Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
KRcLFIz5PCQunB7.exe
|
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\KRcLFIz5PCQunB7.exe.log
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Roaming\WindowsUpdates\outlooks.exe
|
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506
|
Microsoft Cabinet archive data, Windows 2000/XP setup, 71954 bytes, 1 file, at 0x2c +A "authroot.stl", number 1, 6 datablocks,
0x1 compression
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\outlooks.exe.log
|
ASCII text, with CRLF line terminators
|
dropped
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\KRcLFIz5PCQunB7.exe
|
"C:\Users\user\Desktop\KRcLFIz5PCQunB7.exe"
|
|
|
|
C:\Users\user\Desktop\KRcLFIz5PCQunB7.exe
|
"C:\Users\user\Desktop\KRcLFIz5PCQunB7.exe"
|
|
|
|
C:\Users\user\Desktop\KRcLFIz5PCQunB7.exe
|
"C:\Users\user\Desktop\KRcLFIz5PCQunB7.exe"
|
|
|
|
C:\Windows\SysWOW64\schtasks.exe
|
"schtasks" /create /tn "Outlooks" /sc ONLOGON /tr "C:\Users\user\AppData\Roaming\WindowsUpdates\outlooks.exe" /rl HIGHEST
/f
|
|
|
|
C:\Users\user\AppData\Roaming\WindowsUpdates\outlooks.exe
|
"C:\Users\user\AppData\Roaming\WindowsUpdates\outlooks.exe"
|
|
|
|
C:\Users\user\AppData\Roaming\WindowsUpdates\outlooks.exe
|
C:\Users\user\AppData\Roaming\WindowsUpdates\outlooks.exe
|
|
|
|
C:\Users\user\AppData\Roaming\WindowsUpdates\outlooks.exe
|
"C:\Users\user\AppData\Roaming\WindowsUpdates\outlooks.exe"
|
|
|
|
C:\Windows\SysWOW64\schtasks.exe
|
"schtasks" /create /tn "Outlooks" /sc ONLOGON /tr "C:\Users\user\AppData\Roaming\WindowsUpdates\outlooks.exe" /rl HIGHEST
/f
|
|
|
|
C:\Users\user\AppData\Roaming\WindowsUpdates\outlooks.exe
|
"C:\Users\user\AppData\Roaming\WindowsUpdates\outlooks.exe"
|
|
|
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
||
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
There are 1 hidden processes, click here to show them.
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
qtd.ydns.eu
|
|
||
|
https://api.ipify.org/
|
unknown
|
||
|
http://schemas.datacontract.org/2004/07/d
|
unknown
|
||
|
https://stackoverflow.com/q/14436606/23354
|
unknown
|
||
|
https://ipwho.isp
|
unknown
|
||
|
http://schemas.datacontract.org/2004/07/
|
unknown
|
||
|
https://stackoverflow.com/q/11564914/23354;
|
unknown
|
||
|
http://ipwho.isd
|
unknown
|
||
|
https://ipwho.is
|
unknown
|
||
|
https://stackoverflow.com/q/2152978/23354sCannot
|
unknown
|
||
|
https://ipwho.is/
|
103.126.138.87
|
||
|
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
|
unknown
|
||
|
http://ipwho.is
|
unknown
|
There are 3 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
qtd.ydns.eu
|
193.34.212.17
|
|
|
|
bg.microsoft.map.fastly.net
|
199.232.214.172
|
||
|
ipwho.is
|
103.126.138.87
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
193.34.212.17
|
qtd.ydns.eu
|
Poland
|
|
|
|
103.126.138.87
|
ipwho.is
|
United States
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing
|
EnableConsoleTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\outlooks_RASAPI32
|
EnableFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\outlooks_RASAPI32
|
EnableAutoFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\outlooks_RASAPI32
|
EnableConsoleTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\outlooks_RASAPI32
|
FileTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\outlooks_RASAPI32
|
ConsoleTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\outlooks_RASAPI32
|
MaxFileSize
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\outlooks_RASAPI32
|
FileDirectory
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\outlooks_RASMANCS
|
EnableFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\outlooks_RASMANCS
|
EnableAutoFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\outlooks_RASMANCS
|
EnableConsoleTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\outlooks_RASMANCS
|
FileTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\outlooks_RASMANCS
|
ConsoleTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\outlooks_RASMANCS
|
MaxFileSize
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\outlooks_RASMANCS
|
FileDirectory
|
There are 5 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
720000
|
remote allocation
|
page execute and read and write
|
|
|
|
2D69000
|
trusted library allocation
|
page read and write
|
|
|
|
46ED000
|
trusted library allocation
|
page read and write
|
|
|
|
402000
|
remote allocation
|
page execute and read and write
|
|
|
|
29D1000
|
trusted library allocation
|
page read and write
|
|
|
|
2DF6000
|
trusted library allocation
|
page read and write
|
|
|
|
40FE000
|
trusted library allocation
|
page read and write
|
|
|
|
3481000
|
trusted library allocation
|
page read and write
|
|
|
|
9192000
|
trusted library allocation
|
page read and write
|
|
|
|
39D9000
|
trusted library allocation
|
page read and write
|
|
|
|
8631000
|
trusted library allocation
|
page read and write
|
|
|
|
8981000
|
trusted library allocation
|
page read and write
|
|
|
|
4FA0000
|
trusted library allocation
|
page read and write
|
||
|
5020000
|
heap
|
page execute and read and write
|
||
|
1270000
|
heap
|
page read and write
|
||
|
556C000
|
trusted library allocation
|
page read and write
|
||
|
4E8C000
|
stack
|
page read and write
|
||
|
F6E000
|
stack
|
page read and write
|
||
|
C00000
|
heap
|
page read and write
|
||
|
5575000
|
trusted library allocation
|
page read and write
|
||
|
683E000
|
trusted library allocation
|
page read and write
|
||
|
1558000
|
heap
|
page read and write
|
||
|
562F000
|
trusted library allocation
|
page read and write
|
||
|
14E2000
|
trusted library allocation
|
page read and write
|
||
|
6A35000
|
trusted library allocation
|
page read and write
|
||
|
74EE000
|
stack
|
page read and write
|
||
|
55B1000
|
trusted library allocation
|
page read and write
|
||
|
13A0000
|
heap
|
page read and write
|
||
|
11D3000
|
heap
|
page read and write
|
||
|
1050000
|
heap
|
page read and write
|
||
|
12B2000
|
heap
|
page read and write
|
||
|
77EE000
|
stack
|
page read and write
|
||
|
168E000
|
stack
|
page read and write
|
||
|
6A67000
|
trusted library allocation
|
page read and write
|
||
|
5E0000
|
heap
|
page read and write
|
||
|
5BD7000
|
heap
|
page read and write
|
||
|
69A0000
|
trusted library allocation
|
page read and write
