Automated Malware Analysis IOC Report for

Details

Name:	0000000B.00000002.1843685747.0000000000ED1000.00000040.00000001.01000000.0000000B.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	ED1000
Size:	393216

Signature Hits	Behavior Group	Mitre Attack
Found malware configuration	AV Detection
Yara detected Amadeys stealer DLL	Stealing of Sensitive Information
Sample uses string decryption to hide its real strings	AV Detection

Details

Name:	0000000C.00000002.1819350699.00000000007B1000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	7B1000
Size:	393216

Signature Hits	Behavior Group	Mitre Attack
Yara detected Amadeys stealer DLL	Stealing of Sensitive Information

Details

Name:	0000000A.00000002.1778830173.0000000000ED1000.00000040.00000001.01000000.0000000B.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	ED1000
Size:	393216

Signature Hits	Behavior Group	Mitre Attack
Yara detected Amadeys stealer DLL	Stealing of Sensitive Information

Details

Name:	0000000D.00000002.1820865446.00000000007B1000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	7B1000
Size:	393216

Signature Hits	Behavior Group	Mitre Attack
Yara detected Amadeys stealer DLL	Stealing of Sensitive Information

Details

Name:	00000011.00000002.4128729450.00000000007B1000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	7B1000
Size:	393216

Signature Hits	Behavior Group	Mitre Attack
Yara detected Amadeys stealer DLL	Stealing of Sensitive Information

Details

Name:	0000000A.00000002.1786060849.0000000004A4F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4A4F000
Size:	4096

Details

Name:	0000000C.00000002.1819977758.0000000000DD0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	DD0000
Size:	32768

Details

Name:	00000008.00000002.1827146366.0000015D02FB7000.00000040.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page execute and read and write
Base address:	15D02FB7000
Size:	4096

Details

Name:	00000011.00000002.4133284761.00000000052EB000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	52EB000
Size:	20480

Details

Name:	00000002.00000003.1684103049.00000000068E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	68E1000
Size:	4096

Details

Name:	00000011.00000003.2245506038.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000005.00000002.1718884574.0000000000CA0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	CA0000
Size:	12288

Details

Name:	00000007.00000002.1702414145.0000004AE28F6000.00000004.00000010.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4AE28F6000
Size:	40960

Details

Name:	0000000D.00000002.1822030382.0000000002637000.00000004.00000020.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	2637000
Size:	8192

Details

Name:	00000011.00000003.2226436689.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	49152

Details

Name:	00000000.00000003.1680344224.000000000109E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	109E000
Size:	8192

Details

Name:	0000000B.00000002.1846620747.00000000046BF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	46BF000
Size:	4096

Details

Name:	00000007.00000003.1699265268.0000015A0DF53000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF53000
Size:	126976

Details

Name:	0000000D.00000002.1821825906.0000000000C74000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	C74000
Size:	8192

Details

Name:	00000011.00000003.2243548161.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000A.00000002.1779374372.00000000011DA000.00000040.00000001.01000000.0000000B.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	11DA000
Size:	24576

Details

Name:	0000000A.00000002.1785220159.000000000340C000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	340C000
Size:	16384

Details

Name:	0000000C.00000002.1820223530.0000000002D4E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2D4E000
Size:	8192

Details

Name:	0000000B.00000003.1799435539.00000000051E0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	51E0000
Size:	4096

Details

Name:	00000000.00000003.1678619392.0000000001147000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1147000
Size:	20480

Details

Name:	0000000A.00000003.1739612160.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000002.1785199221.0000000001C2F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1C2F000
Size:	4096

Details

Name:	0000000A.00000003.1745223080.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000005.00000002.1718958180.0000000000D68000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	D68000
Size:	327680

Details

Name:	00000011.00000003.2246287533.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000011.00000003.2244652662.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000011.00000002.4132750589.0000000004B40000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	4B40000
Size:	4096

Details

Name:	0000000A.00000002.1787771856.0000000008F5C000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	8F5C000
Size:	16384

Details

Name:	00000005.00000002.1728293440.0000000008455000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	8455000
Size:	4096

Details

Name:	00000005.00000002.1726252508.000000000741A000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	741A000
Size:	8192

Details

Name:	0000000B.00000003.1799330610.0000000005210000.00000040.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5210000
Size:	4096

Details

Name:	00000000.00000003.1682021519.000000000106E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	106E000
Size:	16384

Details

Name:	0000000A.00000003.1745572072.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000011.00000003.2246255214.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000D.00000002.1823760232.000000000437E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	437E000
Size:	8192

Details

Name:	0000000C.00000003.1779199285.0000000004B10000.00000040.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4B10000
Size:	4096

Details

Name:	00000007.00000002.1703360588.00000162101A0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	162101A0000
Size:	4096

Details

Name:	00000002.00000003.1684103049.00000000068F1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	68F1000
Size:	8192

Details

Name:	00000008.00000002.1863689739.0000015D13041000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	15D13041000
Size:	53248

Details

Name:	0000000A.00000003.1726722180.00000000051D0000.00000004.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	51D0000
Size:	53248

Details

Name:	0000000A.00000003.1740073652.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000B.00000002.1846113657.0000000003B7F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3B7F000
Size:	4096

Details

Name:	00000011.00000002.4133418499.00000000057FF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	57FF000
Size:	4096

Details

Name:	0000000D.00000000.1755084614.0000000000812000.00000080.00000001.01000000.0000000F.sdmp
TargetID:	13
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	812000
Size:	16384

Details

Name:	0000000D.00000002.1823802991.0000000004480000.00000004.00000020.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	4480000
Size:	4096

Details

Name:	00000008.00000002.1878276831.00007FFD99D30000.00000040.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page execute and read and write
Base address:	7FFD99D30000
Size:	28672

Details

Name:	0000000A.00000003.1753857495.0000000007563000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	7563000
Size:	16384

Details

Name:	0000000A.00000003.1740677734.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000002.00000003.1683847725.00000000036E4000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36E4000
Size:	8192

Details

Name:	0000000C.00000000.1755096722.00000000007B1000.00000080.00000001.01000000.0000000F.sdmp
TargetID:	12
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	7B1000
Size:	393216

Details

Name:	00000005.00000002.1719503668.0000000003074000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	3074000
Size:	36864

Details

Name:	00000008.00000002.1877019476.00007DF4270F0000.00000040.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page execute and read and write
Base address:	7DF4270F0000
Size:	4096

Details

Name:	0000000A.00000003.1746294010.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000003.1743543737.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000007.00000003.1701936653.0000015A0DF29000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF29000
Size:	53248

Details

Name:	0000000A.00000003.1742458293.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000000.00000003.1681594498.00000000010D4000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	10D4000
Size:	24576

Details

Name:	00000008.00000002.1825946352.000000547C2FC000.00000004.00000010.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	547C2FC000
Size:	16384

Details

Name:	00000000.00000002.1683888582.0000000001086000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1086000
Size:	94208

Signature Hits	Behavior Group	Mitre Attack
Sample file is different than original file name gathered from version info	System Summary

Details

Name:	00000011.00000003.2243301799.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000008.00000002.1826934054.0000015D02B00000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	15D02B00000
Size:	4096

Details

Name:	00000007.00000003.1697374195.0000015A0DF0E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF0E000
Size:	36864

Details

Name:	00000000.00000002.1683751503.0000000000F60000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	F60000
Size:	24576

Details

Name:	00000007.00000003.1700183441.00000162101B4000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	162101B4000
Size:	12288

Details

Name:	00000011.00000003.2243737122.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000005.00000002.1719698852.0000000003080000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	3080000
Size:	32768

Details

Name:	0000000C.00000002.1820969173.0000000003C0F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3C0F000
Size:	4096

Details

Name:	00000011.00000003.2225159764.0000000005140000.00000040.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5140000
Size:	4096

Details

Name:	00000005.00000002.1720415482.0000000004E7F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4E7F000
Size:	4096

Details

Name:	00000008.00000002.1873486001.0000015D1B206000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B206000
Size:	16384

Details

Name:	0000000A.00000002.1785428809.000000000378F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	378F000
Size:	4096

Details

Name:	0000000C.00000002.1820444105.000000000338E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	338E000
Size:	8192

Details

Name:	00000007.00000003.1700733397.000001620FED3000.00000004.00000800.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	1620FED3000
Size:	4096

Details

Name:	00000005.00000002.1718958180.0000000000D38000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	D38000
Size:	143360

Details

Name:	00000000.00000002.1682770308.0000000000699000.00000004.00000010.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	699000
Size:	28672

Details

Name:	0000000A.00000002.1787249668.0000000005820000.00000040.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5820000
Size:	4096

Details

Name:	00000002.00000003.1679778627.00000000036E8000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36E8000
Size:	81920

Details

Name:	00000011.00000003.2243852101.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000D.00000002.1824038421.0000000004B20000.00000040.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4B20000
Size:	4096

Details

Name:	00000011.00000003.2213560193.0000000002E00000.00000004.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2E00000
Size:	53248

Details

Name:	00000011.00000003.2215039329.0000000002E00000.00000004.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2E00000
Size:	53248

Details

Name:	00000002.00000002.1686636137.000000000703D000.00000004.00000010.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	703D000
Size:	12288

Details

Name:	0000000B.00000003.1787952915.0000000001540000.00000004.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	1540000
Size:	53248

Details

Name:	00000011.00000002.4131243917.000000000321F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	321F000
Size:	4096

Details

Name:	00000005.00000002.1726068005.00000000073F7000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	73F7000
Size:	81920

Details

Name:	00000011.00000002.4132723988.0000000004B1F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4B1F000
Size:	4096

Details

Name:	0000000B.00000002.1845471094.0000000002FB7000.00000004.00000020.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	2FB7000
Size:	8192

Details

Name:	0000000B.00000000.1753946185.0000000000F39000.00000008.00000001.01000000.0000000B.sdmp
TargetID:	11
Dumpstage:	process new
Regiontype:	unkown
Protect:	page write copy
Base address:	F39000
Size:	4096

Details

Name:	0000000A.00000003.1749641390.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000D.00000002.1822815887.000000000307F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	307F000
Size:	4096

Details

Name:	0000000A.00000003.1746575923.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000005.00000002.1727475160.0000000007800000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7800000
Size:	65536

Details

Name:	00000005.00000002.1728560699.000000007F0C0000.00000040.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page execute and read and write
Base address:	7F0C0000
Size:	4096

Details

Name:	0000000D.00000002.1820971182.00000000009AB000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	9AB000
Size:	913408

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery

Details

Name:	0000000B.00000002.1845947564.00000000037BF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	37BF000
Size:	4096

Details

Name:	0000000B.00000002.1846593658.00000000045BE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	45BE000
Size:	8192

Details

Name:	0000000A.00000002.1787284700.0000000005840000.00000040.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5840000
Size:	4096

Details

Name:	00000011.00000002.4130885626.0000000002D3E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2D3E000
Size:	8192

Details

Name:	00000007.00000003.1697374195.0000015A0DF37000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF37000
Size:	102400

Details

Name:	00000005.00000002.1727070484.0000000007770000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7770000
Size:	65536

Details

Name:	00000000.00000000.1674793036.000000000059C000.00000002.00000001.01000000.00000003.sdmp
TargetID:	0
Dumpstage:	process new
Regiontype:	unkown
Protect:	page readonly
Base address:	59C000
Size:	151552

Details

Name:	00000011.00000002.4132592343.000000000479E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	479E000
Size:	8192

Details

Name:	0000000C.00000002.1820095433.000000000288F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	288F000
Size:	4096

Details

Name:	0000000B.00000002.1843068865.000000000090C000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	90C000
Size:	16384

Details

Name:	0000000C.00000002.1820504204.00000000034CE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	34CE000
Size:	8192

Details

Name:	0000000B.00000002.1843530652.00000000009EE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	9EE000
Size:	8192

Details

Name:	00000002.00000002.1686188304.000000000383A000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	383A000
Size:	20480

Details

Name:	0000000A.00000003.1723226521.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000003.1741759124.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000D.00000002.1823454660.0000000003ABE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3ABE000
Size:	8192

Details

Name:	0000000B.00000002.1843685747.0000000000F32000.00000040.00000001.01000000.0000000B.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	F32000
Size:	20480

Details

Name:	0000000A.00000002.1785619545.0000000003DCF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3DCF000
Size:	4096

Details

Name:	0000000A.00000003.1737641777.0000000005800000.00000040.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5800000
Size:	4096

Details

Name:	00000007.00000003.1699444659.0000015A0DF53000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF53000
Size:	126976

Details

Name:	00000005.00000002.1720474826.00000000054EF000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	54EF000
Size:	12288

Details

Name:	0000000A.00000002.1785170829.0000000001B2E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1B2E000
Size:	8192

Details

Name:	00000007.00000003.1697374195.0000015A0DF29000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF29000
Size:	53248

Details

Name:	00000005.00000002.1719318481.0000000000E6E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	E6E000
Size:	8192

Details

Name:	0000000C.00000002.1820910173.0000000003ACF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3ACF000
Size:	4096

Details

Name:	0000000C.00000002.1819184908.00000000005EE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5EE000
Size:	8192

Details

Name:	0000000A.00000002.1784153920.0000000001736000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1736000
Size:	4096

Details

Name:	0000000B.00000002.1847153055.0000000005260000.00000040.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5260000
Size:	4096

Details

Name:	00000007.00000002.1703235836.0000015A0F9B0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0F9B0000
Size:	4096

Details

Name:	0000000A.00000002.1786039870.000000000494E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	494E000
Size:	8192

Details

Name:	0000000B.00000002.1846871463.0000000004BF1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	4BF1000
Size:	241664

Details

Name:	00000011.00000002.4133205573.00000000051C0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	51C0000
Size:	4096

Details

Name:	0000000C.00000003.1765314168.0000000002770000.00000004.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2770000
Size:	53248

Details

Name:	0000000C.00000002.1820614463.000000000374E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	374E000
Size:	8192

Details

Name:	0000000C.00000002.1820558907.000000000360E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	360E000
Size:	8192

Details

Name:	00000011.00000002.4128932574.0000000000ABA000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	ABA000
Size:	24576

Details

Name:	0000000A.00000003.1748178609.00000000019FB000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	19FB000
Size:	57344

Details

Name:	0000000D.00000003.1782033324.0000000004AB0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4AB0000
Size:	4096

Details

Name:	0000000B.00000002.1846695637.000000000483E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	483E000
Size:	8192

Details

Name:	0000000A.00000002.1784984378.00000000019B2000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	19B2000
Size:	4096

Details

Name:	0000000D.00000002.1823194801.000000000333E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	333E000
Size:	8192

Details

Name:	0000000D.00000002.1820971182.0000000000AD1000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	AD1000
Size:	4096

Details

Name:	0000000A.00000003.1739487783.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000008.00000002.1877165850.00007FFD99C13000.00000040.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page execute and read and write
Base address:	7FFD99C13000
Size:	4096

Details

Name:	00000011.00000002.4133613500.000000000594D000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	594D000
Size:	12288

Details

Name:	00000000.00000003.1676399481.00000000011E7000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	11E7000
Size:	57344

Details

Name:	00000005.00000002.1725834051.000000000716B000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	716B000
Size:	20480

Details

Name:	0000000C.00000002.1821715539.00000000049CE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	49CE000
Size:	8192

Details

Name:	00000008.00000002.1882371263.00007FFD99F50000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99F50000
Size:	40960

Details

Name:	00000005.00000002.1720474826.0000000005037000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	5037000
Size:	864256

Details

Name:	00000011.00000002.4131367610.000000000349F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	349F000
Size:	4096

Details

Name:	00000011.00000003.2245223623.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000011.00000003.2245330478.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000C.00000002.1821308617.000000000428E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	428E000
Size:	8192

Details

Name:	0000000B.00000002.1843640531.0000000000ED0000.00000004.00000001.01000000.0000000B.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	ED0000
Size:	4096

Details

Name:	00000011.00000002.4131989977.00000000039DE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	39DE000
Size:	8192

Details

Name:	0000000B.00000002.1846822481.0000000004BBF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4BBF000
Size:	4096

Details

Name:	0000000A.00000002.1787340429.0000000005870000.00000040.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5870000
Size:	4096

Details

Name:	00000011.00000003.2225043448.0000000005140000.00000040.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5140000
Size:	8192

Details

Name:	00000000.00000003.1679000982.0000000001182000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1182000
Size:	20480

Details

Name:	00000005.00000002.1727529798.0000000007810000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7810000
Size:	65536

Details

Name:	0000000C.00000000.1755096722.0000000000812000.00000080.00000001.01000000.0000000F.sdmp
TargetID:	12
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	812000
Size:	16384

Details

Name:	0000000A.00000003.1741177249.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000002.1787589210.0000000007144000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	7144000
Size:	4096

Details

Name:	0000000A.00000003.1753524134.000000000700E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	700E000
Size:	4096

Details

Name:	0000000A.00000002.1785954432.00000000046CE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	46CE000
Size:	8192

