Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
ILQ18dgzMU.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
initial sample
|
 |
|
|
C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\JH.BAT
|
DOS batch file, ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe:Zone.Identifier
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Windows\SysWOW64\579E5A5B VVVVVVrr2unw==
|
ASCII text, with no line terminators
|
modified
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\ILQ18dgzMU.exe
|
"C:\Users\user\Desktop\ILQ18dgzMU.exe"
|
|
|
|
C:\Windows\SysWOW64\cmd.exe
|
C:\Windows\system32\cmd.exe /c ""C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\JH.BAT""
|
|
|
|
C:\Windows\SysWOW64\schtasks.exe
|
schtasks /delete /tn * /f
|
|
|
|
C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
"C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe"
|
|
|
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
||
|
C:\Windows\SysWOW64\sc.exe
|
sc config Schedule start= auto
|
||
|
C:\Windows\SysWOW64\net.exe
|
net start "Task Scheduler"
|
||
|
C:\Windows\SysWOW64\net1.exe
|
C:\Windows\system32\net1 start "Task Scheduler"
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 0:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 1:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 2:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 3:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 4:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 5:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 6:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 7:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 8:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 9:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 10:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 11:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 12:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 13:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 14:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 15:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 16:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 17:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 18:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 19:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 20:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 21:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 22:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 23:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
||
|
C:\Windows\SysWOW64\at.exe
|
At 24:00 C:\Windows\XXXXXX579E5A5B VVVVVVrr2unw==\svchsot.exe
|
There are 23 hidden processes, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
www.af0575.com
|
unknown
|
|
|
|
www.wk1888.com
|
unknown
|
|
|
|
www.fz0575.com
|
unknown
|
|
|
|
expired.gname.net
|
172.65.190.172
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
172.65.190.172
|
expired.gname.net
|
United States
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run
|
XXXXXX579E5A5B VVVVVVrr2unw==
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7A0000
|
direct allocation
|
page read and write
|
|
|
|
1007A000
|
direct allocation
|
page read and write
|
|
|
|
780000
|
direct allocation
|
page read and write
|
|
|
|
1007A000
|
direct allocation
|
page read and write
|
|
|
|
2150000
|
direct allocation
|
page read and write
|
|
|
|
34B0000
|
heap
|
page read and write
|
||
|
780000
|
direct allocation
|
page read and write
|
||
|
2922000
|
heap
|
page read and write
|
||
|
32BF000
|
stack
|
page read and write
|
||
|
3165000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
5F0000
|
heap
|
page read and write
|
||
|
4AE000
|
heap
|
page read and write
|
||
|
30EC000
|
heap
|
page read and write
|
||
|
2AF0000
|
heap
|
page read and write
|
||
|
269D000
|
stack
|
page read and write
|
||
|
2670000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
1CD000
|
stack
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
310F000
|
stack
|
page read and write
|
||
|
510000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
430000
|
unkown
|
page readonly
|
||
|
28E7000
|
heap
|
page read and write
|
||
|
30FE000
|
stack
|
page read and write
|
||
|
31B0000
|
heap
|
page read and write
|
||
|
4AC000
|
heap
|
page read and write
|
||
|
406000
|
unkown
|
page readonly
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