|
||
|
1890000
|
trusted library allocation
|
page read and write
|
||
|
5640000
|
heap
|
page read and write
|
||
|
5545000
|
trusted library allocation
|
page read and write
|
||
|
5240000
|
trusted library allocation
|
page read and write
|
||
|
5210000
|
trusted library allocation
|
page execute and read and write
|
||
|
3CF1000
|
trusted library allocation
|
page read and write
|
||
|
13B0000
|
heap
|
page read and write
|
||
|
558B000
|
trusted library allocation
|
page read and write
|
||
|
126E000
|
stack
|
page read and write
|
||
|
8170000
|
trusted library allocation
|
page execute and read and write
|
||
|
58DE000
|
stack
|
page read and write
|
||
|
55B2000
|
trusted library allocation
|
page read and write
|
||
|
55AD000
|
trusted library allocation
|
page read and write
|
||
|
FAA000
|
trusted library allocation
|
page execute and read and write
|
||
|
14CD000
|
trusted library allocation
|
page execute and read and write
|
||
|
5560000
|
trusted library allocation
|
page read and write
|
||
|
30E6000
|
trusted library allocation
|
page read and write
|
||
|
6970000
|
trusted library allocation
|
page read and write
|
||
|
10CE000
|
heap
|
page read and write
|
||
|
11BD000
|
heap
|
page read and write
|
||
|
6220000
|
heap
|
page read and write
|
||
|
7CEB000
|
stack
|
page read and write
|
||
|
90E000
|
unkown
|
page read and write
|
||
|
75D0000
|
trusted library allocation
|
page execute and read and write
|
||
|
1556000
|
trusted library allocation
|
page execute and read and write
|
||
|
1027000
|
trusted library allocation
|
page execute and read and write
|
||
|
FD0000
|
trusted library allocation
|
page read and write
|
||
|
2CB0000
|
trusted library allocation
|
page read and write
|
||
|
76EE000
|
stack
|
page read and write
|
||
|
155A000
|
trusted library allocation
|
page execute and read and write
|
||
|
FB7000
|
trusted library allocation
|
page execute and read and write
|
||
|
C05000
|
heap
|
page read and write
|
||
|
2D6F000
|
trusted library allocation
|
page read and write
|
||
|
F80000
|
trusted library allocation
|
page read and write
|
||
|
11D3000
|
trusted library allocation
|
page execute and read and write
|
||
|
51ED000
|
trusted library allocation
|
page read and write
|
||
|
2EDE000
|
unkown
|
page read and write
|
||
|
3CF9000
|
trusted library allocation
|
page read and write
|
||
|
5880000
|
heap
|
page read and write
|
||
|
E50000
|
heap
|
page read and write
|
||
|
5D30000
|
trusted library allocation
|
page read and write
|
||
|
1010000
|
trusted library allocation
|
page read and write
|
||
|
1260000
|
trusted library allocation
|
page read and write
|
||
|
2D81000
|
trusted library allocation
|
page read and write
|
||
|
14E0000
|
trusted library allocation
|
page read and write
|
||
|
4251000
|
trusted library allocation
|
page read and write
|
||
|
122E000
|
stack
|
page read and write
|
||
|
159F000
|
stack
|
page read and write
|
||
|
6980000
|
trusted library allocation
|
page read and write
|
||
|
52A0000
|
trusted library allocation
|
page read and write
|
||
|
591E000
|
stack
|
page read and write
|
||
|
13A7000
|
heap
|
page read and write
|
||
|
F70000
|
trusted library allocation
|
page read and write
|
||
|
2BE0000
|
trusted library allocation
|
page read and write
|
||
|
51D4000
|
trusted library allocation
|
page read and write
|
||
|
6B78000
|
trusted library allocation
|
page read and write
|
||
|
3435000
|
trusted library allocation
|
page read and write
|
||
|
641E000
|
stack
|
page read and write
|
||
|
5ACE000
|
stack
|
page read and write
|
||
|
1540000
|
heap
|
page read and write
|
||
|
3154000
|
trusted library allocation
|
page read and write
|
||
|
4EF4000
|
trusted library allocation
|
page read and write
|
||
|
14D6000
|
trusted library allocation
|
page execute and read and write
|
||
|
6A20000
|
trusted library allocation
|
page read and write
|
||
|
5583000
|
heap
|
page read and write
|
||
|
5D90000
|
trusted library allocation
|
page execute and read and write
|
||
|
5553000
|
heap
|
page read and write
|
||
|
64EE000
|
stack
|
page read and write
|
||
|
35F1000
|
trusted library allocation
|
page read and write
|
||
|
1520000
|
trusted library allocation
|
page read and write
|
||
|
970000
|
heap
|
page read and write
|
||
|
5520000
|
heap
|
page read and write
|
||
|
60E0000
|
heap
|
page read and write
|
||
|
2990000
|
trusted library allocation
|
page read and write
|
||
|
54B0000
|
trusted library section
|
page readonly
|
||
|
5660000
|
heap
|
page execute and read and write
|
||
|
1280000
|
heap
|
page read and write
|
||
|
52E0000
|
trusted library allocation
|
page read and write
|
||
|
605F000
|
stack
|
page read and write
|
||
|
1798000
|
trusted library allocation
|
page read and write
|
||
|
10B0000
|
heap
|
page read and write
|
||
|
5B20000
|
heap
|
page read and write
|
||
|
2D6E000
|
stack
|
page read and write
|
||
|
560F000
|
trusted library allocation
|
page read and write
|
||
|
FF0000
|
trusted library allocation
|
page read and write
|
||
|
68A0000
|
trusted library allocation
|
page read and write
|
||
|
137E000
|
stack
|
page read and write
|
||
|
1012000
|
trusted library allocation
|
page read and write
|
||
|
2CF1000
|
trusted library allocation
|
page read and write
|
||
|
F83000
|
trusted library allocation
|
page execute and read and write
|
||
|
611F000
|
stack
|
page read and write
|
||
|
1330000
|
trusted library allocation
|
page execute and read and write
|
||
|
2CFC000
|
trusted library allocation
|
page read and write
|
||
|
5760000
|
trusted library allocation
|
page execute and read and write
|
||
|
5F5E000
|
stack
|
page read and write
|
||
|
713F000
|
stack
|
page read and write
|
||
|
2D21000
|
trusted library allocation
|
page read and write
|
||
|
55BD000
|
trusted library allocation
|
page read and write
|
||
|
1590000
|
trusted library allocation
|
page execute and read and write
|
||
|
35E0000
|
heap
|
page read and write
|
||
|
30E8000
|
trusted library allocation
|
page read and write
|
||
|
57A000
|
stack
|
page read and write
|
||
|
4428000
|
trusted library allocation
|
page read and write
|
||
|
FA6000
|
trusted library allocation
|
page execute and read and write
|
||
|
68D0000
|
trusted library allocation
|
page read and write
|
||
|
5E10000
|
heap
|
page read and write
