Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
SecuriteInfo.com.Win32.PWSX-gen.31738.17793.exe
|
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\SecuriteInfo.com.Win32.PWSX-gen.31738.17793.exe.log
|
CSV text
|
dropped
|
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\SecuriteInfo.com.Win32.PWSX-gen.31738.17793.exe
|
"C:\Users\user\Desktop\SecuriteInfo.com.Win32.PWSX-gen.31738.17793.exe"
|
|
|
|
C:\Windows\Microsoft.NET\Framework\v4.0.30319\cvtres.exe
|
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\CvtRes.exe"
|
|
|
|
C:\Windows\Microsoft.NET\Framework\v4.0.30319\cvtres.exe
|
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\CvtRes.exe"
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://api.telegram
|
unknown
|
|
|
|
https://api.telegram.org/bot7141101422:AAHWm4uo7ZyvbT3-ERU62IF6HA54iYXM-NI/sendDocument
|
149.154.167.220
|
|
|
|
https://api.telegram.org
|
unknown
|
|
|
|
https://api.telegram.org/bot7141101422:AAHWm4uo7ZyvbT3-ERU62IF6HA54iYXM-NI/
|
unknown
|
|
|
|
https://api.ipify.org/
|
104.26.12.205
|
||
|
https://api.ipify.org
|
unknown
|
||
|
https://account.dyn.com/
|
unknown
|
||
|
http://api.telegram.org
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
|
unknown
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
api.telegram.org
|
149.154.167.220
|
|
|
|
api.ipify.org
|
104.26.12.205
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
149.154.167.220
|
api.telegram.org
|
United Kingdom
|
|
|
|
104.26.12.205
|
api.ipify.org
|
United States
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing
|
EnableConsoleTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\CvtRes_RASAPI32
|
EnableFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\CvtRes_RASAPI32
|
EnableAutoFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\CvtRes_RASAPI32
|
EnableConsoleTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\CvtRes_RASAPI32
|
FileTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\CvtRes_RASAPI32
|
ConsoleTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\CvtRes_RASAPI32
|
MaxFileSize
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\CvtRes_RASAPI32
|
FileDirectory
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\CvtRes_RASMANCS
|
EnableFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\CvtRes_RASMANCS
|
EnableAutoFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\CvtRes_RASMANCS
|
EnableConsoleTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\CvtRes_RASMANCS
|
FileTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\CvtRes_RASMANCS
|
ConsoleTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\CvtRes_RASMANCS
|
MaxFileSize
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\CvtRes_RASMANCS
|
FileDirectory
|
There are 5 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
30D8000
|
trusted library allocation
|
page read and write
|
|
|
|
402000
|
remote allocation
|
page execute and read and write
|
|
|
|
3561000
|
trusted library allocation
|
page read and write
|
|
|
|
31B2000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
723000
|
trusted library allocation
|
page execute and read and write
|
||
|
6360000
|
heap
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
6320000
|
trusted library allocation
|
page read and write
|
||
|
4230000
|
trusted library allocation
|
page read and write
|
||
|
69F2000
|
trusted library allocation
|
page read and write
|
||
|
12E0000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
BF90000
|
heap
|
page read and write
|
||
|
40B9000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
BFD3000
|
heap
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
255E000
|
stack
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
5502000
|
trusted library allocation
|
page read and write
|
||
|
6A40000
|
trusted library allocation
|
page read and write
|
||
|
63CE000
|
heap
|
page read and write
|
||
|
6D70000
|
trusted library allocation
|
page read and write
|
||
|
6320000
|
trusted library allocation
|
page read and write
|
||
|
314F000
|
trusted library allocation
|
page read and write
|
||
|
C690000
|
trusted library allocation
|
page read and write
|
||
|
BFAF000
|
heap
|
page read and write
|
||
