7000
|
heap
|
page read and write
|
||
|
60ED000
|
stack
|
page read and write
|
||
|
40B3000
|
trusted library allocation
|
page read and write
|
||
|
3089000
|
trusted library allocation
|
page read and write
|
||
|
444F000
|
trusted library allocation
|
page read and write
|
||
|
429D000
|
trusted library allocation
|
page read and write
|
||
|
702A000
|
trusted library allocation
|
page read and write
|
||
|
651C000
|
heap
|
page read and write
|
||
|
65A3000
|
heap
|
page read and write
|
||
|
3085000
|
trusted library allocation
|
page read and write
|
||
|
2FA8000
|
trusted library allocation
|
page read and write
|
||
|
1290000
|
heap
|
page read and write
|
||
|
30F7000
|
trusted library allocation
|
page read and write
|
||
|
7BB0000
|
trusted library allocation
|
page read and write
|
||
|
5BFB000
|
trusted library allocation
|
page read and write
|
||
|
7288000
|
trusted library allocation
|
page read and write
|
||
|
3BD1000
|
trusted library allocation
|
page read and write
|
||
|
1128000
|
heap
|
page read and write
|
||
|
35A7000
|
trusted library allocation
|
page read and write
|
||
|
30D8000
|
trusted library allocation
|
page read and write
|
||
|
655B000
|
heap
|
page read and write
|
||
|
54DD000
|
trusted library allocation
|
page read and write
|
||
|
51D0000
|
trusted library allocation
|
page read and write
|
||
|
4099000
|
trusted library allocation
|
page read and write
|
||
|
D13000
|
trusted library allocation
|
page execute and read and write
|
||
|
3424000
|
trusted library allocation
|
page read and write
|
||
|
330B000
|
trusted library allocation
|
page read and write
|
||
|
2B1E000
|
stack
|
page read and write
|
||
|
5582000
|
trusted library allocation
|
page read and write
|
||
|
54CE000
|
trusted library allocation
|
page read and write
|
||
|
16DC000
|
stack
|
page read and write
|
||
|
EDF000
|
heap
|
page read and write
|
||
|
40AC000
|
trusted library allocation
|
page read and write
|
||
|
30A2000
|
trusted library allocation
|
page read and write
|
||
|
1650000
|
heap
|
page execute and read and write
|
||
|
3093000
|
trusted library allocation
|
page read and write
|
||
|
1120000
|
heap
|
page read and write
|
||
|
3461000
|
trusted library allocation
|
page read and write
|
||
|
72B2000
|
trusted library allocation
|
page read and write
|
||
|
6620000
|
trusted library allocation
|
page execute and read and write
|
||
|
678C000
|
stack
|
page read and write
|
There are 489 hidden memdumps, click here to show them.