3465000
|
heap
|
page read and write
|
||
|
3140000
|
heap
|
page read and write
|
||
|
2B60000
|
heap
|
page read and write
|
||
|
31E0000
|
remote allocation
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
2080000
|
direct allocation
|
page execute and read and write
|
||
|
2EEE000
|
stack
|
page read and write
|
||
|
2921000
|
heap
|
page read and write
|
||
|
4AF000
|
heap
|
page read and write
|
||
|
2BC0000
|
heap
|
page read and write
|
||
|
30E0000
|
remote allocation
|
page read and write
|
||
|
2835000
|
heap
|
page read and write
|
||
|
3460000
|
heap
|
page read and write
|
||
|
32B0000
|
heap
|
page read and write
|
||
|
28DE000
|
stack
|
page read and write
|
||
|
25BD000
|
stack
|
page read and write
|
||
|
2CAE000
|
stack
|
page read and write
|
||
|
2F90000
|
remote allocation
|
page read and write
|
||
|
61D000
|
stack
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
2720000
|
heap
|
page read and write
|
||
|
2738000
|
heap
|
page read and write
|
||
|
31BF000
|
stack
|
page read and write
|
||
|
2C50000
|
remote allocation
|
page read and write
|
||
|
2B20000
|
heap
|
page read and write
|
||
|
28F6000
|
heap
|
page read and write
|
||
|
2790000
|
heap
|
page read and write
|
||
|
4AC000
|
heap
|
page read and write
|
||
|
4A8000
|
heap
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
510000
|
heap
|
page read and write
|
||
|
2AF0000
|
remote allocation
|
page read and write
|
||
|
2B90000
|
heap
|
page read and write
|
||
|
2ABD000
|
stack
|
page read and write
|
||
|
307D000
|
stack
|
page read and write
|
||
|
2FF0000
|
heap
|
page read and write
|
||
|
14D000
|
stack
|
page read and write
|
||
|
2F2E000
|
stack
|
page read and write
|
||
|
20C0000
|
heap
|
page read and write
|
||
|
3120000
|
remote allocation
|
page read and write
|
||
|
2A70000
|
heap
|
page read and write
|
||
|
520000
|
remote allocation
|
page read and write
|
||
|
2CE0000
|
heap
|
page read and write
|
||
|
2343000
|
stack
|
page read and write
|
||
|
2740000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
285E000
|
stack
|
page read and write
|
||
|
2F65000
|
heap
|
page read and write
|
||
|
430000
|
unkown
|
page readonly
|
||
|
2BB0000
|
heap
|
page read and write
|
||
|
2870000
|
heap
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
24BD000
|
stack
|
page read and write
|
||
|
140000
|
heap
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
2922000
|
heap
|
page read and write
|
||
|
2BED000
|
stack
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
2E80000
|
heap
|
page read and write
|
||
|
279B000
|
heap
|
page read and write
|
||
|
2860000
|
heap
|
page read and write
|
||
|
3120000
|
remote allocation
|
page read and write
|
||
|
520000
|
heap
|
page read and write
|
||
|
2110000
|
heap
|
page read and write
|
||
|
2A30000
|
heap
|
page read and write
|
||
|
2B0F000
|
stack
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
3470000
|
heap
|
page read and write
|
||
|
3530000
|
heap
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
2BA0000
|
heap
|
page read and write
|
||
|
294E000
|
stack
|
page read and write
|
||
|
29EE000
|
stack
|
page read and write
|
||
|
4FD000
|
stack
|
page read and write
|
||
|
3FD000
|
stack
|
page read and write
|
||
|
2362000
|
heap
|
page read and write
|
||
|
3000000
|
heap
|
page read and write
|
||
|
2FBE000
|
stack
|
page read and write
|
||
|
3120000
|
remote allocation
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
2350000
|
heap
|
page read and write
|
||
|
2F90000
|
remote allocation
|
page read and write
|
||
|
269D000
|
stack
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
430000
|
unkown
|
page readonly
|
||
|
2B30000
|
heap
|
page read and write
|
||
|
29E0000
|
heap
|
page read and write
|
||
|
2C80000
|
heap
|
page read and write
|
||
|
2D20000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
2D70000
|
heap
|
page read and write
|
||
|
2B40000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
26D8000
|
heap
|
page read and write
|
||
|
2830000
|
heap
|
page read and write
|
||
|
2DE0000
|
heap
|
page read and write
|
||
|
3230000
|
heap
|
page read and write
|
||
|
3410000
|
remote allocation
|
page read and write
|
||
|
3410000
|
remote allocation
|
page read and write
|
||
|
2922000
|
heap
|
page read and write
|
||
|
31E0000
|
remote allocation
|
page read and write
|
||
|
30D8000
|
heap