Details

Name:	00000011.00000003.2218225454.0000000002E00000.00000004.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2E00000
Size:	53248

Details

Name:	0000000D.00000002.1823672054.00000000040FE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	40FE000
Size:	8192

Details

Name:	0000000A.00000003.1741379575.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000002.00000003.1683020881.00000000068EC000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	68EC000
Size:	28672

Details

Name:	00000002.00000002.1685796181.0000000003475000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	3475000
Size:	16384

Details

Name:	00000005.00000002.1727754389.00000000082F0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	82F0000
Size:	4096

Details

Name:	00000000.00000003.1679821653.00000000010E3000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	10E3000
Size:	8192

Details

Name:	00000005.00000002.1726219128.000000000740C000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	740C000
Size:	53248

Details

Name:	0000000C.00000003.1778763857.0000000004980000.00000004.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	4980000
Size:	53248

Details

Name:	00000005.00000002.1726068005.00000000073B0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	73B0000
Size:	114688

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery

Details

Name:	0000000A.00000002.1785312347.0000000003480000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	3480000
Size:	20480

Details

Name:	0000000A.00000003.1753885095.00000000019A9000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	19A9000
Size:	151552

Details

Name:	0000000A.00000003.1747287831.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000002.00000002.1685754909.0000000003400000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	3400000
Size:	8192

Details

Name:	0000000A.00000002.1785563058.0000000003B8E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3B8E000
Size:	8192

Details

Name:	0000000D.00000003.1764770799.0000000002620000.00000004.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2620000
Size:	53248

Details

Name:	0000000A.00000002.1787190947.00000000056BE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	56BE000
Size:	8192

Details

Name:	00000002.00000002.1686250177.000000000393E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	393E000
Size:	8192

Details

Name:	0000000A.00000003.1737847571.0000000005800000.00000040.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5800000
Size:	4096

Details

Name:	00000005.00000002.1725669373.0000000006F1E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6F1E000
Size:	8192

Details

Name:	0000000D.00000002.1820865446.0000000000812000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	812000
Size:	20480

Details

Name:	0000000A.00000003.1737930925.00000000057D0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	57D0000
Size:	4096

Details

Name:	00000000.00000003.1679734668.00000000010DD000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	10DD000
Size:	61440

Details

Name:	00000008.00000002.1881681456.00007FFD99F00000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99F00000
Size:	65536

Details

Name:	00000005.00000002.1718940001.0000000000D0E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	D0E000
Size:	8192

Details

Name:	0000000A.00000003.1746266811.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000002.1787509649.0000000006D6E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6D6E000
Size:	8192

Details

Name:	00000005.00000002.1727407835.00000000077F0000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	77F0000
Size:	65536

Details

Name:	0000000A.00000003.1748062541.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000005.00000002.1719560738.000000000307D000.00000040.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page execute and read and write
Base address:	307D000
Size:	8192

Details

Name:	0000000A.00000003.1749737902.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000011.00000002.4131832815.000000000389E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	389E000
Size:	8192

Details

Name:	0000000A.00000002.1785992768.000000000480E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	480E000
Size:	8192

Details

Name:	0000000D.00000002.1820630291.000000000077E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	77E000
Size:	8192

Details

Name:	0000000A.00000003.1754049200.00000000019D1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	19D1000
Size:	81920

Details

Name:	0000000C.00000003.1764300002.0000000002770000.00000004.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2770000
Size:	53248

Details

Name:	0000000A.00000003.1737305974.0000000005670000.00000004.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	5670000
Size:	53248

Details

Name:	00000000.00000003.1678776017.0000000001147000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1147000
Size:	20480

Details

Name:	0000000D.00000002.1823374880.000000000383E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	383E000
Size:	8192

Details

Name:	00000007.00000003.1697374195.0000015A0DF53000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF53000
Size:	135168

Details

Name:	00000011.00000002.4132435078.00000000043DE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	43DE000
Size:	8192

Details

Name:	0000000A.00000002.1785503955.0000000003A0F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3A0F000
Size:	4096

Details

Name:	00000000.00000003.1680472434.00000000011BD000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	11BD000
Size:	8192

Signature Hits	Behavior Group	Mitre Attack
Sample file is different than original file name gathered from version info	System Summary

Details

Name:	0000000A.00000003.1749554040.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000000.00000003.1675295968.00000000010CD000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	10CD000
Size:	131072

Details

Name:	00000005.00000002.1726369204.000000000745E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	745E000
Size:	28672

Details

Name:	0000000A.00000003.1741865133.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000002.1787489341.0000000006D2F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6D2F000
Size:	4096

Details

Name:	0000000C.00000002.1821970437.0000000004B90000.00000040.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4B90000
Size:	4096

Details

Name:	00000011.00000002.4130976649.0000000002DFE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2DFE000
Size:	8192

Details

Name:	00000008.00000002.1827295892.0000015D0326D000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	15D0326D000
Size:	10485760

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	0000000A.00000002.1785917708.000000000458E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	458E000
Size:	8192

Details

Name:	00000002.00000002.1686506215.0000000005FA0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	5FA0000
Size:	4096

Details

Name:	00000002.00000002.1686116459.0000000003770000.00000004.00000800.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	3770000
Size:	4096

Details

Name:	00000011.00000002.4133029576.0000000005150000.00000040.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5150000
Size:	4096

Details

Name:	00000011.00000003.2211995460.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	49152

Details

Name:	00000007.00000003.1700239464.00000162101B3000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	162101B3000
Size:	4096

Details

Name:	0000000C.00000002.1821823806.0000000004B40000.00000040.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4B40000
Size:	4096

Details

Name:	00000011.00000003.2227393486.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000C.00000002.1819330614.00000000007B0000.00000004.00000001.01000000.0000000F.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	7B0000
Size:	4096

Details

Name:	00000000.00000003.1681413432.00000000010E7000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	10E7000
Size:	20480

Details

Name:	00000011.00000000.2207291896.00000000007B1000.00000080.00000001.01000000.0000000F.sdmp
TargetID:	17
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	7B1000
Size:	393216

Details

Name:	00000008.00000002.1880420805.00007FFD99E90000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99E90000
Size:	65536

Details

Name:	0000000C.00000002.1819499504.0000000000A8E000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	A8E000
Size:	106496

Details

Name:	00000007.00000003.1700369090.00000162102A5000.00000004.00000800.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	162102A5000
Size:	4096

Details

Name:	00000000.00000002.1683888582.000000000109E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	109E000
Size:	8192

Details

Name:	0000000A.00000003.1739335652.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000000.00000003.1678269667.0000000001178000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1178000
Size:	36864

Details

Name:	0000000B.00000003.1792414869.0000000001540000.00000004.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	1540000
Size:	53248

Details

Name:	00000008.00000002.1877851262.00007FFD99CC0000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99CC0000
Size:	8192

Details

Name:	00000000.00000003.1678569325.0000000001147000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1147000
Size:	20480

Details

Name:	00000002.00000002.1685731840.00000000033FE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	33FE000
Size:	8192

Details

Name:	0000000A.00000002.1787450693.0000000006BC0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	6BC0000
Size:	4096

Details

Name:	0000000B.00000002.1846138203.0000000003BBE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3BBE000
Size:	8192

Details

Name:	00000007.00000002.1702695947.0000015A0DE9E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DE9E000
Size:	98304

Details

Name:	00000005.00000002.1720474826.0000000005283000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	5283000
Size:	45056

Details

Name:	0000000A.00000003.1737678093.0000000005800000.00000040.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5800000
Size:	4096

Details

Name:	0000000C.00000002.1820885804.00000000039CE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	39CE000
Size:	8192

Details

Name:	0000000C.00000002.1821218950.000000000414E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	414E000
Size:	8192

Details

Name:	00000011.00000002.4131692884.000000000375E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	375E000
Size:	8192

Details

Name:	0000000C.00000000.1755068138.00000000007B0000.00000002.00000001.01000000.0000000F.sdmp
TargetID:	12
Dumpstage:	process new
Regiontype:	unkown
Protect:	page readonly
Base address:	7B0000
Size:	4096

Details

Name:	00000000.00000003.1677901468.0000000001194000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1194000
Size:	32768

Details

Name:	00000011.00000003.2243072707.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000A.00000002.1785825674.000000000430E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	430E000
Size:	8192

Details

Name:	0000000A.00000003.1735481634.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000002.1787019622.0000000004F8E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4F8E000
Size:	8192

Details

Name:	0000000A.00000003.1746518394.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000000.00000002.1682706105.00000000005CC000.00000004.00000001.01000000.00000003.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	5CC000
Size:	28672

Details

Name:	0000000C.00000002.1820147598.0000000002ACE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2ACE000
Size:	8192

Details

Name:	00000008.00000002.1872168829.0000015D1B184000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B184000
Size:	110592

Details

Name:	0000000A.00000003.1741950884.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000002.00000002.1686552852.0000000006030000.00000004.00000800.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	6030000
Size:	4096

Details

Name:	0000000A.00000002.1787750159.0000000008DBE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	8DBE000
Size:	8192

Details

Name:	0000000D.00000003.1772357973.0000000002620000.00000004.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2620000
Size:	53248

Details

Name:	00000011.00000002.4131181305.000000000301F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	301F000
Size:	4096

Details

Name:	00000011.00000002.4131423219.00000000035DF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	35DF000
Size:	4096

Details

Name:	0000000C.00000002.1821743868.0000000004ACF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4ACF000
Size:	4096

Details

Name:	0000000A.00000002.1785877767.000000000444E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	444E000
Size:	8192

Details

Name:	0000000A.00000002.1786970955.0000000004E4E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4E4E000
Size:	8192

Details

Name:	00000005.00000002.1726398804.0000000007468000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	7468000
Size:	49152

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery

Details

Name:	0000000C.00000003.1773316881.0000000002770000.00000004.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2770000
Size:	53248

Details

Name:	0000000B.00000003.1795587519.0000000001540000.00000004.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	1540000
Size:	53248

Details

Name:	00000007.00000003.1699265268.0000015A0DF0E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF0E000
Size:	36864

Details

Name:	00000008.00000002.1827146366.0000015D02FB0000.00000040.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page execute and read and write
Base address:	15D02FB0000
Size:	20480

Details

Name:	0000000B.00000002.1844680520.00000000014DF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	14DF000
Size:	4096

Details

Name:	00000008.00000002.1827295892.0000015D03041000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	15D03041000
Size:	520192

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000002.00000002.1685775692.000000000344E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	344E000
Size:	8192

Details

Name:	00000005.00000002.1720090229.0000000004960000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	4960000
Size:	4096

Details

Name:	00000007.00000003.1700733397.000001620FED1000.00000004.00000800.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	1620FED1000
Size:	4096

Details

Name:	00000005.00000002.1728173217.00000000083D0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	83D0000
Size:	4096

Details

Name:	0000000D.00000003.1781761844.0000000004AB0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4AB0000
Size:	4096

Details

Name:	0000000C.00000003.1779109885.0000000004B10000.00000040.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4B10000
Size:	4096

Details

Name:	00000005.00000002.1719749874.00000000030A0000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	30A0000
Size:	4096

Details

Name:	0000000A.00000002.1784107805.00000000013DB000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	13DB000
Size:	20480

Details

Name:	00000008.00000002.1878640871.00007FFD99DD0000.00000040.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page execute and read and write
Base address:	7FFD99DD0000
Size:	4096

Details

Name:	00000005.00000002.1726906124.000000000772D000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	772D000
Size:	12288

Details

Name:	0000000A.00000003.1742163381.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000005.00000002.1728370932.00000000087AE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	87AE000
Size:	8192

Details

Name:	0000000C.00000002.1820059608.0000000002780000.00000004.00000020.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	2780000
Size:	16384

Details

Name:	00000000.00000002.1684182627.00000000011D4000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	11D4000
Size:	8192

Details

Name:	00000008.00000002.1878467439.00007FFD99DC5000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99DC5000
Size:	12288

Details

Name:	00000007.00000002.1703195729.0000015A0F970000.00000004.00000800.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	15A0F970000
Size:	4096

Details

Name:	00000005.00000002.1720007476.0000000004918000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	4918000
Size:	12288

Details

Name:	00000005.00000002.1727277012.00000000077C0000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	77C0000
Size:	65536

Details

Name:	00000008.00000002.1882214019.00007FFD99F40000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99F40000
Size:	65536

Details

Name:	00000007.00000003.1697374195.0000015A0DEED000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DEED000
Size:	40960

Details

Name:	00000007.00000003.1701755161.0000015A0DF39000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF39000
Size:	4096

Details

Name:	0000000A.00000003.1735336930.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000B.00000002.1847098881.0000000005240000.00000040.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5240000
Size:	4096

Details

Name:	00000000.00000002.1683253762.0000000000EE0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	EE0000
Size:	4096

Details

Name:	00000011.00000003.2227319533.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000A.00000003.1746108307.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000000.00000003.1679101236.0000000001133000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1133000
Size:	8192

Details

Name:	0000000A.00000003.1741595094.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000000.00000002.1682795234.0000000000700000.00000004.00000020.00040000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	700000
Size:	4096

Details

Name:	00000005.00000002.1727197772.00000000077A0000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	77A0000
Size:	65536

Details

Name:	00000000.00000003.1675527157.000000000108E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	108E000
Size:	954368

Details

Name:	0000000B.00000002.1846400102.00000000041FE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	41FE000
Size:	8192

Details

Name:	0000000A.00000002.1787629063.000000000727B000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	727B000
Size:	20480

Details

Name:	0000000C.00000002.1820185686.0000000002C0E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2C0E000
Size:	8192

Details

Name:	0000000A.00000003.1739979841.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000B.00000002.1844647756.00000000013DE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	13DE000
Size:	8192

Details

Name:	00000008.00000002.1877889704.00007FFD99CC6000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99CC6000
Size:	24576

Details

Name:	0000000C.00000003.1770072452.0000000002770000.00000004.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2770000
Size:	53248

Details

Name:	0000000A.00000003.1743624283.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000C.00000002.1821079555.0000000003E8F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3E8F000
Size:	4096

Details

Name:	0000000D.00000002.1820971182.000000000081B000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	81B000
Size:	1626112

Details

Name:	00000008.00000002.1827205903.0000015D02FC0000.00000040.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page execute and read and write
Base address:	15D02FC0000
Size:	4096

Details

Name:	0000000A.00000002.1785407974.000000000368F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	368F000
Size:	4096

Details

Name:	00000002.00000003.1683847725.00000000036E8000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36E8000
Size:	28672

Details

Name:	00000000.00000003.1676299353.000000000120C000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	120C000
Size:	114688

Details

Name:	0000000C.00000003.1774979414.0000000002770000.00000004.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2770000
Size:	53248

Details

Name:	00000007.00000002.1702512640.0000004AE2EFE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4AE2EFE000
Size:	8192

Details

Name:	0000000D.00000002.1820762916.0000000000790000.00000004.00000020.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	790000
Size:	4096

Details

Name:	0000000C.00000002.1819283877.000000000076E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	76E000
Size:	8192

Details

Name:	0000000D.00000002.1822962809.00000000030BE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	30BE000
Size:	8192

Details

Name:	0000000D.00000003.1779849268.0000000004920000.00000004.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	4920000
Size:	53248

Details

Name:	0000000B.00000002.1846064940.0000000003A3F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3A3F000
Size:	4096

Details

Name:	00000005.00000002.1720047186.0000000004930000.00000040.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page execute and read and write
Base address:	4930000
Size:	36864

Details

Name:	00000008.00000002.1826186145.0000015D01190000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D01190000
Size:	16384

Details

Name:	0000000A.00000003.1741976774.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000C.00000002.1821558615.00000000044D0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	44D0000
Size:	4096

Details

Name:	0000000A.00000002.1785277788.0000000003460000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	3460000
Size:	4096

Details

Name:	00000011.00000003.2227026213.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000A.00000003.1746735416.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000C.00000002.1821026948.0000000003D4F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3D4F000
Size:	4096

Details

Name:	0000000D.00000002.1820529891.0000000000570000.00000004.00000020.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	570000
Size:	32768

Details

Name:	00000008.00000002.1877727972.00007FFD99C30000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99C30000
Size:	4096

Details

Name:	0000000B.00000003.1799263933.0000000005210000.00000040.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5210000
Size:	4096

Details

Name:	00000005.00000002.1720278462.0000000004D8E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4D8E000
Size:	8192

Details

Name:	00000002.00000003.1682905060.0000000006A90000.00000004.00000800.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	6A90000
Size:	4096

Details

Name:	0000000D.00000002.1821998608.000000000261E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	261E000
Size:	8192

Details

Name:	00000000.00000000.1674737328.0000000000501000.00000020.00000001.01000000.00000003.sdmp
TargetID:	0
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute read
Base address:	501000
Size:	634880

Details

Name:	0000000A.00000002.1785600585.0000000003CCE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3CCE000
Size:	8192

Details

Name:	0000000D.00000002.1823824603.00000000048C0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	48C0000
Size:	4096