|
2450000
|
heap
|
page read and write
|
||
|
411D000
|
trusted library allocation
|
page read and write
|
||
|
69D0000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
6A00000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
5ADC000
|
stack
|
page read and write
|
||
|
7D90000
|
trusted library allocation
|
page read and write
|
||
|
6A20000
|
trusted library allocation
|
page read and write
|
||
|
23D0000
|
heap
|
page execute and read and write
|
||
|
69D0000
|
trusted library allocation
|
page read and write
|
||
|
69D0000
|
trusted library allocation
|
page read and write
|
||
|
BFD3000
|
heap
|
page read and write
|
||
|
6A10000
|
trusted library allocation
|
page read and write
|
||
|
6DE0000
|
trusted library allocation
|
page read and write
|
||
|
661D000
|
stack
|
page read and write
|
||
|
6A10000
|
trusted library allocation
|
page read and write
|
||
|
69D0000
|
trusted library allocation
|
page read and write
|
||
|
6AEF000
|
stack
|
page read and write
|
||
|
113E000
|
stack
|
page read and write
|
||
|
55B0000
|
heap
|
page read and write
|
||
|
12DA000
|
trusted library allocation
|
page execute and read and write
|
||
|
6A00000
|
trusted library allocation
|
page read and write
|
||
|
6DC0000
|
trusted library allocation
|
page read and write
|
||
|
63C5000
|
heap
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
69E7000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
4A1E000
|
unkown
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
685E000
|
stack
|
page read and write
|
||
|
6D90000
|
trusted library allocation
|
page read and write
|
||
|
3091000
|
trusted library allocation
|
page read and write
|
||
|
3557000
|
trusted library allocation
|
page read and write
|
||
|
647A000
|
heap
|
page read and write
|
||
|
6DB0000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
6A00000
|
trusted library allocation
|
page read and write
|
||
|
145E000
|
heap
|
page read and write
|
||
|
82A0000
|
heap
|
page read and write
|
||
|
6A36000
|
trusted library allocation
|
page read and write
|
||
|
12A0000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
642D000
|
heap
|
page read and write
|
||
|
5700000
|
trusted library allocation
|
page read and write
|
||
|
6DB0000
|
trusted library allocation
|
page read and write
|
||
|
6DB0000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
A320000
|
heap
|
page read and write
|
||
|
6A10000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
BFD5000
|
heap
|
page read and write
|
||
|
23B0000
|
trusted library section
|
page read and write
|
||
|
6270000
|
trusted library allocation
|
page read and write
|
||
|
354F000
|
trusted library allocation
|
page read and write
|
||
|
7080000
|
heap
|
page read and write
|
||
|
645A000
|
heap
|
page read and write
|
||
|
793000
|
heap
|
page read and write
|
||
|
6489000
|
heap
|
page read and write
|
||
|
6120000
|
heap
|
page read and write
|
||
|
1380000
|
trusted library allocation
|
page read and write
|
||
|
69D0000
|
trusted library allocation
|
page read and write
|
||
|
6A20000
|
trusted library allocation
|
page read and write
|
||
|
582C000
|
stack
|
page read and write
|
||
|
4A5E000
|
unkown
|
page read and write
|
||
|
6880000
|
remote allocation
|
page read and write
|
||
|
40F8000
|
trusted library allocation
|
page read and write
|
||
|
7390000
|
trusted library allocation
|
page read and write
|
||
|
119C000
|
stack
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
D590000
|
trusted library allocation
|
page read and write
|
||
|
353F000
|
trusted library allocation
|
page read and write
|
||
|
6A00000
|
trusted library allocation
|
page read and write
|
||
|
12D2000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
644D000
|
heap
|
page read and write
|
||
|
94E000
|
stack
|
page read and write
|
||
|
626B000
|
stack
|
page read and write
|
||
|
1356000
|
heap
|
page read and write
|
||
|
77D000
|
heap
|
page read and write
|
||
|
6A00000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
12B0000
|
trusted library allocation
|
page read and write
|
||
|
69D0000
|
trusted library allocation
|
page read and write
|
||
|
2561000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
