|
1322000
|
remote allocation
|
page execute and read and write
|
 |
|
|
| Name: |
0000000F.00000002.2557164495.0000000001322000.00000040.00000400.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
remote allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
1322000
|
| Size: |
450560
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Yara detected PureLog Stealer |
Stealing of Sensitive Information, Remote Access Functionality |
|
|
|
1966000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000F.00000002.2558538686.0000000001966000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
1966000
|
| Size: |
8192
|
|
|
31F7000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1708048280.00000000031F7000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
31F7000
|
| Size: |
16384
|
|
|
1970000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2474441165.0000000001970000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1970000
|
| Size: |
606208
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1671816617.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1722845771.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
196B000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2472043934.000000000196B000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
196B000
|
| Size: |
524288
|
|
|
1547000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2471073811.0000000001547000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1547000
|
| Size: |
995328
|
|
|
31D0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1708029790.00000000031D0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
31D0000
|
| Size: |
4096
|
|
|
65A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1670554809.000000000065A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
65A000
|
| Size: |
4096
|
|
|
157B000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2466932210.000000000157B000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
157B000
|
| Size: |
1097728
|
|
|
B27000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713959283.0000000000B27000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B27000
|
| Size: |
4096
|
|
|
325D000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1708227277.000000000325D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
325D000
|
| Size: |
49152
|
|
|
1968000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2473149301.0000000001968000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1968000
|
| Size: |
565248
|
|
|
18D2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2480726055.00000000018D2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D2000
|
| Size: |
675840
|
|
|
152A000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467337810.000000000152A000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
152A000
|
| Size: |
757760
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1675926463.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
5A50000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560492443.0000000005A50000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5A50000
|
| Size: |
8192
|
|
|
ABE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713761734.0000000000ABE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
ABE000
|
| Size: |
8192
|
|
|
15A2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2469197377.00000000015A2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
15A2000
|
| Size: |
434176
|
|
|
1990000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2483212741.0000000001990000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1990000
|
| Size: |
696320
|
|
|
18D6000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2478968603.00000000018D6000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D6000
|
| Size: |
663552
|
|
|
5840000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560129337.0000000005840000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5840000
|
| Size: |
221184
|
|
|
B29000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000003.1713272996.0000000000B29000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B29000
|
| Size: |
4096
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2471554358.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
507904
|
|
|
4241000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2559446718.0000000004241000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4241000
|
| Size: |
32768
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1671258809.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
541C000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2559511454.000000000541C000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
541C000
|
| Size: |
16384
|
|
|
18DC000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2485974854.00000000018DC000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18DC000
|
| Size: |
720896
|
|
|
59F0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560405426.00000000059F0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
59F0000
|
| Size: |
65536
|
|
|
5760000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2559539770.0000000005760000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5760000
|
| Size: |
4096
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2471928182.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
516096
|
|
|
198D000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2477922027.000000000198D000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
198D000
|
| Size: |
655360
|
|
|
1987000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2476364489.0000000001987000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1987000
|
| Size: |
643072
|
|
|
3250000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000003.1707568879.0000000003250000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3250000
|
| Size: |
28672
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1666909522.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2468469026.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
413696
|
|
|
34BC000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1689763130.00000000034BC000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
34BC000
|
| Size: |
16384
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1723929936.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
1000000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1719647933.0000000001000000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1000000
|
| Size: |
180224
|
|
|
2D0F000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.1764952399.0000000002D0F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
2D0F000
|
| Size: |
4096
|
|
|
5D9E000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560855355.0000000005D9E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5D9E000
|
| Size: |
8192
|
|
|
970000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.1764916126.0000000000970000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
970000
|
| Size: |
4096
|
|
|
18D2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2473389458.00000000018D2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D2000
|
| Size: |
573440
|
|
|
92E000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.1764850642.000000000092E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
92E000
|
| Size: |
8192
|
|
|
FAF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1714026708.0000000000FAF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
FAF000
|
| Size: |
4096
|
|
|
AE8000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713781158.0000000000AE8000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
AE8000
|
| Size: |
73728
|
|
|
18D7000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2485767265.00000000018D7000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D7000
|
| Size: |
716800
|
|
|
3258000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1708189844.0000000003258000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3258000
|
| Size: |
16384
|
|
|
3230000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1708122596.0000000003230000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3230000
|
| Size: |
28672
|
|
|
1970000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558616057.0000000001970000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1970000
|
| Size: |
4096
|
|
|
296A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1669668876.000000000296A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
296A000
|
| Size: |
61440
|
|
|
F40000
|
unkown
|
page readonly
|
|
|
|
| Name: |
0000000F.00000000.2487915634.0000000000F40000.00000002.00000001.01000000.00000007.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
F40000
|
| Size: |
4096
|
|
|
15B3000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2470277134.00000000015B3000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
15B3000
|
| Size: |
466944
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1723166610.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
196A000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000F.00000002.2558575839.000000000196A000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
196A000
|
| Size: |
4096
|
|
|
199E000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2482666641.000000000199E000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
199E000
|
| Size: |
692224
|
|
|
6B73000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2562264598.0000000006B73000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6B73000
|
| Size: |
81920
|
|
|
14FB000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2557910219.00000000014FB000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
14FB000
|
| Size: |
49152
|
|
|
18D9000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2486668614.00000000018D9000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D9000
|
| Size: |
458752
|
|
|
18D9000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2474341460.00000000018D9000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D9000
|
| Size: |
602112
|
|
|
18D2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2477087301.00000000018D2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D2000
|
| Size: |
651264
|
|
|
18DB000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2485417835.00000000018DB000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18DB000
|
| Size: |
712704
|
|
|
1595000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558302340.0000000001595000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1595000
|
| Size: |
12288
|
|
|
9B000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1688574846.000000000009B000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
9B000
|
| Size: |
20480
|
|
|
155D000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558150239.000000000155D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
155D000
|
| Size: |
8192
|
|
|
57D0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2559893783.00000000057D0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
57D0000
|
| Size: |
65536
|
|
|
712F000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2563184160.000000000712F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
712F000
|
| Size: |
4096
|
|
|
145000
|
unkown
|
page readonly
|
|
|
|
| Name: |
0000000A.00000000.1717130782.0000000000145000.00000002.00000001.01000000.00000005.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
145000
|
| Size: |
40960
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| May try to detect the Windows Explorer process (often used for injection) |
HIPS / PFW / Operating System Protection Evasion |
|
|
|
195D000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000F.00000002.2558462963.000000000195D000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
195D000
|
| Size: |
4096
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2470650099.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
479232
|
|
|
1E0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1688718797.00000000001E0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1E0000
|
| Size: |
16384
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1719568935.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
65536
|
|
|
B29000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000003.1713318997.0000000000B29000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B29000
|
| Size: |
4096
|
|
|
337E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1689717935.000000000337E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
337E000
|
| Size: |
8192
|
|
|
18DE000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2472754400.00000000018DE000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18DE000
|
| Size: |
548864
|
|
|
1A0B000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2473205101.0000000001A0B000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1A0B000
|
| Size: |
565248
|
|
|
1977000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000F.00000002.2558664223.0000000001977000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
1977000
|
| Size: |
4096
|
|
|
5C20000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000F.00000002.2560602059.0000000005C20000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
5C20000
|
| Size: |
65536
|
|
|
FF4000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1719598839.0000000000FF4000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
