Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
selup_4.55.exe
|
PE32 executable (console) Intel 80386 Mono/.Net assembly, for MS Windows
|
initial sample
|
||
C:\Users\user\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\selup_4.55.exe.log
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Roaming\d3d9.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\MSBuild.exe.log
|
ASCII text, with CRLF line terminators
|
dropped
|
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Users\user\Desktop\selup_4.55.exe
|
"C:\Users\user\Desktop\selup_4.55.exe"
|
||
C:\Windows\Microsoft.NET\Framework\v4.0.30319\MSBuild.exe
|
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\MSBuild.exe"
|
||
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
5.42.104.154:6448
|
|||
http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Text
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/sc/sct
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/04/security/sc/dk
|
unknown
|
||
http://tempuri.org/Entity/Id23ResponseD
|
unknown
|
||
http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#HexBinary
|
unknown
|
||
http://tempuri.org/Entity/Id12Response
|
unknown
|
||
http://tempuri.org/
|
unknown
|
||
http://tempuri.org/Entity/Id2Response
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/sc/dk/p_sha1
|
unknown
|
||
http://tempuri.org/Entity/Id21Response
|
unknown
|
||
http://schemas.xmlsoap.org/2005/02/trust/spnego#GSS_Wrap
|
unknown
|
||
http://tempuri.org/Entity/Id9
|
unknown
|
||
http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLID
|
unknown
|
||
http://tempuri.org/Entity/Id8
|
unknown
|
||
http://tempuri.org/Entity/Id5
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/10/wsat/Prepare
|
unknown
|
||
http://tempuri.org/Entity/Id4
|
unknown
|
||
http://tempuri.org/Entity/Id7
|
unknown
|
||
http://tempuri.org/Entity/Id6
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/trust#BinarySecret
|
unknown
|
||
http://tempuri.org/Entity/Id19Response
|
unknown
|
||
http://docs.oasis-open.org/wss/oasis-wss-rel-token-profile-1.0.pdf#license
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/trust/RSTR/Issue
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/10/wsat/Aborted
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/rm/TerminateSequence
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/10/wsat/fault
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/10/wsat
|
unknown
|
||
http://docs.oasis-open.org/wss/oasis-wss-soap-message-security-1.1#EncryptedKey
|
unknown
|
||
http://tempuri.org/Entity/Id15Response
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/trust/RSTR/SCT/Renew
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/10/wscoor/Register
|
unknown
|
||
http://tempuri.org/Entity/Id6Response
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/04/trust/SymmetricKey
|
unknown
|
||
https://api.ip.sb/ip
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/04/sc
|
unknown
|
||
http://tempuri.org/Entity/Id1ResponseD
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/10/wsat/Volatile2PC
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/trust/RSTR/SCT/Cancel
|
unknown
|
||
http://tempuri.org/Entity/Id9Response
|
unknown
|
||
http://tempuri.org/Entity/Id20
|
unknown
|
||
http://tempuri.org/Entity/Id21
|
unknown
|
||
http://tempuri.org/Entity/Id22
|
unknown
|
||
http://docs.oasis-open.org/wss/oasis-wss-kerberos-token-profile-1.1#Kerberosv5APREQSHA1
|
unknown
|
||
http://tempuri.org/Entity/Id23
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/04/security/trust/CK/PSHA1
|
unknown
|
||
http://tempuri.org/Entity/Id24
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/04/security/trust/RSTR/Issue
|
unknown
|
||
http://tempuri.org/Entity/Id24Response
|
unknown
|
||
http://tempuri.org/Entity/Id1Response
