Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
SecuriteInfo.com.Trojan.Siggen19.32881.11458.27179.exe
|
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
|
initial sample
|
||
C:\Users\user\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\SecuriteInfo.com.Trojan.Siggen19.32881.11458.27179.exe.log
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\Pipppuccxtivwagftpb-grenn - reddomain-obufcastesolution.exe
|
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
|
dropped
|
||
C:\Users\user\AppData\Roaming\BREbererbFEcAC\brwber.EXE
|
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
|
dropped
|
||
C:\Users\user\AppData\Roaming\BREbererbFEcAC\brwber.EXE:Zone.Identifier
|
ASCII text, with CRLF line terminators
|
dropped
|
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Users\user\Desktop\SecuriteInfo.com.Trojan.Siggen19.32881.11458.27179.exe
|
"C:\Users\user\Desktop\SecuriteInfo.com.Trojan.Siggen19.32881.11458.27179.exe"
|
||
C:\Users\user\AppData\Local\Temp\Pipppuccxtivwagftpb-grenn - reddomain-obufcastesolution.exe
|
"C:\Users\user\AppData\Local\Temp\Pipppuccxtivwagftpb-grenn - reddomain-obufcastesolution.exe"
|
||
C:\Windows\Microsoft.NET\Framework\v4.0.30319\InstallUtil.exe
|
C:\Windows\Microsoft.NET\Framework\v4.0.30319\InstallUtil.exe
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
http://update-checker-status.cc
|
unknown
|
||
http://update-checker-status.ccd
|
unknown
|
||
http://update-checker-status.cc/OCB-Async.txtd
|
unknown
|
||
null
|
|||
amrican-sport-live-stream.cc:4581
|
|||
http://update-checker-status.cc/OCB-Async.txt
|
185.99.135.162
|
||
http://tempuri.org/Entity/Id20LR
|
unknown
|
||
http://tempuri.org/Entity/Id12Response
|
unknown
|
||
http://tempuri.org/
|
unknown
|
||
http://tempuri.org/Entity/Id2Response
|
unknown
|
||
http://tempuri.org/Entity/Id21Response
|
unknown
|
||
http://tempuri.org/Entity/Id9
|
unknown
|
||
http://tempuri.org/Entity/Id8
|
unknown
|
||
http://tempuri.org/Entity/Id5
|
unknown
|
||
http://tempuri.org/Entity/Id4
|
unknown
|
||
http://tempuri.org/Entity/Id17LR
|
unknown
|
||
http://tempuri.org/Entity/Id7
|
unknown
|
||
http://tempuri.org/Entity/Id6
|
unknown
|
||
http://tempuri.org/Entity/Id9LR
|
unknown
|
||
http://tempuri.org/Entity/Id19Response
|
unknown
|
||
http://tempuri.org/Entity/Id13LR
|
unknown
|
||
http://tempuri.org/Entity/Id1LR
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/rm/TerminateSequence
|
unknown
|
||
http://tempuri.org/Entity/Id5LR
|
unknown
|
||
http://tempuri.org/Entity/Id15Response
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
|
unknown
|
||
http://tempuri.org/Entity/Id6Response
|
unknown
|
||
https://api.ip.sb/ip
|
unknown
|
||
http://tempuri.org/Entity/Id21LR
|
unknown
|
||
http://tempuri.org/Entity/Id11on
|
unknown
|
||
http://tempuri.org/Entity/Id9Response
|
unknown
|
||
http://tempuri.org/Entity/Id20
|
unknown
|
||
http://tempuri.org/Entity/Id21
|
unknown
|
||
http://tempuri.org/Entity/Id22
|
unknown
|
||
http://tempuri.org/Entity/Id1Response
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/rm/AckRequested
|
unknown
|
||
http://tempuri.org/Entity/Id18LR
|
unknown
|
||
http://tempuri.org/Entity/Id14LR
|
unknown
|
||
http://tempuri.org/Entity/Id6LR
|
unknown
|
||
http://tempuri.org/Entity/