Details

Name:	00000000.00000003.1679764041.00000000010E5000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	10E5000
Size:	28672

Details

Name:	00000011.00000003.2246224586.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000B.00000003.1799213781.0000000005210000.00000040.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5210000
Size:	4096

Details

Name:	00000011.00000003.2244692512.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000D.00000002.1822623150.0000000002CFE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2CFE000
Size:	8192

Details

Name:	0000000B.00000002.1846666507.00000000047FF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	47FF000
Size:	4096

Details

Name:	00000000.00000003.1678937589.0000000001133000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1133000
Size:	8192

Details

Name:	0000000A.00000002.1785700586.000000000404F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	404F000
Size:	4096

Details

Name:	0000000A.00000002.1785899248.000000000454F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	454F000
Size:	4096

Details

Name:	0000000C.00000002.1820129560.0000000002A8F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2A8F000
Size:	4096

Details

Name:	0000000C.00000002.1819164107.0000000000580000.00000004.00000020.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	580000
Size:	4096

Details

Name:	00000002.00000003.1685222235.00000000036AA000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36AA000
Size:	16384

Details

Name:	0000000A.00000002.1787375423.0000000005890000.00000040.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5890000
Size:	4096

Details

Name:	00000011.00000002.4132922486.0000000004FB0000.00000004.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page read and write
Base address:	4FB0000
Size:	4096

Details

Name:	0000000D.00000003.1769361347.0000000002620000.00000004.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2620000
Size:	53248

Details

Name:	00000000.00000003.1678831256.0000000001125000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1125000
Size:	20480

Details

Name:	0000000D.00000002.1822726215.0000000002F3F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2F3F000
Size:	4096

Details

Name:	0000000B.00000002.1844727383.0000000001550000.00000004.00000020.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1550000
Size:	24576

Details

Name:	0000000A.00000003.1742342966.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000000.00000002.1682223406.0000000000500000.00000002.00000001.01000000.00000003.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page readonly
Base address:	500000
Size:	4096

Details

Name:	00000011.00000003.2244531298.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000007.00000003.1698163872.0000015A0DECC000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DECC000
Size:	106496

Details

Name:	00000002.00000002.1685935905.00000000036AF000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	36AF000
Size:	24576

Details

Name:	0000000D.00000002.1820352828.00000000001AC000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1AC000
Size:	16384

Details

Name:	00000005.00000002.1725876291.00000000071AE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	71AE000
Size:	8192

Details

Name:	00000000.00000003.1682166733.0000000001071000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1071000
Size:	4096

Details

Name:	00000000.00000002.1683790526.0000000001071000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1071000
Size:	4096

Details

Name:	00000007.00000002.1702853825.0000015A0DEED000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DEED000
Size:	40960

Details

Name:	0000000B.00000002.1847238884.0000000005290000.00000040.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5290000
Size:	4096

Details

Name:	0000000B.00000002.1846015838.00000000038FF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	38FF000
Size:	4096

Details

Name:	00000008.00000002.1825976420.000000547C37E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	547C37E000
Size:	8192

Details

Name:	0000000A.00000003.1753663606.0000000006BE0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	6BE0000
Size:	8192

Details

Name:	00000011.00000002.4133072821.0000000005170000.00000040.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5170000
Size:	4096

Details

Name:	00000005.00000002.1719466319.0000000003070000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	3070000
Size:	12288

Details

Name:	00000011.00000002.4131337404.000000000339E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	339E000
Size:	8192

Details

Name:	00000011.00000003.2243655511.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000002.00000003.1680052092.00000000036A1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36A1000
Size:	86016

Details

Name:	0000000A.00000003.1727440747.00000000051D0000.00000004.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	51D0000
Size:	53248

Details

Name:	0000000D.00000002.1820529891.000000000057E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	57E000
Size:	151552

Details

Name:	0000000A.00000003.1723308094.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000003.1749810298.0000000001A1B000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1A1B000
Size:	4096

Details

Name:	00000008.00000002.1873927117.0000015D1B2E0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B2E0000
Size:	12288

Details

Name:	00000002.00000003.1684683362.000000000542F000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	542F000
Size:	4096

Details

Name:	0000000A.00000002.1786142088.0000000004B8F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4B8F000
Size:	4096

Details

Name:	00000000.00000003.1675368189.00000000010EC000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	10EC000
Size:	4096

Details

Name:	00000007.00000003.1698843497.0000016210300000.00000010.00000800.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page execute
Base address:	16210300000
Size:	4096

Details

Name:	00000011.00000003.2218938301.0000000002E00000.00000004.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2E00000
Size:	53248

Details

Name:	00000000.00000003.1677974376.00000000011E7000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	11E7000
Size:	12288

Details

Name:	00000005.00000002.1727029631.0000000007760000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7760000
Size:	65536

Details

Name:	00000000.00000003.1679436275.00000000010FC000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	10FC000
Size:	61440

Details

Name:	0000000C.00000003.1771142308.0000000002770000.00000004.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2770000
Size:	53248

Details

Name:	00000008.00000002.1882007890.00007FFD99F20000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99F20000
Size:	65536

Details

Name:	00000008.00000002.1826024218.000000547C47E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	547C47E000
Size:	8192

Details

Name:	00000005.00000002.1720168743.00000000049C7000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	49C7000
Size:	4096

Details

Name:	00000011.00000002.4133318088.00000000055AE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	55AE000
Size:	8192

Details

Name:	0000000D.00000003.1767489974.00000000048D0000.00000004.00000800.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	48D0000
Size:	180224

Details

Name:	0000000A.00000003.1723159295.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	49152

Details

Name:	0000000B.00000002.1846996929.00000000050CE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	50CE000
Size:	8192

Details

Name:	0000000C.00000002.1820059608.0000000002787000.00000004.00000020.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	2787000
Size:	8192

Details

Name:	00000008.00000002.1827085235.0000015D02EF3000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	15D02EF3000
Size:	4096

Details

Name:	00000011.00000002.4128904578.0000000000819000.00000004.00000001.01000000.0000000F.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	819000
Size:	4096

Details

Name:	0000000B.00000000.1753975848.00000000011F1000.00000080.00000001.01000000.0000000B.sdmp
TargetID:	11
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	11F1000
Size:	1732608

Details

Name:	00000002.00000003.1679778627.00000000036C8000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36C8000
Size:	40960

Details

Name:	0000000B.00000002.1846196090.0000000003CFE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3CFE000
Size:	8192

Details

Name:	00000011.00000003.2246098396.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000002.00000002.1686066364.00000000036FD000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	36FD000
Size:	126976

Details

Name:	00000011.00000003.2243221687.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000000.00000002.1682859245.0000000000DCF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	DCF000
Size:	4096

Details

Name:	0000000B.00000002.1845357358.0000000002FAE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2FAE000
Size:	8192

Details

Name:	0000000A.00000002.1779374372.00000000011F1000.00000040.00000001.01000000.0000000B.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	11F1000
Size:	4096

Details

Name:	0000000C.00000002.1819499504.0000000000ABA000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	ABA000
Size:	24576

Details

Name:	0000000A.00000003.1754049200.00000000019B3000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	19B3000
Size:	110592

Details

Name:	0000000A.00000003.1753663606.0000000006BE6000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	6BE6000
Size:	4096

Details

Name:	0000000D.00000003.1768373806.0000000002620000.00000004.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2620000
Size:	53248

Details

Name:	00000008.00000002.1872168829.0000015D1B1A1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B1A1000
Size:	4096

Details

Name:	0000000A.00000003.1735169637.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	237568

Details

Name:	0000000A.00000003.1743597274.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000008.00000002.1825576831.000000547BBCE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	547BBCE000
Size:	8192

Details

Name:	0000000C.00000002.1820277932.0000000002F8F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2F8F000
Size:	4096

Details

Name:	0000000D.00000002.1823055618.00000000031BF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	31BF000
Size:	4096

Details

Name:	0000000A.00000003.1754049200.00000000019E6000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	19E6000
Size:	4096

Details

Name:	00000008.00000002.1826808874.0000015D01300000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D01300000
Size:	16384

Details

Name:	00000011.00000003.2227450348.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000C.00000003.1783679681.00000000044F1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	44F1000
Size:	4096

Details

Name:	00000007.00000002.1702441034.0000004AE29FE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4AE29FE000
Size:	8192

Details

Name:	00000000.00000003.1681501832.00000000011C8000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	11C8000
Size:	20480

Details

Name:	0000000A.00000003.1723185685.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000011.00000002.4132510452.000000000461F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	461F000
Size:	4096

Details

Name:	00000000.00000003.1676361764.00000000011F5000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	11F5000
Size:	32768

Details

Name:	00000000.00000003.1679689192.00000000010CD000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	10CD000
Size:	126976

Details

Name:	0000000A.00000002.1787265770.0000000005830000.00000040.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5830000
Size:	4096

Details

Name:	00000007.00000002.1703320775.000001620FF04000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1620FF04000
Size:	12288

Details

Name:	00000005.00000002.1720396003.0000000004E3E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4E3E000
Size:	8192

Details

Name:	00000005.00000002.1726573940.00000000074C1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	74C1000
Size:	8192

Details

Name:	0000000B.00000002.1846747057.000000000497E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	497E000
Size:	8192

Details

Name:	0000000A.00000003.1749492982.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000007.00000002.1702780420.0000015A0DECC000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DECC000
Size:	57344

Details

Name:	00000005.00000002.1719888517.00000000030E0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	30E0000
Size:	32768

Details

Name:	0000000D.00000002.1823434116.0000000003A7F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3A7F000
Size:	4096

Details

Name:	00000002.00000003.1680787369.00000000036D3000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36D3000
Size:	65536

Details

Name:	00000000.00000002.1684339169.0000000001229000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1229000
Size:	20480

Details

Name:	00000008.00000002.1872168829.0000015D1B169000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B169000
Size:	4096

Details

Name:	00000011.00000002.4131916409.000000000399F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	399F000
Size:	4096

Details

Name:	00000011.00000002.4130953506.0000000002DBE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2DBE000
Size:	8192

Details

Name:	00000011.00000002.4132644459.00000000048DE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	48DE000
Size:	8192

Details

Name:	0000000A.00000003.1746352641.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000008.00000002.1874604048.0000015D1B430000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B430000
Size:	106496

Details

Name:	0000000A.00000002.1784134780.00000000016FA000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	16FA000
Size:	24576

Details

Name:	00000008.00000002.1882571884.00007FFD99F70000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99F70000
Size:	32768

Details

Name:	0000000D.00000002.1823695487.00000000041FF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	41FF000
Size:	4096

Details

Name:	00000011.00000002.4128932574.00000000009AB000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	9AB000
Size:	913408

Signature Hits	Behavior Group	Mitre Attack
May try to detect the Windows Explorer process (often used for injection)	HIPS / PFW / Operating System Protection Evasion	Process Injection Process Discovery
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery

Details

Name:	00000000.00000003.1677639495.000000000119C000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	119C000
Size:	16384

Details

Name:	00000011.00000003.2245853763.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000000.00000003.1679858577.00000000010D2000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	10D2000
Size:	32768

Details

Name:	00000002.00000003.1680787369.00000000036C8000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36C8000
Size:	40960

Details

Name:	0000000C.00000003.1760500576.00000000044F1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	44F1000
Size:	49152

Details

Name:	0000000B.00000002.1846242528.0000000003E3E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3E3E000
Size:	8192

Details

Name:	00000000.00000003.1678269667.0000000001182000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1182000
Size:	20480

Details

Name:	0000000D.00000002.1820942616.0000000000819000.00000004.00000001.01000000.0000000F.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	819000
Size:	4096

Details

Name:	00000005.00000002.1726017075.0000000007370000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7370000
Size:	24576

Details

Name:	00000000.00000002.1684231253.00000000011F1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	11F1000
Size:	16384

Details

Name:	00000000.00000003.1677901468.00000000011BD000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	11BD000
Size:	8192

Signature Hits	Behavior Group	Mitre Attack
Sample file is different than original file name gathered from version info	System Summary

Details

Name:	00000005.00000002.1718720052.00000000009DC000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	9DC000
Size:	16384

Details

Name:	0000000A.00000003.1743328609.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000003.1742109607.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000D.00000002.1824102332.0000000004B50000.00000040.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4B50000
Size:	4096

Details

Name:	0000000B.00000003.1798144975.0000000005080000.00000004.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	5080000
Size:	53248

Details

Name:	0000000A.00000003.1749302539.00000000019F9000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	19F9000
Size:	8192

Details

Name:	0000000A.00000002.1785447986.00000000037CE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	37CE000
Size:	8192

Details

Name:	00000005.00000002.1720474826.000000000527D000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	527D000
Size:	16384

Details

Name:	0000000A.00000002.1785082731.00000000019F4000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	19F4000
Size:	155648

Details

Name:	00000002.00000002.1686012741.00000000036E8000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	36E8000
Size:	28672

Details

Name:	00000007.00000003.1701506519.0000015A0F850000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0F850000
Size:	4096

Details

Name:	00000000.00000003.1678776017.0000000001136000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1136000
Size:	36864

Details

Name:	00000005.00000002.1728389828.00000000087EE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	87EE000
Size:	8192

Details

Name:	00000002.00000002.1686188304.0000000003830000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	3830000
Size:	16384

Details

Name:	00000000.00000003.1678218397.0000000001181000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1181000
Size:	24576

Details

Name:	0000000D.00000002.1822552128.0000000002BBE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2BBE000
Size:	8192

Details

Name:	0000000C.00000002.1819094238.000000000043C000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	43C000
Size:	16384

Details

Name:	00000007.00000003.1701936653.0000015A0DF37000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF37000
Size:	4096

Details

Name:	0000000C.00000002.1821343188.000000000438F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	438F000
Size:	4096

Details

Name:	0000000B.00000002.1846796326.0000000004ABE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4ABE000
Size:	8192

Details

Name:	00000011.00000002.4129808013.0000000000D0C000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	D0C000
Size:	16384

Details

Name:	0000000C.00000002.1819883026.0000000000C74000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	C74000
Size:	8192

Details

Name:	00000005.00000002.1720435995.0000000004EBD000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4EBD000
Size:	12288

Details

Name:	0000000A.00000002.1784639963.000000000193E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	193E000
Size:	225280

Details

Name:	00000011.00000002.4133685198.0000000005A8E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5A8E000
Size:	8192

Details

Name:	0000000D.00000002.1823354698.00000000037FF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	37FF000
Size:	4096

Details

Name:	00000007.00000002.1702695947.0000015A0DE90000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DE90000
Size:	28672

Details

Name:	0000000A.00000003.1745540000.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000002.1785659602.0000000003F0F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3F0F000
Size:	4096

Details

Name:	00000002.00000002.1685839798.000000000364E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	364E000
Size:	8192

Details

Name:	0000000C.00000003.1775407530.00000000044F1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	44F1000
Size:	4096

Details

Name:	0000000A.00000003.1747485145.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000002.1784194361.0000000001740000.00000004.00000020.00040000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1740000
Size:	4096

Details

Name:	00000007.00000003.1700239464.00000162101AA000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	162101AA000
Size:	4096

Details

Name:	00000011.00000002.4131312844.000000000335F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	335F000
Size:	4096

Details

Name:	00000002.00000003.1684683362.0000000005420000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	5420000
Size:	4096

Details

Name:	0000000A.00000002.1785935640.000000000468F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	468F000
Size:	4096

Details

Name:	0000000A.00000000.1717303488.0000000000ED1000.00000080.00000001.01000000.0000000B.sdmp
TargetID:	10
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	ED1000
Size:	393216

Details

Name:	00000000.00000002.1682735507.00000000005D4000.00000002.00000001.01000000.00000003.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page readonly
Base address:	5D4000
Size:	114688

Details

Name:	00000005.00000002.1719448364.0000000003060000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	3060000
Size:	8192

Details

Name:	0000000D.00000002.1823334452.00000000036FE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	36FE000
Size:	8192

Details

Name:	0000000D.00000002.1823575762.0000000003E7E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3E7E000
Size:	8192

Details

Name:	00000008.00000002.1827085235.0000015D02EF0000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	15D02EF0000
Size:	8192

Details

Name:	00000011.00000003.2245052479.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000B.00000002.1844836215.0000000002EEF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2EEF000
Size:	4096

Details

Name:	0000000C.00000002.1819350699.0000000000812000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	812000
Size:	20480

Details

Name:	00000011.00000002.4132459114.00000000044DF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	44DF000
Size:	4096

Details

Name:	0000000A.00000002.1785582112.0000000003C8F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3C8F000
Size:	4096

Details

Name:	00000008.00000002.1881849562.00007FFD99F10000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99F10000
Size:	65536

Details

Name:	00000008.00000002.1874604048.0000015D1B424000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B424000
Size:	12288

Details

Name:	0000000D.00000002.1823782047.000000000447F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	447F000
Size:	4096

Details

Name:	0000000A.00000003.1758054717.00000000019CD000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	19CD000
Size:	4096