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/rm/AckRequested
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/10/wsat/ReadOnly
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/10/wsat/Replay
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/trust/tlsnego
|
unknown
|
||
http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/10/wsat/Durable2PC
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/04/security/trust/SymmetricKey
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/08/addressing
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Issue
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/10/wsat/Completion
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/04/trust
|
unknown
|
||
http://tempuri.org/Entity/Id10
|
unknown
|
||
http://tempuri.org/Entity/Id11
|
unknown
|
||
http://tempuri.org/Entity/Id12
|
unknown
|
||
http://tempuri.org/Entity/Id16Response
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/10/wscoor/CreateCoordinationContextResponse
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/trust/RST/SCT/Cancel
|
unknown
|
||
http://tempuri.org/Entity/Id13
|
unknown
|
||
http://tempuri.org/Entity/Id14
|
unknown
|
||
http://tempuri.org/Entity/Id15
|
unknown
|
||
http://tempuri.org/Entity/Id16
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/trust/Nonce
|
unknown
|
||
http://tempuri.org/Entity/Id17
|
unknown
|
||
http://tempuri.org/Entity/Id18
|
unknown
|
||
http://tempuri.org/Entity/Id5Response
|
unknown
|
||
http://tempuri.org/Entity/Id19
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/dns
|
unknown
|
||
http://tempuri.org/Entity/Id10Response
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/trust/Renew
|
unknown
|
||
http://tempuri.org/Entity/Id8Response
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/04/trust/PublicKey
|
unknown
|
||
http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV2.0
|
unknown
|
||
http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.0#SAMLAssertionID
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/04/security/trust/RST/SCT
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2006/02/addressingidentity
|
unknown
|
||
http://schemas.xmlsoap.org/soap/envelope/
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/trust/PublicKey
|
unknown
|
||
http://docs.oasis-open.org/wss/oasis-wss-soap-message-security-1.1#EncryptedKeySHA1
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/trust
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/10/wsat/Rollback
|
unknown
|
||
http://tempuri.org/Entity/Id3ResponseD
|
unknown
|
||
http://tempuri.org/Entity/Id23Response
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/04/security/trust/RSTR/SCT
|
unknown
|
||
http://tempuri.org/D
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/06/addressingex
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/10/wscoor
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/04/security/trust/Nonce
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/rm/CreateSequenceResponse
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/08/addressing/fault
|
unknown
|
There are 90 hidden URLs, click here to show them.
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
bg.microsoft.map.fastly.net
|
199.232.214.172
|
||
time.windows.com
|
unknown
|
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
5.42.104.154
|
unknown
|
Russian Federation
|
Registry
Path
|
Value
|
Malicious
|
|
---|---|---|---|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\RestartManager\Session0000
|
Owner
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\RestartManager\Session0000
|
SessionHash
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\RestartManager\Session0000
|
Sequence
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\RestartManager\Session0000
|
RegFiles0000
|
||
HKEY_CURRENT_USER\SOFTWARE\Microsoft\RestartManager\Session0000