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/08/addressing
|
unknown
|
||
http://tempuri.org/Entity/Id10LR
|
unknown
|
||
https://www.newtonsoft.com/jsonschema
|
unknown
|
||
http://tempuri.org/Entity/Id2LR
|
unknown
|
||
http://tempuri.org/Entity/Id10
|
unknown
|
||
http://tempuri.org/Entity/Id11
|
unknown
|
||
http://tempuri.org/Entity/Id12
|
unknown
|
||
http://tempuri.org/Entity/Id16Response
|
unknown
|
||
http://tempuri.org/Entity/Id13
|
unknown
|
||
http://tempuri.org/Entity/Id14
|
unknown
|
||
http://tempuri.org/Entity/Id15
|
unknown
|
||
http://tempuri.org/Entity/Id16
|
unknown
|
||
http://tempuri.org/Entity/Id17
|
unknown
|
||
http://tempuri.org/Entity/Id18
|
unknown
|
||
http://tempuri.org/Entity/Id5Response
|
unknown
|
||
http://tempuri.org/Entity/Id19
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/dns
|
unknown
|
||
http://tempuri.org/Entity/Id10Response
|
unknown
|
||
http://tempuri.org/Entity/Id8Response
|
unknown
|
||
http://tempuri.org/Entity/Id22LR
|
unknown
|
||
http://schemas.xmlsoap.org/soap/envelope/
|
unknown
|
||
https://www.newtonsoft.com/json
|
unknown
|
||
http://tempuri.org/Entity/Id11F
|
unknown
|
||
http://tempuri.org/Entity/Id19LR
|
unknown
|
||
http://tempuri.org/Entity/Id11eR
|
unknown
|
||
http://tempuri.org/Entity/Id15LR
|
unknown
|
||
http://tempuri.org/Entity/Id7LR
|
unknown
|
||
http://tempuri.org/Entity/Id11LR
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/rm/CreateSequenceResponse
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/08/addressing/fault
|
unknown
|
||
http://tempuri.org/Entity/Id17Response
|
unknown
|
||
http://tempuri.org/Entity/Id20Response
|
unknown
|
||
http://tempuri.org/Entity/Id3LR
|
unknown
|
||
http://tempuri.org/Entity/Id13Response
|
unknown
|
||
http://tempuri.org/Entity/Id4Response
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/05/identity/right/possessproperty
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/rm/SequenceAcknowledgement
|
unknown
|
||
http://tempuri.org/Entity/Id7Response
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2004/08/addressing/role/anonymous
|
unknown
|
||
http://tempuri.org/Entity/Id11Response
|
unknown
|
||
http://tempuri.org/Entity/Id22Response
|
unknown
|
||
http://tempuri.org/Entity/Id11Re
|
unknown
|
||
http://james.newtonking.com/projects/json
|
unknown
|
||
http://tempuri.org/Entity/Id1
|
unknown
|
||
http://tempuri.org/Entity/Id16LR
|
unknown
|
||
http://tempuri.org/Entity/Id8LR
|
unknown
|
||
http://tempuri.org/Entity/Id3
|
unknown
|
||
http://tempuri.org/Entity/Id2
|
unknown
|
||
http://tempuri.org/Entity/Id18Response
|
unknown
|
||
http://tempuri.org/Entity/Id22Responsen
|
unknown
|
||
http://tempuri.org/Entity/Id12LR
|
unknown
|
||
http://tempuri.org/Entity/Id19Responsert
|
unknown
|
||
http://tempuri.org/Entity/Id111R
|
unknown
|
||
http://tempuri.org/Entity/Id4LR
|
unknown
|
||
http://tempuri.org/Entity/Id3Response
|
unknown
|
||
https://www.nuget.org/packages/Newtonsoft.Json.Bson
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/rm/LastMessage
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/rmP
|
unknown
|
||
http://schemas.xmlsoap.org/ws/2005/02/rm/CreateSequence
|
unknown
|
||
http://schemas.xmlsoap.org/soap/actor/next
|
unknown
|
There are 90 hidden URLs, click here to show them.