|
||
|
138E000
|
stack
|
page read and write
|
||
|
133A000
|
heap
|
page read and write
|
||
|
6910000
|
trusted library allocation
|
page read and write
|
||
|
4FE0000
|
trusted library allocation
|
page read and write
|
||
|
30EC000
|
trusted library allocation
|
page read and write
|
||
|
35EB000
|
heap
|
page read and write
|
||
|
425D000
|
trusted library allocation
|
page read and write
|
||
|
588E000
|
stack
|
page read and write
|
||
|
550B000
|
stack
|
page read and write
|
||
|
621E000
|
stack
|
page read and write
|
||
|
6BD0000
|
trusted library allocation
|
page execute and read and write
|
||
|
3043000
|
trusted library allocation
|
page read and write
|
||
|
6990000
|
trusted library allocation
|
page read and write
|
||
|
4031000
|
trusted library allocation
|
page read and write
|
||
|
4748000
|
trusted library allocation
|
page read and write
|
||
|
6C20000
|
heap
|
page read and write
|
||
|
4277000
|
trusted library allocation
|
page read and write
|
||
|
29A5000
|
trusted library allocation
|
page read and write
|
||
|
54C5000
|
heap
|
page read and write
|
||
|
703E000
|
stack
|
page read and write
|
||
|
AF7000
|
stack
|
page read and write
|
||
|
51BF000
|
stack
|
page read and write
|
||
|
DCE000
|
heap
|
page read and write
|
||
|
1586000
|
heap
|
page read and write
|
||
|
75C0000
|
trusted library allocation
|
page read and write
|
||
|
51FD000
|
trusted library allocation
|
page read and write
|
||
|
5590000
|
trusted library allocation
|
page read and write
|
||
|
E00000
|
heap
|
page read and write
|
||
|
55A6000
|
trusted library allocation
|
page read and write
|
||
|
2C2E000
|
stack
|
page read and write
|
||
|
5440000
|
trusted library allocation
|
page read and write
|
||
|
5540000
|
trusted library allocation
|
page read and write
|
||
|
11E0000
|
heap
|
page read and write
|
||
|
556F000
|
trusted library allocation
|
page read and write
|
||
|
13E8000
|
heap
|
page read and write
|
||
|
5B0E000
|
stack
|
page read and write
|
||
|
6AD0000
|
trusted library allocation
|
page read and write
|
||
|
5630000
|
heap
|
page read and write
|
||
|
7240000
|
trusted library allocation
|
page read and write
|
||
|
65EE000
|
stack
|
page read and write
|
||
|
5038000
|
trusted library allocation
|
page read and write
|
||
|
1420000
|
trusted library allocation
|
page read and write
|
||
|
2D70000
|
heap
|
page execute and read and write
|
||
|
4FA6000
|
trusted library allocation
|
page read and write
|
||
|
1070000
|
trusted library allocation
|
page read and write
|
||
|
5460000
|
trusted library allocation
|
page read and write
|
||
|
4EF0000
|
trusted library allocation
|
page read and write
|
||
|
62F0000
|
heap
|
page read and write
|
||
|
4A10000
|
trusted library allocation
|
page read and write
|
||
|
6070000
|
heap
|
page read and write
|
||
|
4A23000
|
trusted library allocation
|
page read and write
|
||
|
15A5000
|
trusted library allocation
|
page read and write
|
||
|
FB2000
|
trusted library allocation
|
page read and write
|
||
|
5510000
|
trusted library allocation
|
page read and write
|
||
|
1560000
|
trusted library allocation
|
page read and write
|
||
|
3278000
|
trusted library allocation
|
page read and write
|
||
|
5215000
|
trusted library allocation
|
page read and write
|
||
|
584E000
|
stack
|
page read and write
|
||
|
6900000
|
trusted library allocation
|
page read and write
|
||
|
2D43000
|
trusted library allocation
|
page read and write
|
||
|
5010000
|
trusted library allocation
|
page read and write
|
||
|
3D89000
|
trusted library allocation
|
page read and write
|
||
|
5290000
|
trusted library allocation
|
page read and write
|
||
|
4267000
|
trusted library allocation
|
page read and write
|
||
|
11D0000
|
trusted library allocation
|
page read and write
|
||
|
D70000
|
heap
|
page read and write
|
||
|
13D0000
|
trusted library allocation
|
page read and write
|
||
|
4F1D000
|
trusted library allocation
|
page read and write
|
||
|
74AE000
|
stack
|
page read and write
|
||
|
665E000
|
stack
|
page read and write
|
||
|
575E000
|
trusted library allocation
|
page read and write
|
||
|
E55000
|
heap
|
page read and write
|
||
|
9A80000
|
trusted library section
|
page read and write
|
||
|
2C4E000
|
stack
|
page read and write
|
||
|
75F0000
|
trusted library allocation
|
page read and write
|
||
|
6377000
|
heap
|
page read and write
|
||
|
1000000
|
trusted library allocation
|
page read and write
|
||
|
6D2C000
|
stack
|
page read and write
|
||
|
AEF000
|
stack
|
page read and write
|
||
|
5280000
|
heap
|
page execute and read and write
|
||
|
1580000
|
trusted library allocation
|
page read and write
|
||
|
54EF000
|
trusted library section
|
page readonly
|
||
|
4F0E000
|
trusted library allocation
|
page read and write
|
||
|
400000
|
remote allocation
|
page execute and read and write
|
||
|
4035000
|
trusted library allocation
|
page read and write
|
||
|
298F000
|
stack
|
page read and write
|
||
|
796D000
|
stack
|
page read and write
|
||
|
11C9000
|
heap
|
page read and write
|
||
|
5210000
|
trusted library allocation
|
page read and write
|
||
|
43D9000
|
trusted library allocation
|
page read and write
|
||
|
60F0000
|
heap
|
page read and write
|
||
|
11D4000
|
trusted library allocation
|
page read and write
|
||
|
F9D000
|
trusted library allocation
|
page execute and read and write
|
||
|
6A90000
|
trusted library allocation
|
page read and write
|
||
|
8BF2000
|
trusted library allocation
|
page read and write
|
||
|
1550000
|
heap
|
page read and write
|
||
|
655E000
|
stack
|
page read and write
|
||
|
55C2000
|
trusted library allocation
|
page read and write
|
||
|
C0CE000
|
stack
|
page read and write
|
||
|
51F0000
|
trusted library allocation
|
page read and write
|
||
|
7E2D000
|
stack
|
page read and write
|
||
|
6366000
|
heap
|
page read and write
|
||
|
56C0000
|
heap
|
page read and write
|
||
|
51CB000
|
stack
|
page read and write
|
||
|
3251000
|
trusted library allocation
|
page read and write
|
||
|
12BF000
|
stack
|
page read and write
|
||
|
950000
|
heap
|
page read and write
|
||
|
6A95000
|
trusted library allocation
|
page read and write
|
||
|
29A0000
|
trusted library allocation
|
page read and write
|
||
|
30A3000
|
heap
|
page read and write
|
||
|
3152000
|
trusted library allocation
|