FF4000
|
| Size: |
4096
|
|
|
2967000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1671288748.0000000002967000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2967000
|
| Size: |
36864
|
|
|
F1B000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1718668545.0000000000F1B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
F1B000
|
| Size: |
655360
|
|
|
1978000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2473034954.0000000001978000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1978000
|
| Size: |
561152
|
|
|
1A17000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2476208995.0000000001A17000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1A17000
|
| Size: |
638976
|
|
|
296C000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1670596426.000000000296C000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
296C000
|
| Size: |
8192
|
|
|
2969000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1671845460.0000000002969000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2969000
|
| Size: |
36864
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Sample file is different than original file name gathered from version info |
System Summary |
|
| URLs found in memory or binary data |
Networking |
|
|
|
3D01000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2466736998.0000000003D01000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D01000
|
| Size: |
327680
|
|
|
18D5000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2475706728.00000000018D5000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D5000
|
| Size: |
626688
|
|
|
18D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2476466980.00000000018D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D1000
|
| Size: |
643072
|
|
|
18D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2476041628.00000000018D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D1000
|
| Size: |
634880
|
|
|
162C000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467679822.000000000162C000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
162C000
|
| Size: |
4096
|
|
|
3390000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558991988.0000000003390000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3390000
|
| Size: |
139264
|
|
|
15C1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2471332344.00000000015C1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
15C1000
|
| Size: |
1007616
|
|
|
E5C000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1707803656.0000000000E5C000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
E5C000
|
| Size: |
16384
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2468876261.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
421888
|
|
|
18D4000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2472585609.00000000018D4000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D4000
|
| Size: |
544768
|
|
|
275E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1689404340.000000000275E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
275E000
|
| Size: |
8192
|
|
|
1597000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2468424048.0000000001597000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1597000
|
| Size: |
409600
|
|
|
153F000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2469993584.000000000153F000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
153F000
|
| Size: |
925696
|
|
|
1532000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2468280810.0000000001532000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1532000
|
| Size: |
823296
|
|
|
6E5B000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2562550288.0000000006E5B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6E5B000
|
| Size: |
4096
|
|
|
5D50000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560792077.0000000005D50000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5D50000
|
| Size: |
12288
|
|
|
B00000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000003.1712899015.0000000000B00000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B00000
|
| Size: |
28672
|
|
|
145E000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2557527694.000000000145E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
145E000
|
| Size: |
8192
|
|
|
3253000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1708189844.0000000003253000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3253000
|
| Size: |
16384
|
|
|
1981000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2479248518.0000000001981000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1981000
|
| Size: |
667648
|
|
|
296C000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1668701987.000000000296C000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
296C000
|
| Size: |
90112
|
|
|
1538000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2557999725.0000000001538000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1538000
|
| Size: |
12288
|
|
|
1663000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2469338357.0000000001663000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1663000
|
| Size: |
884736
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1722982709.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
408000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000002.1688807093.0000000000408000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
408000
|
| Size: |
12288
|
|
|
2962000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1671845460.0000000002962000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2962000
|
| Size: |
16384
|
|
|
6B6C000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2562205569.0000000006B6C000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6B6C000
|
| Size: |
24576
|
|
|
198A000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2478408939.000000000198A000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
198A000
|
| Size: |
659456
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1673141944.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1724551841.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
59C0000
|
heap
|
page execute and read and write
|
|
|
|
| Name: |
0000000F.00000002.2560318096.00000000059C0000.00000040.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page execute and read and write
|
| Base address: |
59C0000
|
| Size: |
4096
|
|
|
492E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1714125704.000000000492E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
492E000
|
| Size: |
8192
|
|
|
2310000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1689382879.0000000002310000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2310000
|
| Size: |
16384
|
|
|
18D3000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2472473628.00000000018D3000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D3000
|
| Size: |
540672
|
|
|
309E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1707910017.000000000309E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
309E000
|
| Size: |
8192
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1723801211.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
15E5000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467885755.00000000015E5000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
15E5000
|
| Size: |
798720
|
|
|
1732000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2471689140.0000000001732000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1732000
|
| Size: |
1036288
|
|
|
1979000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2475109307.0000000001979000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1979000
|
| Size: |
618496
|
|
|
AE0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713781158.0000000000AE0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
AE0000
|
| Size: |
24576
|
|
|
970000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713601791.0000000000970000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
970000
|
| Size: |
4096
|
|
|
5820000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560047655.0000000005820000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
5820000
|
| Size: |
65536
|
|
|
1528000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2557999725.0000000001528000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1528000
|
| Size: |
4096
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1668670322.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
1498000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2557658309.0000000001498000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1498000
|
| Size: |
45056
|
|
|
3258000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000003.1707445365.0000000003258000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3258000
|
| Size: |
69632
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1723364590.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
13E0000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2557450052.00000000013E0000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
13E0000
|
| Size: |
4096
|
|
|
19A000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1688679366.000000000019A000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
19A000
|
| Size: |
24576
|
|
|
3186000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1707971722.0000000003186000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3186000
|
| Size: |
8192
|
|
|
326A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000003.1707568879.000000000326A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
326A000
|
| Size: |
73728
|
|
|
408000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000000.1664608904.0000000000408000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
408000
|
| Size: |
12288
|
|
|
16B7000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2471615620.00000000016B7000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
16B7000
|
| Size: |
1024000
|
|
|
6AA0000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2562124072.0000000006AA0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6AA0000
|
| Size: |
4096
|
|
|
162D000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467243595.000000000162D000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
162D000
|
| Size: |
368640
|
|
|
2969000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1678505163.0000000002969000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2969000
|
| Size: |
118784
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1724101914.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2469911076.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
913408
|
|
|
65A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1667571160.000000000065A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
65A000
|
| Size: |
4096
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1725045458.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
18D8000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2473564644.00000000018D8000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D8000
|
| Size: |
577536
|
|
|
92E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713546889.000000000092E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
92E000
|
| Size: |
8192
|
|
|
1586000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467885755.0000000001586000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1586000
|
| Size: |
4096
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1722905821.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
654D000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2561066271.000000000654D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
654D000
|
| Size: |
4096
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1672309902.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
196B000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2473328912.000000000196B000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
196B000
|
| Size: |
569344
|
|
|
19FE000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2472698732.00000000019FE000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19FE000
|
| Size: |
548864
|
|
|
B03000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713852834.0000000000B03000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B03000
|
| Size: |
16384
|
|
|
1966000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2472529841.0000000001966000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1966000
|
| Size: |
540672
|
|
|
3241000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558991988.0000000003241000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3241000
|
| Size: |
733184
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| URLs found in memory or binary data |
Networking |
|
|
|
96F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713568310.000000000096F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
96F000
|
| Size: |
4096
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1725128933.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
18D9000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2481307029.00000000018D9000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D9000
|
| Size: |
679936
|
|
|
1A00000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558830331.0000000001A00000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1A00000
|
| Size: |
4096
|
|
|