Details

Name:	0000000A.00000002.1787303303.0000000005850000.00000040.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5850000
Size:	4096

Details

Name:	0000000D.00000003.1782091016.0000000004AA0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4AA0000
Size:	4096

Details

Name:	0000000D.00000002.1823515186.0000000003CFF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3CFF000
Size:	4096

Details

Name:	00000011.00000003.2225210016.0000000005120000.00000040.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5120000
Size:	4096

Details

Name:	00000005.00000002.1726050973.0000000007390000.00000040.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page execute and read and write
Base address:	7390000
Size:	4096

Details

Name:	0000000B.00000002.1843428479.0000000000985000.00000004.00000020.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	985000
Size:	8192

Details

Name:	00000008.00000002.1827295892.0000015D0479B000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	15D0479B000
Size:	2551808

Details

Name:	0000000C.00000002.1819120484.000000000053D000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	53D000
Size:	12288

Details

Name:	00000011.00000003.2243786193.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000011.00000003.2246163257.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000A.00000003.1746769547.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000011.00000003.2220502798.0000000002E00000.00000004.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2E00000
Size:	53248

Details

Name:	0000000A.00000002.1785082731.0000000001A1B000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1A1B000
Size:	81920

Details

Name:	0000000C.00000002.1820793947.000000000388E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	388E000
Size:	8192

Details

Name:	0000000A.00000002.1787647072.000000000737C000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	737C000
Size:	16384

Details

Name:	0000000B.00000002.1847206871.0000000005280000.00000040.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5280000
Size:	4096

Details

Name:	00000008.00000002.1878965459.00007FFD99E20000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99E20000
Size:	65536

Details

Name:	00000005.00000002.1718958180.0000000000D5C000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	D5C000
Size:	40960

Details

Name:	0000000A.00000003.1739647139.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000008.00000002.1825609883.000000547BE7E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	547BE7E000
Size:	8192

Details

Name:	00000000.00000002.1683090136.0000000000E7D000.00000004.00000010.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	E7D000
Size:	12288

Details

Name:	00000008.00000002.1880562836.00007FFD99EA0000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99EA0000
Size:	65536

Details

Name:	0000000A.00000003.1741668807.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000003.1740243984.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000011.00000002.4130323474.00000000011C0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	11C0000
Size:	69632

Details

Name:	0000000A.00000003.1742370675.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000B.00000002.1844398513.00000000011F2000.00000080.00000001.01000000.0000000B.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	11F2000
Size:	1712128

Details

Name:	0000000A.00000003.1747549561.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000007.00000003.1701755161.0000015A0DF40000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF40000
Size:	65536

Details

Name:	00000011.00000002.4130323474.000000000119B000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	119B000
Size:	147456

Details

Name:	00000011.00000003.2243985645.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000000.00000002.1682859245.0000000000DEF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	DEF000
Size:	4096

Details

Name:	00000002.00000003.1684757315.00000000037F7000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	37F7000
Size:	4096

Details

Name:	00000011.00000003.2217382995.0000000002E00000.00000004.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2E00000
Size:	53248

Details

Name:	00000005.00000002.1727319248.00000000077D0000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	77D0000
Size:	65536

Details

Name:	0000000A.00000003.1744465621.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000000.00000002.1682859245.0000000000DDB000.00000004.00000010.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	DDB000
Size:	20480

Details

Name:	0000000D.00000003.1782113149.0000000004A80000.00000040.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4A80000
Size:	4096

Details

Name:	0000000C.00000002.1820313923.00000000030CF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	30CF000
Size:	4096

Details

Name:	0000000B.00000002.1843813884.0000000000F3B000.00000040.00000001.01000000.0000000B.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	F3B000
Size:	1626112

Details

Name:	0000000D.00000003.1775540159.0000000004481000.00000004.00000020.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4481000
Size:	4096

Details

Name:	00000005.00000002.1725981316.000000000731E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	731E000
Size:	8192

Details

Name:	0000000B.00000002.1846947851.0000000004CE0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	4CE0000
Size:	4096

Details

Name:	00000007.00000003.1700733397.000001620FED9000.00000004.00000800.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	1620FED9000
Size:	4096

Details

Name:	00000007.00000002.1702463421.0000004AE2AFE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4AE2AFE000
Size:	8192

Details

Name:	0000000A.00000002.1787130150.00000000051F1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	51F1000
Size:	8192

Details

Name:	0000000A.00000002.1787173804.0000000005670000.00000004.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page read and write
Base address:	5670000
Size:	4096

Details

Name:	00000011.00000003.2222034473.0000000002E00000.00000004.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2E00000
Size:	53248

Details

Name:	00000007.00000002.1703277959.000001620FE40000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1620FE40000
Size:	4096

Details

Name:	0000000A.00000002.1779374372.00000000011AE000.00000040.00000001.01000000.0000000B.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	11AE000
Size:	106496

Details

Name:	0000000A.00000003.1744099663.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000008.00000002.1872168829.0000015D1B16B000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B16B000
Size:	98304

Details

Name:	00000007.00000003.1700285938.00000162101B3000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	162101B3000
Size:	4096

Details

Name:	00000000.00000003.1681058655.00000000010DF000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	10DF000
Size:	16384

Details

Name:	0000000C.00000002.1820204532.0000000002D0F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2D0F000
Size:	4096

Details

Name:	00000011.00000003.2245793266.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000D.00000003.1775154699.0000000002620000.00000004.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2620000
Size:	53248

Details

Name:	0000000A.00000003.1739561289.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000003.1742058449.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000007.00000003.1701755161.0000015A0DF53000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF53000
Size:	126976

Details

Name:	00000000.00000003.1680990581.000000000109E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	109E000
Size:	8192

Details

Name:	00000000.00000003.1676299353.0000000001203000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1203000
Size:	32768

Details

Name:	0000000A.00000003.1749582943.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000000.00000003.1676202927.00000000010AC000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	10AC000
Size:	4096

Details

Name:	0000000B.00000003.1798883451.0000000005080000.00000004.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	5080000
Size:	53248

Details

Name:	00000005.00000002.1724837106.0000000005EE9000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	5EE9000
Size:	4096

Details

Name:	0000000D.00000002.1823414306.000000000397E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	397E000
Size:	8192

Details

Name:	0000000A.00000002.1785260179.0000000003450000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	3450000
Size:	4096

Details

Name:	00000002.00000003.1680787369.00000000036FD000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36FD000
Size:	126976

Details

Name:	00000011.00000003.2245092675.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000008.00000002.1878009613.00007FFD99CCC000.00000040.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page execute and read and write
Base address:	7FFD99CCC000
Size:	12288

Details

Name:	00000011.00000003.2244974609.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000B.00000002.1846972819.0000000005080000.00000004.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page read and write
Base address:	5080000
Size:	4096

Details

Name:	0000000C.00000002.1820259882.0000000002E8E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2E8E000
Size:	8192

Details

Name:	00000000.00000003.1678327508.0000000001182000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1182000
Size:	20480

Details

Name:	0000000A.00000003.1749283721.0000000001A13000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1A13000
Size:	36864

Details

Name:	00000007.00000002.1703402463.00000162105B0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	162105B0000
Size:	12288

Details

Name:	00000000.00000000.1674721837.0000000000500000.00000002.00000001.01000000.00000003.sdmp
TargetID:	0
Dumpstage:	process new
Regiontype:	unkown
Protect:	page readonly
Base address:	500000
Size:	4096

Details

Name:	0000000C.00000002.1821136022.0000000003FCF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3FCF000
Size:	4096

Details

Name:	0000000B.00000003.1791643102.0000000005030000.00000004.00000800.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	5030000
Size:	176128

Details

Name:	00000011.00000002.4132382163.000000000429E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	429E000
Size:	8192

Details

Name:	00000005.00000002.1720474826.0000000004EE1000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	4EE1000
Size:	393216

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000005.00000002.1725769405.00000000070AD000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	70AD000
Size:	12288

Details

Name:	0000000A.00000002.1779220991.0000000000F39000.00000004.00000001.01000000.0000000B.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	F39000
Size:	4096

Details

Name:	0000000B.00000002.1845640677.00000000032BF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	32BF000
Size:	4096

Details

Name:	0000000D.00000002.1820830745.00000000007B0000.00000004.00000001.01000000.0000000F.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	7B0000
Size:	4096

Details

Name:	00000011.00000002.4132247940.0000000003FDF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3FDF000
Size:	4096

Details

Name:	0000000A.00000003.1746841918.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000000.00000003.1678508507.000000000114E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	114E000
Size:	40960

Details

Name:	00000000.00000003.1677639495.00000000011A7000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	11A7000
Size:	57344

Details

Name:	0000000B.00000002.1843781633.0000000000F39000.00000004.00000001.01000000.0000000B.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	F39000
Size:	4096

Details

Name:	00000000.00000002.1684205971.00000000011E9000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	11E9000
Size:	4096

Details

Name:	0000000B.00000003.1789370361.0000000001540000.00000004.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	1540000
Size:	53248

Details

Name:	00000005.00000002.1720168743.00000000049C9000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	49C9000
Size:	4096

Details

Name:	0000000A.00000003.1753885095.00000000019E6000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	19E6000
Size:	4096

Details

Name:	0000000A.00000003.1753524134.0000000007001000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	7001000
Size:	4096

Details

Name:	00000011.00000003.2217461473.0000000004F60000.00000004.00000800.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	4F60000
Size:	159744

Details

Name:	00000011.00000002.4133647669.000000000598D000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	598D000
Size:	12288

Details

Name:	00000011.00000003.2222850034.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	217088

Details

Name:	00000000.00000003.1677851694.0000000001187000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1187000
Size:	86016

Details

Name:	00000002.00000003.1683114628.00000000069E3000.00000004.00000800.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	69E3000
Size:	4096

Details

Name:	0000000D.00000002.1822204018.000000000273F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	273F000
Size:	4096

Details

Name:	00000007.00000003.1701506519.0000015A0F867000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0F867000
Size:	4096

Details

Name:	00000000.00000003.1675395239.0000000001082000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1082000
Size:	307200

Details

Name:	00000007.00000003.1698103502.0000015A0DF53000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF53000
Size:	126976

Details

Name:	00000008.00000002.1877527006.00007FFD99C2B000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99C2B000
Size:	8192

Details

Name:	0000000B.00000002.1845619468.00000000031BF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	31BF000
Size:	4096

Details

Name:	00000007.00000003.1697374195.0000015A0DF03000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF03000
Size:	40960

Details

Name:	0000000D.00000002.1820504022.0000000000530000.00000004.00000020.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	530000
Size:	4096

Details

Name:	00000000.00000003.1675209619.0000000001081000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1081000
Size:	53248

Details

Name:	00000011.00000003.2244373633.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000008.00000002.1878733990.00007FFD99DF2000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99DF2000
Size:	4096

Details

Name:	00000000.00000002.1683124441.0000000000EA0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	EA0000
Size:	8192

Details

Name:	00000011.00000002.4133136300.00000000051A0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	51A0000
Size:	4096

Details

Name:	00000011.00000002.4132270300.000000000401E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	401E000
Size:	8192

Details

Name:	00000005.00000002.1726599354.00000000075B0000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	75B0000
Size:	4096

Details

Name:	0000000C.00000002.1819499504.000000000081B000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	81B000
Size:	1626112

Details

Name:	00000002.00000003.1679778627.00000000036D3000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36D3000
Size:	65536

Details

Name:	0000000C.00000002.1821790766.0000000004B30000.00000040.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4B30000
Size:	4096

Details

Name:	00000011.00000002.4131121248.0000000002F1F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2F1F000
Size:	4096

Details

Name:	0000000A.00000002.1785638205.0000000003E0E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3E0E000
Size:	8192

Details

Name:	00000007.00000003.1701640886.0000015A0F9F0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0F9F0000
Size:	4096

Details

Name:	0000000D.00000000.1755199318.0000000000819000.00000008.00000001.01000000.0000000F.sdmp
TargetID:	13
Dumpstage:	process new
Regiontype:	unkown
Protect:	page write copy
Base address:	819000
Size:	4096

Details

Name:	0000000D.00000002.1822750986.0000000002F7E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2F7E000
Size:	8192

Details

Name:	00000005.00000002.1719870846.00000000030D0000.00000002.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page readonly
Base address:	30D0000
Size:	4096

Details

Name:	0000000B.00000003.1783940377.0000000004BE1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4BE1000
Size:	49152

Details

Name:	0000000A.00000003.1753749402.00000000019EF000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	19EF000
Size:	16384

Details

Name:	0000000A.00000002.1784596692.00000000018CE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	18CE000
Size:	8192

Details

Name:	00000000.00000002.1682820658.00000000007E0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	7E0000
Size:	4096

Details

Name:	0000000A.00000002.1779374372.00000000011E1000.00000040.00000001.01000000.0000000B.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	11E1000
Size:	45056

Details

Name:	00000002.00000003.1684683362.0000000005426000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	5426000
Size:	32768

Details

Name:	0000000A.00000003.1741468655.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000003.1741553847.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000007.00000003.1699265268.0000015A0DF29000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF29000
Size:	53248

Details

Name:	0000000C.00000002.1820584065.000000000370F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	370F000
Size:	4096

Details

Name:	00000008.00000002.1826321338.0000015D01201000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D01201000
Size:	8192

Details

Name:	0000000C.00000003.1779927618.0000000004B10000.00000040.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4B10000
Size:	4096

Details

Name:	0000000B.00000000.1753856290.0000000000F32000.00000080.00000001.01000000.0000000B.sdmp
TargetID:	11
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	F32000
Size:	16384

Details

Name:	0000000D.00000002.1823218805.000000000343F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	343F000
Size:	4096

Details

Name:	00000008.00000002.1825793569.000000547C177000.00000004.00000010.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	547C177000
Size:	36864

Details

Name:	00000011.00000002.4132951288.0000000004FFC000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4FFC000
Size:	16384

Details

Name:	00000008.00000002.1872083513.0000015D1B150000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B150000
Size:	20480

Details

Name:	00000000.00000003.1676979611.00000000011CD000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	11CD000
Size:	69632

Details

Name:	0000000D.00000003.1782065234.0000000004A90000.00000040.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4A90000
Size:	4096

Details

Name:	00000011.00000003.2212737966.0000000002E00000.00000004.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2E00000
Size:	53248

Details

Name:	00000011.00000002.4131521793.000000000361E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	361E000
Size:	8192

Details

Name:	00000005.00000002.1720261140.0000000004D4D000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4D4D000
Size:	12288

Details

Name:	0000000A.00000003.1741353026.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000008.00000002.1826132442.000000547CFCB000.00000004.00000010.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	547CFCB000
Size:	20480

Details

Name:	0000000D.00000003.1773836053.0000000002620000.00000004.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2620000
Size:	53248

Details

Name:	0000000A.00000002.1784217930.0000000001820000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1820000
Size:	8192

Details

Name:	00000007.00000002.1703298174.000001620FEF0000.00000002.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page readonly
Base address:	1620FEF0000
Size:	4096

Details

Name:	0000000B.00000003.1791561430.0000000001540000.00000004.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	1540000
Size:	53248

Details

Name:	0000000D.00000003.1765735368.0000000002620000.00000004.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2620000
Size:	53248

Details

Name:	0000000A.00000003.1746463790.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000003.1743514720.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000C.00000002.1821996176.0000000004BA0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4BA0000
Size:	4096

Details

Name:	00000002.00000003.1685222235.00000000036AF000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36AF000
Size:	24576

Details

Name:	0000000C.00000003.1763386148.0000000002770000.00000004.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2770000
Size:	53248

Details

Name:	00000000.00000003.1680990581.0000000001080000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1080000
Size:	118784

Signature Hits	Behavior Group	Mitre Attack
Sample file is different than original file name gathered from version info	System Summary

Details

Name:	00000007.00000002.1702873416.0000015A0DF0E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF0E000
Size:	20480

Details

Name:	00000007.00000003.1702064710.0000015A0DF53000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF53000
Size:	126976

Details

Name:	00000011.00000002.4130833423.000000000155F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	155F000
Size:	4096

Details

Name:	00000000.00000003.1675332698.0000000001082000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1082000
Size:	307200

Details

Name:	00000007.00000003.1699265268.0000015A0DF19000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF19000
Size:	61440

Details

Name:	00000002.00000003.1681747661.00000000036D3000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36D3000
Size:	65536

Details

Name:	00000007.00000003.1700733397.000001620FED5000.00000004.00000800.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	1620FED5000
Size:	12288

Details

Name:	00000000.00000003.1676361764.00000000011FE000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	11FE000
Size:	20480

Details

Name:	0000000A.00000003.1749451625.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000B.00000002.1846453052.000000000433E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	433E000
Size:	8192

Details

Name:	00000000.00000002.1684310905.0000000001216000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1216000
Size:	73728

Details

Name:	00000011.00000002.4130323474.000000000121E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	121E000
Size:	8192

Details

Name:	0000000A.00000002.1785385628.000000000358F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	358F000
Size:	4096