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
31E0000
|
remote allocation
|
page read and write
|
||
|
1E0000
|
heap
|
page read and write
|
||
|
30BE000
|
stack
|
page read and write
|
||
|
2710000
|
heap
|
page read and write
|
||
|
3090000
|
heap
|
page read and write
|
||
|
28F6000
|
heap
|
page read and write
|
||
|
2922000
|
heap
|
page read and write
|
||
|
303D000
|
stack
|
page read and write
|
||
|
2F90000
|
heap
|
page read and write
|
||
|
2C7D000
|
stack
|
page read and write
|
||
|
605000
|
heap
|
page read and write
|
||
|
2C8B000
|
heap
|
page read and write
|
||
|
2D70000
|
heap
|
page read and write
|
||
|
2BF0000
|
heap
|
page read and write
|
||
|
2ABD000
|
stack
|
page read and write
|
||
|
2922000
|
heap
|
page read and write
|
||
|
2A78000
|
heap
|
page read and write
|
||
|
31F0000
|
remote allocation
|
page read and write
|
||
|
2770000
|
heap
|
page read and write
|
||
|
26A0000
|
remote allocation
|
page read and write
|
||
|
5DD000
|
stack
|
page read and write
|
||
|
2A10000
|
heap
|
page read and write
|
||
|
4AE000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
2BCD000
|
stack
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
2BD0000
|
heap
|
page read and write
|
||
|
33C0000
|
heap
|
page read and write
|
||
|
309F000
|
stack
|
page read and write
|
||
|
2BD5000
|
heap
|
page read and write
|
||
|
20D0000
|
trusted library allocation
|
page read and write
|
||
|
2BDD000
|
stack
|
page read and write
|
||
|
2913000
|
heap
|
page read and write
|
||
|
2922000
|
heap
|
page read and write
|
||
|
2914000
|
heap
|
page read and write
|
||
|
2F7F000
|
stack
|
page read and write
|
||
|
10001000
|
direct allocation
|
page execute read
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
27DE000
|
stack
|
page read and write
|
||
|
3470000
|
remote allocation
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
2790000
|
heap
|
page read and write
|
||
|
2BBE000
|
stack
|
page read and write
|
||
|
33AE000
|
stack
|
page read and write
|
||
|
47A000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
2F90000
|
remote allocation
|
page read and write
|
||
|
42E000
|
unkown
|
page write copy
|
||
|
27BE000
|
stack
|
page read and write
|
||
|
2C85000
|
heap
|
page read and write
|
||
|
20D0000
|
trusted library allocation
|
page read and write
|
||
|
352F000
|
stack
|
page read and write
|
||
|
2914000
|
heap
|
page read and write
|
||
|
2351000
|
heap
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
2890000
|
heap
|
page read and write
|
||
|
2C50000
|
heap
|
page read and write
|
||
|
3000000
|
heap
|
page read and write
|
||
|
2FF0000
|
heap
|
page read and write
|
||
|
4B0000
|
heap
|
page read and write
|
||
|
339E000
|
stack
|
page read and write
|
||
|
2F90000
|
remote allocation
|
page read and write
|
||
|
2890000
|
heap
|
page read and write
|
||
|
2F2B000
|
heap
|
page read and write
|
||
|
2B7E000
|
stack
|
page read and write
|
||
|
2720000
|
remote allocation
|
page read and write
|
||
|
270D000
|
stack
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
2914000
|
heap
|
page read and write
|
||
|
2922000
|
heap
|
page read and write
|
||
|
31A0000
|
heap
|
page read and write
|
||
|
3820000
|
heap
|
page read and write
|
||
|
4AC000
|
heap
|
page read and write
|
||
|
2F5D000
|
stack
|
page read and write
|
||
|
26DD000
|
stack
|
page read and write
|
||
|
2B2D000
|
stack
|
page read and write
|
||
|
2E75000
|
heap
|
page read and write
|
||
|
3230000
|
heap
|
page read and write
|
||
|
2922000
|
heap
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
18E000
|
stack
|
page read and write
|
||
|
26CD000
|
stack
|
page read and write
|
||
|
27EE000
|
stack
|
page read and write
|
||
|
2D90000
|
heap
|
page read and write
|
||
|
2E3D000
|
stack
|
page read and write
|
||
|
4AC000
|
heap
|
page read and write
|
||
|
4AC000
|
heap
|
page read and write
|
||
|
2F80000
|
heap
|
page read and write
|
||
|
20C8000
|
heap
|
page read and write
|
||
|
3470000
|
remote allocation
|
page read and write
|
||
|
2A3D000
|
stack
|
page read and write
|
||
|
2EA0000
|
heap
|
page read and write
|
||
|
26DD000
|
stack
|
page read and write
|
||
|
317E000
|
stack
|
page read and write
|
||
|
21B0000
|
trusted library allocation
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
2E80000
|
heap
|
page read and write
|
||
|
4AC000
|
heap
|
page read and write
|
||
|
30E0000
|
heap
|
page read and write
|
||