3258000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000003.1707568879.0000000003258000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3258000
|
| Size: |
69632
|
|
|
197B000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000F.00000002.2558688843.000000000197B000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
197B000
|
| Size: |
4096
|
|
|
170F000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2470766525.000000000170F000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
170F000
|
| Size: |
978944
|
|
|
B2B000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1714003615.0000000000B2B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B2B000
|
| Size: |
20480
|
|
|
1953000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558438507.0000000001953000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1953000
|
| Size: |
40960
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1665259391.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
64DE000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560995064.00000000064DE000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64DE000
|
| Size: |
61440
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1669143260.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2468967317.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
856064
|
|
|
2961000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1672339505.0000000002961000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2961000
|
| Size: |
20480
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| May try to detect the Windows Explorer process (often used for injection) |
HIPS / PFW / Operating System Protection Evasion |
|
|
|
15C0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2471400830.00000000015C0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
15C0000
|
| Size: |
4096
|
|
|
1993000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2486571263.0000000001993000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1993000
|
| Size: |
733184
|
|
|
B22000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000003.1713272996.0000000000B22000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B22000
|
| Size: |
24576
|
|
|
9C6000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713623786.00000000009C6000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
9C6000
|
| Size: |
8192
|
|
|
1A3A000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2482134195.0000000001A3A000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1A3A000
|
| Size: |
688128
|
|
|
198B000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2481088630.000000000198B000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
198B000
|
| Size: |
679936
|
|
|
1971000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2474626439.0000000001971000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1971000
|
| Size: |
610304
|
|
|
3D37000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2465792075.0000000003D37000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D37000
|
| Size: |
434176
|
|
|
1987000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2475565235.0000000001987000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1987000
|
| Size: |
626688
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2469155961.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
430080
|
|
|
3D31000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2465647908.0000000003D31000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D31000
|
| Size: |
385024
|
|
|
2960000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1673170162.0000000002960000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2960000
|
| Size: |
61440
|
|
|
326A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1708244280.000000000326A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
326A000
|
| Size: |
12288
|
|
|
296B000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1665289605.000000000296B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
296B000
|
| Size: |
12288
|
|
|
3D8C000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2466396904.0000000003D8C000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D8C000
|
| Size: |
905216
|
|
|
305E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1707889956.000000000305E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
305E000
|
| Size: |
8192
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1724602305.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
61E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1688991109.000000000061E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
61E000
|
| Size: |
167936
|
|
|
169A000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2470766525.000000000169A000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
169A000
|
| Size: |
4096
|
|
|
15B2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2470509347.00000000015B2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
15B2000
|
| Size: |
4096
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467516307.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
380928
|
|
|
17A7000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2469604138.00000000017A7000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
17A7000
|
| Size: |
454656
|
|
|
A30000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713695556.0000000000A30000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
A30000
|
| Size: |
20480
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1667571160.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
1984000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2481858547.0000000001984000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1984000
|
| Size: |
688128
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1723296821.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1666401957.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
6C62000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2562450360.0000000006C62000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6C62000
|
| Size: |
4096
|
|
|
1A2A000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2475944522.0000000001A2A000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1A2A000
|
| Size: |
630784
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1676549680.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
197A000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2473627644.000000000197A000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
197A000
|
| Size: |
581632
|
|
|
5940000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560181527.0000000005940000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
5940000
|
| Size: |
65536
|
|
|
15A2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2469286074.00000000015A2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
15A2000
|
| Size: |
438272
|
|
|
1320000
|
remote allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000F.00000002.2557164495.0000000001320000.00000040.00000400.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
remote allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
1320000
|
| Size: |
4096
|
|
|
3310000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558991988.0000000003310000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3310000
|
| Size: |
389120
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Found strings which match to known social media urls |
Networking |
|
|
|
59D0000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000F.00000002.2560342991.00000000059D0000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
59D0000
|
| Size: |
65536
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2466856070.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
1056768
|
|
|
18D9000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2472979171.00000000018D9000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D9000
|
| Size: |
557056
|
|
|
579E000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2559612384.000000000579E000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
579E000
|
| Size: |
57344
|
|
|
64B0000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560941434.00000000064B0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64B0000
|
| Size: |
36864
|
|
|
15A1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2469768392.00000000015A1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
15A1000
|
| Size: |
4096
|
|
|
18DA000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2482955533.00000000018DA000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18DA000
|
| Size: |
696320
|
|
|
702E000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2563122502.000000000702E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
702E000
|
| Size: |
8192
|
|
|
1593000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2468174254.0000000001593000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1593000
|
| Size: |
409600
|
|
|
2D60000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.1765025060.0000000002D60000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2D60000
|
| Size: |
24576
|
|
|
B1A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713914122.0000000000B1A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B1A000
|
| Size: |
32768
|
|
|
504E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1708414868.000000000504E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
504E000
|
| Size: |
8192
|
|
|
9C0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713623786.00000000009C0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
9C0000
|
| Size: |
16384
|
|
|
285F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1689421762.000000000285F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
285F000
|
| Size: |
4096
|
|
|
18D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2486124953.00000000018D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D1000
|
| Size: |
724992
|
|
|
56C000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713457654.000000000056C000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
56C000
|
| Size: |
16384
|
|
|
88E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1689240911.000000000088E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
88E000
|
| Size: |
8192
|
|
|
15C1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2471153954.00000000015C1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
15C1000
|
| Size: |
495616
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1685976140.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
311E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1707953997.000000000311E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
311E000
|
| Size: |
8192
|
|
|
5AC000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713483890.00000000005AC000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5AC000
|
| Size: |
16384
|
|
|
152C000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2557999725.000000000152C000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
152C000
|
| Size: |
12288
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2469237763.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
434176
|
|
|
5D55000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560792077.0000000005D55000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5D55000
|
| Size: |
40960
|
|
|
1590000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558302340.0000000001590000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1590000
|
| Size: |
16384
|
|
|
10F4000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1718627722.00000000010F4000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
10F4000
|
| Size: |
69632
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1724682846.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
18DC000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2473834693.00000000018DC000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18DC000
|
| Size: |
585728
|
|
|
67A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1688991109.000000000067A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
67A000
|
| Size: |
20480
|
|
|
163A000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2471400830.000000000163A000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
163A000
|
| Size: |
1019904
|
|
|
401000
|
unkown
|
page execute read
|
|
|
|
| Name: |
00000000.00000002.1688785724.0000000000401000.00000020.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page execute read
|
| Base address: |
401000
|
| Size: |
28672
|
|
|
508F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1708433987.000000000508F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
508F000
|
| Size: |
4096
|
|
|
33C9000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558991988.00000000033C9000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
33C9000
|
| Size: |
24576
|
|
|
65A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1668070765.000000000065A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
65A000
|
| Size: |
4096
|
|
|
681000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1688991109.0000000000681000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
681000
|
| Size: |
86016
|
|
|
400000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000000.1664576629.0000000000400000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
400000
|
| Size: |
4096
|
|
|
4F4000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000002.1688918554.00000000004F4000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