Details

Name:	00000011.00000002.4129910926.0000000000D80000.00000004.00000020.00040000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	D80000
Size:	4096

Details

Name:	00000011.00000003.2246194996.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000B.00000002.1845666548.00000000032FE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	32FE000
Size:	8192

Details

Name:	00000008.00000002.1878348730.00007FFD99DB0000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99DB0000
Size:	65536

Details

Name:	0000000C.00000000.1755225894.0000000000AD1000.00000080.00000001.01000000.0000000F.sdmp
TargetID:	12
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	AD1000
Size:	1732608

Details

Name:	0000000A.00000002.1787712950.0000000007560000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	7560000
Size:	12288

Details

Name:	00000000.00000003.1678120784.000000000118E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	118E000
Size:	24576

Details

Name:	0000000A.00000002.1785082731.00000000019F0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	19F0000
Size:	12288

Details

Name:	00000002.00000003.1679778627.00000000036E4000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36E4000
Size:	8192

Details

Name:	00000007.00000002.1702695947.0000015A0DE98000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DE98000
Size:	20480

Details

Name:	0000000A.00000003.1735073739.00000000051D0000.00000004.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	51D0000
Size:	53248

Details

Name:	0000000A.00000002.1786186005.0000000004CCF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4CCF000
Size:	4096

Details

Name:	00000000.00000002.1684262719.00000000011FE000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	11FE000
Size:	20480

Details

Name:	0000000A.00000003.1742268349.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000B.00000002.1846871463.0000000004BE0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	4BE0000
Size:	40960

Details

Name:	0000000B.00000002.1844609204.0000000001396000.00000080.00000001.01000000.0000000B.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	1396000
Size:	8192

Details

Name:	00000011.00000002.4132410750.000000000439F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	439F000
Size:	4096

Details

Name:	00000008.00000002.1879944478.00007FFD99E60000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99E60000
Size:	65536

Details

Name:	0000000A.00000002.1787693077.000000000748C000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	748C000
Size:	16384

Details

Name:	00000000.00000003.1677527420.00000000011A0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	11A0000
Size:	86016

Details

Name:	0000000A.00000003.1742218408.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000008.00000002.1826321338.0000015D011D8000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D011D8000
Size:	90112

Details

Name:	0000000A.00000003.1723377929.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000000.00000002.1684362539.000000000184E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	184E000
Size:	8192

Details

Name:	00000011.00000002.4129836805.0000000000D60000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	D60000
Size:	16384

Details

Name:	00000000.00000003.1678120784.000000000116F000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	116F000
Size:	32768

Details

Name:	00000008.00000002.1827295892.0000015D03C6D000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	15D03C6D000
Size:	7442432

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000011.00000003.2214281895.0000000002E00000.00000004.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2E00000
Size:	53248

Details

Name:	00000005.00000002.1726252508.000000000743B000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	743B000
Size:	12288

Details

Name:	0000000C.00000002.1821884399.0000000004B60000.00000040.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4B60000
Size:	4096

Details

Name:	00000011.00000002.4129747520.0000000000C74000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	C74000
Size:	8192

Details

Name:	00000005.00000002.1718753497.0000000000C3D000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	C3D000
Size:	12288

Details

Name:	0000000A.00000003.1749810298.0000000001A11000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1A11000
Size:	32768

Details

Name:	00000007.00000003.1702260981.0000015A0DF13000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF13000
Size:	16384

Details

Name:	00000000.00000003.1680344224.0000000001073000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1073000
Size:	172032

Signature Hits	Behavior Group	Mitre Attack
Sample file is different than original file name gathered from version info	System Summary

Details

Name:	0000000A.00000003.1741632188.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000008.00000002.1875609957.0000015D1B45F000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B45F000
Size:	126976

Details

Name:	0000000D.00000002.1823494291.0000000003BFE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3BFE000
Size:	8192

Details

Name:	0000000B.00000002.1846560677.000000000457F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	457F000
Size:	4096

Details

Name:	0000000A.00000002.1787467543.0000000006C2E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6C2E000
Size:	8192

Details

Name:	0000000C.00000003.1762342163.0000000002770000.00000004.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2770000
Size:	53248

Details

Name:	00000002.00000003.1683847725.00000000036E2000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36E2000
Size:	4096

Details

Name:	0000000A.00000002.1777565874.0000000000ED0000.00000004.00000001.01000000.0000000B.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	ED0000
Size:	4096

Details

Name:	00000000.00000002.1683984184.00000000010D9000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	10D9000
Size:	4096

Details

Name:	00000008.00000002.1825848765.000000547C1F6000.00000004.00000010.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	547C1F6000
Size:	40960

Details

Name:	0000000A.00000003.1739245794.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	49152

Details

Name:	0000000A.00000003.1742396681.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000C.00000002.1819499504.00000000009AB000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	9AB000
Size:	913408

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery

Details

Name:	00000007.00000002.1702833746.0000015A0DEDD000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DEDD000
Size:	36864

Details

Name:	00000008.00000002.1877291712.00007FFD99C14000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99C14000
Size:	36864

Details

Name:	0000000B.00000002.1846167923.0000000003CBF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3CBF000
Size:	4096

Details

Name:	0000000A.00000003.1747231779.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000002.1785485293.000000000390E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	390E000
Size:	8192

Details

Name:	00000000.00000003.1681413432.00000000010FB000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	10FB000
Size:	4096

Details

Name:	0000000A.00000003.1741323886.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000008.00000002.1827026171.0000015D02B70000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D02B70000
Size:	12288

Details

Name:	00000005.00000002.1718958180.0000000000D30000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	D30000
Size:	28672

Details

Name:	0000000B.00000003.1797106185.0000000001540000.00000004.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	1540000
Size:	53248

Details

Name:	00000005.00000002.1719888517.00000000030E9000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	30E9000
Size:	20480

Details

Name:	0000000A.00000000.1717303488.0000000000F32000.00000080.00000001.01000000.0000000B.sdmp
TargetID:	10
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	F32000
Size:	16384

Details

Name:	0000000B.00000003.1799115394.0000000005210000.00000040.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5210000
Size:	8192

Details

Name:	00000011.00000002.4132979405.00000000050FF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	50FF000
Size:	4096

Details

Name:	00000008.00000002.1882161600.00007FFD99F30000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99F30000
Size:	12288

Details

Name:	00000002.00000002.1686602426.0000000006D10000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	6D10000
Size:	8192

Details

Name:	00000000.00000002.1683790526.0000000001058000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1058000
Size:	90112

Details

Name:	00000002.00000003.1681637484.0000000006C10000.00000010.00000800.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page execute
Base address:	6C10000
Size:	4096

Details

Name:	00000005.00000002.1726323920.0000000007451000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	7451000
Size:	24576

Details

Name:	00000008.00000002.1878677264.00007FFD99DE0000.00000040.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page execute and read and write
Base address:	7FFD99DE0000
Size:	20480

Details

Name:	0000000A.00000003.1746400090.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000007.00000003.1701640886.0000015A0F9FD000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0F9FD000
Size:	8192

Details

Name:	00000008.00000002.1881003131.00007FFD99EC0000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99EC0000
Size:	65536

Details

Name:	00000011.00000003.2221328920.0000000002E00000.00000004.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2E00000
Size:	53248

Details

Name:	0000000B.00000002.1846771669.0000000004A7F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4A7F000
Size:	4096

Details

Name:	00000005.00000002.1726644340.0000000007600000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7600000
Size:	20480

Details

Name:	0000000A.00000003.1748115725.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000005.00000002.1718753497.0000000000C38000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	C38000
Size:	16384

Details

Name:	0000000B.00000003.1799356818.00000000051F0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	51F0000
Size:	4096

Details

Name:	00000000.00000003.1680929048.00000000011D6000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	11D6000
Size:	32768

Details

Name:	0000000C.00000003.1775342994.00000000044F1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	44F1000
Size:	4096

Details

Name:	0000000C.00000003.1768097585.0000000002770000.00000004.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2770000
Size:	53248

Details

Name:	00000007.00000003.1701936653.0000015A0DF23000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF23000
Size:	20480

Details

Name:	00000007.00000003.1699444659.0000015A0DF3E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF3E000
Size:	73728

Details

Name:	0000000B.00000002.1843813884.00000000011DA000.00000040.00000001.01000000.0000000B.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	11DA000
Size:	24576

Details

Name:	0000000C.00000003.1781714369.0000000004AE0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4AE0000
Size:	4096

Details

Name:	00000002.00000002.1685971806.00000000036C8000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	36C8000
Size:	40960

Details

Name:	00000008.00000002.1875609957.0000015D1B486000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B486000
Size:	16384

Details

Name:	0000000B.00000002.1846643851.00000000046FE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	46FE000
Size:	8192

Details

Name:	0000000A.00000002.1779374372.00000000010CB000.00000040.00000001.01000000.0000000B.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	10CB000
Size:	913408

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery

Details

Name:	00000008.00000002.1878069619.00007FFD99CD0000.00000040.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page execute and read and write
Base address:	7FFD99CD0000
Size:	36864

Details

Name:	0000000B.00000002.1846219349.0000000003DFF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3DFF000
Size:	4096

Details

Name:	0000000A.00000003.1753749402.00000000019E9000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	19E9000
Size:	4096

Details

Name:	0000000A.00000003.1749232304.00000000019FB000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	19FB000
Size:	81920

Details

Name:	00000005.00000002.1726723616.0000000007610000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7610000
Size:	53248

Details

Name:	0000000A.00000003.1736530026.0000000005670000.00000004.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	5670000
Size:	53248

Details

Name:	0000000D.00000003.1762433563.0000000002620000.00000004.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2620000
Size:	53248

Details

Name:	0000000A.00000003.1737616509.0000000005800000.00000040.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5800000
Size:	4096

Details

Name:	00000008.00000002.1825729465.000000547C07E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	547C07E000
Size:	8192

Details

Name:	0000000A.00000003.1731895218.00000000051D0000.00000004.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	51D0000
Size:	53248

Details

Name:	00000011.00000002.4129836805.0000000000D65000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	D65000
Size:	8192

Details

Name:	00000005.00000002.1719927008.00000000048CE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	48CE000
Size:	8192

Details

Name:	0000000A.00000002.1785722633.000000000408E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	408E000
Size:	8192

Details

Name:	00000011.00000003.2244850371.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000005.00000002.1720474826.00000000054F3000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	54F3000
Size:	3768320

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	0000000A.00000002.1787546454.0000000006EAE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6EAE000
Size:	8192

Details

Name:	00000007.00000003.1700285938.00000162101B9000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	162101B9000
Size:	28672

Details

Name:	0000000A.00000003.1737821583.0000000005800000.00000040.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5800000
Size:	4096

Details

Name:	0000000A.00000003.1749055258.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000005.00000002.1718902623.0000000000CC0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	CC0000
Size:	16384

Details

Name:	0000000A.00000002.1779374372.0000000000F3B000.00000040.00000001.01000000.0000000B.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	F3B000
Size:	1626112

Details

Name:	00000000.00000000.1674879125.00000000005D4000.00000002.00000001.01000000.00000003.sdmp
TargetID:	0
Dumpstage:	process new
Regiontype:	unkown
Protect:	page readonly
Base address:	5D4000
Size:	114688

Details

Name:	0000000D.00000002.1823395445.000000000393F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	393F000
Size:	4096

Details

Name:	00000008.00000002.1875609957.0000015D1B48B000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B48B000
Size:	20480

Details

Name:	00000000.00000003.1679519825.0000000001102000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1102000
Size:	36864

Details

Name:	00000007.00000003.1701506519.0000015A0F869000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0F869000
Size:	16384

Details

Name:	0000000A.00000002.1784046563.0000000001394000.00000040.00000001.01000000.0000000B.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	1394000
Size:	8192

Details

Name:	0000000D.00000003.1766585414.0000000002620000.00000004.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2620000
Size:	53248

Details

Name:	00000007.00000002.1703053486.0000015A0DF53000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF53000
Size:	126976

Details

Name:	00000007.00000003.1699545029.0000015A0DF38000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF38000
Size:	8192

Details

Name:	00000011.00000002.4130323474.00000000011D8000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	11D8000
Size:	77824

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery
URLs found in memory or binary data	Networking

Details

Name:	0000000B.00000002.1847132678.0000000005250000.00000040.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5250000
Size:	4096

Details

Name:	00000002.00000002.1686188304.0000000003836000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	3836000
Size:	12288

Details

Name:	00000008.00000002.1826321338.0000015D011F5000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D011F5000
Size:	12288

Details

Name:	0000000A.00000002.1784639963.0000000001976000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1976000
Size:	20480

Details

Name:	0000000B.00000002.1846370114.00000000041BF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	41BF000
Size:	4096

Details

Name:	00000011.00000002.4132200558.0000000003E9F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3E9F000
Size:	4096

Details

Name:	00000005.00000002.1726835963.000000000766E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	766E000
Size:	8192

Details

Name:	0000000A.00000003.1740214246.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000003.1729123317.0000000005620000.00000004.00000800.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	5620000
Size:	176128

Details

Name:	00000005.00000002.1726323920.0000000007458000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	7458000
Size:	12288

Details

Name:	0000000C.00000002.1821107930.0000000003ECE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3ECE000
Size:	8192

Details

Name:	00000005.00000002.1725961331.00000000072DE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	72DE000
Size:	8192

Details

Name:	00000008.00000002.1825525832.000000547BB8E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	547BB8E000
Size:	8192

Details

Name:	00000005.00000002.1718958180.0000000000DB9000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	DB9000
Size:	241664

Details

Name:	00000008.00000002.1877814290.00007FFD99C6C000.00000040.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page execute and read and write
Base address:	7FFD99C6C000
Size:	4096

Details

Name:	00000011.00000002.4133387039.00000000056FE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	56FE000
Size:	8192

Details

Name:	00000011.00000002.4132092372.0000000003B1E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3B1E000
Size:	8192

Details

Name:	0000000D.00000002.1823627653.0000000003FBE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3FBE000
Size:	8192

Details

Name:	0000000A.00000002.1787321720.0000000005860000.00000040.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5860000
Size:	4096

Details

Name:	0000000A.00000003.1723286631.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000C.00000002.1820651156.000000000384F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	384F000
Size:	4096

Details

Name:	0000000C.00000002.1820387512.000000000324E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	324E000
Size:	8192

Details

Name:	0000000A.00000002.1787089753.00000000050CE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	50CE000
Size:	8192

Details

Name:	00000008.00000002.1873486001.0000015D1B200000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B200000
Size:	8192

Details

Name:	00000002.00000002.1685935905.00000000036AD000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	36AD000
Size:	4096

Details

Name:	0000000A.00000002.1787037920.000000000508F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	508F000
Size:	4096

Details

Name:	00000005.00000002.1718958180.0000000000DF5000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	DF5000
Size:	24576

Details

Name:	0000000A.00000003.1740761565.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000011.00000002.4130025190.00000000010FD000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	10FD000
Size:	12288

Details

Name:	00000011.00000003.2225136122.0000000005140000.00000040.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5140000
Size:	4096

Details

Name:	00000000.00000003.1680903656.00000000010D2000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	10D2000
Size:	32768

Details

Name:	0000000B.00000002.1843813884.00000000011AE000.00000040.00000001.01000000.0000000B.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	11AE000
Size:	106496

Details

Name:	00000011.00000002.4132695916.0000000004A1E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4A1E000
Size:	8192

Details

Name:	0000000A.00000003.1749520150.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000B.00000002.1846506728.000000000447E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	447E000
Size:	8192

Details

Name:	0000000A.00000002.1784153920.0000000001730000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1730000
Size:	16384

Details

Name:	00000000.00000003.1678301382.0000000001158000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1158000
Size:	94208

Details

Name:	0000000A.00000003.1753974822.00000000019AC000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	19AC000
Size:	139264

Details

Name:	0000000D.00000002.1821941611.000000000259E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	259E000
Size:	8192

Details

Name:	0000000A.00000003.1744661896.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000000.00000002.1683888582.0000000001081000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1081000
Size:	4096

Details

Name:	00000000.00000003.1676952774.00000000011EA000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	11EA000
Size:	45056

Details

Name:	00000008.00000002.1826107865.000000547CF4E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	547CF4E000
Size:	8192

Details

Name:	0000000A.00000003.1746492546.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000002.1785974101.00000000047CF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	47CF000
Size:	4096

Details

Name:	00000007.00000003.1702177791.0000015A0DECC000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DECC000
Size:	57344

Details

Name:	0000000A.00000002.1785680512.0000000003F4E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3F4E000
Size:	8192

Details

Name:	00000005.00000002.1725730966.000000000702E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	702E000
Size:	8192

Details

Name:	0000000A.00000000.1717416227.0000000000F39000.00000008.00000001.01000000.0000000B.sdmp
TargetID:	10
Dumpstage:	process new
Regiontype:	unkown
Protect:	page write copy
Base address:	F39000
Size:	4096

