Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Bankcopyscanneddoc.exe
|
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\Bankcopyscanneddoc.exe.log
|
ASCII text, with CRLF line terminators
|
dropped
|
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\Bankcopyscanneddoc.exe
|
"C:\Users\user\Desktop\Bankcopyscanneddoc.exe"
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Text
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/sc/sct
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/04/security/sc/dk
|
unknown
|
||
|
http://tempuri.org/Entity/Id23ResponseD
|
unknown
|
||
|
http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#HexBinary
|
unknown
|
||
|
http://tempuri.org/Entity/Id12Response
|
unknown
|
||
|
http://tempuri.org/
|
unknown
|
||
|
http://tempuri.org/Entity/Id2Response
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/sc/dk/p_sha1
|
unknown
|
||
|
http://tempuri.org/Entity/Id21Response
|
unknown
|
||
|
http://schemas.xmlsoap.org/2005/02/trust/spnego#GSS_Wrap
|
unknown
|
||
|
http://tempuri.org/Entity/Id9
|
unknown
|
||
|
http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLID
|
unknown
|
||
|
http://tempuri.org/Entity/Id8
|
unknown
|
||
|
http://tempuri.org/Entity/Id5
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wsat/Prepare
|
unknown
|
||
|
http://tempuri.org/Entity/Id4
|
unknown
|
||
|
http://tempuri.org/Entity/Id7
|
unknown
|
||
|
http://tempuri.org/Entity/Id6
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust#BinarySecret
|
unknown
|
||
|
http://tempuri.org/Entity/Id19Response
|
unknown
|
||
|
http://docs.oasis-open.org/wss/oasis-wss-rel-token-profile-1.0.pdf#license
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust/RSTR/Issue
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wsat/Aborted
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/TerminateSequence
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wsat/fault
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wsat
|
unknown
|
||
|
http://docs.oasis-open.org/wss/oasis-wss-soap-message-security-1.1#EncryptedKey
|
unknown
|
||
|
http://tempuri.org/Entity/Id15Response
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust/RSTR/SCT/Renew
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wscoor/Register
|
unknown
|
||
|
http://tempuri.org/Entity/Id6Response
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/04/trust/SymmetricKey
|
unknown
|
||
|
https://api.ip.sb/ip
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/04/sc
|
unknown
|
||
|
http://tempuri.org/Entity/Id1ResponseD
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wsat/Volatile2PC
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust/RSTR/SCT/Cancel
|
unknown
|
||
|
http://tempuri.org/Entity/Id9Response
|
unknown
|
||
|
http://tempuri.org/Entity/Id20
|
unknown
|
||
|
http://tempuri.org/Entity/Id21
|
unknown
|
||
|
http://tempuri.org/Entity/Id22
|
unknown
|
||
|
http://docs.oasis-open.org/wss/oasis-wss-kerberos-token-profile-1.1#Kerberosv5APREQSHA1
|
unknown
|
||
|
http://tempuri.org/Entity/Id23
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/04/security/trust/CK/PSHA1
|
unknown
|
||
|
http://tempuri.org/Entity/Id24
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/04/security/trust/RSTR/Issue
|
unknown
|
||
|
http://tempuri.org/Entity/Id24Response
|
unknown
|
||
|
http://tempuri.org/Entity/Id1Response
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/AckRequested
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wsat/ReadOnly
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wsat/Replay
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust/tlsnego
|
unknown
|
||
|
http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wsat/Durable2PC
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/04/security/trust/SymmetricKey
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/08/addressing
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Issue