|
RegFilesHash
|
Memdumps
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
---|---|---|---|---|
6D893000
|
unkown
|
page read and write
|
||
2FF4000
|
trusted library allocation
|
page read and write
|
||
2F61000
|
trusted library allocation
|
page read and write
|
||
402000
|
remote allocation
|
page execute and read and write
|
||
34DE000
|
trusted library allocation
|
page read and write
|
||
5A63000
|
heap
|
page read and write
|
||
3FE6000
|
trusted library allocation
|
page read and write
|
||
40F3000
|
trusted library allocation
|
page read and write
|
||
66B9000
|
trusted library allocation
|
page read and write
|
||
6E12000
|
heap
|
page read and write
|
||
1495000
|
trusted library allocation
|
page execute and read and write
|
||
114E000
|
heap
|
page read and write
|
||
25A0000
|
heap
|
page read and write
|
||
33D5000
|
trusted library allocation
|
page read and write
|
||
6FB000
|
stack
|
page read and write
|
||
AEF000
|
stack
|
page read and write
|
||
2D80000
|
heap
|
page read and write
|
||
6EFB000
|
heap
|
page read and write
|
||
6630000
|
trusted library allocation
|
page read and write
|
||
1005000
|
heap
|
page read and write
|
||
57B0000
|
trusted library allocation
|
page read and write
|
||
5570000
|
trusted library allocation
|
page read and write
|
||
7120000
|
trusted library allocation
|
page read and write
|
||
725F000
|
stack
|
page read and write
|
||
1354000
|
trusted library allocation
|
page read and write
|
||
752F000
|
stack
|
page read and write
|
||
351C000
|
trusted library allocation
|
page read and write
|
||
54EB000
|
trusted library allocation
|
page read and write
|
||
3F61000
|
trusted library allocation
|
page read and write
|
||
7012000
|
trusted library allocation
|
page read and write
|
||
74AF000
|
stack
|
page read and write
|
||
6EA5000
|
heap
|
page read and write
|
||
5425000
|
trusted library allocation
|
page read and write
|
||
6D10000
|
heap
|
page read and write
|
||
62CF000
|
stack
|
page read and write
|
||
3FBB000
|
trusted library allocation
|
page read and write
|
||
34C000
|
unkown
|
page readonly
|
||
2D24000
|
trusted library allocation
|
page read and write
|
||
2E35000
|
trusted library allocation
|
page read and write
|
||
36B1000
|
trusted library allocation
|
page read and write
|
||
897000
|
heap
|
page read and write
|
||
1360000
|
heap
|
page read and write
|
||
34B2000
|
trusted library allocation
|
page read and write
|
||
2D20000
|
trusted library allocation
|
page read and write
|
||
55F0000
|
trusted library allocation
|
page read and write
|
||
7015000
|
trusted library allocation
|
page read and write
|
||
6EA2000
|
heap
|
page read and write
|
||
582E000
|
stack
|
page read and write
|
||
1353000
|
trusted library allocation
|
page execute and read and write
|
||
1497000
|
trusted library allocation
|
page execute and read and write
|
||
772E000
|
stack
|
page read and write
|
||
70E0000
|
trusted library allocation
|
page read and write
|
||
11F8000
|
heap
|
page read and write
|
||
147D000
|
trusted library allocation
|
page execute and read and write
|
||
B80000
|
heap
|
page read and write
|
||
149B000
|
trusted library allocation
|
page execute and read and write
|
||
414E000
|
trusted library allocation
|
page read and write
|
||
6657000
|
trusted library allocation
|
page read and write
|
||
890F000
|
stack
|
page read and write
|
||
64DC000
|
stack
|
page read and write
|
||
9C4000
|
trusted library allocation
|
page read and write
|
||
3F94000
|
trusted library allocation
|
page read and write
|
||
3F81000
|
trusted library allocation
|
page read and write
|
||
B47000
|
trusted library allocation
|
page execute and read and write
|
||
931000
|
heap
|
page read and write
|
||
4B00000
|
trusted library section
|
page read and write
|
||
870000
|
heap
|
page read and write