Details

Name:	0000000D.00000003.1782012881.0000000004AB0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4AB0000
Size:	4096

Details

Name:	0000000B.00000003.1793180429.0000000001540000.00000004.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	1540000
Size:	53248

Details

Name:	00000008.00000002.1826001088.000000547C3FE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	547C3FE000
Size:	8192

Details

Name:	0000000B.00000002.1847020670.00000000051CF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	51CF000
Size:	4096

Details

Name:	00000007.00000002.1703053486.0000015A0DF40000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF40000
Size:	65536

Details

Name:	00000005.00000002.1727569381.0000000007830000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	7830000
Size:	241664

Details

Name:	00000005.00000002.1720474826.0000000004F43000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	4F43000
Size:	987136

Details

Name:	00000008.00000002.1880131179.00007FFD99E70000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99E70000
Size:	65536

Details

Name:	0000000A.00000003.1743143392.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000003.1740829160.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000011.00000002.4132068738.0000000003ADF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3ADF000
Size:	4096

Details

Name:	00000002.00000003.1684757315.00000000037F0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	37F0000
Size:	4096

Details

Name:	00000011.00000003.2227213034.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000007.00000002.1702965505.0000015A0DF26000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF26000
Size:	8192

Details

Name:	0000000A.00000002.1786416554.0000000004D0E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4D0E000
Size:	8192

Details

Name:	0000000A.00000002.1784237291.000000000188E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	188E000
Size:	8192

Details

Name:	00000002.00000003.1684103049.00000000068EF000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	68EF000
Size:	4096

Details

Name:	00000008.00000002.1826321338.0000015D01210000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D01210000
Size:	20480

Details

Name:	00000007.00000002.1702566185.0000004AE33FC000.00000004.00000010.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4AE33FC000
Size:	16384

Details

Name:	00000002.00000002.1685862923.0000000003678000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	3678000
Size:	86016

Details

Name:	00000002.00000003.1680787369.00000000036E8000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36E8000
Size:	81920

Details

Name:	00000007.00000002.1703053486.0000015A0DF3C000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF3C000
Size:	8192

Details

Name:	0000000A.00000003.1723250350.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000011.00000002.4129999897.0000000000DF0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	DF0000
Size:	8192

Details

Name:	00000002.00000003.1683114628.00000000069EC000.00000004.00000800.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	69EC000
Size:	4096

Details

Name:	00000008.00000002.1826161825.0000015D010B0000.00000004.00000020.00040000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D010B0000
Size:	4096

Details

Name:	00000007.00000003.1700183441.00000162101B9000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	162101B9000
Size:	28672

Details

Name:	00000008.00000002.1873741545.0000015D1B243000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B243000
Size:	49152

Signature Hits	Behavior Group	Mitre Attack
Binary contains paths to debug symbols	Compliance, System Summary

Details

Name:	00000008.00000002.1872168829.0000015D1B156000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B156000
Size:	57344

Details

Name:	00000011.00000003.2244932995.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000A.00000003.1737910166.00000000057F0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	57F0000
Size:	4096

Details

Name:	0000000B.00000003.1796298593.0000000001540000.00000004.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	1540000
Size:	53248

Details

Name:	0000000A.00000003.1753620745.0000000007010000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	7010000
Size:	8192

Details

Name:	0000000B.00000000.1753856290.0000000000ED1000.00000080.00000001.01000000.0000000B.sdmp
TargetID:	11
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	ED1000
Size:	393216

Details

Name:	0000000A.00000003.1749852232.0000000001A18000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1A18000
Size:	4096

Details

Name:	0000000D.00000000.1755052721.00000000007B0000.00000002.00000001.01000000.0000000F.sdmp
TargetID:	13
Dumpstage:	process new
Regiontype:	unkown
Protect:	page readonly
Base address:	7B0000
Size:	4096

Details

Name:	0000000D.00000002.1821972534.00000000025DE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	25DE000
Size:	8192

Details

Name:	0000000D.00000003.1767374105.0000000002620000.00000004.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2620000
Size:	53248

Details

Name:	0000000D.00000003.1761555359.0000000002620000.00000004.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2620000
Size:	53248

Details

Name:	00000002.00000002.1686283363.0000000005670000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	5670000
Size:	4096

Details

Name:	00000011.00000002.4129946774.0000000000DED000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	DED000
Size:	12288

Details

Name:	00000002.00000003.1683074945.00000000068F0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	68F0000
Size:	12288

Details

Name:	00000005.00000002.1725904945.00000000071ED000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	71ED000
Size:	12288

Details

Name:	00000008.00000002.1874604048.0000015D1B3ED000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B3ED000
Size:	221184

Details

Name:	00000000.00000002.1682859245.0000000000DFE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	DFE000
Size:	8192

Details

Name:	0000000B.00000003.1799241365.0000000005210000.00000040.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5210000
Size:	4096

Details

Name:	0000000C.00000002.1820369347.000000000320F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	320F000
Size:	4096

Details

Name:	0000000C.00000002.1821193467.000000000410F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	410F000
Size:	4096

Details

Name:	00000005.00000002.1718902623.0000000000CC6000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	CC6000
Size:	12288

Details

Name:	0000000A.00000003.1753593805.0000000006BE5000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	6BE5000
Size:	8192

Details

Name:	0000000A.00000003.1746969529.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000C.00000003.1766352592.0000000002770000.00000004.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2770000
Size:	53248

Details

Name:	00000002.00000003.1683114628.00000000069E5000.00000004.00000800.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	69E5000
Size:	16384

Details

Name:	00000011.00000002.4131001000.0000000002E10000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	2E10000
Size:	16384

Details

Name:	00000011.00000003.2227171801.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000D.00000003.1775412881.0000000004481000.00000004.00000020.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4481000
Size:	4096

Details

Name:	00000000.00000003.1678831256.0000000001133000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1133000
Size:	8192

Details

Name:	00000000.00000003.1681539404.0000000001182000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1182000
Size:	20480

Details

Name:	00000008.00000002.1825421992.000000547BB03000.00000004.00000010.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	547BB03000
Size:	53248

Details

Name:	0000000A.00000003.1742317346.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000B.00000002.1845471094.0000000002FB0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	2FB0000
Size:	16384

Details

Name:	00000011.00000003.2246031757.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000C.00000003.1768970451.0000000002770000.00000004.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2770000
Size:	53248

Details

Name:	0000000A.00000003.1723208094.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000D.00000002.1820971182.0000000000AC1000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	AC1000
Size:	45056

Details

Name:	00000002.00000002.1686390011.0000000005D5D000.00000004.00000010.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5D5D000
Size:	12288

Details

Name:	0000000B.00000003.1786068833.0000000001540000.00000004.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	1540000
Size:	53248

Details

Name:	00000005.00000002.1728156217.00000000083CF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	83CF000
Size:	4096

Details

Name:	00000002.00000002.1685796181.0000000003470000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	3470000
Size:	16384

Details

Name:	0000000A.00000003.1739448709.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000D.00000000.1755301249.0000000000AD1000.00000080.00000001.01000000.0000000F.sdmp
TargetID:	13
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	AD1000
Size:	1732608

Details

Name:	0000000D.00000003.1777544364.0000000004920000.00000004.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	4920000
Size:	53248

Details

Name:	00000005.00000002.1728428796.00000000088C5000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	88C5000
Size:	36864

Details

Name:	0000000B.00000002.1843590441.0000000000CFD000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	CFD000
Size:	12288

Details

Name:	00000011.00000002.4132352507.000000000425F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	425F000
Size:	4096

Details

Name:	0000000A.00000003.1724174655.00000000051D0000.00000004.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	51D0000
Size:	53248

Details

Name:	00000005.00000002.1720474826.0000000005297000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	5297000
Size:	2453504

Details

Name:	0000000A.00000003.1742031786.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000005.00000002.1720457126.0000000004ED0000.00000040.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page execute and read and write
Base address:	4ED0000
Size:	4096

Details

Name:	00000000.00000003.1682121646.000000000109E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	109E000
Size:	8192

Details

Name:	00000008.00000002.1825665185.000000547BF7C000.00000004.00000010.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	547BF7C000
Size:	16384

Details

Name:	0000000B.00000002.1844586510.0000000001394000.00000040.00000001.01000000.0000000B.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	1394000
Size:	8192

Details

Name:	00000000.00000002.1684038657.00000000010FB000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	10FB000
Size:	4096

Details

Name:	0000000A.00000003.1753524134.0000000007010000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	7010000
Size:	8192

Details

Name:	00000005.00000002.1719408470.0000000003030000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	3030000
Size:	4096

Details

Name:	0000000A.00000002.1785744329.000000000418F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	418F000
Size:	4096

Details

Name:	00000011.00000002.4132566913.000000000475F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	475F000
Size:	4096

Details

Name:	00000011.00000002.4130781783.000000000145E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	145E000
Size:	8192

Details

Name:	0000000B.00000002.1845984410.00000000037FE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	37FE000
Size:	8192

Details

Name:	00000008.00000002.1826903674.0000015D02AE0000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	15D02AE0000
Size:	16384

Details

Name:	0000000A.00000003.1746135641.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000C.00000003.1780010979.0000000004AF0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4AF0000
Size:	4096

Details

Name:	00000008.00000002.1863689739.0000015D13050000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	15D13050000
Size:	380928

Details

Name:	00000005.00000002.1728133668.000000000838D000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	838D000
Size:	12288

Details

Name:	00000007.00000003.1700456298.00000162101A1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	162101A1000
Size:	16384

Details

Name:	0000000A.00000003.1746213911.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000011.00000003.2245296309.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000B.00000003.1788651601.0000000001540000.00000004.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	1540000
Size:	53248

Details

Name:	0000000A.00000003.1740012376.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000B.00000003.1799151407.0000000005210000.00000040.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5210000
Size:	4096

Details

Name:	00000005.00000002.1728489991.0000000008B1C000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	8B1C000
Size:	16384

Details

Name:	00000007.00000003.1700983233.00000162101B9000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	162101B9000
Size:	28672

Details

Name:	0000000A.00000003.1756332355.00000000019B3000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	19B3000
Size:	8192

Details

Name:	0000000A.00000003.1742189289.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000C.00000000.1755172336.0000000000819000.00000008.00000001.01000000.0000000F.sdmp
TargetID:	12
Dumpstage:	process new
Regiontype:	unkown
Protect:	page write copy
Base address:	819000
Size:	4096

Details

Name:	0000000A.00000003.1735252495.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000D.00000003.1763485827.0000000002620000.00000004.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2620000
Size:	53248

Details

Name:	00000007.00000003.1700369090.00000162102B5000.00000004.00000800.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	162102B5000
Size:	4096

Details

Name:	00000000.00000003.1679000982.0000000001147000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1147000
Size:	20480

Details

Name:	00000005.00000002.1726398804.0000000007497000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	7497000
Size:	49152

Details

Name:	0000000A.00000002.1785545006.0000000003B4F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3B4F000
Size:	4096

Details

Name:	00000008.00000002.1882639155.00007FFD99F80000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99F80000
Size:	8192

Details

Name:	00000000.00000003.1682064462.000000000109E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	109E000
Size:	8192

Details

Name:	00000000.00000003.1678937589.000000000111B000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	111B000
Size:	40960

Details

Name:	00000011.00000002.4132750589.0000000004B30000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	4B30000
Size:	40960

Details

Name:	00000000.00000002.1683287236.0000000000F20000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	F20000
Size:	8192

Details

Name:	0000000D.00000002.1823554697.0000000003E3F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3E3F000
Size:	4096

Details

Name:	00000005.00000002.1728189757.00000000083E0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	83E0000
Size:	4096

Details

Name:	0000000C.00000002.1821000598.0000000003C4E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3C4E000
Size:	8192

Details

Name:	00000000.00000000.1674840801.00000000005CC000.00000008.00000001.01000000.00000003.sdmp
TargetID:	0
Dumpstage:	process new
Regiontype:	unkown
Protect:	page write copy
Base address:	5CC000
Size:	4096

Details

Name:	00000005.00000002.1719988474.000000000490F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	490F000
Size:	4096

Details

Name:	00000007.00000003.1697374195.0000015A0DF1A000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF1A000
Size:	45056

Details

Name:	0000000C.00000002.1819306100.00000000007AE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	7AE000
Size:	8192

Details

Name:	0000000C.00000002.1821053527.0000000003D8E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3D8E000
Size:	8192

Details

Name:	00000002.00000003.1683114628.00000000069F7000.00000004.00000800.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	69F7000
Size:	4096

Details

Name:	00000011.00000002.4133232666.00000000051D0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	51D0000
Size:	4096

Details

Name:	00000000.00000002.1684385622.0000000001C4E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1C4E000
Size:	8192

Details

Name:	0000000A.00000002.1786019398.000000000490F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	490F000
Size:	4096

Details

Name:	00000011.00000003.2226544905.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000D.00000002.1823844990.0000000004920000.00000004.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page read and write
Base address:	4920000
Size:	4096

Details

Name:	0000000A.00000003.1725264955.00000000051D0000.00000004.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	51D0000
Size:	53248

Details

Name:	0000000B.00000002.1847178808.0000000005270000.00000040.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5270000
Size:	4096

Details

Name:	0000000D.00000003.1784813671.0000000004481000.00000004.00000020.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4481000
Size:	49152

Details

Name:	00000011.00000002.4131001000.0000000002E17000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	2E17000
Size:	12288

Details

Name:	0000000B.00000002.1846290540.0000000003F7E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3F7E000
Size:	8192

Details

Name:	00000005.00000002.1726644340.0000000007606000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7606000
Size:	20480

Details

Name:	00000005.00000002.1718958180.0000000000E22000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	E22000
Size:	53248

Details

Name:	00000011.00000003.2244211210.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000007.00000003.1701015785.0000015A0DE8E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DE8E000
Size:	4096

Details

Name:	00000005.00000002.1720296106.0000000004DCE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4DCE000
Size:	8192

Details

Name:	00000000.00000003.1678327508.0000000001164000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1164000
Size:	45056

Details

Name:	00000011.00000002.4128729450.0000000000812000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	812000
Size:	20480

Details

Name:	0000000B.00000002.1847267954.00000000052A0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	52A0000
Size:	4096

Details

Name:	0000000B.00000002.1843561268.00000000009F0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	9F0000
Size:	4096

Details

Name:	00000008.00000002.1878148706.00007FFD99CF6000.00000040.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page execute and read and write
Base address:	7FFD99CF6000
Size:	73728

Details

Name:	0000000B.00000002.1845108982.0000000002F6E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2F6E000
Size:	8192

Details

Name:	0000000A.00000002.1787130150.00000000051E0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	51E0000
Size:	40960

Details

Name:	00000002.00000003.1681747661.00000000036E8000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36E8000
Size:	81920

Details

Name:	0000000C.00000002.1819207899.0000000000600000.00000004.00000020.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	600000
Size:	16384

Details

Name:	00000011.00000003.2224816941.0000000004FB0000.00000004.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	4FB0000
Size:	53248

Details

Name:	00000008.00000002.1877446370.00007FFD99C1D000.00000040.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page execute and read and write
Base address:	7FFD99C1D000
Size:	12288

Details

Name:	0000000A.00000003.1753749402.0000000001A1B000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1A1B000
Size:	81920

Details

Name:	0000000D.00000002.1820529891.000000000057A000.00000004.00000020.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	57A000
Size:	8192

Details

Name:	00000011.00000002.4129780443.0000000000C76000.00000080.00000001.01000000.0000000F.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	C76000
Size:	8192

Details

Name:	00000002.00000003.1684757315.00000000037F3000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	37F3000
Size:	12288

Details

Name:	0000000A.00000002.1786165518.0000000004BCE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4BCE000
Size:	8192

Details

Name:	00000005.00000002.1727805585.0000000008310000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	8310000
Size:	65536

Details

Name:	0000000A.00000003.1753885095.00000000019D1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	19D1000
Size:	81920

Details

Name:	00000000.00000003.1680990581.0000000001072000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1072000
Size:	4096

Details

Name:	00000000.00000003.1679519825.00000000010EC000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	10EC000
Size:	65536

Details

Name:	00000008.00000002.1881170398.00007FFD99ED0000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99ED0000
Size:	65536

Details

Name:	00000011.00000003.2242994261.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000C.00000003.1783586209.00000000044F1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	44F1000
Size:	49152

Details

Name:	00000000.00000003.1678969213.000000000110B000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	110B000
Size:	24576

Details

Name:	0000000A.00000002.1786532962.0000000004E0F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4E0F000
Size:	4096

Details

Name:	0000000D.00000002.1823111581.00000000031FE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	31FE000
Size:	8192

Details

Name:	00000005.00000002.1727114500.0000000007780000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7780000
Size:	65536

Details

Name:	0000000D.00000002.1822651076.0000000002DFF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2DFF000
Size:	4096

Details

Name:	0000000A.00000003.1732676308.00000000051D0000.00000004.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	51D0000
Size:	53248

Details

Name:	0000000B.00000003.1790861371.0000000001540000.00000004.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	1540000
Size:	53248