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wsat/Completion
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/04/trust
|
unknown
|
||
|
http://tempuri.org/Entity/Id10
|
unknown
|
||
|
http://tempuri.org/Entity/Id11
|
unknown
|
||
|
http://tempuri.org/Entity/Id12
|
unknown
|
||
|
http://tempuri.org/Entity/Id16Response
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wscoor/CreateCoordinationContextResponse
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust/RST/SCT/Cancel
|
unknown
|
||
|
http://tempuri.org/Entity/Id13
|
unknown
|
||
|
http://tempuri.org/Entity/Id14
|
unknown
|
||
|
http://tempuri.org/Entity/Id15
|
unknown
|
||
|
http://tempuri.org/Entity/Id16
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust/Nonce
|
unknown
|
||
|
http://tempuri.org/Entity/Id17
|
unknown
|
||
|
http://tempuri.org/Entity/Id18
|
unknown
|
||
|
http://tempuri.org/Entity/Id5Response
|
unknown
|
||
|
http://tempuri.org/Entity/Id19
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/dns
|
unknown
|
||
|
http://tempuri.org/Entity/Id10Response
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust/Renew
|
unknown
|
||
|
http://tempuri.org/Entity/Id8Response
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/04/trust/PublicKey
|
unknown
|
||
|
http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.1#SAMLV2.0
|
unknown
|
||
|
http://docs.oasis-open.org/wss/oasis-wss-saml-token-profile-1.0#SAMLAssertionID
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/04/security/trust/RST/SCT
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2006/02/addressingidentity
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/envelope/
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust/PublicKey
|
unknown
|
||
|
http://docs.oasis-open.org/wss/oasis-wss-soap-message-security-1.1#EncryptedKeySHA1
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wsat/Rollback
|
unknown
|
||
|
http://tempuri.org/Entity/Id3ResponseD
|
unknown
|
||
|
http://tempuri.org/Entity/Id23Response
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/04/security/trust/RSTR/SCT
|
unknown
|
||
|
http://tempuri.org/D
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/06/addressingex
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/10/wscoor
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/04/security/trust/Nonce
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/rm/CreateSequenceResponse
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2004/08/addressing/fault
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/02/trust/RST/SCT/Renew
|
unknown
|
There are 90 hidden URLs, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
84.38.129.21
|
unknown
|
Latvia
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\RestartManager\Session0000
|
Owner
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\RestartManager\Session0000
|
SessionHash
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\RestartManager\Session0000
|
Sequence
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\RestartManager\Session0000
|
RegFiles0000
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\RestartManager\Session0000
|
RegFilesHash
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
2BA6000
|
trusted library allocation
|
page read and write
|
|
|
|
712000
|
unkown
|
page readonly
|
|
|
|
2F8A000
|
trusted library allocation
|
page read and write
|
||
|
703CF000
|
unkown
|
page readonly
|
||
|
CF0000
|
heap
|
page read and write
|
||
|
30B7000
|
trusted library allocation
|
page read and write
|
||
|
2C01000
|
trusted library allocation
|
page read and write
|
||
|
1034000
|
trusted library allocation
|
page read and write
|
||
|
2F70000
|
trusted library allocation
|
page read and write
|
||
|
2AB0000
|
trusted library allocation
|
page read and write
|
||
|
703B0000
|
unkown
|
page readonly
|
||
|
2CCD000
|
trusted library allocation
|
page read and write
|
||
|
7B02000
|
heap
|
page read and write
|
||
|
7B1E000