|
430000
|
unkown
|
page readonly
|
||
|
2D1D000
|
stack
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
42E000
|
unkown
|
page write copy
|
||
|
620000
|
remote allocation
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
1FD000
|
stack
|
page read and write
|
||
|
30E0000
|
heap
|
page read and write
|
||
|
331E000
|
stack
|
page read and write
|
||
|
1C0000
|
heap
|
page read and write
|
||
|
9C0000
|
heap
|
page read and write
|
||
|
406000
|
unkown
|
page readonly
|
||
|
291F000
|
heap
|
page read and write
|
||
|
2F89000
|
heap
|
page read and write
|
||
|
2C7E000
|
stack
|
page read and write
|
||
|
26A0000
|
heap
|
page read and write
|
||
|
2D80000
|
heap
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
2E00000
|
heap
|
page read and write
|
||
|
42F000
|
unkown
|
page read and write
|
||
|
2F90000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
100FA000
|
direct allocation
|
page execute and read and write
|
||
|
2E0E000
|
stack
|
page read and write
|
||
|
30E0000
|
remote allocation
|
page read and write
|
||
|
11D000
|
stack
|
page read and write
|
||
|
2720000
|
remote allocation
|
page read and write
|
||
|
1006E000
|
direct allocation
|
page readonly
|
||
|
60F000
|
stack
|
page read and write
|
||
|
DD000
|
stack
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
291F000
|
heap
|
page read and write
|
||
|
4AC000
|
heap
|
page read and write
|
||
|
2D40000
|
heap
|
page read and write
|
||
|
3430000
|
heap
|
page read and write
|
||
|
2860000
|
heap
|
page read and write
|
||
|
312E000
|
stack
|
page read and write
|
||
|
2D95000
|
heap
|
page read and write
|
||
|
2BC0000
|
remote allocation
|
page read and write
|
||
|
407000
|
unkown
|
page write copy
|
||
|
31A5000
|
heap
|
page read and write
|
||
|
2B90000
|
heap
|
page read and write
|
||
|
27F0000
|
heap
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
2F60000
|
heap
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
100F3000
|
direct allocation
|
page read and write
|
||
|
2C6D000
|
stack
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
2914000
|
heap
|
page read and write
|
||
|
100F8000
|
direct allocation
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
3090000
|
remote allocation
|
page read and write
|
||
|
2BA5000
|
heap
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
5AF000
|
stack
|
page read and write
|
||
|
485000
|
heap
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
2700000
|
heap
|
page read and write
|
||
|
10000000
|
direct allocation
|
page read and write
|
||
|
3440000
|
remote allocation
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
3250000
|
remote allocation
|
page read and write
|
||
|
2922000
|
heap
|
page read and write
|
||
|
3520000
|
heap
|
page read and write
|
||
|
20BC000
|
stack
|
page read and write
|
||
|
2FA0000
|
heap
|
page read and write
|
||
|
2F0E000
|
stack
|
page read and write
|
||
|
3588000
|
heap
|
page read and write
|
||
|
3250000
|
remote allocation
|
page read and write
|
||
|
31E0000
|
heap
|
page read and write
|
||
|
4AC000
|
heap
|
page read and write
|
||
|
2B2E000
|
stack
|
page read and write
|
||
|
1D0000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
6F0000
|
direct allocation
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
2716000
|
heap
|
page read and write
|
||
|
2A3E000
|
stack
|
page read and write
|
||
|
286E000
|
unkown
|
page read and write
|
||
|
2A2F000
|
stack
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
3410000
|
heap
|
page read and write
|
||
|
2EC8000
|
heap
|
page read and write
|
||
|
2913000
|
heap
|
page read and write
|
||
|
4AE000
|
heap
|
page read and write
|
||
|
100FA000
|
direct allocation
|
page execute and read and write
|
||
|
29AF000
|
stack
|
page read and write
|
||
|
4AE000
|
heap
|
page read and write
|
||
|
3BD000
|
stack
|
page read and write
|
||
|
4AC000
|
heap
|
page read and write
|
||
|
2B70000
|
heap
|
page read and write
|
||
|
3440000
|
remote allocation
|
page read and write
|
||
|
620000
|
remote allocation
|
page read and write
|
||
|
3000000
|
remote allocation
|
page read and write
|
||
|
4AC000
|
heap
|
page read and write
|
||
|
2BEE000
|
stack
|
page read and write
|
||
|
2B4C000
|
heap
|
page read and write
|
||
|
2913000
|
heap
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
2AB0000
|
heap
|
page read and write
|
||
|
1B0000
|
heap
|
page read and write
|
||