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
update-checker-status.cc
|
185.99.135.162
|
||
amrican-sport-live-stream.cc
|
unknown
|
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
185.99.135.162
|
update-checker-status.cc
|
Belarus
|
Registry
Path
|
Value
|
Malicious
|
|
---|---|---|---|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
|
Shell
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing
|
EnableConsoleTracing
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\InstallUtil_RASAPI32
|
EnableFileTracing
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\InstallUtil_RASAPI32
|
EnableAutoFileTracing
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\InstallUtil_RASAPI32
|
EnableConsoleTracing
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\InstallUtil_RASAPI32
|
FileTracingMask
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\InstallUtil_RASAPI32
|
ConsoleTracingMask
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\InstallUtil_RASAPI32
|
MaxFileSize
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\InstallUtil_RASAPI32
|
FileDirectory
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\InstallUtil_RASMANCS
|
EnableFileTracing
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\InstallUtil_RASMANCS
|
EnableAutoFileTracing
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\InstallUtil_RASMANCS
|
EnableConsoleTracing
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\InstallUtil_RASMANCS
|
FileTracingMask
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\InstallUtil_RASMANCS
|
ConsoleTracingMask
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\InstallUtil_RASMANCS
|
MaxFileSize
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\InstallUtil_RASMANCS
|
FileDirectory
|
There are 6 hidden registries, click here to show them.
Memdumps
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
---|---|---|---|---|
C32000
|
unkown
|
page readonly
|
||
32BD000
|
trusted library allocation
|
page read and write
|
||
3011000
|
trusted library allocation
|
page read and write
|
||
4121000
|
trusted library allocation
|
page read and write
|
||
402000
|
remote allocation
|
page execute and read and write
|
||
43B4000
|
trusted library allocation
|
page read and write
|
||
56E0000
|
trusted library section
|
page read and write
|
||
3142000
|
trusted library allocation
|
page read and write
|
||
32E6000
|
trusted library allocation
|
page read and write
|
||
588E000
|
stack
|
page read and write
|
||
13A5000
|
heap
|
page read and write
|
||
3ACD5000
|
trusted library allocation
|
page read and write
|
||
5D6E000
|
heap
|
page read and write
|
||
13D0000
|
heap
|
page read and write
|
||
5660000
|
trusted library allocation
|
page read and write
|
||
AD7B000
|
trusted library allocation
|
page read and write
|
||
5B50000
|
trusted library allocation
|
page read and write
|
||
3321000
|
trusted library allocation
|
page read and write
|
||
2EB8000
|
trusted library allocation
|
page read and write
|
||
3ACB0000
|
trusted library allocation
|
page read and write
|
||
DEE000
|
stack
|
page read and write
|
||
3ACE0000
|
trusted library allocation
|
page read and write
|
||
5B70000
|
trusted library allocation
|
page read and write
|
||
AD3B000
|
trusted library allocation
|
page read and write
|
||
3543000
|
trusted library allocation
|
page read and write
|
||
2E20000
|
trusted library allocation
|
page read and write
|
||
5D58000
|
heap
|
page read and write
|
||
1296000
|
heap
|
page read and write
|
||
103B000
|
stack
|
page read and write
|
||
136E000
|
heap
|
page read and write
|
||
AE80000
|
trusted library allocation
|
page read and write
|
||
5D27000
|
heap
|
page read and write
|
||
1C80000
|
heap
|
page read and write
|
||
1B07000
|
trusted library allocation
|
page execute and read and write
|
||
13D8000
|
heap
|
page read and write
|
||
AD52000
|
trusted library allocation
|
page read and write
|
||
3A8A0000
|
trusted library allocation
|
page read and write
|
||
1DD0000
|
trusted library allocation
|
page read and write
|
||
AD90000
|
trusted library allocation
|
page execute and read and write
|
||
4815000
|
trusted library allocation
|
page read and write
|
||
5BBE000
|
stack
|