|
heap
|
page read and write
|
||
|
5E72000
|
heap
|
page read and write
|
||
|
6150000
|
trusted library allocation
|
page execute and read and write
|
||
|
3EF1000
|
trusted library allocation
|
page read and write
|
||
|
547E000
|
stack
|
page read and write
|
||
|
68FC000
|
stack
|
page read and write
|
||
|
4FA0000
|
heap
|
page execute and read and write
|
||
|
7B42000
|
heap
|
page read and write
|
||
|
C9E000
|
stack
|
page read and write
|
||
|
EDA000
|
heap
|
page read and write
|
||
|
7B64000
|
heap
|
page read and write
|
||
|
7B21000
|
heap
|
page read and write
|
||
|
1062000
|
trusted library allocation
|
page read and write
|
||
|
3B80000
|
trusted library allocation
|
page read and write
|
||
|
4FE0000
|
trusted library allocation
|
page read and write
|
||
|
5600000
|
trusted library allocation
|
page read and write
|
||
|
5EDE000
|
heap
|
page read and write
|
||
|
55D1000
|
trusted library allocation
|
page read and write
|
||
|
3D13000
|
trusted library allocation
|
page read and write
|
||
|
3077000
|
trusted library allocation
|
page read and write
|
||
|
5E9C000
|
heap
|
page read and write
|
||
|
703C6000
|
unkown
|
page readonly
|
||
|
10B6000
|
heap
|
page read and write
|
||
|
3F61000
|
trusted library allocation
|
page read and write
|
||
|
2F7E000
|
trusted library allocation
|
page read and write
|
||
|
698F000
|
trusted library allocation
|
page read and write
|
||
|
3070000
|
trusted library allocation
|
page read and write
|
||
|
5C30000
|
trusted library allocation
|
page read and write
|
||
|
74C2000
|
trusted library allocation
|
page read and write
|
||
|
3C04000
|
trusted library allocation
|
page read and write
|
||
|
2F8E000
|
trusted library allocation
|
page read and write
|
||
|
3CCD000
|
trusted library allocation
|
page read and write
|
||
|
5F20000
|
trusted library allocation
|
page execute and read and write
|
||
|
3CC0000
|
trusted library allocation
|
page read and write
|
||
|
3EE6000
|
trusted library allocation
|
page read and write
|
||
|
5EF1000
|
heap
|
page read and write
|
||
|
3CEB000
|
trusted library allocation
|
page read and write
|
||
|
2B00000
|
heap
|
page execute and read and write
|
||
|
2ABB000
|
trusted library allocation
|
page read and write
|
||
|
5C50000
|
trusted library allocation
|
page read and write
|
||
|
2CC6000
|
trusted library allocation
|
page read and write
|
||
|
5E00000
|
trusted library allocation
|
page read and write
|
||
|
5EB5000
|
heap
|
page read and write
|
||
|
7B5A000
|
heap
|
page read and write
|
||
|
5030000
|
trusted library allocation
|
page read and write
|
||
|
5EC1000
|
heap
|
page read and write
|
||
|
4F50000
|
trusted library allocation
|
page read and write
|
||
|
699F000
|
trusted library allocation
|
page read and write
|
||
|
10BE000
|
heap
|
page read and write
|
||
|
E0E000
|
heap
|
page read and write
|
||
|
3BEB000
|
trusted library allocation
|
page read and write
|
||
|
3F8D000
|
trusted library allocation
|
page read and write
|
||
|
6C0E000
|
stack
|
page read and write
|
||
|
3BA6000
|
trusted library allocation
|
page read and write
|
||
|
560B000
|
trusted library allocation
|
page read and write
|
||
|
61D0000
|
heap
|
page read and write
|
||
|
2F82000
|
trusted library allocation
|
page read and write
|
||
|
75B0000
|
trusted library allocation
|
page execute and read and write
|
||
|
1090000
|
trusted library allocation
|
page execute and read and write
|
||
|
2C81000
|
trusted library allocation
|
page read and write
|
||
|
5E3F000
|
heap
|
page read and write
|
||
|
2C9A000
|
trusted library allocation
|
page read and write
|
||
|
3C76000
|
trusted library allocation
|
page read and write
|
||
|
5005000
|
trusted library allocation
|
page read and write
|
||
|
3BD4000
|
trusted library allocation
|
page read and write
|
||
|
3F6E000
|
trusted library allocation
|
page read and write
|
||
|
5E20000
|
heap
|
page read and write
|
||
|
5E8D000
|
heap
|