|
4AE000
|
heap
|
page read and write
|
||
|
2F50000
|
heap
|
page read and write
|
||
|
30FF000
|
stack
|
page read and write
|
||
|
31F0000
|
remote allocation
|
page read and write
|
||
|
3440000
|
heap
|
page read and write
|
||
|
2730000
|
heap
|
page read and write
|
||
|
21F0000
|
direct allocation
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
281E000
|
stack
|
page read and write
|
||
|
470000
|
heap
|
page read and write
|
||
|
2930000
|
remote allocation
|
page read and write
|
||
|
100F8000
|
direct allocation
|
page read and write
|
||
|
2B60000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
2B65000
|
heap
|
page read and write
|
||
|
2735000
|
heap
|
page read and write
|
||
|
74E000
|
stack
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
2EAF000
|
stack
|
page read and write
|
||
|
2DD0000
|
heap
|
page read and write
|
||
|
2230000
|
heap
|
page read and write
|
||
|
2D00000
|
heap
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
700000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
2AF0000
|
remote allocation
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
2B5D000
|
stack
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
525000
|
heap
|
page read and write
|
||
|
63D000
|
stack
|
page read and write
|
||
|
2F9D000
|
stack
|
page read and write
|
||
|
3538000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
2F3D000
|
stack
|
page read and write
|
||
|
2730000
|
heap
|
page read and write
|
||
|
2CDD000
|
stack
|
page read and write
|
||
|
7A0000
|
heap
|
page read and write
|
||
|
2341000
|
heap
|
page read and write
|
||
|
2BAF000
|
stack
|
page read and write
|
||
|
3000000
|
heap
|
page read and write
|
||
|
300B000
|
heap
|
page read and write
|
||
|
50E000
|
stack
|
page read and write
|
||
|
42F000
|
unkown
|
page read and write
|
||
|
28F4000
|
heap
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
640000
|
heap
|
page read and write
|
||
|
2878000
|
heap
|
page read and write
|
||
|
32C0000
|
heap
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
2BAE000
|
unkown
|
page read and write
|
||
|
4AC000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
32D8000
|
heap
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
2BC0000
|
remote allocation
|
page read and write
|
||
|
520000
|
heap
|
page read and write
|
||
|
3710000
|
heap
|
page read and write
|
||
|
2D6E000
|
stack
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
3680000
|
heap
|
page read and write
|
||
|
630000
|
heap
|
page read and write
|
||
|
298F000
|
stack
|
page read and write
|
||
|
2930000
|
remote allocation
|
page read and write
|
||
|
407000
|
unkown
|
page read and write
|
||
|
2F60000
|
heap
|
page read and write
|
||
|
406000
|
unkown
|
page readonly
|
||
|
4AC000
|
heap
|
page read and write
|
||
|
2F95000
|
heap
|
page read and write
|
||
|
2FFE000
|
stack
|
page read and write
|
||
|
3200000
|
heap
|
page read and write
|
||
|
3130000
|
heap
|
page read and write
|
||
|
2B40000
|
heap
|
page read and write
|
||
|
780000
|
heap
|
page read and write
|
||
|
2363000
|
heap
|
page read and write
|
||
|
2BC8000
|
heap
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
2870000
|
heap
|
page read and write
|
||
|
5EE000
|
stack
|
page read and write
|
||
|
2A3E000
|
stack
|
page read and write
|
||
|
330E000
|
stack
|
page read and write
|
||
|
2FEE000
|
stack
|
page read and write
|
||
|
311E000
|
stack
|
page read and write
|
||
|
47E000
|
heap
|
page read and write
|
||
|
2D08000
|
heap
|
page read and write
|
||
|
2EA0000
|
heap
|
page read and write
|
||
|
4AC000
|
heap
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
26A0000
|
heap
|
page read and write
|
||
|
269E000
|
stack
|
page read and write
|
||
|
4AC000
|
heap
|
page read and write
|
||
|
2B80000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
29F0000
|
remote allocation
|
page read and write
|
||
|
2C50000
|
remote allocation
|
page read and write
|
||
|
3160000
|
heap
|
page read and write
|
||
|
2240000
|
heap
|
page read and write
|
||
|
2F3E000
|
stack
|
page read and write
|
||
|
4AC000
|
heap
|
page read and write
|
||
|
50E000
|
stack
|
page read and write
|
||
|
26A0000
|
remote allocation
|
page read and write
|
||
|
32AD000
|
stack
|
page read and write
|
||
|
2BC0000
|
heap
|
page read and write
|
||
|
2D90000
|
heap
|
page read and write
|
||
|
30E0000
|
remote allocation
|
page read and write