Details

Name:	0000000A.00000003.1741924182.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000011.00000003.2245136402.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000005.00000002.1727360532.00000000077E0000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	77E0000
Size:	65536

Details

Name:	0000000A.00000003.1748215497.00000000019E7000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	19E7000
Size:	81920

Details

Name:	00000000.00000002.1684056198.0000000001133000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1133000
Size:	8192

Details

Name:	0000000A.00000003.1742432457.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000D.00000003.1781989870.0000000004AB0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4AB0000
Size:	4096

Details

Name:	0000000C.00000002.1819977758.0000000000DDE000.00000004.00000020.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	DDE000
Size:	151552

Details

Name:	00000011.00000002.4130059941.000000000113E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	113E000
Size:	8192

Details

Name:	00000005.00000002.1719482414.0000000003073000.00000040.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page execute and read and write
Base address:	3073000
Size:	4096

Details

Name:	0000000C.00000002.1819960884.0000000000DC0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	DC0000
Size:	4096

Details

Name:	00000008.00000002.1826634123.0000015D01263000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D01263000
Size:	311296

Details

Name:	00000000.00000003.1678233590.000000000118F000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	118F000
Size:	20480

Details

Name:	00000002.00000003.1681747661.00000000036C8000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36C8000
Size:	40960

Details

Name:	0000000A.00000003.1747519607.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000007.00000003.1697374195.0000015A0DF26000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF26000
Size:	8192

Details

Name:	00000011.00000000.2207365445.0000000000819000.00000008.00000001.01000000.0000000F.sdmp
TargetID:	17
Dumpstage:	process new
Regiontype:	unkown
Protect:	page write copy
Base address:	819000
Size:	4096

Details

Name:	00000008.00000002.1863689739.0000015D1332C000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	15D1332C000
Size:	4096

Details

Name:	00000002.00000003.1681747661.00000000036FD000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36FD000
Size:	126976

Details

Name:	00000011.00000003.2244772904.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000002.00000002.1686012741.00000000036E5000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	36E5000
Size:	4096

Details

Name:	00000011.00000003.2227563243.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000002.00000003.1680787369.00000000036E4000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36E4000
Size:	8192

Details

Name:	0000000D.00000003.1770409069.0000000002620000.00000004.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2620000
Size:	53248

Details

Name:	00000011.00000003.2245015128.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000D.00000002.1823599912.0000000003F7F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3F7F000
Size:	4096

Details

Name:	0000000C.00000003.1776904667.0000000004980000.00000004.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	4980000
Size:	53248

Details

Name:	00000011.00000003.2245643721.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000000.00000002.1683049958.0000000000E3E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	E3E000
Size:	8192

Details

Name:	00000000.00000002.1684096363.00000000011C6000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	11C6000
Size:	8192

Details

Name:	00000011.00000002.4133092025.0000000005180000.00000040.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5180000
Size:	4096

Details

Name:	00000011.00000002.4128932574.0000000000AD1000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	AD1000
Size:	4096

Details

Name:	00000011.00000003.2227075641.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000000.00000000.1674840801.00000000005D0000.00000008.00000001.01000000.00000003.sdmp
TargetID:	0
Dumpstage:	process new
Regiontype:	unkown
Protect:	page write copy
Base address:	5D0000
Size:	4096

Details

Name:	00000011.00000002.4132115651.0000000003C1F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3C1F000
Size:	4096

Details

Name:	00000011.00000003.2246132586.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000011.00000003.2225111401.0000000005140000.00000040.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5140000
Size:	4096

Details

Name:	0000000A.00000003.1749325639.00000000019F1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	19F1000
Size:	8192

Details

Name:	00000000.00000003.1681079827.0000000001102000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1102000
Size:	36864

Details

Name:	00000005.00000002.1728224861.0000000008400000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	8400000
Size:	65536

Details

Name:	0000000B.00000002.1846339369.00000000040BE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	40BE000
Size:	8192

Details

Name:	00000005.00000002.1720353072.0000000004DF5000.00000040.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page execute and read and write
Base address:	4DF5000
Size:	8192

Details

Name:	0000000D.00000002.1821414793.0000000000AD2000.00000080.00000001.01000000.0000000F.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	AD2000
Size:	1712128

Details

Name:	00000008.00000002.1827295892.0000015D04CE6000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	15D04CE6000
Size:	4096

Details

Name:	00000007.00000002.1702965505.0000015A0DF29000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF29000
Size:	53248

Details

Name:	0000000A.00000000.1717435907.00000000011F1000.00000080.00000001.01000000.0000000B.sdmp
TargetID:	10
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	11F1000
Size:	1732608

Details

Name:	0000000B.00000002.1844702294.000000000153E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	153E000
Size:	8192

Details

Name:	0000000C.00000002.1821412436.00000000044CF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	44CF000
Size:	4096

Details

Name:	00000007.00000003.1700733397.000001620FEDB000.00000004.00000800.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	1620FEDB000
Size:	4096

Details

Name:	0000000B.00000002.1846849565.0000000004BC0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	4BC0000
Size:	4096

Details

Name:	00000002.00000003.1682905060.0000000006A9F000.00000004.00000800.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	6A9F000
Size:	4096

Details

Name:	00000002.00000002.1686164594.00000000037D0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	37D0000
Size:	4096

Details

Name:	00000008.00000002.1881497738.00007FFD99EF0000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99EF0000
Size:	65536

Details

Name:	0000000D.00000002.1824017918.0000000004B10000.00000040.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4B10000
Size:	4096

Details

Name:	00000011.00000003.2216525751.0000000002E00000.00000004.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2E00000
Size:	53248

Details

Name:	0000000B.00000002.1847075028.0000000005230000.00000040.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5230000
Size:	4096

Details

Name:	00000007.00000002.1703379172.00000162101BB000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	162101BB000
Size:	20480

Details

Name:	00000008.00000002.1863689739.0000015D131F4000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	15D131F4000
Size:	1232896

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000011.00000002.4132750589.0000000004B20000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	4B20000
Size:	4096

Details

Name:	0000000B.00000002.1845916533.00000000036BE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	36BE000
Size:	8192

Details

Name:	0000000B.00000002.1846429775.00000000042FF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	42FF000
Size:	4096

Details

Name:	00000011.00000002.4130154600.0000000001160000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1160000
Size:	4096

Details

Name:	00000000.00000003.1678969213.0000000001118000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1118000
Size:	12288

Details

Name:	0000000D.00000002.1821882785.0000000000D7F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	D7F000
Size:	4096

Details

Name:	0000000A.00000003.1744426679.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000008.00000002.1880820898.00007FFD99EB0000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99EB0000
Size:	65536

Details

Name:	00000011.00000002.4132158800.0000000003D5F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3D5F000
Size:	4096

Details

Name:	00000000.00000002.1684152956.00000000011CB000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	11CB000
Size:	8192

Details

Name:	00000005.00000002.1724837106.0000000005F49000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	5F49000
Size:	1257472

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000008.00000002.1826780688.0000015D012B0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D012B0000
Size:	4096

Details

Name:	00000005.00000002.1724837106.0000000005EE1000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	5EE1000
Size:	28672

Details

Name:	00000007.00000003.1702338047.0000015A0DE8E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DE8E000
Size:	4096

Details

Name:	0000000A.00000002.1784639963.0000000001982000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1982000
Size:	159744

Details

Name:	0000000D.00000002.1823135618.00000000032FF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	32FF000
Size:	4096

Details

Name:	0000000A.00000002.1787415555.0000000005A50000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	5A50000
Size:	8192

Details

Name:	00000007.00000002.1702873416.0000015A0DF03000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF03000
Size:	40960

Details

Name:	0000000A.00000003.1748089886.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000011.00000003.2245194651.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000005.00000002.1719698852.0000000003089000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	3089000
Size:	16384

Details

Name:	0000000A.00000002.1787211975.00000000057BF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	57BF000
Size:	4096

Details

Name:	0000000A.00000002.1784079226.0000000001396000.00000080.00000001.01000000.0000000B.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	1396000
Size:	8192

Details

Name:	0000000A.00000002.1787669029.00000000073BE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	73BE000
Size:	8192

Details

Name:	00000007.00000003.1698103502.0000015A0DF42000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF42000
Size:	57344

Details

Name:	00000005.00000002.1726861856.00000000076AE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	76AE000
Size:	8192

Details

Name:	00000011.00000002.4130263220.0000000001170000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1170000
Size:	4096

Details

Name:	00000011.00000002.4130323474.0000000001190000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1190000
Size:	36864

Details

Name:	0000000C.00000002.1820242012.0000000002E4F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2E4F000
Size:	4096

Details

Name:	00000005.00000002.1727779182.0000000008300000.00000040.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page execute and read and write
Base address:	8300000
Size:	28672

Details

Name:	0000000C.00000002.1819903072.0000000000C76000.00000080.00000001.01000000.0000000F.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	C76000
Size:	8192

Details

Name:	00000005.00000002.1726882464.00000000076EE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	76EE000
Size:	8192

Details

Name:	00000005.00000002.1720168743.00000000049C0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	49C0000
Size:	16384

Details

Name:	00000007.00000002.1702539016.0000004AE30FD000.00000004.00000010.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4AE30FD000
Size:	12288

Details

Name:	00000008.00000002.1827256552.0000015D03030000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D03030000
Size:	36864

Details

Name:	00000008.00000002.1873486001.0000015D1B21E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B21E000
Size:	4096

Details

Name:	00000008.00000002.1825640259.000000547BEFE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	547BEFE000
Size:	8192

Details

Name:	00000000.00000003.1679858577.00000000010CC000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	10CC000
Size:	4096

Details

Name:	0000000A.00000002.1785527314.0000000003A4E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3A4E000
Size:	8192

Details

Name:	0000000C.00000002.1820295357.0000000002FCE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2FCE000
Size:	8192

Details

Name:	0000000A.00000003.1741525260.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000000.00000003.1676202927.00000000010CC000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	10CC000
Size:	700416

Details

Name:	00000011.00000003.2244611631.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000005.00000002.1720007476.0000000004910000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	4910000
Size:	4096

Details

Name:	00000011.00000002.4132222545.0000000003EDE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3EDE000
Size:	8192

Details

Name:	00000011.00000003.2244728056.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000011.00000003.2226500307.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000005.00000002.1720353072.0000000004DF0000.00000040.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page execute and read and write
Base address:	4DF0000
Size:	12288

Details

Name:	0000000D.00000002.1822368071.000000000293F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	293F000
Size:	4096

Details

Name:	00000011.00000003.2244256654.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000007.00000003.1701755161.0000015A0DF3C000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF3C000
Size:	8192

Details

Name:	00000011.00000003.2245428921.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000D.00000003.1760750400.0000000004481000.00000004.00000020.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4481000
Size:	49152

Details

Name:	0000000A.00000003.1748029982.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000000.00000003.1677639495.00000000011BD000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	11BD000
Size:	8192

Signature Hits	Behavior Group	Mitre Attack
Sample file is different than original file name gathered from version info	System Summary

Details

Name:	0000000A.00000002.1785855236.000000000440F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	440F000
Size:	4096

Details

Name:	00000005.00000002.1726620341.00000000075FD000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	75FD000
Size:	12288

Details

Name:	00000011.00000003.2244334822.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000000.00000003.1680929048.00000000011E9000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	11E9000
Size:	4096

Details

Name:	00000007.00000003.1699518334.0000015A0DF3A000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF3A000
Size:	16384

Details

Name:	0000000D.00000003.1781968609.0000000004AB0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4AB0000
Size:	4096

Details

Name:	0000000A.00000003.1749852232.0000000001A1B000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1A1B000
Size:	4096

Details

Name:	00000007.00000002.1703135853.0000015A0E060000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0E060000
Size:	4096

Details

Name:	00000007.00000003.1701710859.0000015A0DEDA000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DEDA000
Size:	49152

Details

Name:	00000000.00000003.1678203485.000000000118E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	118E000
Size:	24576

Details

Name:	00000005.00000002.1726292916.0000000007442000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	7442000
Size:	53248

Details

Name:	0000000A.00000002.1785466667.00000000038CF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	38CF000
Size:	4096

Details

Name:	0000000B.00000002.1846722598.000000000493F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	493F000
Size:	4096

Details

Name:	00000000.00000003.1681762458.00000000010E0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	10E0000
Size:	12288

Details

Name:	00000000.00000003.1680472434.00000000011C6000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	11C6000
Size:	28672

Details

Name:	00000005.00000002.1718841215.0000000000C90000.00000004.00000020.00040000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	C90000
Size:	4096

Details

Name:	00000000.00000003.1678619392.000000000113F000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	113F000
Size:	4096

Details

Name:	0000000C.00000003.1779309419.0000000004B10000.00000040.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4B10000
Size:	4096

Details

Name:	00000008.00000002.1825758628.000000547C0FD000.00000004.00000010.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	547C0FD000
Size:	12288

Details

Name:	0000000A.00000003.1746241567.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000011.00000002.4131747924.000000000385E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	385E000
Size:	8192

Details

Name:	0000000A.00000003.1741407469.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000D.00000002.1822704246.0000000002E3E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2E3E000
Size:	8192

Details

Name:	00000007.00000003.1702177791.0000015A0DEB7000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DEB7000
Size:	81920

Details

Name:	0000000C.00000002.1821168542.000000000400E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	400E000
Size:	8192

Details

Name:	0000000A.00000003.1739681542.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000007.00000003.1699265268.0000015A0DF37000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF37000
Size:	102400

Details

Name:	00000000.00000003.1679101236.0000000001118000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1118000
Size:	12288

Details

Name:	00000011.00000003.2227599681.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000C.00000002.1819473632.0000000000819000.00000004.00000001.01000000.0000000F.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	819000
Size:	4096

Details

Name:	00000008.00000002.1827295892.0000015D030C3000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	15D030C3000
Size:	1716224

Details

Name:	0000000C.00000002.1820940616.0000000003B0D000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3B0D000
Size:	12288

Details

Name:	00000011.00000003.2225085305.0000000005140000.00000040.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5140000
Size:	4096

Details

Name:	0000000A.00000003.1723269287.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000003.1735287483.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000002.00000002.1686066364.00000000036F7000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	36F7000
Size:	20480

Details

Name:	0000000A.00000003.1750191543.0000000008F6A000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	8F6A000
Size:	524288

Details

Name:	00000008.00000002.1880291154.00007FFD99E80000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99E80000
Size:	65536

Details

Name:	00000002.00000002.1686137574.0000000003790000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	3790000
Size:	4096

Details

Name:	00000008.00000002.1875609957.0000015D1B47F000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B47F000
Size:	24576

Details

Name:	0000000B.00000002.1845595429.00000000030BF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	30BF000
Size:	4096

Details

Name:	0000000A.00000003.1743108597.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000011.00000000.2207388416.0000000000AD1000.00000080.00000001.01000000.0000000F.sdmp
TargetID:	17
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	AD1000
Size:	1732608

Details

Name:	00000005.00000002.1724837106.0000000005F09000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	5F09000
Size:	176128

Details

Name:	00000011.00000002.4130323474.00000000011EE000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	11EE000
Size:	94208

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	0000000C.00000003.1775283015.00000000044F1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	44F1000
Size:	241664

Details

Name:	00000007.00000003.1700456298.00000162101B9000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	162101B9000
Size:	28672

Details

Name:	0000000B.00000002.1843813884.00000000011E1000.00000040.00000001.01000000.0000000B.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	11E1000
Size:	45056

Details

Name:	0000000A.00000003.1739523094.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000011.00000002.4128932574.0000000000A8E000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	A8E000
Size:	106496

Details

Name:	00000002.00000003.1682132318.00000000036EF000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36EF000
Size:	53248

Details

Name:	00000005.00000002.1728293440.0000000008430000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	8430000
Size:	86016

Details

Name:	0000000A.00000003.1753749402.00000000019F4000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	19F4000
Size:	155648

Details

Name:	0000000C.00000002.1819142086.0000000000570000.00000004.00000020.00040000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	570000
Size:	4096

Details

Name:	00000002.00000002.1685862923.0000000003670000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	3670000
Size:	28672

Details

Name:	0000000C.00000003.1772026203.0000000002770000.00000004.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2770000
Size:	53248

Details

Name:	00000011.00000002.4130323474.0000000001217000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1217000
Size:	20480

Details

Name:	0000000C.00000003.1761397824.0000000002770000.00000004.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2770000
Size:	53248

Details

Name:	00000002.00000002.1686305938.0000000005760000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	5760000
Size:	8192

Details

Name:	00000002.00000003.1681747661.00000000036E4000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36E4000
Size:	8192

Details

Name:	0000000A.00000002.1786995331.0000000004F4F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4F4F000
Size:	4096

Details

Name:	00000007.00000002.1702617984.0000015A0DE86000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DE86000
Size:	20480

Details

Name:	00000002.00000003.1684683362.0000000005424000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	5424000
Size:	4096