4F4000
|
| Size: |
28672
|
|
|
1A20000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558888520.0000000001A20000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1A20000
|
| Size: |
24576
|
|
|
313F000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558940155.000000000313F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
313F000
|
| Size: |
4096
|
|
|
65A0000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2561200222.00000000065A0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
65A0000
|
| Size: |
81920
|
|
|
2963000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1673647013.0000000002963000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2963000
|
| Size: |
4096
|
|
|
158D000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000F.00000002.2558276552.000000000158D000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
158D000
|
| Size: |
4096
|
|
|
153000
|
unkown
|
page write copy
|
|
|
|
| Name: |
0000000A.00000000.1717210787.0000000000153000.00000008.00000001.01000000.00000005.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page write copy
|
| Base address: |
153000
|
| Size: |
8192
|
|
|
18D3000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2474224000.00000000018D3000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D3000
|
| Size: |
598016
|
|
|
1A10000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558856974.0000000001A10000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1A10000
|
| Size: |
40960
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1680627010.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
82C000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.1764755796.000000000082C000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
82C000
|
| Size: |
16384
|
|
|
6E3A000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2562497052.0000000006E3A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6E3A000
|
| Size: |
8192
|
|
|
1A27000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558888520.0000000001A27000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1A27000
|
| Size: |
32768
|
|
|
19F0000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000F.00000002.2558799409.00000000019F0000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
19F0000
|
| Size: |
65536
|
|
|
197C000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2473746085.000000000197C000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
197C000
|
| Size: |
585728
|
|
|
3D40000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2465949008.0000000003D40000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D40000
|
| Size: |
507904
|
|
|
1587000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467402516.0000000001587000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1587000
|
| Size: |
376832
|
|
|
3272000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000003.1707682397.0000000003272000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3272000
|
| Size: |
32768
|
|
|
461000
|
unkown
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1688830314.0000000000461000.00000004.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page read and write
|
| Base address: |
461000
|
| Size: |
4096
|
|
|
1570000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558175040.0000000001570000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1570000
|
| Size: |
8192
|
|
|
6ACE000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2562175742.0000000006ACE000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6ACE000
|
| Size: |
8192
|
|
|
326A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000003.1707445365.000000000326A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
326A000
|
| Size: |
73728
|
|
|
5833000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560081808.0000000005833000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5833000
|
| Size: |
12288
|
|
|
18DA000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2474087816.00000000018DA000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18DA000
|
| Size: |
593920
|
|
|
3DA5000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467046253.0000000003DA5000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3DA5000
|
| Size: |
344064
|
|
|
167D000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2469863422.000000000167D000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
167D000
|
| Size: |
458752
|
|
|
1981000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2481551433.0000000001981000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1981000
|
| Size: |
684032
|
|
|
3D01000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2466550226.0000000003D01000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D01000
|
| Size: |
307200
|
|
|
B1A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000003.1712899015.0000000000B1A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B1A000
|
| Size: |
57344
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1684894649.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
98F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1689259751.000000000098F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
98F000
|
| Size: |
4096
|
|
|
3715000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1718909458.0000000003715000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3715000
|
| Size: |
1974272
|
|
|
1972000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2472922503.0000000001972000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1972000
|
| Size: |
557056
|
|
|
500F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1708390216.000000000500F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
500F000
|
| Size: |
4096
|
|
|
162D000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467004229.000000000162D000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
162D000
|
| Size: |
368640
|
|
|
18D4000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2486472875.00000000018D4000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D4000
|
| Size: |
733184
|
|
|
169B000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2470700886.000000000169B000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
169B000
|
| Size: |
966656
|
|
|
3E04000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2466153833.0000000003E04000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3E04000
|
| Size: |
561152
|
|
|
6E8E000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2562743734.0000000006E8E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6E8E000
|
| Size: |
40960
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1722597466.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
245760
|
|
|
18D5000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2473092151.00000000018D5000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D5000
|
| Size: |
561152
|
|
|
2968000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1682274650.0000000002968000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2968000
|
| Size: |
65536
|
|
|
327D000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1708313135.000000000327D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
327D000
|
| Size: |
16384
|
|
|
6E76000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2562656758.0000000006E76000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6E76000
|
| Size: |
12288
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1723564539.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
2D68000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.1765025060.0000000002D68000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2D68000
|
| Size: |
49152
|
|
|
65A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1676549680.000000000065A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
65A000
|
| Size: |
4096
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2470317525.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
466944
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1672791139.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
323F000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558963044.000000000323F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
323F000
|
| Size: |
4096
|
|
|
5A4B000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560453441.0000000005A4B000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5A4B000
|
| Size: |
20480
|
|
|
649D000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560900533.000000000649D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
649D000
|
| Size: |
12288
|
|
|
16B7000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2471498256.00000000016B7000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
16B7000
|
| Size: |
507904
|
|
|
57B1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2559612384.00000000057B1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
57B1000
|
| Size: |
16384
|
|
|
18DB000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2483449035.00000000018DB000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18DB000
|
| Size: |
700416
|
|
|
296F000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1668125673.000000000296F000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
296F000
|
| Size: |
61440
|
|
|
18D6000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2478208454.00000000018D6000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D6000
|
| Size: |
659456
|
|
|
3D01000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2466320135.0000000003D01000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D01000
|
| Size: |
864256
|
|
|
B0B000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000003.1713369592.0000000000B0B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B0B000
|
| Size: |
57344
|
|
|
1787000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2470859335.0000000001787000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1787000
|
| Size: |
978944
|
|
|
B29000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713959283.0000000000B29000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B29000
|
| Size: |
4096
|
|
|
15A2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2469109310.00000000015A2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
15A2000
|
| Size: |
434176
|
|
|
5990000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000F.00000002.2560243967.0000000005990000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
5990000
|
| Size: |
4096
|
|
|
3D01000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2466012853.0000000003D01000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D01000
|
| Size: |
786432
|
|
|
B2B000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000003.1712899015.0000000000B2B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B2B000
|
| Size: |
20480
|
|
|
5A60000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560526706.0000000005A60000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5A60000
|
| Size: |
4096
|
|
|
6C06000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2562308273.0000000006C06000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6C06000
|
| Size: |
368640
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1725166618.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
1E5000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1688718797.00000000001E5000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1E5000
|
| Size: |
16384
|
|
|
5DDE000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560880782.0000000005DDE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5DDE000
|
| Size: |
8192
|
|
|
6E83000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2562694820.0000000006E83000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6E83000
|
| Size: |
16384
|
|
|
5CDE000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560714612.0000000005CDE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5CDE000
|
| Size: |
8192
|
|
|
1663000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2468803152.0000000001663000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1663000
|
| Size: |
421888
|
|
|
296F000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1684913630.000000000296F000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
296F000
|
| Size: |
45056
|
|
|
15C1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2471241516.00000000015C1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
15C1000
|
| Size: |
495616
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1724813945.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
173A000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2469604138.000000000173A000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
173A000
|
| Size: |
4096
|
|
|
14F000
|
unkown
|
page write copy
|
|
|
|
| Name: |
0000000A.00000000.1717210787.000000000014F000.00000008.00000001.01000000.00000005.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page write copy
|
| Base address: |
14F000
|
| Size: |
8192
|
|
|
18D4000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2473964365.00000000018D4000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D4000
|
| Size: |
589824
|
|
|
48EF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1714097639.00000000048EF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
48EF000
|
| Size: |
4096
|
|
|
B08000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713852834.0000000000B08000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B08000