page read and write
|
||
1B30000
|
trusted library allocation
|
page read and write
|
||
58B0000
|
heap
|
page read and write
|
||
1287000
|
trusted library allocation
|
page execute and read and write
|
||
3346000
|
trusted library allocation
|
page read and write
|
||
129E000
|
heap
|
page read and write
|
||
2F2E000
|
stack
|
page read and write
|
||
AAEE000
|
stack
|
page read and write
|
||
60A0000
|
trusted library allocation
|
page read and write
|
||
5960000
|
trusted library allocation
|
page execute and read and write
|
||
2E3A000
|
trusted library allocation
|
page execute and read and write
|
||
3B03E000
|
stack
|
page read and write
|
||
521D000
|
stack
|
page read and write
|
||
AD80000
|
trusted library allocation
|
page read and write
|
||
34D1000
|
trusted library allocation
|
page read and write
|
||
3B2BE000
|
stack
|
page read and write
|
||
1290000
|
heap
|
page read and write
|
||
336E000
|
trusted library allocation
|
page read and write
|
||
2EAE000
|
stack
|
page read and write
|
||
610E000
|
stack
|
page read and write
|
||
1380000
|
heap
|
page read and write
|
||
1B0A000
|
trusted library allocation
|
page execute and read and write
|
||
C76000
|
unkown
|
page readonly
|
||
165E000
|
stack
|
page read and write
|
||
3AEC0000
|
heap
|
page read and write
|
||
4817000
|
trusted library allocation
|
page read and write
|
||
1170000
|
heap
|
page read and write
|
||
3353000
|
trusted library allocation
|
page read and write
|
||
1B17000
|
trusted library allocation
|
page execute and read and write
|
||
4821000
|
trusted library allocation
|
page read and write
|
||
2E42000
|
trusted library allocation
|
page read and write
|
||
1406000
|
heap
|
page read and write
|
||
335D000
|
trusted library allocation
|
page read and write
|
||
16F3000
|
trusted library allocation
|
page execute and read and write
|
||
608D000
|
stack
|
page read and write
|
||
1355000
|
heap
|
page read and write
|
||
1260000
|
heap
|
page read and write
|
||
331F000
|
trusted library allocation
|
page read and write
|
||
3342000
|
trusted library allocation
|
page read and write
|
||
5900000
|
heap
|
page execute and read and write
|
||
1580000
|
heap
|
page read and write
|
||
1B00000
|
trusted library allocation
|
page read and write
|
||
56A0000
|
trusted library allocation
|
page read and write
|
||
43AF000
|
trusted library allocation
|
page read and write
|
||
438C000
|
trusted library allocation
|
page read and write
|
||
1404000
|
heap
|
page read and write
|
||
2F90000
|
heap
|
page execute and read and write
|
||
331D000
|
trusted library allocation
|
page read and write
|
||
C00000
|
unkown
|
page readonly
|
||
1540000
|
heap
|
page read and write
|
||
56C0000
|
trusted library allocation
|
page read and write
|
||
7740000
|
trusted library allocation
|
page read and write
|
||
B0D0000
|
trusted library allocation
|
page execute and read and write
|
||
13EE000
|
heap
|
page read and write
|
||
2E2D000
|
trusted library allocation
|
page execute and read and write
|
||
51AE000
|
stack
|
page read and write
|
||
41C5000
|
trusted library allocation
|
page read and write
|
||
AFA0000
|
heap
|
page read and write
|
||
D76000
|
heap
|
page read and write
|
||
3AB8E000
|
stack
|
page read and write
|
||
127A000
|
trusted library allocation
|
page execute and read and write
|
||
17F3000
|
trusted library allocation
|
page execute and read and write
|
||
17F0000
|
trusted library allocation
|
page read and write
|
||
1389000
|
heap
|
page read and write
|
||
1254000
|
trusted library allocation
|
page read and write
|
||
3387000
|
trusted library allocation
|
page read and write
|
||
AE00000
|
trusted library allocation
|
page read and write
|
||
63CE000
|
stack
|
page read and write
|
||
400000
|
remote allocation
|
page execute and read and write
|
||
1230000
|
trusted library allocation
|
page read and write
|
||
D1C000
|
stack
|
page read and write
|
||
336C000
|
trusted library allocation
|
page read and write
|
||
5C4E000
|
stack
|
page read and write
|
||
33D4000
|
trusted library allocation
|
page read and write
|
||
155F000
|
stack
|
page read and write
|
||
33C4000
|
trusted library allocation
|
page read and write
|
||
62CE000
|
stack
|