|
||
24C0000
|
heap
|
page execute and read and write
|
||
135D000
|
trusted library allocation
|
page execute and read and write
|
||
7048F000
|
unkown
|
page readonly
|
||
FC0000
|
heap
|
page read and write
|
||
3538000
|
trusted library allocation
|
page read and write
|
||
2D52000
|
trusted library allocation
|
page read and write
|
||
7770000
|
heap
|
page read and write
|
||
5502000
|
trusted library allocation
|
page read and write
|
||
1470000
|
trusted library allocation
|
page read and write
|
||
5770000
|
trusted library allocation
|
page read and write
|
||
33BA000
|
trusted library allocation
|
page read and write
|
||
542A000
|
trusted library allocation
|
page read and write
|
||
57D0000
|
trusted library allocation
|
page execute and read and write
|
||
2E40000
|
trusted library allocation
|
page read and write
|
||
153C000
|
stack
|
page read and write
|
||
5400000
|
trusted library allocation
|
page read and write
|
||
54F1000
|
trusted library allocation
|
page read and write
|
||
58B0000
|
trusted library allocation
|
page execute and read and write
|
||
6E37000
|
heap
|
page read and write
|
||
6E1C000
|
heap
|
page read and write
|
||
70471000
|
unkown
|
page execute read
|
||
66DA000
|
trusted library allocation
|
page read and write
|
||
8B1000
|
heap
|
page read and write
|
||
B70000
|
trusted library allocation
|
page execute and read and write
|
||
76AB000
|
stack
|
page read and write
|
||
24AE000
|
stack
|
page read and write
|
||
5AB3000
|
heap
|
page read and write
|
||
66B0000
|
trusted library allocation
|
page read and write
|
||
8D0000
|
heap
|
page read and write
|
||
2D70000
|
trusted library allocation
|
page read and write
|
||
5590000
|
trusted library allocation
|
page read and write
|
||
6D8D4000
|
unkown
|
page read and write
|
||
B2E000
|
stack
|
page read and write
|
||
66C8000
|
trusted library allocation
|
page read and write
|
||
26AE000
|
stack
|
page read and write
|
||
3405000
|
trusted library allocation
|
page read and write
|
||
40FB000
|
trusted library allocation
|
page read and write
|
||
2D00000
|
trusted library allocation
|
page read and write
|
||
5A67000
|
heap
|
page read and write
|
||
3557000
|
trusted library allocation
|
page read and write
|
||
70F0000
|
trusted library allocation
|
page read and write
|
||
5402000
|
trusted library allocation
|
page read and write
|
||
70486000
|
unkown
|
page readonly
|
||
9D0000
|
trusted library allocation
|
page read and write
|
||
14FE000
|
stack
|
page read and write
|
||
5620000
|
heap
|
page execute and read and write
|
||
756E000
|
stack
|
page read and write
|
||
3FA3000
|
trusted library allocation
|
page read and write
|
||
54E0000
|
trusted library allocation
|
page read and write
|
||
5A74000
|
heap
|
page read and write
|
||
735000
|
heap
|
page read and write
|
||
5600000
|
trusted library allocation
|
page read and write
|
||
5780000
|
trusted library allocation
|
page read and write
|
||
5A2C000
|
heap
|
page read and write
|
||
6D8DF000
|
unkown
|
page readonly
|
||
430000
|
remote allocation
|
page execute and read and write
|
||
4C5F000
|
stack
|
page read and write
|
||
57E0000
|
heap
|
page execute and read and write
|
||
2D4D000
|
trusted library allocation
|
page read and write
|
||
2D10000
|
trusted library allocation
|
page read and write
|
||
787E000
|
stack
|
page read and write
|
||
1340000
|
trusted library allocation
|
page read and write
|
||
8D10000
|
heap
|
page read and write
|
||
154E000
|
heap
|
page read and write
|
||
7130000
|
trusted library allocation
|
page read and write
|
||
1480000
|
trusted library allocation
|
page read and write
|
||
2570000
|
heap
|
page read and write
|
||
61CF000
|
stack
|
page read and write
|
||
2E30000
|
trusted library allocation
|
page read and write
|
||
926000
|
heap
|
page read and write
|
||