|
| Size: |
12288
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1724920745.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
162D000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467601310.000000000162D000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
162D000
|
| Size: |
774144
|
|
|
18DE000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2473691751.00000000018DE000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18DE000
|
| Size: |
581632
|
|
|
1991000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2485170255.0000000001991000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1991000
|
| Size: |
708608
|
|
|
1840000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558387201.0000000001840000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1840000
|
| Size: |
12288
|
|
|
326A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000003.1707703262.000000000326A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
326A000
|
| Size: |
32768
|
|
|
1587000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467479247.0000000001587000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1587000
|
| Size: |
376832
|
|
|
5780000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2559567811.0000000005780000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
5780000
|
| Size: |
65536
|
|
|
1540000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2470202098.0000000001540000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1540000
|
| Size: |
937984
|
|
|
1997000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2483608440.0000000001997000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1997000
|
| Size: |
700416
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1670085174.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
B1A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000003.1713369592.0000000000B1A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B1A000
|
| Size: |
32768
|
|
|
40B000
|
unkown
|
page write copy
|
|
|
|
| Name: |
00000000.00000000.1664623261.000000000040B000.00000008.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page write copy
|
| Base address: |
40B000
|
| Size: |
4096
|
|
|
B08000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000003.1712899015.0000000000B08000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B08000
|
| Size: |
69632
|
|
|
1468000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2557567199.0000000001468000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1468000
|
| Size: |
135168
|
|
|
1972000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558639077.0000000001972000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1972000
|
| Size: |
4096
|
|
|
1587000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467554001.0000000001587000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1587000
|
| Size: |
380928
|
|
|
160E000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2469768392.000000000160E000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
160E000
|
| Size: |
913408
|
|
|
197C000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2475804817.000000000197C000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
197C000
|
| Size: |
630784
|
|
|
296F000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1675429377.000000000296F000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
296F000
|
| Size: |
90112
|
|
|
15B3000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2470358917.00000000015B3000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
15B3000
|
| Size: |
466944
|
|
|
8A0000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.1764796428.00000000008A0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
8A0000
|
| Size: |
20480
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467281405.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
745472
|
|
|
1663000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2468924787.0000000001663000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1663000
|
| Size: |
421888
|
|
|
1A24000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2476758390.0000000001A24000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1A24000
|
| Size: |
647168
|
|
|
66A0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2561239785.00000000066A0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
66A0000
|
| Size: |
32768
|
|
|
173B000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2469521509.000000000173B000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
173B000
|
| Size: |
897024
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2470400259.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
471040
|
|
|
120000
|
unkown
|
page readonly
|
|
|
|
| Name: |
0000000A.00000000.1717130782.0000000000120000.00000002.00000001.01000000.00000005.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
120000
|
| Size: |
147456
|
|
|
18DB000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2472359019.00000000018DB000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18DB000
|
| Size: |
536576
|
|
|
2965000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1670136373.0000000002965000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2965000
|
| Size: |
8192
|
|
|
B29000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000003.1712714280.0000000000B29000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B29000
|
| Size: |
4096
|
|
|
496F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1714148064.000000000496F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
496F000
|
| Size: |
4096
|
|
|
18DC000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2482496920.00000000018DC000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18DC000
|
| Size: |
692224
|
|
|
B1A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000003.1713412103.0000000000B1A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B1A000
|
| Size: |
32768
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467199284.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
364544
|
|
|
57B6000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2559612384.00000000057B6000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
57B6000
|
| Size: |
16384
|
|
|
13A1000
|
remote allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000F.00000002.2557164495.00000000013A1000.00000040.00000400.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
remote allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
13A1000
|
| Size: |
4096
|
|
|
13F0000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2557486827.00000000013F0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
13F0000
|
| Size: |
8192
|
|
|
E9C000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1707830758.0000000000E9C000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
E9C000
|
| Size: |
16384
|
|
|
1A2E000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2474909234.0000000001A2E000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1A2E000
|
| Size: |
614400
|
|
|
327A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000003.1707647974.000000000327A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
327A000
|
| Size: |
8192
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1724288448.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
1962000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558515002.0000000001962000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1962000
|
| Size: |
4096
|
|
|
221E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1689342899.000000000221E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
221E000
|
| Size: |
8192
|
|
|
6EAC000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2562847154.0000000006EAC000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6EAC000
|
| Size: |
4096
|
|
|
84F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1689210860.000000000084F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
84F000
|
| Size: |
4096
|
|
|
19DE000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558744996.00000000019DE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
19DE000
|
| Size: |
8192
|
|
|
296E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1665978934.000000000296E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
296E000
|
| Size: |
8192
|
|
|
57BD000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2559612384.00000000057BD000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
57BD000
|
| Size: |
16384
|
|
|
90000
|
unkown
|
page readonly
|
|
|
|
| Name: |
0000000A.00000000.1717025986.0000000000090000.00000002.00000001.01000000.00000005.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
90000
|
| Size: |
4096
|
|
|
16CD000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2469422912.00000000016CD000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
16CD000
|
| Size: |
897024
|
|
|
B0C000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713892780.0000000000B0C000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B0C000
|
| Size: |
53248
|
|
|
1531000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2468098488.0000000001531000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1531000
|
| Size: |
811008
|
|
|
1968000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2472194095.0000000001968000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1968000
|
| Size: |
528384
|
|
|
3388000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558991988.0000000003388000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3388000
|
| Size: |
28672
|
|
|
65A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1670085174.000000000065A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
65A000
|
| Size: |
4096
|
|
|
510000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1688942495.0000000000510000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
510000
|
| Size: |
4096
|
|
|
3273000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1708279439.0000000003273000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3273000
|
| Size: |
12288
|
|
|
327D000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000003.1707445365.000000000327D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
327D000
|
| Size: |
16384
|
|
|
57C2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2559612384.00000000057C2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
57C2000
|
| Size: |
49152
|
|
|
1990000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558718873.0000000001990000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1990000
|
| Size: |
4096
|
|
|
FE0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1707872441.0000000000FE0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
FE0000
|
| Size: |
4096
|
|
|
296F000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1674884356.000000000296F000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
296F000
|
| Size: |
49152
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1673596551.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
12288
|
|
|
1966000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2472642271.0000000001966000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1966000
|
| Size: |
544768
|
|
|
2860000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1689437372.0000000002860000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2860000
|
| Size: |
40960
|
|
|
B08000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000003.1712714280.0000000000B08000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B08000
|
| Size: |
69632
|
|
|
1583000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000F.00000002.2558224582.0000000001583000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
1583000
|
| Size: |
4096
|
|
|
364F000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467174776.000000000364F000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
364F000
|
| Size: |
131072
|
|
|
18DD000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2483872240.00000000018DD000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18DD000
|
| Size: |
704512
|
|
|
327D000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000003.1707568879.000000000327D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
327D000
|
| Size: |
16384
|
|
|
3210000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1708099409.0000000003210000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3210000
|
| Size: |
4096
|
|
|
2140000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1689279832.0000000002140000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2140000
|
| Size: |
4096
|
|
|
2966000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1682780821.0000000002966000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2966000
|
| Size: |
57344
|
|
|
59E0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560374589.00000000059E0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
59E0000
|
| Size: |
65536
|
|
|
6EA1000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2562847154.0000000006EA1000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6EA1000
|
| Size: |
4096
|
|
|
A0E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713675677.0000000000A0E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A0E000
|
| Size: |
8192
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1677529219.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