page read and write
|
||
B0A0000
|
trusted library allocation
|
page read and write
|
||
628F000
|
stack
|
page read and write
|
||
2E4B000
|
trusted library allocation
|
page execute and read and write
|
||
16FD000
|
trusted library allocation
|
page execute and read and write
|
||
5B20000
|
trusted library allocation
|
page read and write
|
||
5F0F000
|
stack
|
page read and write
|
||
1260000
|
trusted library allocation
|
page read and write
|
||
123C000
|
stack
|
page read and write
|
||
AD6A000
|
trusted library allocation
|
page read and write
|
||
C30000
|
unkown
|
page readonly
|
||
1250000
|
heap
|
page read and write
|
||
1B1B000
|
trusted library allocation
|
page execute and read and write
|
||
1350000
|
trusted library allocation
|
page read and write
|
||
58D0000
|
trusted library allocation
|
page read and write
|
||
5890000
|
heap
|
page execute and read and write
|
||
3000000
|
heap
|
page read and write
|
||
3AA4E000
|
stack
|
page read and write
|
||
1396000
|
heap
|
page read and write
|
||
5B30000
|
trusted library allocation
|
page read and write
|
||
15DE000
|
stack
|
page read and write
|
||
5E0E000
|
stack
|
page read and write
|
||
351B000
|
trusted library allocation
|
page read and write
|
||
3557000
|
trusted library allocation
|
page read and write
|
||
126D000
|
trusted library allocation
|
page execute and read and write
|
||
56D0000
|
heap
|
page read and write
|
||
352E000
|
trusted library allocation
|
page read and write
|
||
1D80000
|
heap
|
page read and write
|
||
5D5A000
|
heap
|
page read and write
|
||
AFDD000
|
heap
|
page read and write
|
||
622E000
|
stack
|
page read and write
|
||
3325000
|
trusted library allocation
|
page read and write
|
||
1253000
|
trusted library allocation
|
page execute and read and write
|
||
ABED000
|
stack
|
page read and write
|
||
13A4000
|
heap
|
page read and write
|
||
AFAC000
|
heap
|
page read and write
|
||
B0E0000
|
trusted library allocation
|
page read and write
|
||
D70000
|
heap
|
page read and write
|
||
12D2000
|
heap
|
page read and write
|
||
2E47000
|
trusted library allocation
|
page execute and read and write
|
||
5980000
|
trusted library allocation
|
page execute and read and write
|
||
AE10000
|
trusted library allocation
|
page read and write
|
||
2EB0000
|
trusted library allocation
|
page read and write
|
||
4011000
|
trusted library allocation
|
page read and write
|
||
3340000
|
trusted library allocation
|
page read and write
|
||
1760000
|
heap
|
page read and write
|
||
7EE70000
|
trusted library allocation
|
page execute and read and write
|
||
5CD0000
|
heap
|
page read and write
|
||
2E36000
|
trusted library allocation
|
page execute and read and write
|
||
1D70000
|
trusted library allocation
|
page execute and read and write
|
||
2FC0000
|
heap
|
page execute and read and write
|
||
3323000
|
trusted library allocation
|
page read and write
|
||
16F4000
|
trusted library allocation
|
page read and write
|
||
3592000
|
trusted library allocation
|
page read and write
|
||
1560000
|
trusted library allocation
|
page read and write
|
||
58A0000
|
trusted library allocation
|
page read and write
|
||
3528000
|
trusted library allocation
|
page read and write
|
||
58E0000
|
trusted library allocation
|
page execute and read and write
|
||
60CE000
|
stack
|
page read and write
|
||
3AB4C000
|
stack
|
page read and write
|
||
3ACB4000
|
trusted library allocation
|
page read and write
|
||
5F4E000
|
stack
|
page read and write
|
||
3523000
|
trusted library allocation
|
page read and write
|
||
17FD000
|
trusted library allocation
|
page execute and read and write
|
||
14A0000
|
trusted library allocation
|
page read and write
|
||
1B12000
|
trusted library allocation
|
page read and write
|
||
3AC8D000
|
stack
|
page read and write
|
||
AD46000
|
trusted library allocation
|
page read and write
|
||
3385000
|
trusted library allocation
|
page read and write
|
||
B0B0000
|
trusted library allocation
|
page read and write
|
||
2E23000
|
trusted library allocation
|
page read and write
|
||
AD61000
|
trusted library allocation
|
page read and write
|
||
1339000
|
stack
|
page read and write
|
||
3329000
|
trusted library allocation
|
page read and write