|
||
|
342E000
|
stack
|
page read and write
|
||
|
2D20000
|
heap
|
page read and write
|
||
|
10001000
|
direct allocation
|
page execute read
|
||
|
3310000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
2FC0000
|
heap
|
page read and write
|
||
|
3090000
|
remote allocation
|
page read and write
|
||
|
2CAE000
|
stack
|
page read and write
|
||
|
2922000
|
heap
|
page read and write
|
||
|
2921000
|
heap
|
page read and write
|
||
|
29EE000
|
stack
|
page read and write
|
||
|
2922000
|
heap
|
page read and write
|
||
|
2E80000
|
heap
|
page read and write
|
||
|
317F000
|
stack
|
page read and write
|
||
|
1C4000
|
heap
|
page read and write
|
||
|
520000
|
remote allocation
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
708000
|
heap
|
page read and write
|
||
|
5AF000
|
stack
|
page read and write
|
||
|
2A3D000
|
stack
|
page read and write
|
||
|
2922000
|
heap
|
page read and write
|
||
|
2895000
|
heap
|
page read and write
|
||
|
33DE000
|
stack
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
340F000
|
stack
|
page read and write
|
||
|
2A7D000
|
stack
|
page read and write
|
||
|
2690000
|
heap
|
page read and write
|
||
|
790000
|
direct allocation
|
page read and write
|
||
|
3135000
|
heap
|
page read and write
|
||
|
20CB000
|
heap
|
page read and write
|
||
|
406000
|
unkown
|
page readonly
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
26D0000
|
heap
|
page read and write
|
||
|
2D78000
|
heap
|
page read and write
|
||
|
2D6D000
|
stack
|
page read and write
|
||
|
2EFD000
|
stack
|
page read and write
|
||
|
2878000
|
heap
|
page read and write
|
||
|
9D000
|
stack
|
page read and write
|
||
|
27AD000
|
stack
|
page read and write
|
||
|
1C4000
|
heap
|
page read and write
|
||
|
2E3E000
|
stack
|
page read and write
|
||
|
2F0F000
|
stack
|
page read and write
|
||
|
285E000
|
stack
|
page read and write
|
||
|
2922000
|
heap
|
page read and write
|
||
|
2BEE000
|
stack
|
page read and write
|
||
|
2334000
|
stack
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
33C5000
|
heap
|
page read and write
|
||
|
2BE0000
|
heap
|
page read and write
|
||
|
3000000
|
remote allocation
|
page read and write
|
||
|
3008000
|
heap
|
page read and write
|
||
|
353B000
|
heap
|
page read and write
|
||
|
33C0000
|
heap
|
page read and write
|
||
|
3278000
|
heap
|
page read and write
|
||
|
55E000
|
stack
|
page read and write
|
||
|
29AF000
|
stack
|
page read and write
|
||
|
1CE000
|
stack
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
3440000
|
remote allocation
|
page read and write
|
||
|
2914000
|
heap
|
page read and write
|
||
|
307D000
|
stack
|
page read and write
|
||
|
2EA5000
|
heap
|
page read and write
|
||
|
4BD000
|
stack
|
page read and write
|
||
|
2140000
|
heap
|
page read and write
|
||
|
2F9F000
|
stack
|
page read and write
|
||
|
2AB0000
|
remote allocation
|
page read and write
|
||
|
2F4E000
|
stack
|
page read and write
|
||
|
1D0000
|
heap
|
page read and write
|
||
|
43D000
|
stack
|
page read and write
|
||
|
4AE000
|
heap
|
page read and write
|
||
|
3268000
|
heap
|
page read and write
|
||
|
341F000
|
stack
|
page read and write
|
||
|
2CBD000
|
stack
|
page read and write
|
||
|
2C80000
|
heap
|
page read and write
|
||
|
2AED000
|
stack
|
page read and write
|
||
|
2922000
|
heap
|
page read and write
|
||
|
4AC000
|
heap
|
page read and write
|
||
|
303F000
|
stack
|
page read and write
|
||
|
2BD0000
|
heap
|
page read and write
|
||
|
700000
|
heap
|
page read and write
|
||
|
2D40000
|
remote allocation
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
2E8F000
|
stack
|
page read and write
|
||
|
29E8000
|
heap
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
3680000
|
remote allocation
|
page read and write
|
||
|
2AB0000
|
remote allocation
|
page read and write
|
||
|
3470000
|
remote allocation
|
page read and write
|
||
|
2914000
|
heap
|
page read and write
|
||
|
5AE000
|
stack
|
page read and write
|
||
|
2D20000
|
heap
|
page read and write
|
||
|
4AE000
|
heap
|
page read and write
|
||
|
4AE000
|
heap
|
page read and write
|
||
|
2EC0000
|
heap
|
page read and write
|
||
|
2922000
|
heap
|
page read and write
|
||
|
3360000
|
heap
|
page read and write
|
||
|
26BE000
|
stack
|
page read and write
|
||
|
4AC000
|
heap
|
page read and write
|
||
|
545000
|
heap
|
page read and write
|
||
|
560000
|
heap
|
page read and write