5830000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560081808.0000000005830000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5830000
|
| Size: |
4096
|
|
|
B23000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713939370.0000000000B23000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B23000
|
| Size: |
8192
|
|
|
17B0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2471853582.00000000017B0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
17B0000
|
| Size: |
4096
|
|
|
3370000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558991988.0000000003370000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3370000
|
| Size: |
94208
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Tries to detect sandboxes and other dynamic analysis tools (process name or module or function) |
Malware Analysis System Evasion |
Security Software Discovery
|
| May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory) |
Malware Analysis System Evasion |
Security Software Discovery
|
| URLs found in memory or binary data |
Networking |
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1724246314.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
3180000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1707971722.0000000003180000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3180000
|
| Size: |
16384
|
|
|
1000000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1721305319.0000000001000000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1000000
|
| Size: |
180224
|
|
|
1971000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2474022786.0000000001971000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1971000
|
| Size: |
593920
|
|
|
12F7000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2557118128.00000000012F7000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
12F7000
|
| Size: |
36864
|
|
|
1971000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2474285426.0000000001971000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1971000
|
| Size: |
602112
|
|
|
326D000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000003.1707738169.000000000326D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
326D000
|
| Size: |
20480
|
|
|
325C000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000003.1707720169.000000000325C000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
325C000
|
| Size: |
53248
|
|
|
199C000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2485872043.000000000199C000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
199C000
|
| Size: |
716800
|
|
|
18DC000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2472866404.00000000018DC000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18DC000
|
| Size: |
552960
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467439566.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
376832
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1724168626.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
18D2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2472150327.00000000018D2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D2000
|
| Size: |
528384
|
|
|
158000
|
unkown
|
page readonly
|
|
|
|
| Name: |
0000000A.00000000.1717309375.0000000000158000.00000002.00000001.01000000.00000005.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
158000
|
| Size: |
143360
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| URLs found in memory or binary data |
Networking |
|
|
|
15B3000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2470441836.00000000015B3000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
15B3000
|
| Size: |
950272
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1725207722.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
296B000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1686006181.000000000296B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
296B000
|
| Size: |
65536
|
|
|
65A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1675926463.000000000065A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
65A000
|
| Size: |
4096
|
|
|
B25000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000003.1713318997.0000000000B25000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B25000
|
| Size: |
12288
|
|
|
1597000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2468557020.0000000001597000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1597000
|
| Size: |
835584
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1674138119.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1678477043.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
1580000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558199775.0000000001580000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1580000
|
| Size: |
4096
|
|
|
1597000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2468348867.0000000001597000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1597000
|
| Size: |
409600
|
|
|
3EB4000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467143935.0000000003EB4000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3EB4000
|
| Size: |
307200
|
|
|
64B000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1688991109.000000000064B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64B000
|
| Size: |
20480
|
|
|
FEA000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2557082051.0000000000FEA000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
FEA000
|
| Size: |
24576
|
|
|
5794000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2559612384.0000000005794000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
5794000
|
| Size: |
16384
|
|
|
3D34000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2465727808.0000000003D34000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D34000
|
| Size: |
409600
|
|
|
2962000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1685459658.0000000002962000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2962000
|
| Size: |
65536
|
|
|
6E8B000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2562743734.0000000006E8B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6E8B000
|
| Size: |
4096
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1724440835.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
1A2B000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2475213374.0000000001A2B000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1A2B000
|
| Size: |
622592
|
|
|
1982000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2479928365.0000000001982000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1982000
|
| Size: |
671744
|
|
|
14E4000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2557825552.00000000014E4000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
14E4000
|
| Size: |
4096
|
|
|
57F7000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2559953251.00000000057F7000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
57F7000
|
| Size: |
36864
|
|
|
531C000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2559483691.000000000531C000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
531C000
|
| Size: |
16384
|
|
|
18D4000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2476283864.00000000018D4000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D4000
|
| Size: |
638976
|
|
|
1534000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2557999725.0000000001534000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1534000
|
| Size: |
12288
|
|
|
6EA3000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2562847154.0000000006EA3000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6EA3000
|
| Size: |
32768
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2471001078.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
983040
|
|
|
31CE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1708010546.00000000031CE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
31CE000
|
| Size: |
8192
|
|
|
3238000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1708122596.0000000003238000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3238000
|
| Size: |
69632
|
|
|
B2B000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000003.1712714280.0000000000B2B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B2B000
|
| Size: |
20480
|
|
|
3E39000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467111899.0000000003E39000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3E39000
|
| Size: |
331776
|
|
|
296F000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1689460636.000000000296F000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
296F000
|
| Size: |
28672
|
|
|
B29000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000003.1712899015.0000000000B29000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B29000
|
| Size: |
4096
|
|
|
199E000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2486210187.000000000199E000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
199E000
|
| Size: |
724992
|
|
|
29EE000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.1764937858.00000000029EE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
29EE000
|
| Size: |
8192
|
|
|
3D01000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2466781562.0000000003D01000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D01000
|
| Size: |
1011712
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2468020357.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
798720
|
|
|
198C000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2480487389.000000000198C000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
198C000
|
| Size: |
675840
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1668070765.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
2964000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1676685505.0000000002964000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2964000
|
| Size: |
28672
|
|
|
1460000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2557567199.0000000001460000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1460000
|
| Size: |
28672
|
|
|
296F000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1672821981.000000000296F000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
296F000
|
| Size: |
32768
|
|
|
21DE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1689321800.00000000021DE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
21DE000
|
| Size: |
8192
|
|
|
16E9000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467768744.00000000016E9000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
16E9000
|
| Size: |
397312
|
|
|
31F0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1708048280.00000000031F0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
31F0000
|
| Size: |
20480
|
|
|
2966000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1669190694.0000000002966000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2966000
|
| Size: |
24576
|
|
|
18DA000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2477692647.00000000018DA000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18DA000
|
| Size: |
655360
|
|
|
1994000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2486049079.0000000001994000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1994000
|
| Size: |
720896
|
|
|
3277000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1708296735.0000000003277000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3277000
|
| Size: |
12288
|
|
|
15FB000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2468615780.00000000015FB000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
15FB000
|
| Size: |
847872
|
|
|
33B3000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558991988.00000000033B3000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
33B3000
|
| Size: |
57344
|
|
|
FF4000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1722762426.0000000000FF4000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
FF4000
|
| Size: |
4096
|
|
|
66C2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2561239785.00000000066C2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
66C2000
|
| Size: |
3694592
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| URLs found in memory or binary data |
Networking |
|
|
|
F42000
|
unkown
|
page readonly
|
|
|
|
| Name: |
0000000F.00000000.2488050310.0000000000F42000.00000002.00000001.01000000.00000007.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
F42000
|
| Size: |
45056
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Binary contains paths to debug symbols |
Compliance, System Summary |
|
|
|
197F000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2476559024.000000000197F000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
197F000
|
| Size: |
647168
|
|
|
4720000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.1765054594.0000000004720000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4720000
|
| Size: |
20480
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1665932539.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1674830031.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
18D5000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2474993954.00000000018D5000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D5000
|
| Size: |
618496
|
|
|
FEE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1714049203.0000000000FEE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
FEE000
|
| Size: |
8192
|
|
|
169B000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2470599113.000000000169B000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