A21E000
|
stack
|
page read and write
|
||
|
B20000
|
heap
|
page read and write
|
||
|
6310000
|
trusted library allocation
|
page read and write
|
||
|
7ED000
|
heap
|
page read and write
|
||
|
6A00000
|
trusted library allocation
|
page read and write
|
||
|
12D6000
|
trusted library allocation
|
page execute and read and write
|
||
|
9B0000
|
heap
|
page read and write
|
||
|
68BE000
|
stack
|
page read and write
|
||
|
6463000
|
heap
|
page read and write
|
||
|
69E1000
|
trusted library allocation
|
page read and write
|
||
|
6DA0000
|
trusted library allocation
|
page execute and read and write
|
||
|
630B000
|
stack
|
page read and write
|
||
|
59DC000
|
unkown
|
page read and write
|
||
|
6DB0000
|
trusted library allocation
|
page read and write
|
||
|
69E2000
|
trusted library allocation
|
page read and write
|
||
|
FEFD0000
|
trusted library allocation
|
page execute and read and write
|
||
|
6DC0000
|
trusted library allocation
|
page read and write
|
||
|
6486000
|
heap
|
page read and write
|
||
|
BFAC000
|
heap
|
page read and write
|
||
|
12EB000
|
trusted library allocation
|
page execute and read and write
|
||
|
30C4000
|
trusted library allocation
|
page read and write
|
||
|
12E5000
|
trusted library allocation
|
page execute and read and write
|
||
|
6A40000
|
trusted library allocation
|
page read and write
|
||
|
4162000
|
trusted library allocation
|
page read and write
|
||
|
30D0000
|
trusted library allocation
|
page read and write
|
||
|
6879000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
6424000
|
heap
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
310A000
|
trusted library allocation
|
page read and write
|
||
|
12E7000
|
trusted library allocation
|
page execute and read and write
|
||
|
6A00000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
431F000
|
trusted library allocation
|
page read and write
|
||
|
6120000
|
trusted library allocation
|
page read and write
|
||
|
465D000
|
stack
|
page read and write
|
||
|
400000
|
remote allocation
|
page execute and read and write
|
||
|
1157000
|
heap
|
page read and write
|
||
|
616C000
|
stack
|
page read and write
|
||
|
2EA0000
|
trusted library allocation
|
page read and write
|
||
|
13AE000
|
heap
|
page read and write
|
||
|
359D000
|
trusted library allocation
|
page read and write
|
||
|
6860000
|
heap
|
page read and write
|
||
|
6DC0000
|
trusted library allocation
|
page read and write
|
||
|
12D0000
|
trusted library allocation
|
page read and write
|
||
|
6A30000
|
trusted library allocation
|
page read and write
|
||
|
55C0000
|
heap
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
6486000
|
heap
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
6120000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
23AD000
|
stack
|
page read and write
|
||
|
6870000
|
trusted library allocation
|
page read and write
|
||
|
6A60000
|
trusted library allocation
|
page read and write
|
||
|
30CC000
|
trusted library allocation
|
page read and write
|
||
|
6B40000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
43A9000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
2581000
|
trusted library allocation
|
page read and write
|
||
|
134E000
|
stack
|
page read and write
|
||
|
6DB0000
|
trusted library allocation
|
page read and write
|
||
|
980000
|
trusted library allocation
|
page execute and read and write
|
||
|
9C90000
|
trusted library allocation
|
page read and write
|
||
|
6DC0000
|
trusted library allocation
|
page read and write
|
||
|
69E3000
|
trusted library allocation
|
page read and write
|
||
|
92000
|
unkown
|
page readonly
|
||
|
734000
|
trusted library allocation
|
page read and write
|
||
|
6DA0000
|
trusted library allocation
|
page read and write
|
||
|
9290000
|
trusted library allocation
|
page read and write
|
||
|
6A16000
|
trusted library allocation
|
page read and write
|
||
|
7390000
|
trusted library allocation
|
page read and write
|
||
|
554C000
|
stack
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
6880000
|
remote allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
13BA000
|
heap
|
page read and write
|
||
|
54E2000
|
trusted library allocation
|