page read and write
|
||
|
5990000
|
heap
|
page read and write
|
||
|
5750000
|
heap
|
page execute and read and write
|
||
|
2A3F000
|
trusted library allocation
|
page read and write
|
||
|
580E000
|
stack
|
page read and write
|
||
|
15A0000
|
trusted library allocation
|
page read and write
|
||
|
1090000
|
heap
|
page read and write
|
||
|
FF3000
|
trusted library allocation
|
page execute and read and write
|
||
|
14B0000
|
trusted library allocation
|
page read and write
|
||
|
5870000
|
trusted library allocation
|
page execute and read and write
|
||
|
6A80000
|
trusted library allocation
|
page execute and read and write
|
||
|
2D2B000
|
stack
|
page read and write
|
||
|
13B5000
|
heap
|
page read and write
|
||
|
5C3E000
|
stack
|
page read and write
|
||
|
10F8000
|
stack
|
page read and write
|
||
|
4F11000
|
trusted library allocation
|
page read and write
|
||
|
6880000
|
trusted library allocation
|
page read and write
|
||
|
14B4000
|
trusted library allocation
|
page read and write
|
||
|
5740000
|
trusted library allocation
|
page read and write
|
||
|
5A8E000
|
stack
|
page read and write
|
||
|
5B8E000
|
heap
|
page read and write
|
||
|
54BC000
|
stack
|
page read and write
|
||
|
5600000
|
trusted library allocation
|
page read and write
|
||
|
324E000
|
stack
|
page read and write
|
||
|
771F000
|
stack
|
page read and write
|
||
|
574E000
|
trusted library allocation
|
page read and write
|
||
|
68E0000
|
trusted library allocation
|
page read and write
|
||
|
392000
|
unkown
|
page readonly
|
||
|
5292000
|
trusted library allocation
|
page read and write
|
||
|
164B000
|
heap
|
page read and write
|
||
|
1610000
|
heap
|
page read and write
|
||
|
5860000
|
trusted library allocation
|
page read and write
|
||
|
E37000
|
heap
|
page read and write
|
||
|
55C4000
|
trusted library allocation
|
page read and write
|
||
|
1139000
|
stack
|
page read and write
|
||
|
51E6000
|
trusted library allocation
|
page read and write
|
||
|
10E6000
|
heap
|
page read and write
|
||
|
1080000
|
heap
|
page read and write
|
||
|
651E000
|
stack
|
page read and write
|
||
|
2E20000
|
heap
|
page read and write
|
||
|
1547000
|
heap
|
page read and write
|
||
|
5550000
|
trusted library allocation
|
page read and write
|
||
|
1390000
|
trusted library allocation
|
page read and write
|
||
|
4D2E000
|
stack
|
page read and write
|
||
|
14D0000
|
trusted library allocation
|
page read and write
|
||
|
57DF000
|
trusted library allocation
|
page read and write
|
||
|
39D1000
|
trusted library allocation
|
page read and write
|
||
|
5556000
|
trusted library allocation
|
page read and write
|
||
|
6F00000
|
heap
|
page read and write
|
||
|
4F90000
|
heap
|
page read and write
|
||
|
5DB4000
|
heap
|
page read and write
|
||
|
5235000
|
heap
|
page read and write
|
||
|
5200000
|
trusted library allocation
|
page read and write
|
||
|
1190000
|
heap
|
page read and write
|
||
|
94F000
|
unkown
|
page read and write
|
||
|
B97000
|
stack
|
page read and write
|
||
|
1430000
|
trusted library allocation
|
page read and write
|
||
|
2C8C000
|
stack
|
page read and write
|
||
|
1510000
|
trusted library allocation
|
page execute and read and write
|
||
|
2A43000
|
trusted library allocation
|
page read and write
|
||
|
5B10000
|
heap
|
page read and write
|
||
|
3FC1000
|
trusted library allocation
|
page read and write
|
||
|
4A6E000
|
stack
|
page read and write
|
||
|
30B0000
|
trusted library allocation
|
page read and write
|
||
|
5B5C000
|
heap
|
page read and write
|
||
|
4257000
|
trusted library allocation
|
page read and write
|
||
|
2D2E000
|
trusted library allocation
|
page read and write
|
||
|
6B60000
|
trusted library allocation
|
page read and write
|
||
|
601F000
|
stack
|
page read and write
|
||
|
15B0000
|
heap
|
page execute and read and write
|
||
|
1261000
|
heap
|
page read and write
|
||
|
57A0000
|
trusted library allocation
|
page read and write
|
||
|
4D40000
|
trusted library allocation
|
page read and write
|
||
|
1380000
|
heap
|
page read and write
|
||
|
93F2000
|
trusted library allocation
|
page read and write
|
||
|
1340000
|
heap
|
page execute and read and write
|
||
|
2BE3000
|
trusted library allocation
|
page read and write
|
||
|
BF0000
|
heap
|
page read and write
|
||
|
5C7E000
|
stack
|
page read and write
|
||
|
5660000
|
heap
|
page read and write
|
||
|
2FBF000
|
stack
|
page read and write
|
||
|
80AE000
|
stack
|
page read and write
|
||
|
1452000
|
trusted library allocation
|
page read and write
|
||
|
1500000
|
trusted library allocation
|
page read and write
|
||
|
74D0000
|
trusted library allocation
|
page execute and read and write
|
||
|
11EF000
|
stack
|
page read and write
|
||
|
10A0000
|
trusted library allocation
|
page execute and read and write
|
||
|
6A40000
|
trusted library allocation
|
page read and write
|
||
|
10FF000
|
heap
|
page read and write
|
||
|
5210000
|
trusted library allocation
|
page read and write
|
||
|
5528000
|
trusted library allocation
|
page read and write
|
||
|
ECA000
|
heap
|
page read and write
|
||
|
4F22000
|
trusted library allocation
|
page read and write
|
||
|
6BF0000
|
trusted library allocation
|
page read and write
|
||
|
1300000
|
trusted library allocation
|
page read and write
|
||
|
55B6000
|
trusted library allocation
|
page read and write
|
||
|
75CE000
|
trusted library allocation
|
page read and write
|
||
|
6AC0000
|
trusted library allocation
|
page read and write
|
||
|
6960000
|
trusted library allocation
|
page read and write
|
||
|
568D000
|
trusted library allocation
|
page read and write
|
||
|
35E9000
|
trusted library allocation
|
page read and write
|
||
|
1101000
|
heap
|
page read and write
|
||
|
4D8E000
|
stack
|
page read and write
|
||
|
54E2000
|
trusted library allocation
|
page read and write
|
||
|
54A0000
|
trusted library allocation
|
page read and write
|
||
|
7F6E000
|
stack
|
page read and write
|
||
|
10C0000
|
trusted library allocation
|
page read and write
|
||
|
5260000
|
trusted library section
|
page read and write
|
||
|
13D4000
|
trusted library allocation
|
page read and write
|
||
|
2D90000
|
heap
|
page execute and read and write
|
||
|
E2A000
|
heap
|
page read and write
|
||
|
10B3000
|
heap
|
page read and write
|
||
|
1355000
|
heap
|
page read and write
|