page read and write
|
||
|
7B71000
|
heap
|
page read and write
|
||
|
5BD0000
|
trusted library allocation
|
page read and write
|
||
|
756000
|
unkown
|
page readonly
|
||
|
3B11000
|
trusted library allocation
|
page read and write
|
||
|
3B47000
|
trusted library allocation
|
page read and write
|
||
|
7B34000
|
heap
|
page read and write
|
||
|
1052000
|
trusted library allocation
|
page read and write
|
||
|
74C5000
|
trusted library allocation
|
page read and write
|
||
|
4FD0000
|
heap
|
page read and write
|
||
|
3B31000
|
trusted library allocation
|
page read and write
|
||
|
3B58000
|
trusted library allocation
|
page read and write
|
||
|
2AF0000
|
trusted library allocation
|
page read and write
|
||
|
2C8C000
|
trusted library allocation
|
page read and write
|
||
|
5E94000
|
heap
|
page read and write
|
||
|
60F0000
|
trusted library allocation
|
page read and write
|
||
|
4F60000
|
trusted library allocation
|
page read and write
|
||
|
2ADD000
|
trusted library allocation
|
page read and write
|
||
|
5E10000
|
trusted library allocation
|
page read and write
|
||
|
3F1E000
|
trusted library allocation
|
page read and write
|
||
|
5270000
|
heap
|
page read and write
|
||
|
6979000
|
trusted library allocation
|
page read and write
|
||
|
7BBC000
|
heap
|
page read and write
|
||
|
2CA7000
|
trusted library allocation
|
page read and write
|
||
|
2AD6000
|
trusted library allocation
|
page read and write
|
||
|
7B9E000
|
heap
|
page read and write
|
||
|
3BC4000
|
trusted library allocation
|
page read and write
|
||
|
30DA000
|
trusted library allocation
|
page read and write
|
||
|
5CB0000
|
trusted library allocation
|
page execute and read and write
|
||
|
2960000
|
heap
|
page read and write
|
||
|
105A000
|
trusted library allocation
|
page execute and read and write
|
||
|
3CD4000
|
trusted library allocation
|
page read and write
|
||
|
307C000
|
trusted library allocation
|
page read and write
|
||
|
7BA2000
|
heap
|
page read and write
|
||
|
5F30000
|
trusted library allocation
|
page execute and read and write
|
||
|
5F00000
|
heap
|
page read and write
|
||
|
2D58000
|
trusted library allocation
|
page read and write
|
||
|
3081000
|
trusted library allocation
|
page read and write
|
||
|
2C8E000
|
trusted library allocation
|
page read and write
|
||
|
3EFB000
|
trusted library allocation
|
page read and write
|
||
|
E00000
|
heap
|
page read and write
|
||
|
5BC0000
|
trusted library allocation
|
page read and write
|
||
|
3F18000
|
trusted library allocation
|
page read and write
|
||
|
3FA6000
|
trusted library allocation
|
page read and write
|
||
|
55FA000
|
trusted library allocation
|
page read and write
|
||
|
3BF2000
|
trusted library allocation
|
page read and write
|
||
|
3BFE000
|
trusted library allocation
|
page read and write
|
||
|
3D05000
|
trusted library allocation
|
page read and write
|
||
|
3B99000
|
trusted library allocation
|
page read and write
|
||
|
55EE000
|
trusted library allocation
|
page read and write
|
||
|
1056000
|
trusted library allocation
|
page execute and read and write
|
||
|
3BC9000
|
trusted library allocation
|
page read and write
|
||
|
E44000
|
heap
|
page read and write
|
||
|
55F1000
|
trusted library allocation
|
page read and write
|
||
|
5C20000
|
trusted library allocation
|
page read and write
|
||
|
B60000
|
heap
|
page read and write
|
||
|
5605000
|
trusted library allocation
|
page read and write
|
||
|
609C000
|
stack
|
page read and write
|
||
|
3F08000
|
trusted library allocation
|
page read and write
|
||
|
6120000
|
trusted library allocation
|
page read and write
|
||
|
2F10000
|
trusted library allocation
|
page read and write
|
||
|
2A6E000
|
stack
|
page read and write
|
||
|
6970000
|
trusted library allocation
|
page read and write
|
||
|
3B56000
|
trusted library allocation
|
page read and write
|
||
|
7EBE000
|
stack
|
page read and write
|
||
|
3C46000
|
trusted library allocation
|