page read and write
|
||
|
AFE000
|
stack
|
page read and write
|
||
|
3107000
|
trusted library allocation
|
page read and write
|
||
|
BFAD000
|
heap
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
12E2000
|
trusted library allocation
|
page read and write
|
||
|
4091000
|
trusted library allocation
|
page read and write
|
||
|
2586000
|
trusted library allocation
|
page read and write
|
||
|
6A00000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
33D6000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
4F9000
|
stack
|
page read and write
|
||
|
1424000
|
heap
|
page read and write
|
||
|
6A10000
|
trusted library allocation
|
page read and write
|
||
|
95B000
|
trusted library allocation
|
page execute and read and write
|
||
|
570000
|
heap
|
page read and write
|
||
|
12C0000
|
trusted library allocation
|
page read and write
|
||
|
B00000
|
trusted library section
|
page read and write
|
||
|
6460000
|
heap
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
6A00000
|
trusted library allocation
|
page read and write
|
||
|
3080000
|
heap
|
page execute and read and write
|
||
|
778000
|
heap
|
page read and write
|
||
|
6D90000
|
trusted library allocation
|
page read and write
|
||
|
31CA000
|
trusted library allocation
|
page read and write
|
||
|
5B1E000
|
stack
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
630000
|
heap
|
page read and write
|
||
|
2E90000
|
trusted library allocation
|
page read and write
|
||
|
B14000
|
trusted library allocation
|
page read and write
|
||
|
718C000
|
stack
|
page read and write
|
||
|
244E000
|
stack
|
page read and write
|
||
|
9290000
|
trusted library allocation
|
page read and write
|
||
|
730000
|
trusted library allocation
|
page read and write
|
||
|
750000
|
heap
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
5BE000
|
stack
|
page read and write
|
||
|
728D000
|
stack
|
page read and write
|
||
|
6DC0000
|
trusted library allocation
|
page read and write
|
||
|
6D90000
|
trusted library allocation
|
page read and write
|
||
|
DE0000
|
heap
|
page read and write
|
||
|
6DB0000
|
trusted library allocation
|
page read and write
|
||
|
54EE000
|
trusted library allocation
|
page read and write
|
||
|
54F6000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
6A20000
|
trusted library allocation
|
page read and write
|
||
|
6B40000
|
trusted library allocation
|
page read and write
|
||
|
6310000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
8890000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
3168000
|
trusted library allocation
|
page read and write
|
||
|
3070000
|
trusted library allocation
|
page read and write
|
||
|
69BF000
|
stack
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
43E000
|
remote allocation
|
page execute and read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
158E000
|
stack
|
page read and write
|
||
|
1398000
|
heap
|
page read and write
|
||
|
31D0000
|
trusted library allocation
|
page read and write
|
||
|
6DC0000
|
trusted library allocation
|
page read and write
|
||
|
13CC000
|
heap
|
page read and write
|
||
|
54DB000
|
trusted library allocation
|
page read and write
|
||
|
6DE0000
|
trusted library allocation
|
page read and write
|
||
|
7F2000
|
heap
|
page read and write
|
||
|
6497000
|
heap
|
page read and write
|
||
|
54F1000
|
trusted library allocation
|
page read and write
|
||
|
6DA0000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
720000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
4C9E000
|
stack
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
8290000
|
heap
|
page read and write
|
||
|
69DD000
|
trusted library allocation
|
page read and write
|
||
|
2FD8000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
B10000
|
trusted library allocation
|
page read and write
|
||
|
62AC000
|
stack
|
page read and write
|
||
|
41A7000
|
trusted library allocation
|
page read and write
|
||
|
49DE000
|
unkown
|
page read and write
|
||
|
592E000
|
stack
|
page read and write
|
||
|
11C7000
|
heap
|
page read and write
|
||
|
D7A000
|
stack
|
page read and write
|
||
|
6FDC000
|
stack
|
page read and write
|
||
|
6DC0000
|
trusted library allocation
|
page read and write