||
|
7D2E000
|
stack
|
page read and write
|
||
|
2D80000
|
trusted library allocation
|
page execute and read and write
|
||
|
5795000
|
trusted library allocation
|
page read and write
|
||
|
6B50000
|
trusted library allocation
|
page execute and read and write
|
||
|
14E7000
|
trusted library allocation
|
page execute and read and write
|
||
|
2C90000
|
heap
|
page read and write
|
||
|
130B000
|
trusted library allocation
|
page execute and read and write
|
||
|
5580000
|
trusted library allocation
|
page read and write
|
||
|
30E0000
|
heap
|
page read and write
|
||
|
63DE000
|
stack
|
page read and write
|
||
|
57D0000
|
trusted library allocation
|
page read and write
|
||
|
6166000
|
heap
|
page read and write
|
||
|
15C0000
|
heap
|
page read and write
|
||
|
107E000
|
stack
|
page read and write
|
||
|
553E000
|
stack
|
page read and write
|
||
|
1038000
|
stack
|
page read and write
|
||
|
5D1F000
|
stack
|
page read and write
|
||
|
E00000
|
heap
|
page read and write
|
||
|
1840000
|
heap
|
page read and write
|
||
|
D8E000
|
stack
|
page read and write
|
||
|
53D000
|
stack
|
page read and write
|
||
|
14BD000
|
trusted library allocation
|
page execute and read and write
|
||
|
2A3D000
|
trusted library allocation
|
page read and write
|
||
|
5510000
|
trusted library allocation
|
page read and write
|
||
|
EE0000
|
heap
|
page read and write
|
||
|
1288000
|
heap
|
page read and write
|
||
|
51E1000
|
trusted library allocation
|
page read and write
|
||
|
1443000
|
trusted library allocation
|
page read and write
|
||
|
54E0000
|
trusted library section
|
page readonly
|
||
|
5800000
|
heap
|
page read and write
|
||
|
557E000
|
stack
|
page read and write
|
||
|
AE27000
|
trusted library allocation
|
page read and write
|
||
|
4F20000
|
trusted library allocation
|
page read and write
|
||
|
6060000
|
heap
|
page read and write
|
||
|
7270000
|
trusted library allocation
|
page read and write
|
||
|
406E000
|
trusted library allocation
|
page read and write
|
||
|
1307000
|
trusted library allocation
|
page execute and read and write
|
||
|
AAE000
|
stack
|
page read and write
|
||
|
559E000
|
trusted library allocation
|
page read and write
|
||
|
13B0000
|
heap
|
page read and write
|
||
|
694C000
|
trusted library allocation
|
page read and write
|
||
|
C4E000
|
stack
|
page read and write
|
||
|
10D3000
|
trusted library allocation
|
page read and write
|
||
|
4FC8000
|
trusted library allocation
|
page read and write
|
||
|
9A7F000
|
stack
|
page read and write
|
||
|
7AAD000
|
stack
|
page read and write
|
||
|
5200000
|
trusted library allocation
|
page read and write
|
||
|
1830000
|
trusted library allocation
|
page read and write
|
||
|
6B20000
|
trusted library allocation
|
page read and write
|
||
|
80B0000
|
trusted library allocation
|
page read and write
|
||
|
55A1000
|
trusted library allocation
|
page read and write
|
||
|
672A000
|
stack
|
page read and write
|
||
|
4FF0000
|
heap
|
page read and write
|
||
|
106C000
|
stack
|
page read and write
|
||
|
5B0E000
|
stack
|
page read and write
|
||
|
4A0E000
|
stack
|
page read and write
|
||
|
54E6000
|
trusted library allocation
|
page read and write
|
||
|
55D0000
|
trusted library allocation
|
page read and write
|
||
|
5720000
|
trusted library allocation
|
page execute and read and write
|
||
|
D4E000
|
stack
|
page read and write
|
||
|
10C4000
|
trusted library allocation
|
page read and write
|
||
|
302F000
|
stack
|
page read and write
|
||
|
6AF0000
|
trusted library allocation
|
page read and write
|
||
|
C12E000
|
stack
|
page read and write
|
||
|
51F1000
|
trusted library allocation
|
page read and write
|
||
|
6E30000
|
heap
|
page read and write
|
||
|
FFD000
|
trusted library allocation
|
page execute and read and write
|
||
|
534E000
|
stack
|
page read and write
|
||
|
E83000
|
heap
|
page read and write
|
||
|
14C3000
|
trusted library allocation
|
page read and write
|
||
|
8BAE000
|
trusted library allocation
|
page read and write
|
||
|
52A6000
|
trusted library allocation
|
page read and write
|
||
|
2CB6000
|
trusted library allocation
|
page read and write
|
||
|
29C0000
|
heap
|
page execute and read and write
|
||
|
5F0000
|
heap
|
page read and write
|
||
|
5680000
|
trusted library allocation
|
page read and write
|
||
|
5540000
|
trusted library allocation
|
page read and write
|
||
|
5280000
|
heap
|
page read and write
|
||
|
4BAC000
|
stack
|
page read and write
|
||
|
5950000
|
heap
|
page execute and read and write
|
||
|
325C000
|
trusted library allocation
|
page read and write
|
||
|
7520000
|
heap
|
page read and write
|
||
|
30E4000
|
trusted library allocation
|
page read and write
|
||
|
3090000
|
trusted library allocation
|
page read and write
|
||
|
1155000
|
heap
|
page read and write
|
||
|
156B000
|
trusted library allocation
|
page execute and read and write
|
||
|
4D43000
|
trusted library allocation
|
page read and write
|
||
|
5550000
|
heap
|
page read and write
|
||
|
6AFD000
|
trusted library allocation
|
page read and write
|
||
|
1030000
|
heap
|
page read and write
|
||
|
1150000
|
heap
|
page read and write
|
||
|
6B40000
|
trusted library allocation
|
page read and write
|
||
|
3FC7000
|
trusted library allocation
|
page read and write
|
||
|
1490000
|
heap
|
page read and write
|
||
|
7140000
|
heap
|
page read and write
|
||
|
FBE000
|
stack
|
page read and write
|
||
|
102E000
|
stack
|
page read and write
|
||
|
5670000
|
heap
|
page read and write
|
||
|
5B3E000
|
stack
|
page read and write
|
||
|
990F000
|
stack
|
page read and write
|
||
|
2DDE000
|
stack
|
page read and write
|
||
|
2E1B000
|
stack
|
page read and write
|
||
|
FE0000
|
heap
|
page read and write
|
||
|
5594000
|
trusted library allocation
|
page read and write
|
||
|
4AAC000
|
stack
|
page read and write
|
||
|
8891000
|
trusted library allocation
|
page read and write
|
||
|
6368000
|
heap
|
page read and write
|
||
|
146B000
|
trusted library allocation
|
page execute and read and write
|
||
|
F25000
|
heap
|
page read and write
|
||
|
1462000
|
trusted library allocation
|
page read and write
|
||
|
2D66000
|
trusted library allocation
|
page read and write
|
||
|
59CE000
|
stack
|
page read and write
|
||
|
160E000
|
stack
|
page read and write
|
||
|
11A0000
|
heap
|
page read and write