169B000
|
| Size: |
479232
|
|
|
17B1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2471786064.00000000017B1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
17B1000
|
| Size: |
1036288
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1724487280.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2470134795.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
925696
|
|
|
326E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1708261069.000000000326E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
326E000
|
| Size: |
16384
|
|
|
91000
|
unkown
|
page execute read
|
|
|
|
| Name: |
0000000A.00000000.1717051538.0000000000091000.00000020.00000001.01000000.00000005.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page execute read
|
| Base address: |
91000
|
| Size: |
585728
|
|
|
4F4000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000000.1664657587.00000000004F4000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
4F4000
|
| Size: |
28672
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1723638981.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
19E0000
|
heap
|
page execute and read and write
|
|
|
|
| Name: |
0000000F.00000002.2558773849.00000000019E0000.00000040.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page execute and read and write
|
| Base address: |
19E0000
|
| Size: |
4096
|
|
|
324E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000003.1707445365.000000000324E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
324E000
|
| Size: |
36864
|
|
|
8BDE000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2563353963.0000000008BDE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
8BDE000
|
| Size: |
8192
|
|
|
59A0000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000F.00000002.2560270405.00000000059A0000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
59A0000
|
| Size: |
65536
|
|
|
3D01000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2466209316.0000000003D01000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D01000
|
| Size: |
847872
|
|
|
96F000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.1764865371.000000000096F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
96F000
|
| Size: |
4096
|
|
|
1646000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467974679.0000000001646000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1646000
|
| Size: |
401408
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2468220945.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
811008
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1723520528.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
400000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000002.1688759912.0000000000400000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
400000
|
| Size: |
4096
|
|
|
64BA000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560941434.00000000064BA000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64BA000
|
| Size: |
32768
|
|
|
AFF000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000003.1712714280.0000000000AFF000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
AFF000
|
| Size: |
32768
|
|
|
183E000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558361099.000000000183E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
183E000
|
| Size: |
8192
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1724849430.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
1625000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2470509347.0000000001625000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1625000
|
| Size: |
962560
|
|
|
1960000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558487419.0000000001960000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1960000
|
| Size: |
4096
|
|
|
18D2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2479485090.00000000018D2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D2000
|
| Size: |
667648
|
|
|
35BC000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1689791040.00000000035BC000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
35BC000
|
| Size: |
16384
|
|
|
65A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1668670322.000000000065A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
65A000
|
| Size: |
4096
|
|
|
16B6000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2471689140.00000000016B6000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
16B6000
|
| Size: |
4096
|
|
|
5C70000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560643439.0000000005C70000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
5C70000
|
| Size: |
8192
|
|
|
14E8000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2557910219.00000000014E8000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
14E8000
|
| Size: |
65536
|
|
|
1972000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2472809419.0000000001972000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1972000
|
| Size: |
552960
|
|
|
5C90000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560677315.0000000005C90000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5C90000
|
| Size: |
8192
|
|
|
296C000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1679500223.000000000296C000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
296C000
|
| Size: |
151552
|
|
|
14A4000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2557658309.00000000014A4000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
14A4000
|
| Size: |
8192
|
|
|
4FCE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1708366082.0000000004FCE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4FCE000
|
| Size: |
8192
|
|
|
14B1000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2557658309.00000000014B1000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
14B1000
|
| Size: |
163840
|
|
|
6569000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2561092035.0000000006569000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6569000
|
| Size: |
8192
|
|
|
A37000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713695556.0000000000A37000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
A37000
|
| Size: |
16384
|
|
|
296E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1677567881.000000000296E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
296E000
|
| Size: |
114688
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2471286365.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
499712
|
|
|
194F000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558416118.000000000194F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
194F000
|
| Size: |
4096
|
|
|
1A0E000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2473506244.0000000001A0E000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1A0E000
|
| Size: |
577536
|
|
|
1392000
|
remote allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000F.00000002.2557164495.0000000001392000.00000040.00000400.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
remote allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
1392000
|
| Size: |
57344
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1679391259.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
1999000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2486375248.0000000001999000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1999000
|
| Size: |
729088
|
|
|
327D000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000003.1707647974.000000000327D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
327D000
|
| Size: |
16384
|
|
|
1974000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2476129550.0000000001974000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1974000
|
| Size: |
634880
|
|
|
18D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2473262188.00000000018D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D1000
|
| Size: |
569344
|
|
|
1A3F000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2478715095.0000000001A3F000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1A3F000
|
| Size: |
663552
|
|
|
2190000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1689296759.0000000002190000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2190000
|
| Size: |
4096
|
|
|
296D000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1674167733.000000000296D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
296D000
|
| Size: |
12288
|
|
|
6520000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2561040618.0000000006520000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6520000
|
| Size: |
8192
|
|
|
40B000
|
unkown
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1688830314.000000000040B000.00000004.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page read and write
|
| Base address: |
40B000
|
| Size: |
4096
|
|
|
1596000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2468615780.0000000001596000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1596000
|
| Size: |
4096
|
|
|
5800000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560013024.0000000005800000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
5800000
|
| Size: |
65536
|
|
|
3D01000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2466600255.0000000003D01000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D01000
|
| Size: |
946176
|
|
|
3276000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000003.1707757294.0000000003276000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3276000
|
| Size: |
16384
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1725420392.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
4970000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1714174363.0000000004970000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4970000
|
| Size: |
4096
|
|
|
1965000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2472304232.0000000001965000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1965000
|
| Size: |
532480
|
|
|
1786000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2470927571.0000000001786000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1786000
|
| Size: |
4096
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1723222270.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
F00000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1707850708.0000000000F00000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
F00000
|
| Size: |
4096
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1682758172.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1723599114.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
86C000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.1764777970.000000000086C000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
86C000
|
| Size: |
16384
|
|
|
579B000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2559612384.000000000579B000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
579B000
|
| Size: |
8192
|
|
|
697000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1688991109.0000000000697000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
697000
|
| Size: |
94208
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1670554809.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
57E0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2559923451.00000000057E0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
57E0000
|
| Size: |
36864
|
|
|
3D01000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467079348.0000000003D01000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D01000
|
| Size: |
344064
|
|
|
1508000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2557999725.0000000001508000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1508000
|
| Size: |
81920
|
|
|
32F5000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558991988.00000000032F5000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
32F5000
|
| Size: |
106496
|
|
|
F4E000
|
unkown
|
page readonly
|
|
|
|
| Name: |
0000000F.00000000.2488079898.0000000000F4E000.00000002.00000001.01000000.00000007.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
F4E000
|
| Size: |
4096
|
|
|
610000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1688991109.0000000000610000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
610000
|
| Size: |
32768
|
|
|
197C000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2474158695.000000000197C000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
197C000
|
| Size: |
598016
|
|
|
1105000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1718492031.0000000001105000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1105000
|
| Size: |
131072
|
|
|
2968000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1683203034.0000000002968000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2968000
|
| Size: |
20480
|
|
|
65A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1669143260.000000000065A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
65A000
|
| Size: |
4096
|
|
|
8E0000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.1764836177.00000000008E0000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
8E0000
|
| Size: |
4096
|
|
|
3D89000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2466276997.0000000003D89000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D89000
|
| Size: |
290816
|
|
|
1995000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2485593296.0000000001995000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1995000
|
| Size: |