page read and write
|
||
|
1065000
|
trusted library allocation
|
page execute and read and write
|
||
|
2CBB000
|
trusted library allocation
|
page read and write
|
||
|
2B11000
|
trusted library allocation
|
page read and write
|
||
|
2950000
|
trusted library allocation
|
page read and write
|
||
|
10A0000
|
trusted library allocation
|
page read and write
|
||
|
2CD7000
|
trusted library allocation
|
page read and write
|
||
|
742000
|
unkown
|
page readonly
|
||
|
526E000
|
stack
|
page read and write
|
||
|
500A000
|
trusted library allocation
|
page read and write
|
||
|
5E4C000
|
heap
|
page read and write
|
||
|
5BE0000
|
trusted library allocation
|
page read and write
|
||
|
6123000
|
trusted library allocation
|
page read and write
|
||
|
7CC0000
|
heap
|
page read and write
|
||
|
3EC3000
|
trusted library allocation
|
page read and write
|
||
|
3B5E000
|
trusted library allocation
|
page read and write
|
||
|
79AE000
|
stack
|
page read and write
|
||
|
3F2B000
|
trusted library allocation
|
page read and write
|
||
|
3C09000
|
trusted library allocation
|
page read and write
|
||
|
79D9000
|
heap
|
page read and write
|
||
|
7B75000
|
heap
|
page read and write
|
||
|
5053000
|
heap
|
page read and write
|
||
|
6ABD000
|
stack
|
page read and write
|
||
|
5041000
|
trusted library allocation
|
page read and write
|
||
|
3F26000
|
trusted library allocation
|
page read and write
|
||
|
5DE0000
|
trusted library allocation
|
page read and write
|
||
|
EBD000
|
heap
|
page read and write
|
||
|
5F11000
|
heap
|
page read and write
|
||
|
4FE2000
|
trusted library allocation
|
page read and write
|
||
|
693B000
|
stack
|
page read and write
|
||
|
2940000
|
trusted library allocation
|
page read and write
|
||
|
6960000
|
trusted library allocation
|
page read and write
|
||
|
55D6000
|
trusted library allocation
|
page read and write
|
||
|
1030000
|
trusted library allocation
|
page read and write
|
||
|
DFF000
|
stack
|
page read and write
|
||
|
3F80000
|
trusted library allocation
|
page read and write
|
||
|
2AE2000
|
trusted library allocation
|
page read and write
|
||
|
69B0000
|
heap
|
page read and write
|
||
|
289E000
|
stack
|
page read and write
|
||
|
79C0000
|
heap
|
page read and write
|
||
|
3EDC000
|
trusted library allocation
|
page read and write
|
||
|
2CD2000
|
trusted library allocation
|
page read and write
|
||
|
79D5000
|
heap
|
page read and write
|
||
|
1050000
|
trusted library allocation
|
page read and write
|
||
|
3B53000
|
trusted library allocation
|
page read and write
|
||
|
7BA8000
|
heap
|
page read and write
|
||
|
3F20000
|
trusted library allocation
|
page read and write
|
||
|
10B0000
|
heap
|
page read and write
|
||
|
60EE000
|
stack
|
page read and write
|
||
|
3CF0000
|
trusted library allocation
|
page read and write
|
||
|
AF7000
|
stack
|
page read and write
|
||
|
74D0000
|
trusted library allocation
|
page read and write
|
||
|
30D5000
|
trusted library allocation
|
page read and write
|
||
|
E41000
|
heap
|
page read and write
|
||
|
3BBF000
|
trusted library allocation
|
page read and write
|
||
|
5ED5000
|
heap
|
page read and write
|
||
|
2F76000
|
trusted library allocation
|
page read and write
|
||
|
30BE000
|
trusted library allocation
|
page read and write
|
||
|
3F12000
|
trusted library allocation
|
page read and write
|
||
|
2C78000
|
trusted library allocation
|
page read and write
|
||
|
7960000
|
trusted library allocation
|
page execute and read and write
|
||
|
5F0C000
|
heap
|
page read and write
|
||
|
CDE000
|
stack
|
page read and write
|
||
|
757E000
|
stack
|
page read and write
|
||
|
3EE1000
|
trusted library allocation
|
page read and write
|
||
|
4F55000
|
trusted library allocation
|
page read and write
|
||
|
5E90000
|
heap
|
page read and write
|
||
|
2F88000
|
trusted library allocation
|
page read and write
|
||
|
5F90000
|
trusted library allocation
|
page execute and read and write
|
||
|