|
||
|
15DE000
|
heap
|
page read and write
|
||
|
6A30000
|
trusted library allocation
|
page read and write
|
||
|
7E6D000
|
stack
|
page read and write
|
||
|
1400000
|
heap
|
page read and write
|
||
|
1273000
|
trusted library allocation
|
page read and write
|
||
|
72B0000
|
heap
|
page read and write
|
||
|
5220000
|
heap
|
page read and write
|
||
|
54D0000
|
heap
|
page execute and read and write
|
||
|
43D0000
|
trusted library allocation
|
page read and write
|
||
|
13AE000
|
stack
|
page read and write
|
||
|
5ACE000
|
stack
|
page read and write
|
||
|
2CC0000
|
trusted library allocation
|
page read and write
|
||
|
14D2000
|
trusted library allocation
|
page read and write
|
||
|
10D0000
|
trusted library allocation
|
page read and write
|
||
|
4F93000
|
heap
|
page read and write
|
||
|
7BEE000
|
stack
|
page read and write
|
||
|
10CB000
|
heap
|
page read and write
|
||
|
4F40000
|
trusted library allocation
|
page read and write
|
||
|
12A8000
|
heap
|
page read and write
|
||
|
10CD000
|
trusted library allocation
|
page execute and read and write
|
||
|
4FB0000
|
trusted library allocation
|
page execute and read and write
|
||
|
143D000
|
trusted library allocation
|
page execute and read and write
|
||
|
6B30000
|
trusted library allocation
|
page read and write
|
||
|
54C0000
|
heap
|
page read and write
|
||
|
1191000
|
heap
|
page read and write
|
||
|
CCD000
|
stack
|
page read and write
|
||
|
5E15000
|
heap
|
page read and write
|
||
|
4F80000
|
heap
|
page read and write
|
||
|
4041000
|
trusted library allocation
|
page read and write
|
||
|
E34000
|
heap
|
page read and write
|
||
|
1160000
|
heap
|
page read and write
|
||
|
1434000
|
trusted library allocation
|
page read and write
|
||
|
74B0000
|
heap
|
page read and write
|
||
|
5554000
|
trusted library allocation
|
page read and write
|
||
|
1894000
|
trusted library allocation
|
page read and write
|
||
|
58F6000
|
heap
|
page read and write
|
||
|
7AA000
|
stack
|
page read and write
|
||
|
1020000
|
trusted library allocation
|
page read and write
|
||
|
4FC0000
|
trusted library allocation
|
page read and write
|
||
|
6871000
|
trusted library allocation
|
page read and write
|
||
|
1188000
|
heap
|
page read and write
|
||
|
2BD0000
|
trusted library allocation
|
page read and write
|
||
|
A9A000
|
stack
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
5296000
|
trusted library allocation
|
page read and write
|
||
|
5820000
|
trusted library allocation
|
page execute and read and write
|
||
|
5D20000
|
trusted library allocation
|
page read and write
|
||
|
66EF000
|
stack
|
page read and write
|
||
|
5570000
|
trusted library allocation
|
page read and write
|
||
|
6940000
|
trusted library allocation
|
page read and write
|
||
|
E81000
|
heap
|
page read and write
|
||
|
59A0000
|
heap
|
page read and write
|
||
|
55E5000
|
trusted library allocation
|
page read and write
|
||
|
55AE000
|
trusted library allocation
|
page read and write
|
||
|
56B0000
|
trusted library allocation
|
page execute and read and write
|
||
|
127D000
|
trusted library allocation
|
page execute and read and write
|
||
|
1525000
|
trusted library allocation
|
page read and write
|
||
|
4D30000
|
trusted library allocation
|
page read and write
|
||
|
5BC3000
|
heap
|
page read and write
|
||
|
56CE000
|
stack
|
page read and write
|
||
|
544E000
|
stack
|
page read and write
|
||
|
178E000
|
stack
|
page read and write
|
||
|
69B0000
|
trusted library allocation
|
page execute and read and write
|
||
|
E84000
|
heap
|
page read and write
|
||
|
51C0000
|
trusted library allocation
|
page read and write
|
||
|
51F2000
|
trusted library allocation
|
page read and write
|
||
|
DE7000
|
heap
|
page read and write
|
||
|
791F000
|
stack
|
page read and write
|
||
|
B10000
|
heap
|
page read and write
|
||
|
D0A000
|
stack
|
page read and write
|
||
|
FBB000
|
trusted library allocation
|
page execute and read and write
|
||
|
6A50000
|
trusted library allocation
|
page read and write
|
||
|
E08000
|
heap
|
page read and write
|
||
|
58E0000
|
trusted library allocation
|
page read and write
|
||
|
EB1000
|
heap
|
page read and write
|
||
|
1146000
|
heap
|
page read and write
|
||
|
30A0000
|
heap
|
page read and write
|
||
|
5510000
|
trusted library allocation
|
page execute and read and write
|
||
|
11A8000
|
heap
|
page read and write
|
||
|
F20000
|
heap
|
page read and write
|
||
|
3431000
|
trusted library allocation
|
page read and write
|
||
|
3FD1000
|
trusted library allocation
|
page read and write
|
||
|
1278000
|
heap
|
page read and write
|
||
|
144D000
|
trusted library allocation
|
page execute and read and write
|
||
|
5890000
|
heap
|
page read and write
|
||
|
7930000
|
trusted library allocation
|
page execute and read and write
|
||
|
51D0000
|
trusted library allocation
|
page read and write
|
||
|
10DD000
|
trusted library allocation
|
page execute and read and write
|
||
|
570E000
|
stack
|
page read and write
|
||
|
5DA0000
|
trusted library allocation
|
page read and write
|
||
|
52B0000
|
trusted library allocation
|
page execute and read and write
|
||
|
3158000
|
trusted library allocation
|
page read and write
|
||
|
FF4000
|
trusted library allocation
|
page read and write
|
||
|
C00000
|
heap
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
509B000
|
stack
|
page read and write
|
||
|
570E000
|
stack
|
page read and write
|
||
|
6AB0000
|
trusted library allocation
|
page read and write
|
||
|
6A10000
|
trusted library allocation
|
page read and write
|
||
|
14A0000
|
trusted library allocation
|
page read and write
|
||
|
4037000
|
trusted library allocation
|
page read and write
|
||
|
1170000
|
heap
|
page read and write
|
||
|
101A000
|
trusted library allocation
|
page execute and read and write
|
||
|
10F4000
|
heap
|
page read and write
|
||
|
188E000
|
stack
|
page read and write
|
||
|
5D7E000
|
stack
|
page read and write
|
||
|
97A000
|
heap
|
page read and write
|
||
|
BE0000
|
heap
|
page read and write
|
||
|
52A0000
|
trusted library allocation
|
page execute and read and write
|
||
|
519B000
|
stack
|
page read and write
|
||
|
7BAD000
|
stack
|
page read and write
|
||
|
8992000
|
trusted library allocation
|
page read and write
|
||
|
154F000
|
stack
|
page read and write
|
||
|
60E3000