|
||
AD41000
|
trusted library allocation
|
page read and write
|
||
148E000
|
stack
|
page read and write
|
||
DA0000
|
heap
|
page read and write
|
||
2FF1000
|
trusted library allocation
|
page read and write
|
||
125D000
|
trusted library allocation
|
page execute and read and write
|
||
1B10000
|
trusted library allocation
|
page read and write
|
||
1285000
|
trusted library allocation
|
page execute and read and write
|
||
2E45000
|
trusted library allocation
|
page execute and read and write
|
||
300E000
|
stack
|
page read and write
|
||
1700000
|
heap
|
page read and write
|
||
2FB0000
|
trusted library allocation
|
page read and write
|
||
4415000
|
trusted library allocation
|
page read and write
|
||
1272000
|
trusted library allocation
|
page read and write
|
||
5910000
|
heap
|
page read and write
|
||
12C4000
|
heap
|
page read and write
|
||
AD5E000
|
trusted library allocation
|
page read and write
|
||
14EE000
|
stack
|
page read and write
|
||
ADB0000
|
trusted library allocation
|
page read and write
|
||
1320000
|
heap
|
page read and write
|
||
1F4E000
|
stack
|
page read and write
|
||
1530000
|
trusted library allocation
|
page execute and read and write
|
||
3A8EC000
|
stack
|
page read and write
|
||
128B000
|
trusted library allocation
|
page execute and read and write
|
||
2F80000
|
trusted library section
|
page read and write
|
||
ADA0000
|
trusted library allocation
|
page read and write
|
||
5CCE000
|
stack
|
page read and write
|
||
AE70000
|
trusted library allocation
|
page read and write
|
||
2E60000
|
trusted library allocation
|
page read and write
|
||
1B02000
|
trusted library allocation
|
page read and write
|
||
624E000
|
stack
|
page read and write
|
||
311E000
|
stack
|
page read and write
|
||
1800000
|
heap
|
page read and write
|
||
5BC0000
|
trusted library allocation
|
page execute and read and write
|
||
1570000
|
trusted library allocation
|
page read and write
|
||
5870000
|
trusted library allocation
|
page read and write
|
||
3531000
|
trusted library allocation
|
page read and write
|
||
2FB5000
|
trusted library allocation
|
page read and write
|
||
AC2E000
|
stack
|
page read and write
|
||
3ACF0000
|
trusted library allocation
|
page read and write
|
||
16DE000
|
stack
|
page read and write
|
||
10F7000
|
stack
|
page read and write
|
||
620E000
|
stack
|
page read and write
|
||
1280000
|
trusted library allocation
|
page read and write
|
||
5860000
|
trusted library allocation
|
page read and write
|
||
5CF9000
|
heap
|
page read and write
|
||
5B40000
|
trusted library allocation
|
page execute and read and write
|
||
3338000
|
trusted library allocation
|
page read and write
|
||
1250000
|
trusted library allocation
|
page read and write
|
||
3383000
|
trusted library allocation
|
page read and write
|
||
AD2F000
|
stack
|
page read and write
|
||
3010000
|
heap
|
page read and write
|
||
3AC97000
|
trusted library allocation
|
page read and write
|
||
5A90000
|
trusted library section
|
page read and write
|
||
56B0000
|
trusted library allocation
|
page read and write
|
||
333E000
|
trusted library allocation
|
page read and write
|
||
3344000
|
trusted library allocation
|
page read and write
|
||
2E26000
|
trusted library allocation
|
page read and write
|
||
2F60000
|
trusted library allocation
|
page read and write
|
||
60EE000
|
trusted library section
|
page read and write
|
||
58C0000
|
trusted library allocation
|
page read and write
|
||
ADF0000
|
trusted library allocation
|
page execute and read and write
|
||
AD75000
|
trusted library allocation
|
page read and write
|
||
5680000
|
trusted library allocation
|
page read and write
|
||
AD70000
|
trusted library allocation
|
page read and write
|
||
612E000
|
stack
|
page read and write
|
||
126B000
|
trusted library allocation
|
page read and write
|
||
1414000
|
heap
|
page read and write
|
||
3355000
|
trusted library allocation
|
page read and write
|
||
2FCC000
|
stack
|
page read and write
|
||
12DD000
|
stack
|
page read and write
|
||
565E000
|
stack
|
page read and write
|
||
2E40000
|
trusted library allocation
|
page read and write
|
||
357D000
|
trusted library allocation
|
page read and write
|
||
40E000
|