|
||
|
1300000
|
trusted library allocation
|
page read and write
|
||
|
55A0000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
90000
|
unkown
|
page readonly
|
||
|
6A50000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
55C1000
|
heap
|
page read and write
|
||
|
54FD000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
11C5000
|
heap
|
page read and write
|
||
|
4364000
|
trusted library allocation
|
page read and write
|
||
|
646D000
|
heap
|
page read and write
|
||
|
671E000
|
stack
|
page read and write
|
||
|
6DA0000
|
trusted library allocation
|
page read and write
|
||
|
62B0000
|
trusted library allocation
|
page read and write
|
||
|
518D000
|
stack
|
page read and write
|
||
|
6B40000
|
trusted library allocation
|
page read and write
|
||
|
990000
|
trusted library allocation
|
page read and write
|
||
|
6A50000
|
trusted library allocation
|
page execute and read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
6A40000
|
trusted library allocation
|
page read and write
|
||
|
6DA0000
|
trusted library allocation
|
page read and write
|
||
|
10F8000
|
stack
|
page read and write
|
||
|
6DB0000
|
heap
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
69F1000
|
trusted library allocation
|
page read and write
|
||
|
6A20000
|
trusted library allocation
|
page read and write
|
||
|
313B000
|
trusted library allocation
|
page read and write
|
||
|
6DD0000
|
trusted library allocation
|
page read and write
|
||
|
BFAF000
|
heap
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
6DA0000
|
trusted library allocation
|
page read and write
|
||
|
BFC4000
|
heap
|
page read and write
|
||
|
641F000
|
heap
|
page read and write
|
||
|
69D0000
|
trusted library allocation
|
page read and write
|
||
|
12B4000
|
trusted library allocation
|
page read and write
|
||
|
6CEE000
|
stack
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
1350000
|
heap
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
6459000
|
heap
|
page read and write
|
||
|
A690000
|
trusted library allocation
|
page read and write
|
||
|
6B40000
|
trusted library allocation
|
page read and write
|
||
|
724000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
6496000
|
heap
|
page read and write
|
||
|
CB90000
|
trusted library allocation
|
page read and write
|
||
|
69DD000
|
trusted library allocation
|
page read and write
|
||
|
6DA0000
|
trusted library allocation
|
page read and write
|
||
|
6120000
|
trusted library allocation
|
page read and write
|
||
|
1150000
|
heap
|
page read and write
|
||
|
6B30000
|
trusted library allocation
|
page execute and read and write
|
||
|
69D0000
|
trusted library allocation
|
page read and write
|
||
|
55A0000
|
trusted library allocation
|
page read and write
|
||
|
43F0000
|
trusted library allocation
|
page read and write
|
||
|
6A2D000
|
stack
|
page read and write
|
||
|
6A30000
|
trusted library allocation
|
page read and write
|
||
|
559E000
|
stack
|
page read and write
|
||
|
2579000
|
trusted library allocation
|
page read and write
|
||
|
6434000
|
heap
|
page read and write
|
||
|
23C0000
|
heap
|
page execute and read and write
|
||
|
9C90000
|
trusted library allocation
|
page read and write
|
||
|
6A1E000
|
trusted library allocation
|
page read and write
|
||
|
3147000
|
trusted library allocation
|
page read and write
|
||
|
63A0000
|
heap
|
page read and write
|
||
|
63B3000
|
heap
|
page read and write
|
||
|
DF0000
|
heap
|
page read and write
|
||
|
6A10000
|
trusted library allocation
|
page read and write
|
||
|
34FC000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
BFD2000
|
heap
|
page read and write
|
||
|
2FCE000
|
stack
|
page read and write
|
||
|
6DB0000
|
trusted library allocation
|
page read and write
|
||
|
8890000
|
trusted library allocation
|
page read and write
|
||
|
785000
|
heap
|
page read and write
|
||
|
69D0000
|
trusted library allocation
|
page read and write
|
||
|
ABF000
|
stack
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
42DA000
|
trusted library allocation
|
page read and write
|
||
|
6D90000
|
trusted library allocation
|
page read and write
|
||
|
6B40000
|
trusted library allocation
|
page read and write