|
heap
|
page read and write
|
||
|
5560000
|
trusted library allocation
|
page read and write
|
||
|
68F0000
|
trusted library allocation
|
page read and write
|
||
|
565E000
|
stack
|
page read and write
|
||
|
6A60000
|
trusted library allocation
|
page read and write
|
||
|
12EF000
|
stack
|
page read and write
|
||
|
A9A000
|
stack
|
page read and write
|
||
|
5620000
|
trusted library allocation
|
page read and write
|
||
|
1320000
|
trusted library allocation
|
page read and write
|
||
|
1040000
|
trusted library allocation
|
page read and write
|
||
|
54E0000
|
trusted library allocation
|
page read and write
|
||
|
5930000
|
trusted library allocation
|
page read and write
|
||
|
2D7E000
|
stack
|
page read and write
|
||
|
12B5000
|
heap
|
page read and write
|
||
|
102E000
|
stack
|
page read and write
|
||
|
13D6000
|
trusted library allocation
|
page read and write
|
||
|
55F0000
|
trusted library allocation
|
page read and write
|
||
|
1552000
|
trusted library allocation
|
page read and write
|
||
|
7A6E000
|
stack
|
page read and write
|
||
|
55DC000
|
trusted library allocation
|
page read and write
|
||
|
5260000
|
heap
|
page read and write
|
||
|
52A2000
|
trusted library allocation
|
page read and write
|
||
|
6AA0000
|
trusted library allocation
|
page read and write
|
||
|
5C01000
|
heap
|
page read and write
|
||
|
F93000
|
trusted library allocation
|
page read and write
|
||
|
13E0000
|
heap
|
page read and write
|
||
|
6AE0000
|
trusted library allocation
|
page execute and read and write
|
||
|
5520000
|
heap
|
page read and write
|
||
|
1480000
|
trusted library allocation
|
page read and write
|
||
|
65EF000
|
stack
|
page read and write
|
||
|
5790000
|
trusted library allocation
|
page read and write
|
||
|
69A3000
|
trusted library allocation
|
page read and write
|
||
|
BE5000
|
heap
|
page read and write
|
||
|
51F6000
|
trusted library allocation
|
page read and write
|
||
|
1003000
|
trusted library allocation
|
page read and write
|
||
|
52F3000
|
heap
|
page read and write
|
||
|
54C0000
|
trusted library allocation
|
page read and write
|
||
|
145A000
|
trusted library allocation
|
page execute and read and write
|
||
|
341B000
|
trusted library allocation
|
page read and write
|
||
|
18A7000
|
heap
|
page read and write
|
||
|
3D81000
|
trusted library allocation
|
page read and write
|
||
|
7EEA0000
|
trusted library allocation
|
page execute and read and write
|
||
|
30EF000
|
trusted library allocation
|
page read and write
|
||
|
51EE000
|
trusted library allocation
|
page read and write
|
||
|
54F0000
|
trusted library allocation
|
page execute and read and write
|
||
|
390000
|
unkown
|
page readonly
|
||
|
5516000
|
trusted library allocation
|
page read and write
|
||
|
11E5000
|
heap
|
page read and write
|
||
|
171F000
|
stack
|
page read and write
|
||
|
578F000
|
stack
|
page read and write
|
||
|
1016000
|
trusted library allocation
|
page execute and read and write
|
||
|
520B000
|
stack
|
page read and write
|
||
|
33E0000
|
heap
|
page read and write
|
||
|
8100000
|
trusted library allocation
|
page execute and read and write
|
||
|
1456000
|
trusted library allocation
|
page execute and read and write
|
||
|
5512000
|
trusted library allocation
|
page read and write
|
||
|
6E40000
|
trusted library allocation
|
page read and write
|
||
|
1022000
|
trusted library allocation
|
page read and write
|
||
|
3126000
|
trusted library allocation
|
page read and write
|
||
|
68B0000
|
trusted library allocation
|
page execute and read and write
|
||
|
10B0000
|
trusted library allocation
|
page read and write
|
||
|
6A70000
|
trusted library allocation
|
page read and write
|
||
|
682C000
|
stack
|
page read and write
|
||
|
125E000
|
stack
|
page read and write
|
||
|
DA0000
|
heap
|
page read and write
|
||
|
1288000
|
heap
|
page read and write
|
||
|
55D0000
|
trusted library allocation
|
page read and write
|
||
|
2CB4000
|
trusted library allocation
|
page read and write
|
||
|
4F16000
|
trusted library allocation
|
page read and write
|
||
|
1567000
|
trusted library allocation
|
page execute and read and write
|
||
|
5290000
|
heap
|
page read and write
|
||
|
3282000
|
trusted library allocation
|
page read and write
|
||
|
18A0000
|
heap
|
page read and write
|
||
|
56A0000
|
trusted library allocation
|
page read and write
|
||
|
FA0000
|
trusted library allocation
|
page read and write
|
||
|
6B10000
|
trusted library allocation
|
page read and write
|
||
|
5230000
|
trusted library allocation
|
page read and write
|
||
|
E02000
|
heap
|
page read and write
|
||
|
2DCF000
|
trusted library allocation
|
page read and write
|
||
|
636B000
|
heap
|
page read and write
|
||
|
5F1E000
|
stack
|
page read and write
|
||
|
6950000
|
trusted library allocation
|
page read and write
|
||
|
1562000
|
trusted library allocation
|
page read and write
|
||
|
315A000
|
trusted library allocation
|
page read and write
|
||
|
7450000
|
trusted library allocation
|
page execute and read and write
|
||
|
F8D000
|
trusted library allocation
|
page execute and read and write
|
||
|
5580000
|
heap
|
page read and write
|
||
|
5570000
|
trusted library allocation
|
page read and write
|
||
|
29B0000
|
trusted library allocation
|
page read and write
|
||
|
52F0000
|
heap
|
page read and write
|
||
|
13C0000
|
trusted library allocation
|
page read and write
|
||
|
F84000
|
trusted library allocation
|
page read and write
|
||
|
71E0000
|
heap
|
page read and write
|
||
|
B97000
|
stack
|
page read and write
|
||
|
5230000
|
heap
|
page read and write
|
||
|
2DCC000
|
trusted library allocation
|
page read and write
|
||
|
47D8000
|
trusted library allocation
|
page read and write
|
||
|
559B000
|
trusted library allocation
|
page read and write
|
||
|
15BF000
|
heap
|
page read and write
|
||
|
3156000
|
trusted library allocation
|
page read and write
|
||
|
2CE0000
|
heap
|
page read and write
|
||
|
347D000
|
trusted library allocation
|
page read and write
|
||
|
3FC5000
|
trusted library allocation
|
page read and write
|
||
|
5650000
|
trusted library allocation
|
page execute and read and write
|
||
|
6E29000
|
stack
|
page read and write
|
||
|
14B3000
|
trusted library allocation
|
page execute and read and write
|
||
|
2F1F000
|
unkown
|
page read and write
|