3359000
|
trusted library allocation
|
page read and write
|
||
9D4000
|
trusted library allocation
|
page read and write
|
||
5A50000
|
heap
|
page read and write
|
||
43D3000
|
trusted library allocation
|
page read and write
|
||
750000
|
heap
|
page read and write
|
||
66CA000
|
trusted library allocation
|
page read and write
|
||
5555000
|
trusted library allocation
|
page read and write
|
||
6E18000
|
heap
|
page read and write
|
||
6E65000
|
heap
|
page read and write
|
||
30F1000
|
trusted library allocation
|
page read and write
|
||
55D0000
|
trusted library allocation
|
page read and write
|
||
26B8000
|
trusted library allocation
|
page read and write
|
||
3493000
|
trusted library allocation
|
page read and write
|
||
3DC000
|
stack
|
page read and write
|
||
6D871000
|
unkown
|
page execute read
|
||
2D7E000
|
trusted library allocation
|
page read and write
|
||
9B0000
|
trusted library allocation
|
page read and write
|
||
5511000
|
trusted library allocation
|
page read and write
|
||
C8E000
|
stack
|
page read and write
|
||
6E2C000
|
heap
|
page read and write
|
||
5428000
|
trusted library allocation
|
page read and write
|
||
53F0000
|
heap
|
page read and write
|
||
63D0000
|
trusted library allocation
|
page execute and read and write
|
||
5560000
|
heap
|
page read and write
|
||
87E000
|
heap
|
page read and write
|
||
34CC000
|
trusted library allocation
|
page read and write
|
||
5B0C000
|
stack
|
page read and write
|
||
FBE000
|
stack
|
page read and write
|
||
66D5000
|
trusted library allocation
|
page read and write
|
||
7048D000
|
unkown
|
page read and write
|
||
76C0000
|
trusted library allocation
|
page read and write
|
||
70470000
|
unkown
|
page readonly
|
||
5A60000
|
heap
|
page read and write
|
||
5520000
|
trusted library allocation
|
page read and write
|
||
40F6000
|
trusted library allocation
|
page read and write
|
||
66A0000
|
trusted library allocation
|
page read and write
|
||
3EB5000
|
trusted library allocation
|
page read and write
|
||
1482000
|
trusted library allocation
|
page read and write
|
||
2D41000
|
trusted library allocation
|
page read and write
|
||
1350000
|
trusted library allocation
|
page read and write
|
||
7020000
|
trusted library allocation
|
page read and write
|
||
33B2000
|
trusted library allocation
|
page read and write
|
||
3410000
|
trusted library allocation
|
page read and write
|
||
33C8000
|
trusted library allocation
|
page read and write
|
||
6E45000
|
heap
|
page read and write
|
||
1547000
|
heap
|
page read and write
|
||
5623000
|
heap
|
page execute and read and write
|
||
F37000
|
stack
|
page read and write
|
||
352F000
|
trusted library allocation
|
page read and write
|
||
116C000
|
heap
|
page read and write
|
||
4B5E000
|
stack
|
page read and write
|
||
550E000
|
trusted library allocation
|
page read and write
|
||
6E95000
|
heap
|
page read and write
|
||
30E6000
|
trusted library allocation
|
page read and write
|
||
2F5E000
|
stack
|
page read and write
|
||
70F4000
|
trusted library allocation
|
page read and write
|
||
146F000
|
stack
|
page read and write
|
||
354B000
|
trusted library allocation
|
page read and write
|
||
33FB000
|
trusted library allocation
|
page read and write
|
||
89C000
|
heap
|
page read and write
|
||
6E54000
|
heap
|
page read and write
|
||
34A5000
|
trusted library allocation
|
page read and write
|
||
3118000
|
trusted library allocation
|
page read and write
|
||
304000
|
unkown
|
page readonly
|
||
5550000
|
trusted library allocation
|
page read and write
|
||
1000000
|
heap
|
page read and write
|
||
5410000
|
trusted library allocation
|
page execute and read and write
|
||
2590000
|
trusted library allocation
|
page read and write
|
||
3F6F000
|
trusted library allocation
|
page read and write
|
||
1486000
|
trusted library allocation
|