|
||
|
6A00000
|
trusted library allocation
|
page read and write
|
||
|
69D0000
|
trusted library allocation
|
page read and write
|
||
|
6A70000
|
trusted library allocation
|
page read and write
|
||
|
6436000
|
heap
|
page read and write
|
||
|
75E000
|
heap
|
page read and write
|
||
|
6A00000
|
trusted library allocation
|
page read and write
|
||
|
710000
|
trusted library allocation
|
page read and write
|
||
|
BA90000
|
trusted library allocation
|
page read and write
|
||
|
154000
|
unkown
|
page readonly
|
||
|
6880000
|
remote allocation
|
page read and write
|
||
|
A11E000
|
stack
|
page read and write
|
||
|
738E000
|
stack
|
page read and write
|
||
|
1370000
|
trusted library allocation
|
page read and write
|
||
|
2E70000
|
heap
|
page read and write
|
||
|
636A000
|
heap
|
page read and write
|
||
|
6443000
|
heap
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
6454000
|
heap
|
page read and write
|
||
|
8291000
|
heap
|
page read and write
|
||
|
7D90000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
6D6E000
|
stack
|
page read and write
|
||
|
6D2E000
|
stack
|
page read and write
|
||
|
B090000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
560000
|
heap
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
6B40000
|
trusted library allocation
|
page read and write
|
||
|
30D4000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
644F000
|
heap
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
69D0000
|
trusted library allocation
|
page read and write
|
||
|
2EC0000
|
heap
|
page read and write
|
||
|
12BD000
|
trusted library allocation
|
page execute and read and write
|
||
|
55B4000
|
heap
|
page read and write
|
||
|
69D0000
|
trusted library allocation
|
page read and write
|
||
|
31CC000
|
trusted library allocation
|
page read and write
|
||
|
6A00000
|
trusted library allocation
|
page read and write
|
||
|
957000
|
trusted library allocation
|
page execute and read and write
|
||
|
7390000
|
trusted library allocation
|
page read and write
|
||
|
55A0000
|
trusted library allocation
|
page read and write
|
||
|
41EB000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
54DE000
|
trusted library allocation
|
page read and write
|
||
|
4B9E000
|
stack
|
page read and write
|
||
|
11C0000
|
heap
|
page read and write
|
||
|
63CE000
|
heap
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
4275000
|
trusted library allocation
|
page read and write
|
||
|
1360000
|
trusted library allocation
|
page execute and read and write
|
||
|
3143000
|
trusted library allocation
|
page read and write
|
||
|
6DF0000
|
trusted library allocation
|
page read and write
|
||
|
12B3000
|
trusted library allocation
|
page execute and read and write
|
||
|
675E000
|
stack
|
page read and write
|
||
|
69D3000
|
trusted library allocation
|
page read and write
|
||
|
168B000
|
stack
|
page read and write
|
||
|
1390000
|
heap
|
page read and write
|
||
|
A220000
|
heap
|
page read and write
|
||
|
A690000
|
trusted library allocation
|
page read and write
|
||
|
2E6C000
|
stack
|
page read and write
|
||
|
69D0000
|
trusted library allocation
|
page read and write
|
||
|
54D0000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
6A00000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
6A30000
|
trusted library allocation
|
page read and write
|
||
|
314B000
|
trusted library allocation
|
page read and write
|
||
|
5FE000
|
stack
|
page read and write
|
||
|
5720000
|
heap
|
page execute and read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
1FC000
|
stack
|
page read and write
|
||
|
343E000
|
trusted library allocation
|
page read and write
|
||
|
6DA0000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
3137000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
313F000
|
trusted library allocation
|
page read and write
|
||
|
30FA000
|
trusted library allocation
|
page read and write
|
||
|
13CA000
|
heap
|
page read and write
|
||
|
12CD000
|
trusted library allocation
|
page execute and read and write
|
||
|
69E0000
|
trusted library allocation
|
page read and write
|
||
|
1416000
|
heap
|
page read and write
|
There are 454 hidden memdumps, click here to show them.