||
|
7260000
|
trusted library allocation
|
page execute and read and write
|
||
|
102B000
|
trusted library allocation
|
page execute and read and write
|
||
|
F90000
|
trusted library allocation
|
page read and write
|
||
|
6A93000
|
trusted library allocation
|
page read and write
|
||
|
51C4000
|
trusted library allocation
|
page read and write
|
||
|
13E0000
|
heap
|
page read and write
|
||
|
63EE000
|
stack
|
page read and write
|
||
|
E8D000
|
heap
|
page read and write
|
||
|
540E000
|
stack
|
page read and write
|
||
|
327B000
|
trusted library allocation
|
page read and write
|
||
|
5D90000
|
heap
|
page read and write
|
||
|
11C0000
|
trusted library allocation
|
page read and write
|
||
|
7FAD000
|
stack
|
page read and write
|
||
|
2CD0000
|
trusted library allocation
|
page read and write
|
||
|
11D6000
|
heap
|
page read and write
|
||
|
2BCE000
|
stack
|
page read and write
|
||
|
5584000
|
trusted library allocation
|
page read and write
|
||
|
7250000
|
trusted library allocation
|
page execute and read and write
|
||
|
12F6000
|
trusted library allocation
|
page execute and read and write
|
||
|
1060000
|
trusted library allocation
|
page execute and read and write
|
||
|
10E0000
|
heap
|
page read and write
|
||
|
5E0E000
|
stack
|
page read and write
|
||
|
2F40000
|
heap
|
page read and write
|
||
|
1204000
|
heap
|
page read and write
|
||
|
1450000
|
trusted library allocation
|
page read and write
|
||
|
1433000
|
trusted library allocation
|
page execute and read and write
|
||
|
4FA2000
|
trusted library allocation
|
page read and write
|
||
|
F10000
|
heap
|
page read and write
|
||
|
762C000
|
stack
|
page read and write
|
||
|
12F0000
|
trusted library allocation
|
page read and write
|
||
|
2FC1000
|
trusted library allocation
|
page read and write
|
||
|
554E000
|
stack
|
page read and write
|
||
|
1070000
|
heap
|
page read and write
|
||
|
1613000
|
heap
|
page read and write
|
||
|
1550000
|
trusted library allocation
|
page read and write
|
||
|
5220000
|
trusted library allocation
|
page read and write
|
||
|
5750000
|
trusted library allocation
|
page read and write
|
||
|
315D000
|
trusted library allocation
|
page read and write
|
||
|
7320000
|
heap
|
page read and write
|
||
|
11DD000
|
trusted library allocation
|
page execute and read and write
|
||
|
14DA000
|
trusted library allocation
|
page execute and read and write
|
||
|
14EB000
|
trusted library allocation
|
page execute and read and write
|
||
|
55E0000
|
trusted library allocation
|
page read and write
|
||
|
6B00000
|
trusted library allocation
|
page read and write
|
||
|
2F2E000
|
stack
|
page read and write
|
||
|
75E0000
|
trusted library allocation
|
page execute and read and write
|
||
|
10C0000
|
heap
|
page read and write
|
||
|
E00000
|
heap
|
page read and write
|
||
|
5900000
|
trusted library allocation
|
page read and write
|
||
|
5910000
|
trusted library allocation
|
page execute and read and write
|
||
|
5D80000
|
heap
|
page read and write
|
||
|
30EA000
|
trusted library allocation
|
page read and write
|
||
|
1460000
|
trusted library allocation
|
page read and write
|
||
|
5504000
|
trusted library allocation
|
page read and write
|
||
|
55DF000
|
trusted library allocation
|
page read and write
|
||
|
30B5000
|
trusted library allocation
|
page read and write
|
||
|
3100000
|
trusted library allocation
|
page read and write
|
||
|
2FCF000
|
stack
|
page read and write
|
||
|
12FA000
|
trusted library allocation
|
page execute and read and write
|
||
|
1579000
|
heap
|
page read and write
|
||
|
6230000
|
heap
|
page read and write
|
||
|
13BE000
|
stack
|
page read and write
|
||
|
6BE0000
|
trusted library allocation
|
page read and write
|
||
|
11A0000
|
heap
|
page read and write
|
||
|
DF8000
|
stack
|
page read and write
|
||
|
3423000
|
trusted library allocation
|
page read and write
|
||
|
DC0000
|
heap
|
page read and write
|
||
|
1302000
|
trusted library allocation
|
page read and write
|
||
|
74AE000
|
stack
|
page read and write
|
||
|
732E000
|
heap
|
page read and write
|
||
|
6930000
|
trusted library allocation
|
page read and write
|
||
|
3140000
|
heap
|
page execute and read and write
|
||
|
54F8000
|
trusted library allocation
|
page read and write
|
||
|
5240000
|
heap
|
page read and write
|
||
|
52C0000
|
trusted library allocation
|
page read and write
|
||
|
697D000
|
trusted library allocation
|
page read and write
|
||
|
10C3000
|
trusted library allocation
|
page execute and read and write
|
||
|
5534000
|
trusted library allocation
|
page read and write
|
||
|
5030000
|
trusted library section
|
page readonly
|
||
|
752E000
|
stack
|
page read and write
|
||
|
12F2000
|
trusted library allocation
|
page read and write
|
||
|
1467000
|
trusted library allocation
|
page execute and read and write
|
||
|
1234000
|
heap
|
page read and write
|
||
|
1530000
|
trusted library allocation
|
page read and write
|
||
|
5660000
|
heap
|
page read and write
|
||
|
594B000
|
trusted library allocation
|
page read and write
|
||
|
FA2000
|
trusted library allocation
|
page read and write
|
||
|
12F8000
|
heap
|
page read and write
|
||
|
55C0000
|
trusted library allocation
|
page read and write
|
||
|
4A20000
|
trusted library allocation
|
page read and write
|
||
|
FC9000
|
stack
|
page read and write
|
||
|
5202000
|
trusted library allocation
|
page read and write
|
||
|
1330000
|
heap
|
page read and write
|
||
|
100D000
|
trusted library allocation
|
page execute and read and write
|
||
|
74AD000
|
stack
|
page read and write
|
||
|
3031000
|
trusted library allocation
|
page read and write
|
||
|
2F8E000
|
stack
|
page read and write
|
||
|
2CD5000
|
trusted library allocation
|
page read and write
|
||
|
12F8000
|
stack
|
page read and write
|
||
|
312C000
|
trusted library allocation
|
page read and write
|
||
|
6920000
|
trusted library allocation
|
page execute and read and write
|
||
|
FE0000
|
trusted library allocation
|
page read and write
|
||
|
7602000
|
trusted library allocation
|
page read and write
|
||
|
15D6000
|
heap
|
page read and write
|
||
|
16CE000
|
stack
|
page read and write
|
||
|
73AE000
|
stack
|
page read and write
|
||
|
51DE000
|
trusted library allocation
|
page read and write
|
There are 797 hidden memdumps, click here to show them.