712704
|
|
|
1984000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2477408383.0000000001984000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1984000
|
| Size: |
651264
|
|
|
41F000
|
unkown
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1688830314.000000000041F000.00000004.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page read and write
|
| Base address: |
41F000
|
| Size: |
53248
|
|
|
296C000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1680688774.000000000296C000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
296C000
|
| Size: |
36864
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1723857712.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
182E000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2471853582.000000000182E000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
182E000
|
| Size: |
524288
|
|
|
15AF000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2470081660.00000000015AF000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
15AF000
|
| Size: |
466944
|
|
|
347F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1689744150.000000000347F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
347F000
|
| Size: |
4096
|
|
|
18D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2474527999.00000000018D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D1000
|
| Size: |
606208
|
|
|
3E1E000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2466473950.0000000003E1E000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3E1E000
|
| Size: |
921600
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1724044047.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
810000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713516411.0000000000810000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
810000
|
| Size: |
4096
|
|
|
64A0000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560920085.00000000064A0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64A0000
|
| Size: |
4096
|
|
|
296D000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1666927853.000000000296D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
296D000
|
| Size: |
69632
|
|
|
1000000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1719970801.0000000001000000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1000000
|
| Size: |
180224
|
|
|
2968000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1667603800.0000000002968000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2968000
|
| Size: |
45056
|
|
|
3D3A000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2465839992.0000000003D3A000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D3A000
|
| Size: |
458752
|
|
|
18DF000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2484683794.00000000018DF000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18DF000
|
| Size: |
708608
|
|
|
18DE000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2475325339.00000000018DE000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18DE000
|
| Size: |
622592
|
|
|
61A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1688991109.000000000061A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
61A000
|
| Size: |
8192
|
|
|
3D99000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2466668013.0000000003D99000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D99000
|
| Size: |
987136
|
|
|
64E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1682243721.000000000064E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
64E000
|
| Size: |
16384
|
|
|
6E6C000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2562589327.0000000006E6C000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6E6C000
|
| Size: |
8192
|
|
|
1587000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467813144.0000000001587000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1587000
|
| Size: |
786432
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2471197812.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
495616
|
|
|
1662000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2469422912.0000000001662000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1662000
|
| Size: |
4096
|
|
|
14D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2468386455.00000000014D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14D1000
|
| Size: |
409600
|
|
|
6E30000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2562497052.0000000006E30000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6E30000
|
| Size: |
4096
|
|
|
3D3D000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2465888042.0000000003D3D000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D3D000
|
| Size: |
483328
|
|
|
18D0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2472248165.00000000018D0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D0000
|
| Size: |
532480
|
|
|
5F0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1688964942.00000000005F0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5F0000
|
| Size: |
8192
|
|
|
197A000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2474807771.000000000197A000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
197A000
|
| Size: |
614400
|
|
|
6593000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2561115985.0000000006593000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6593000
|
| Size: |
20480
|
|
|
AFF000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713828970.0000000000AFF000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
AFF000
|
| Size: |
4096
|
|
|
6EAE000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2563021500.0000000006EAE000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6EAE000
|
| Size: |
4096
|
|
|
18D0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2471984918.00000000018D0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D0000
|
| Size: |
524288
|
|
|
57AE000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2559612384.00000000057AE000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
57AE000
|
| Size: |
4096
|
|
|
2969000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1666428604.0000000002969000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2969000
|
| Size: |
16384
|
|
|
18D7000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2480209184.00000000018D7000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D7000
|
| Size: |
671744
|
|
|
6506000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2561020348.0000000006506000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6506000
|
| Size: |
4096
|
|
|
18D5000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2481712703.00000000018D5000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D5000
|
| Size: |
684032
|
|
|
3A51000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.1723069509.0000000003A51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3A51000
|
| Size: |
4096
|
|
|
168A000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2467679822.000000000168A000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
168A000
|
| Size: |
786432
|
|
|
401000
|
unkown
|
page execute read
|
|
|
|
| Name: |
00000000.00000000.1664593426.0000000000401000.00000020.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page execute read
|
| Base address: |
401000
|
| Size: |
28672
|
|
|
18D4000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2486292010.00000000018D4000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D4000
|
| Size: |
729088
|
|
|
1584000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2558249017.0000000001584000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1584000
|
| Size: |
4096
|
|
|
1972000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2473908711.0000000001972000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1972000
|
| Size: |
589824
|
|
|
FF0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1714074591.0000000000FF0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
FF0000
|
| Size: |
4096
|
|
|
65A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1674830031.000000000065A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
65A000
|
| Size: |
4096
|
|
|
8ADF000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2563282227.0000000008ADF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
8ADF000
|
| Size: |
4096
|
|
|
1964000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2472414997.0000000001964000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1964000
|
| Size: |
536576
|
|
|
18D5000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2474729371.00000000018D5000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
18D5000
|
| Size: |
610304
|
|
|
199D000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2484269555.000000000199D000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
199D000
|
| Size: |
704512
|
|
|
22B0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1689365622.00000000022B0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
22B0000
|
| Size: |
8192
|
|
|
B1A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000003.1712714280.0000000000B1A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B1A000
|
| Size: |
57344
|
|
|
B2B000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000003.1713249667.0000000000B2B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B2B000
|
| Size: |
20480
|
|
|
196E000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2473448143.000000000196E000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
196E000
|
| Size: |
573440
|
|
|
2965000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1674167733.0000000002965000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2965000
|
| Size: |
28672
|
|
|
5C10000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560559690.0000000005C10000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
5C10000
|
| Size: |
24576
|
|
|
3249000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000003.1707445365.0000000003249000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3249000
|
| Size: |
4096
|
|
|
4F8F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1708334387.0000000004F8F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4F8F000
|
| Size: |
4096
|
|
|
2964000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1675981036.0000000002964000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2964000
|
| Size: |
36864
|
|
|
57F0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2559953251.00000000057F0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
57F0000
|
| Size: |
24576
|
|
|
6586000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2561115985.0000000006586000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6586000
|
| Size: |
40960
|
|
|
659E000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2561174247.000000000659E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
659E000
|
| Size: |
4096
|
|
|
17FD000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2470927571.00000000017FD000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
17FD000
|
| Size: |
495616
|
|
|
74E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1689182617.000000000074E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
74E000
|
| Size: |
8192
|
|
|
30DE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1707928634.00000000030DE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
30DE000
|
| Size: |
8192
|
|
|
5980000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560214803.0000000005980000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5980000
|
| Size: |
4096
|
|
|
5D1E000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2560758130.0000000005D1E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5D1E000
|
| Size: |
8192
|
|
|
6E99000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2562847154.0000000006E99000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6E99000
|
| Size: |
16384
|
|
|
A7F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.1713743110.0000000000A7F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A7F000
|
| Size: |
4096
|
|
|
3D7F000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2466075167.0000000003D7F000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D7F000
|
| Size: |
827392
|
|
|
1538000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2469032601.0000000001538000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1538000
|
| Size: |
868352
|
|
|
15A2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000003.2469689610.00000000015A2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
15A2000
|
| Size: |
901120
|
|
|
14E0000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2557781688.00000000014E0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
14E0000
|
| Size: |
4096
|
|
|
324E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000003.00000002.1708172382.000000000324E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
3
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
324E000
|
| Size: |
8192
|
|
|
5790000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000F.00000002.2559612384.0000000005790000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
15
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
5790000
|
| Size: |
12288
|
|
|
296A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000003.1684275226.000000000296A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
296A000
|
| Size: |
36864
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| URLs found in memory or binary data |
Networking |
|
|