6975000
|
trusted library allocation
|
page read and write
|
||
|
1067000
|
trusted library allocation
|
page execute and read and write
|
||
|
3F75000
|
trusted library allocation
|
page read and write
|
||
|
3CFB000
|
trusted library allocation
|
page read and write
|
||
|
6995000
|
trusted library allocation
|
page read and write
|
||
|
30C9000
|
trusted library allocation
|
page read and write
|
||
|
3B8C000
|
trusted library allocation
|
page read and write
|
||
|
537E000
|
stack
|
page read and write
|
||
|
4C0B000
|
stack
|
page read and write
|
||
|
3B50000
|
trusted library allocation
|
page read and write
|
||
|
795E000
|
stack
|
page read and write
|
||
|
2AAC000
|
stack
|
page read and write
|
||
|
3C1E000
|
trusted library allocation
|
page read and write
|
||
|
747000
|
unkown
|
page readonly
|
||
|
28A9000
|
trusted library allocation
|
page read and write
|
||
|
5008000
|
trusted library allocation
|
page read and write
|
||
|
3F87000
|
trusted library allocation
|
page read and write
|
||
|
5020000
|
trusted library allocation
|
page read and write
|
||
|
5EBA000
|
heap
|
page read and write
|
||
|
6967000
|
trusted library allocation
|
page read and write
|
||
|
3BAD000
|
trusted library allocation
|
page read and write
|
||
|
5000000
|
trusted library allocation
|
page read and write
|
||
|
2F84000
|
trusted library allocation
|
page read and write
|
||
|
703B1000
|
unkown
|
page execute read
|
||
|
2CB4000
|
trusted library allocation
|
page read and write
|
||
|
106B000
|
trusted library allocation
|
page execute and read and write
|
||
|
3BE5000
|
trusted library allocation
|
page read and write
|
||
|
703CD000
|
unkown
|
page read and write
|
||
|
3C01000
|
trusted library allocation
|
page read and write
|
||
|
7590000
|
trusted library allocation
|
page read and write
|
||
|
C50000
|
heap
|
page read and write
|
||
|
5E86000
|
heap
|
page read and write
|
||
|
7F2E0000
|
trusted library allocation
|
page execute and read and write
|
||
|
30D0000
|
trusted library allocation
|
page read and write
|
||
|
2D34000
|
trusted library allocation
|
page read and write
|
||
|
309C000
|
trusted library allocation
|
page read and write
|
||
|
3ED5000
|
trusted library allocation
|
page read and write
|
||
|
5ECD000
|
heap
|
page read and write
|
||
|
74C0000
|
trusted library allocation
|
page read and write
|
||
|
5CA0000
|
trusted library allocation
|
page execute and read and write
|
||
|
55C0000
|
trusted library allocation
|
page read and write
|
||
|
55E2000
|
trusted library allocation
|
page read and write
|
||
|
3F48000
|
trusted library allocation
|
page read and write
|
||
|
1033000
|
trusted library allocation
|
page execute and read and write
|
||
|
5E60000
|
heap
|
page read and write
|
||
|
6C20000
|
trusted library allocation
|
page read and write
|
||
|
3F0F000
|
trusted library allocation
|
page read and write
|
||
|
3F1B000
|
trusted library allocation
|
page read and write
|
||
|
6964000
|
trusted library allocation
|
page read and write
|
||
|
3BB8000
|
trusted library allocation
|
page read and write
|
||
|
698A000
|
trusted library allocation
|
page read and write
|
||
|
3CB5000
|
trusted library allocation
|
page read and write
|
||
|
30E5000
|
trusted library allocation
|
page read and write
|
||
|
1040000
|
trusted library allocation
|
page read and write
|
||
|
760E000
|
stack
|
page read and write
|
||
|
E08000
|
heap
|
page read and write
|
||
|
3B4A000
|
trusted library allocation
|
page read and write
|
||
|
7BB0000
|
heap
|
page read and write
|
||
|
6160000
|
trusted library allocation
|
page read and write
|
||
|
3B3A000
|
trusted library allocation
|
page read and write
|
||
|
79D1000
|
heap
|
page read and write
|
||
|
3B40000
|
trusted library allocation
|
page read and write
|
||
|
3ECA000
|
trusted library allocation
|
page read and write
|
||
|
55BE000
|
stack
|
page read and write
|
||
|
764E000
|
stack
|
page read and write
|
||
|