remote allocation
|
page execute and read and write
|
||
12FC000
|
heap
|
page read and write
|
||
3121000
|
trusted library allocation
|
page read and write
|
||
2F80000
|
heap
|
page execute and read and write
|
||
1D6E000
|
stack
|
page read and write
|
||
AD30000
|
trusted library allocation
|
page read and write
|
||
C02000
|
unkown
|
page readonly
|
||
58AF000
|
trusted library allocation
|
page read and write
|
||
ADE0000
|
trusted library allocation
|
page read and write
|
||
1E3E000
|
stack
|
page read and write
|
||
6090000
|
trusted library allocation
|
page execute and read and write
|
||
2FD0000
|
trusted library allocation
|
page read and write
|
||
1370000
|
heap
|
page read and write
|
||
2E32000
|
trusted library allocation
|
page read and write
|
||
1290000
|
heap
|
page read and write
|
||
3357000
|
trusted library allocation
|
page read and write
|
||
5F4E000
|
stack
|
page read and write
|
||
5990000
|
heap
|
page read and write
|
||
481D000
|
trusted library allocation
|
page read and write
|
||
1565000
|
trusted library allocation
|
page read and write
|
||
2E30000
|
trusted library allocation
|
page read and write
|
||
1240000
|
heap
|
page read and write
|
||
17F4000
|
trusted library allocation
|
page read and write
|
||
5880000
|
trusted library allocation
|
page execute and read and write
|
||
1806000
|
heap
|
page read and write
|
||
3AF3D000
|
stack
|
page read and write
|
||
332B000
|
trusted library allocation
|
page read and write
|
||
5970000
|
trusted library allocation
|
page execute and read and write
|
||
2FBB000
|
trusted library allocation
|
page read and write
|
||
152C000
|
stack
|
page read and write
|
||
1270000
|
trusted library allocation
|
page read and write
|
||
1282000
|
trusted library allocation
|
page read and write
|
||
2E2B000
|
trusted library allocation
|
page read and write
|
||
604E000
|
stack
|
page read and write
|
||
3A9EC000
|
stack
|
page read and write
|
||
AD7E000
|
trusted library allocation
|
page read and write
|
||
2F50000
|
trusted library allocation
|
page execute and read and write
|
||
1DA0000
|
trusted library allocation
|
page read and write
|
||
13FA000
|
heap
|
page read and write
|
||
1137000
|
stack
|
page read and write
|
||
2FE0000
|
trusted library allocation
|
page read and write
|
||
3B07B000
|
stack
|
page read and write
|
||
5986000
|
heap
|
page read and write
|
||
129B000
|
heap
|
page read and write
|
||
13A1000
|
heap
|
page read and write
|
||
7AAE000
|
stack
|
page read and write
|
||
3AC91000
|
trusted library allocation
|
page read and write
|
||
16E0000
|
trusted library allocation
|
page read and write
|
||
13DB000
|
heap
|
page read and write
|
||
AE60000
|
trusted library allocation
|
page execute and read and write
|
||
B0C0000
|
trusted library allocation
|
page execute and read and write
|
||
1E40000
|
heap
|
page execute and read and write
|
||
5D0C000
|
heap
|
page read and write
|
||
79AE000
|
stack
|
page read and write
|
||
1C7F000
|
stack
|
page read and write
|
||
131D000
|
stack
|
page read and write
|
||
1750000
|
trusted library allocation
|
page read and write
|
||
1276000
|
trusted library allocation
|
page execute and read and write
|
||
7F910000
|
trusted library allocation
|
page execute and read and write
|
||
1B7E000
|
stack
|
page read and write
|
||
44D1000
|
trusted library allocation
|
page read and write
|
||
3B17C000
|
stack
|
page read and write
|
||
4819000
|
trusted library allocation
|
page read and write
|
||
3359000
|
trusted library allocation
|
page read and write
|
||
D90000
|
heap
|
page read and write
|
||
5670000
|
trusted library allocation
|
page read and write
|
||
3B1BE000
|
stack
|
page read and write
|
||
3018000
|
heap
|
page read and write
|
||
13A0000
|
heap
|
page read and write
|
||
3137000
|
trusted library allocation
|
page read and write
|
||
3370000
|
trusted library allocation
|
page read and write
|
||
599D000
|
heap
|
page read and write
|
||
5690000
|
trusted library allocation
|
page read and write
|
||
1360000
|
heap
|
page read and write
|
||
3A8AF000
|
trusted library allocation
|
page read and write
|
||
1365000
|
heap
|
page read and write
|
There are 329 hidden memdumps, click here to show them.