page execute and read and write
|
||
6D870000
|
unkown
|
page readonly
|
||
54F6000
|
trusted library allocation
|
page read and write
|
||
5AA0000
|
heap
|
page read and write
|
||
1224000
|
heap
|
page read and write
|
||
57C0000
|
trusted library allocation
|
page read and write
|
||
246E000
|
stack
|
page read and write
|
||
1130000
|
heap
|
page read and write
|
||
7048D000
|
unkown
|
page read and write
|
||
413D000
|
trusted library allocation
|
page read and write
|
||
4101000
|
trusted library allocation
|
page read and write
|
||
355C000
|
trusted library allocation
|
page read and write
|
||
115A000
|
heap
|
page read and write
|
||
5420000
|
trusted library allocation
|
page read and write
|
||
63CF000
|
stack
|
page read and write
|
||
34BF000
|
trusted library allocation
|
page read and write
|
||
3400000
|
trusted library allocation
|
page read and write
|
||
710C000
|
trusted library allocation
|
page read and write
|
||
4115000
|
trusted library allocation
|
page read and write
|
||
6D88C000
|
unkown
|
page readonly
|
||
76D0000
|
heap
|
page read and write
|
||
40ED000
|
trusted library allocation
|
page read and write
|
||
505B000
|
stack
|
page read and write
|
||
34D3000
|
trusted library allocation
|
page read and write
|
||
9E0000
|
heap
|
page read and write
|
||
9C3000
|
trusted library allocation
|
page execute and read and write
|
||
34E5000
|
trusted library allocation
|
page read and write
|
||
33E2000
|
trusted library allocation
|
page read and write
|
||
40F9000
|
trusted library allocation
|
page read and write
|
||
59D8000
|
heap
|
page read and write
|
||
55E0000
|
trusted library allocation
|
page execute and read and write
|
||
7100000
|
trusted library allocation
|
page read and write
|
||
2D3E000
|
trusted library allocation
|
page read and write
|
||
33E9000
|
trusted library allocation
|
page read and write
|
||
30EE000
|
trusted library allocation
|
page read and write
|
||
59E0000
|
heap
|
page read and write
|
||
148A000
|
trusted library allocation
|
page execute and read and write
|
||
555B000
|
trusted library allocation
|
page read and write
|
||
551A000
|
trusted library allocation
|
page read and write
|
||
14B0000
|
trusted library allocation
|
page read and write
|
||
5AB8000
|
heap
|
page read and write
|
||
3506000
|
trusted library allocation
|
page read and write
|
||
1F2000
|
unkown
|
page readonly
|
||
6E10000
|
heap
|
page read and write
|
||
66E0000
|
trusted library allocation
|
page read and write
|
||
154A000
|
heap
|
page read and write
|
||
1138000
|
heap
|
page read and write
|
||
55A0000
|
trusted library allocation
|
page read and write
|
||
34EB000
|
trusted library allocation
|
page read and write
|
||
6D20000
|
heap
|
page read and write
|
||
70DF000
|
stack
|
page read and write
|
||
FE0000
|
heap
|
page read and write
|
||
32B000
|
unkown
|
page readonly
|
||
5790000
|
trusted library allocation
|
page execute and read and write
|
||
B4B000
|
trusted library allocation
|
page execute and read and write
|
||
2D60000
|
trusted library allocation
|
page read and write
|
||
71DE000
|
stack
|
page read and write
|
||
830000
|
heap
|
page read and write
|
||
5A87000
|
heap
|
page read and write
|
||
5610000
|
trusted library allocation
|
page execute and read and write
|
||
6E8D000
|
heap
|
page read and write
|
||
7010000
|
trusted library allocation
|
page read and write
|
||
2D98000
|
trusted library allocation
|
page read and write
|
||
766E000
|
stack
|
page read and write
|
||
335D000
|
trusted library allocation
|
page read and write
|
||
1490000
|
trusted library allocation
|
page read and write
|
||
5AAD000
|
heap
|
page read and write
|
||
6E3E000
|
heap
|
page read and write
|
||
66DF000
|
trusted library allocation
|
page read and write
|
||
34F0000
|
trusted library allocation
|
page read and write
|
||