5E9A000
|
heap
|
page read and write
|
||
|
3CDF000
|
trusted library allocation
|
page read and write
|
||
|
3F91000
|
trusted library allocation
|
page read and write
|
||
|
5EAD000
|
heap
|
page read and write
|
||
|
54BE000
|
stack
|
page read and write
|
||
|
5050000
|
heap
|
page read and write
|
||
|
2F74000
|
trusted library allocation
|
page read and write
|
||
|
5CC0000
|
trusted library allocation
|
page read and write
|
||
|
3F9D000
|
trusted library allocation
|
page read and write
|
||
|
5DF0000
|
trusted library allocation
|
page execute and read and write
|
||
|
69A4000
|
trusted library allocation
|
page read and write
|
||
|
103D000
|
trusted library allocation
|
page execute and read and write
|
||
|
7FA000
|
stack
|
page read and write
|
||
|
2F7A000
|
trusted library allocation
|
page read and write
|
||
|
2AB4000
|
trusted library allocation
|
page read and write
|
||
|
308D000
|
trusted library allocation
|
page read and write
|
||
|
5F7C000
|
stack
|
page read and write
|
||
|
753D000
|
stack
|
page read and write
|
||
|
5EB0000
|
heap
|
page read and write
|
||
|
7B4D000
|
heap
|
page read and write
|
||
|
4FF0000
|
trusted library allocation
|
page execute and read and write
|
||
|
768E000
|
stack
|
page read and write
|
||
|
6B0D000
|
stack
|
page read and write
|
||
|
2AD1000
|
trusted library allocation
|
page read and write
|
||
|
699A000
|
trusted library allocation
|
page read and write
|
||
|
3B1F000
|
trusted library allocation
|
page read and write
|
||
|
6972000
|
trusted library allocation
|
page read and write
|
||
|
5EA7000
|
heap
|
page read and write
|
||
|
522E000
|
stack
|
page read and write
|
||
|
6988000
|
trusted library allocation
|
page read and write
|
||
|
7580000
|
trusted library allocation
|
page read and write
|
||
|
30A9000
|
trusted library allocation
|
page read and write
|
||
|
560E000
|
trusted library allocation
|
page read and write
|
||
|
5EC6000
|
heap
|
page read and write
|
||
|
3F54000
|
trusted library allocation
|
page read and write
|
||
|
104D000
|
trusted library allocation
|
page execute and read and write
|
||
|
FFF000
|
stack
|
page read and write
|
||
|
7B0F000
|
heap
|
page read and write
|
||
|
3CE6000
|
trusted library allocation
|
page read and write
|
||
|
7B6E000
|
heap
|
page read and write
|
||
|
EE7000
|
heap
|
page read and write
|
||
|
5C40000
|
trusted library allocation
|
page read and write
|
||
|
3BDE000
|
trusted library allocation
|
page read and write
|
||
|
4F80000
|
trusted library allocation
|
page read and write
|
||
|
3BF5000
|
trusted library allocation
|
page read and write
|
||
|
55CB000
|
trusted library allocation
|
page read and write
|
||
|
3F02000
|
trusted library allocation
|
page read and write
|
||
|
3BFB000
|
trusted library allocation
|
page read and write
|
||
|
75C0000
|
trusted library allocation
|
page read and write
|
||
|
2CE2000
|
trusted library allocation
|
page read and write
|
||
|
2D83000
|
trusted library allocation
|
page read and write
|
||
|
1080000
|
trusted library allocation
|
page read and write
|
||
|
5BF0000
|
trusted library allocation
|
page execute and read and write
|
||
|
2ACE000
|
trusted library allocation
|
page read and write
|
||
|
710000
|
unkown
|
page readonly
|
||
|
3B63000
|
trusted library allocation
|
page read and write
|
||
|
69A0000
|
trusted library allocation
|
page read and write
|
||
|
1060000
|
trusted library allocation
|
page read and write
|
||
|
30F0000
|
trusted library allocation
|
page read and write
|
||
|
7AC0000
|
heap
|
page read and write
|
||
|
C45000
|
heap
|
page read and write
|
||
|
2CEE000
|
trusted library allocation
|
page read and write
|
||
|
1020000
|
trusted library allocation
|
page read and write
|
||
|
61C0000
|
trusted library allocation
|
page read and write
|
||
|
C40000
|
heap
|
page read and write
|
||
|
5E43000
|
heap
|
page read and write
|
There are 335 hidden memdumps, click here to show them.