|
||
|
30D0000
|
heap
|
page read and write
|
||
|
4AC000
|
heap
|
page read and write
|
||
|
6DF000
|
stack
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
10000000
|
direct allocation
|
page read and write
|
||
|
62E000
|
stack
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
2BAE000
|
stack
|
page read and write
|
||
|
279B000
|
heap
|
page read and write
|
||
|
286E000
|
stack
|
page read and write
|
||
|
2C00000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
2340000
|
heap
|
page read and write
|
||
|
2FAE000
|
stack
|
page read and write
|
||
|
180000
|
heap
|
page read and write
|
||
|
4AC000
|
heap
|
page read and write
|
||
|
27FE000
|
stack
|
page read and write
|
||
|
480000
|
heap
|
page read and write
|
||
|
29F0000
|
remote allocation
|
page read and write
|
||
|
2352000
|
heap
|
page read and write
|
||
|
2740000
|
heap
|
page read and write
|
||
|
3390000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
2D80000
|
heap
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
319E000
|
stack
|
page read and write
|
||
|
3570000
|
heap
|
page read and write
|
||
|
32D0000
|
heap
|
page read and write
|
||
|
2C30000
|
heap
|
page read and write
|
||
|
2090000
|
direct allocation
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
3350000
|
heap
|
page read and write
|
||
|
2DCE000
|
stack
|
page read and write
|
||
|
42E000
|
unkown
|
page write copy
|
||
|
32F0000
|
heap
|
page read and write
|
||
|
2FEE000
|
stack
|
page read and write
|
||
|
3130000
|
heap
|
page read and write
|
||
|
2730000
|
heap
|
page read and write
|
||
|
56E000
|
stack
|
page read and write
|
||
|
2750000
|
heap
|
page read and write
|
||
|
440000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
2F7E000
|
stack
|
page read and write
|
||
|
1FE000
|
stack
|
page read and write
|
||
|
26A0000
|
remote allocation
|
page read and write
|
||
|
2E90000
|
heap
|
page read and write
|
||
|
20CA000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
620000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
2A40000
|
heap
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
30BE000
|
stack
|
page read and write
|
||
|
2BC0000
|
remote allocation
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
9C5000
|
heap
|
page read and write
|
||
|
50E000
|
stack
|
page read and write
|
||
|
2F90000
|
remote allocation
|
page read and write
|
||
|
27AE000
|
stack
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
2CBD000
|
stack
|
page read and write
|
||
|
334E000
|
stack
|
page read and write
|
||
|
2914000
|
heap
|
page read and write
|
||
|
407000
|
unkown
|
page read and write
|
||
|
31F0000
|
remote allocation
|
page read and write
|
||
|
2CCF000
|
stack
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
42E000
|
unkown
|
page write copy
|
||
|
1006E000
|
direct allocation
|
page readonly
|
||
|
26FE000
|
stack
|
page read and write
|
||
|
2D40000
|
remote allocation
|
page read and write
|
||
|
2B4C000
|
heap
|
page read and write
|
||
|
2362000
|
heap
|
page read and write
|
||
|
100F3000
|
direct allocation
|
page read and write
|
||
|
28E0000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
10D000
|
stack
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
3410000
|
remote allocation
|
page read and write
|
||
|
2F20000
|
heap
|
page read and write
|
||
|
9D000
|
stack
|
page read and write
|
||
|
3460000
|
heap
|
page read and write
|
||
|
2AFD000
|
stack
|
page read and write
|
||
|
2B1D000
|
stack
|
page read and write
|
||
|
3510000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
2AB0000
|
remote allocation
|
page read and write
|
||
|
2E40000
|
heap
|
page read and write
|
||
|
3250000
|
remote allocation
|
page read and write
|
||
|
D2F000
|
stack
|
page read and write
|
||
|
3580000
|
heap
|
page read and write
|
||
|
2F90000
|
remote allocation
|
page read and write
|
||
|
2351000
|
heap
|
page read and write
|
||
|
3238000
|
heap
|
page read and write
|
||
|
2FA0000
|
heap
|
page read and write
|
||
|
2BDE000
|
stack
|
page read and write
|
||
|
2A2F000
|
stack
|
page read and write
|
||
|
338E000
|
stack
|
page read and write
|
||
|
6E0000
|
direct allocation
|
page execute and read and write
|
||
|
29F0000
|
remote allocation
|
page read and write
|
||
|
4AE000
|
heap
|
page read and write
|
||
|
2E0B000
|
heap
|
page read and write
|
||
|
2A7E000
|
stack
|
page read and write
|
||
|
2B30000
|