11EB000
|
heap
|
page read and write
|
||
40EA000
|
trusted library allocation
|
page read and write
|
||
59D0000
|
heap
|
page read and write
|
||
26B1000
|
trusted library allocation
|
page read and write
|
||
66CF000
|
trusted library allocation
|
page read and write
|
||
586E000
|
stack
|
page read and write
|
||
57A0000
|
heap
|
page read and write
|
||
2E50000
|
heap
|
page execute and read and write
|
||
1540000
|
heap
|
page read and write
|
||
111E000
|
stack
|
page read and write
|
||
652E000
|
stack
|
page read and write
|
||
7090000
|
trusted library allocation
|
page execute and read and write
|
||
5530000
|
trusted library allocation
|
page read and write
|
||
1F0000
|
unkown
|
page readonly
|
||
5ACB000
|
heap
|
page read and write
|
||
435000
|
remote allocation
|
page execute and read and write
|
||
665A000
|
trusted library allocation
|
page read and write
|
||
5760000
|
trusted library allocation
|
page execute and read and write
|
||
34FB000
|
trusted library allocation
|
page read and write
|
||
7110000
|
trusted library allocation
|
page execute and read and write
|
||
349D000
|
trusted library allocation
|
page read and write
|
||
E3A000
|
stack
|
page read and write
|
||
66B5000
|
trusted library allocation
|
page read and write
|
||
33CA000
|
trusted library allocation
|
page read and write
|
||
33F4000
|
trusted library allocation
|
page read and write
|
||
66E4000
|
trusted library allocation
|
page read and write
|
||
66B2000
|
trusted library allocation
|
page read and write
|
||
4B10000
|
heap
|
page execute and read and write
|
||
58AE000
|
stack
|
page read and write
|
||
2D46000
|
trusted library allocation
|
page read and write
|
||
5541000
|
trusted library allocation
|
page read and write
|
||
341C000
|
trusted library allocation
|
page read and write
|
||
32A1000
|
trusted library allocation
|
page read and write
|
||
555E000
|
trusted library allocation
|
page read and write
|
||
3561000
|
trusted library allocation
|
page read and write
|
||
2D2B000
|
trusted library allocation
|
page read and write
|
||
24B0000
|
trusted library allocation
|
page read and write
|
||
76B0000
|
trusted library allocation
|
page execute and read and write
|
||
5A12000
|
heap
|
page read and write
|
||
662C000
|
stack
|
page read and write
|
||
2CF0000
|
trusted library allocation
|
page execute and read and write
|
||
3542000
|
trusted library allocation
|
page read and write
|
||
9AE000
|
stack
|
page read and write
|
||
8A4000
|
heap
|
page read and write
|
||
47AE000
|
stack
|
page read and write
|
||
730000
|
heap
|
page read and write
|
||
74EE000
|
stack
|
page read and write
|
||
5563000
|
heap
|
page read and write
|
||
FFCD0000
|
trusted library allocation
|
page execute and read and write
|
||
403B000
|
trusted library allocation
|
page read and write
|
||
708D000
|
stack
|
page read and write
|
||
6650000
|
trusted library allocation
|
page read and write
|
||
444000
|
remote allocation
|
page execute and read and write
|
||
400000
|
remote allocation
|
page execute and read and write
|
||
715E000
|
stack
|
page read and write
|
||
3567000
|
trusted library allocation
|
page read and write
|
||
F70000
|
heap
|
page read and write
|
||
33A9000
|
trusted library allocation
|
page read and write
|
||
1492000
|
trusted library allocation
|
page read and write
|
||
8DA000
|
heap
|
page read and write
|
||
5A96000
|
heap
|
page read and write
|
||
132E000
|
stack
|
page read and write
|
||
8D26000
|
heap
|
page read and write
|
||
5580000
|
trusted library allocation
|
page read and write
|
||
6EB6000
|
heap
|
page read and write
|
||
6E7B000
|
heap
|
page read and write
|
||
7260000
|
trusted library allocation
|
page read and write
|
||
53B0000
|
trusted library allocation
|
page read and write
|
There are 334 hidden memdumps, click here to show them.