heap
|
page read and write
|
||
|
3000000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
233F000
|
stack
|
page read and write
|
||
|
2DC0000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
2D40000
|
remote allocation
|
page read and write
|
||
|
2BC0000
|
heap
|
page read and write
|
||
|
600000
|
heap
|
page read and write
|
||
|
4B3000
|
heap
|
page read and write
|
||
|
58E000
|
stack
|
page read and write
|
||
|
2700000
|
heap
|
page read and write
|
||
|
2922000
|
heap
|
page read and write
|
||
|
7AE000
|
heap
|
page read and write
|
||
|
4AE000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
2B20000
|
heap
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
234F000
|
stack
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
2720000
|
remote allocation
|
page read and write
|
||
|
269D000
|
stack
|
page read and write
|
||
|
3530000
|
heap
|
page read and write
|
||
|
2FA5000
|
heap
|
page read and write
|
||
|
28DF000
|
stack
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
29F0000
|
heap
|
page read and write
|
||
|
7AA000
|
heap
|
page read and write
|
||
|
2BF5000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
2C2F000
|
stack
|
page read and write
|
||
|
5CE000
|
stack
|
page read and write
|
||
|
34ED000
|
stack
|
page read and write
|
||
|
313E000
|
stack
|
page read and write
|
||
|
3680000
|
remote allocation
|
page read and write
|
||
|
2160000
|
heap
|
page read and write
|
||
|
4AE000
|
heap
|
page read and write
|
||
|
303D000
|
stack
|
page read and write
|
||
|
4AC000
|
heap
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
30E0000
|
heap
|
page read and write
|
||
|
30D0000
|
heap
|
page read and write
|
||
|
305E000
|
stack
|
page read and write
|
||
|
26C0000
|
heap
|
page read and write
|
||
|
313E000
|
stack
|
page read and write
|
||
|
2914000
|
heap
|
page read and write
|
||
|
2930000
|
heap
|
page read and write
|
||
|
335E000
|
stack
|
page read and write
|
||
|
2C2F000
|
stack
|
page read and write
|
||
|
2922000
|
heap
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
2820000
|
heap
|
page read and write
|
||
|
2930000
|
remote allocation
|
page read and write
|
||
|
2DE8000
|
heap
|
page read and write
|
||
|
3275000
|
heap
|
page read and write
|
||
|
2FFF000
|
stack
|
page read and write
|
||
|
520000
|
remote allocation
|
page read and write
|
||
|
520000
|
heap
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
2C50000
|
remote allocation
|
page read and write
|
||
|
2870000
|
heap
|
page read and write
|
||
|
3260000
|
heap
|
page read and write
|
||
|
269E000
|
stack
|
page read and write
|
||
|
29E0000
|
heap
|
page read and write
|
||
|
326D000
|
stack
|
page read and write
|
||
|
3000000
|
remote allocation
|
page read and write
|
||
|
21B0000
|
trusted library allocation
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
64E000
|
stack
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
2AF0000
|
remote allocation
|
page read and write
|
||
|
31F0000
|
heap
|
page read and write
|
||
|
450000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
2E3D000
|
stack
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
2E70000
|
heap
|
page read and write
|
||
|
540000
|
heap
|
page read and write
|
||
|
5AE000
|
stack
|
page read and write
|
||
|
3090000
|
remote allocation
|
page read and write
|
||
|
34AF000
|
stack
|
page read and write
|
||
|
3680000
|
remote allocation
|
page read and write
|
||
|
2707000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
291F000
|
heap
|
page read and write
|
||
|
33C5000
|
heap
|
page read and write
|
||
|
620000
|
remote allocation
|
page read and write
|
||
|
28F3000
|
heap
|
page read and write
|
||
|
315E000
|
stack
|
page read and write
|
||
|
2C7D000
|
stack
|
page read and write
|
||
|
2B40000
|
heap
|
page read and write
|
||
|
2AD0000
|
heap
|
page read and write
|
||
|
276D000
|
stack
|
page read and write
|
||
|
2B00000
|
heap
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
5D0000
|
heap
|
page read and write
|
||
|
2E7F000
|
stack
|
page read and write
|
||
|
290F000
|
heap
|
page read and write
|
||
|
407000
|
unkown
|
page write copy
|
||
|
3200000
|
heap
|
page read and write
|
||
|
2F55000
|
heap
|
page read and write
|
||
|
317E000
|
stack
|
page read and write
|
||
|
2B10000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
There are 753 hidden memdumps, click here to show them.