Details

Name:	0000000A.00000002.1784639963.000000000193A000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	193A000
Size:	8192

Details

Name:	0000000A.00000003.1747387338.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000007.00000003.1702306382.00000162101BA000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	162101BA000
Size:	24576

Details

Name:	0000000C.00000002.1819778366.0000000000AD2000.00000080.00000001.01000000.0000000F.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	AD2000
Size:	1712128

Details

Name:	00000000.00000003.1678569325.000000000112A000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	112A000
Size:	90112

Details

Name:	0000000A.00000003.1742084419.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000B.00000002.1845733388.000000000343E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	343E000
Size:	8192

Details

Name:	00000008.00000002.1826052265.000000547C4FE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	547C4FE000
Size:	8192

Details

Name:	00000011.00000002.4131001000.0000000002E1D000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	2E1D000
Size:	4096

Details

Name:	0000000A.00000003.1749706401.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000003.1742293634.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000D.00000002.1823650756.00000000040BF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	40BF000
Size:	4096

Details

Name:	0000000B.00000000.1753823799.0000000000ED0000.00000002.00000001.01000000.0000000B.sdmp
TargetID:	11
Dumpstage:	process new
Regiontype:	unkown
Protect:	page readonly
Base address:	ED0000
Size:	4096

Details

Name:	0000000A.00000003.1749611600.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000003.1748141264.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000000.00000003.1677382687.00000000011B5000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	11B5000
Size:	98304

Signature Hits	Behavior Group	Mitre Attack
Sample file is different than original file name gathered from version info	System Summary

Details

Name:	00000007.00000002.1703320775.000001620FF00000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1620FF00000
Size:	8192

Details

Name:	00000005.00000002.1726000123.000000000735F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	735F000
Size:	4096

Details

Name:	00000002.00000003.1685547025.00000000036FD000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36FD000
Size:	126976

Details

Name:	0000000A.00000003.1753974822.00000000019E6000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	19E6000
Size:	4096

Details

Name:	00000011.00000003.2222757414.0000000002E00000.00000004.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2E00000
Size:	53248

Details

Name:	00000005.00000002.1726398804.00000000074A4000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	74A4000
Size:	28672

Details

Name:	0000000D.00000002.1823910154.0000000004AC0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4AC0000
Size:	4096

Details

Name:	00000011.00000002.4132178862.0000000003D9E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3D9E000
Size:	8192

Details

Name:	0000000B.00000002.1843256403.0000000000970000.00000004.00000020.00040000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	970000
Size:	4096

Details

Name:	00000002.00000002.1685659083.0000000003259000.00000004.00000010.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3259000
Size:	28672

Details

Name:	0000000A.00000003.1740177742.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000002.00000002.1686369655.0000000005D1F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5D1F000
Size:	4096

Details

Name:	00000000.00000003.1681079827.0000000001133000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1133000
Size:	8192

Details

Name:	00000008.00000002.1827026171.0000015D02B75000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D02B75000
Size:	20480

Details

Name:	00000011.00000003.2227507990.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000011.00000003.2244451697.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000007.00000002.1702965505.0000015A0DF37000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF37000
Size:	4096

Details

Name:	00000011.00000003.2243907895.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000007.00000002.1702665894.0000015A0DE8E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DE8E000
Size:	4096

Details

Name:	0000000A.00000003.1748178609.0000000001A11000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1A11000
Size:	8192

Details

Name:	0000000D.00000002.1821910112.000000000255E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	255E000
Size:	8192

Details

Name:	00000011.00000003.2245998569.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000005.00000002.1726068005.00000000073E4000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	73E4000
Size:	12288

Details

Name:	0000000A.00000002.1785312347.0000000003487000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	3487000
Size:	32768

Details

Name:	0000000D.00000002.1824059580.0000000004B30000.00000040.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4B30000
Size:	4096

Details

Name:	00000011.00000003.2225184110.0000000005140000.00000040.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5140000
Size:	4096

Details

Name:	00000011.00000002.4132670928.00000000049DF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	49DF000
Size:	4096

Details

Name:	00000000.00000003.1678742979.0000000001135000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1135000
Size:	40960

Details

Name:	00000011.00000003.2226753617.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000D.00000002.1823996164.0000000004B00000.00000040.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4B00000
Size:	4096

Details

Name:	0000000A.00000002.1784620094.000000000192E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	192E000
Size:	8192

Details

Name:	00000000.00000003.1678415024.000000000114C000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	114C000
Size:	49152

Details

Name:	00000005.00000002.1727237453.00000000077B0000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	77B0000
Size:	65536

Details

Name:	0000000A.00000002.1787712950.0000000007566000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	7566000
Size:	4096

Details

Name:	00000005.00000002.1728265061.0000000008410000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	8410000
Size:	32768

Details

Name:	00000008.00000002.1825895455.000000547C278000.00000004.00000010.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	547C278000
Size:	32768

Details

Name:	00000008.00000002.1872168829.0000015D1B1A3000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B1A3000
Size:	262144

Details

Name:	00000005.00000002.1728206717.00000000083F0000.00000040.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page execute and read and write
Base address:	83F0000
Size:	8192

Details

Name:	0000000A.00000003.1743240967.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000003.1746430381.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000C.00000002.1820418156.000000000334F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	334F000
Size:	4096

Details

Name:	0000000A.00000002.1785004954.00000000019B8000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	19B8000
Size:	86016

Details

Name:	0000000C.00000002.1821856597.0000000004B50000.00000040.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4B50000
Size:	4096

Details

Name:	00000011.00000002.4129554505.0000000000AD2000.00000080.00000001.01000000.0000000F.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	AD2000
Size:	1712128

Details

Name:	0000000B.00000002.1845872655.000000000367F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	367F000
Size:	4096

Details

Name:	0000000D.00000002.1823716222.000000000423E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	423E000
Size:	8192

Details

Name:	00000008.00000002.1879224294.00007FFD99E40000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99E40000
Size:	65536

Details

Name:	0000000A.00000003.1753620745.0000000007000000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	7000000
Size:	4096

Details

Name:	00000005.00000002.1727159550.0000000007790000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7790000
Size:	65536

Details

Name:	00000005.00000002.1719389602.0000000000EEE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	EEE000
Size:	8192

Details

Name:	00000008.00000002.1878773936.00007FFD99E00000.00000040.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page execute and read and write
Base address:	7FFD99E00000
Size:	28672

Details

Name:	0000000C.00000003.1779382984.0000000004B10000.00000040.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4B10000
Size:	4096

Details

Name:	0000000D.00000002.1823739321.000000000433F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	433F000
Size:	4096

Details

Name:	00000011.00000003.2244066099.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000000.00000003.1682064462.0000000001081000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1081000
Size:	114688

Signature Hits	Behavior Group	Mitre Attack
Sample file is different than original file name gathered from version info	System Summary

Details

Name:	00000008.00000002.1826321338.0000015D011F9000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D011F9000
Size:	4096

Details

Name:	0000000B.00000002.1843428479.0000000000980000.00000004.00000020.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	980000
Size:	16384

Details

Name:	00000011.00000002.4132876275.0000000004F9C000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4F9C000
Size:	16384

Details

Name:	0000000D.00000003.1771393195.0000000002620000.00000004.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2620000
Size:	53248

Details

Name:	00000011.00000002.4133175671.00000000051B0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	51B0000
Size:	4096

Details

Name:	0000000C.00000003.1779055436.0000000004B10000.00000040.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4B10000
Size:	8192

Details

Name:	0000000A.00000003.1743354917.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000007.00000002.1702921767.0000015A0DF19000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF19000
Size:	40960

Details

Name:	0000000D.00000003.1775312853.0000000004481000.00000004.00000020.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4481000
Size:	241664

Details

Name:	00000008.00000002.1879089349.00007FFD99E30000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99E30000
Size:	65536

Details

Name:	0000000D.00000002.1820417166.0000000000510000.00000004.00000020.00040000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	510000
Size:	4096

Details

Name:	0000000D.00000002.1822289411.000000000283F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	283F000
Size:	4096

Details

Name:	00000011.00000002.4130912271.0000000002D7C000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2D7C000
Size:	16384

Details

Name:	00000007.00000003.1701506519.0000015A0F854000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0F854000
Size:	73728

Details

Name:	0000000D.00000002.1823315625.00000000036BF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	36BF000
Size:	4096

Details

Name:	0000000A.00000003.1749232304.0000000001A11000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1A11000
Size:	45056

Details

Name:	0000000A.00000003.1737875522.00000000057E0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	57E0000
Size:	4096

Details

Name:	00000011.00000002.4133258474.00000000051E0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	51E0000
Size:	4096

Details

Name:	00000005.00000002.1719828468.00000000030C0000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	30C0000
Size:	4096

Details

Name:	00000007.00000003.1700369090.00000162102A0000.00000004.00000800.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	162102A0000
Size:	4096

Details

Name:	0000000C.00000002.1819499504.0000000000AD1000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	AD1000
Size:	4096

Details

Name:	00000007.00000003.1701506519.0000015A0F86E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0F86E000
Size:	8192

Details

Name:	00000007.00000003.1702260981.0000015A0DF19000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF19000
Size:	40960

Details

Name:	0000000A.00000003.1726026302.00000000051D0000.00000004.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	51D0000
Size:	53248

Details

Name:	0000000A.00000003.1753974822.00000000019D1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	19D1000
Size:	81920

Details

Name:	0000000D.00000002.1822030382.0000000002630000.00000004.00000020.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	2630000
Size:	16384

Details

Name:	0000000A.00000003.1756332355.00000000019B8000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	19B8000
Size:	90112

Details

Name:	0000000A.00000003.1754132264.0000000001990000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1990000
Size:	102400

Details

Name:	0000000D.00000002.1823932613.0000000004AD0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4AD0000
Size:	4096

Details

Name:	0000000B.00000003.1799375153.0000000005200000.00000040.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5200000
Size:	4096

Details

Name:	00000007.00000003.1701640886.0000015A0F9F4000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0F9F4000
Size:	4096

Details

Name:	0000000A.00000003.1728290885.00000000051D0000.00000004.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	51D0000
Size:	53248

Details

Name:	0000000B.00000002.1845791211.000000000353F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	353F000
Size:	4096

Details

Name:	0000000D.00000002.1822531989.0000000002B7F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2B7F000
Size:	4096

Details

Name:	0000000D.00000002.1822505134.0000000002A7E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2A7E000
Size:	8192

Details

Name:	0000000D.00000002.1822456689.0000000002A3F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2A3F000
Size:	4096

Details

Name:	00000007.00000002.1703216449.0000015A0F980000.00000004.00000800.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	15A0F980000
Size:	4096

Details

Name:	00000000.00000003.1681762458.00000000010E4000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	10E4000
Size:	4096

Details

Name:	00000005.00000002.1719372387.0000000000EAE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	EAE000
Size:	8192

Details

Name:	00000000.00000000.1674793036.00000000005C2000.00000002.00000001.01000000.00000003.sdmp
TargetID:	0
Dumpstage:	process new
Regiontype:	unkown
Protect:	page readonly
Base address:	5C2000
Size:	40960

Signature Hits	Behavior Group	Mitre Attack
Binary is likely a compiled AutoIt script file	System Summary

Details

Name:	00000011.00000002.4132750589.0000000004B27000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	4B27000
Size:	8192

Details

Name:	0000000A.00000003.1741231858.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000008.00000002.1827295892.0000015D04CE8000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	15D04CE8000
Size:	1413120

Details

Name:	0000000C.00000002.1819207899.0000000000605000.00000004.00000020.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	605000
Size:	8192

Details

Name:	0000000D.00000002.1821854856.0000000000C76000.00000080.00000001.01000000.0000000F.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	C76000
Size:	8192

Details

Name:	0000000C.00000002.1820338541.000000000310E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	310E000
Size:	8192

Details

Name:	00000000.00000003.1676399481.00000000011DE000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	11DE000
Size:	32768

Details

Name:	0000000A.00000002.1786090984.0000000004A8E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4A8E000
Size:	8192

Details

Name:	00000008.00000002.1882450109.00007FFD99F60000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99F60000
Size:	65536

Details

Name:	00000011.00000003.2225250025.0000000005110000.00000040.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5110000
Size:	4096

Details

Name:	00000000.00000002.1682859245.0000000000DBF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	DBF000
Size:	4096

Details

Name:	00000011.00000003.2242918426.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000A.00000003.1741130837.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000000.00000002.1683790526.0000000001050000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1050000
Size:	24576

Details

Name:	0000000A.00000003.1740120117.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000005.00000002.1725812573.000000000712E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	712E000
Size:	8192

Details

Name:	00000000.00000002.1683287236.0000000000F24000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	F24000
Size:	8192

Details

Name:	0000000D.00000002.1823274526.000000000357F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	357F000
Size:	4096

Details

Name:	00000008.00000002.1825697750.000000547BFFE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	547BFFE000
Size:	8192

Details

Name:	0000000D.00000002.1823294751.00000000035BE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	35BE000
Size:	8192

Details

Name:	00000008.00000002.1881369398.00007FFD99EE0000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99EE0000
Size:	65536

Details

Name:	0000000D.00000000.1755084614.00000000007B1000.00000080.00000001.01000000.0000000F.sdmp
TargetID:	13
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	7B1000
Size:	393216

Details

Name:	0000000C.00000003.1767151675.0000000002770000.00000004.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2770000
Size:	53248

Details

Name:	0000000D.00000002.1823866378.000000000496E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	496E000
Size:	8192

Details

Name:	00000002.00000002.1686618963.0000000006F3B000.00000004.00000010.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6F3B000
Size:	20480

Details

Name:	00000000.00000003.1679645722.0000000001102000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1102000
Size:	36864

Details

Name:	00000008.00000002.1877527006.00007FFD99C20000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99C20000
Size:	40960

Details

Name:	00000000.00000002.1682405435.0000000000501000.00000020.00000001.01000000.00000003.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute read
Base address:	501000
Size:	634880

Details

Name:	00000008.00000002.1826077764.000000547C57B000.00000004.00000010.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	547C57B000
Size:	20480

Details

Name:	00000000.00000003.1677590191.00000000011BF000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	11BF000
Size:	57344

Details

Name:	0000000B.00000002.1846090267.0000000003A7E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3A7E000
Size:	8192

Details

Name:	0000000B.00000002.1846313099.000000000407F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	407F000
Size:	4096

Details

Name:	00000005.00000002.1726935631.0000000007730000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7730000
Size:	65536

Details

Name:	00000000.00000003.1678912174.0000000001111000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1111000
Size:	81920

Details

Name:	00000005.00000002.1726068005.00000000073E8000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	73E8000
Size:	57344

Details

Name:	0000000A.00000002.1787568584.0000000006FAF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6FAF000
Size:	4096

Details

Name:	0000000B.00000003.1794151115.0000000001540000.00000004.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	1540000
Size:	53248

Details

Name:	00000008.00000002.1878467439.00007FFD99DC9000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99DC9000
Size:	28672

Details

Name:	0000000A.00000003.1743214006.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000C.00000002.1821912332.0000000004B70000.00000040.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4B70000
Size:	4096

Details

Name:	0000000C.00000002.1821247959.000000000424F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	424F000
Size:	4096

Details

Name:	00000005.00000002.1726973802.0000000007740000.00000040.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page execute and read and write
Base address:	7740000
Size:	4096

Details

Name:	00000011.00000002.4133052637.0000000005160000.00000040.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5160000
Size:	4096

Details

Name:	00000011.00000003.2219676586.0000000002E00000.00000004.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2E00000
Size:	53248

Details

Name:	00000011.00000003.2243940923.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000007.00000002.1702487210.0000004AE2CFE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4AE2CFE000
Size:	8192

Details

Name:	00000002.00000002.1686305938.0000000005764000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	5764000
Size:	8192

Details

Name:	0000000A.00000002.1778830173.0000000000F32000.00000040.00000001.01000000.0000000B.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	F32000
Size:	20480

Details

Name:	0000000C.00000002.1821625619.0000000004980000.00000004.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page read and write
Base address:	4980000
Size:	4096

Details

Name:	0000000A.00000002.1784639963.0000000001930000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1930000
Size:	36864

Details

Name:	00000005.00000002.1728465320.0000000008ADC000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	8ADC000
Size:	16384

Details

Name:	00000007.00000002.1702780420.0000015A0DEB7000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DEB7000
Size:	81920

Details

Name:	00000008.00000002.1826880359.0000015D02AB0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D02AB0000
Size:	4096

Details

Name:	00000000.00000003.1679796409.00000000010DA000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	10DA000
Size:	12288

Details

Name:	0000000D.00000003.1784913420.0000000004481000.00000004.00000020.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4481000
Size:	4096

Details

Name:	00000011.00000003.2224036479.0000000004FB0000.00000004.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	4FB0000
Size:	53248

Details

Name:	00000011.00000002.4131287073.000000000325E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	325E000
Size:	8192

Details

Name:	00000000.00000003.1682121646.0000000001082000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1082000
Size:	110592

Signature Hits	Behavior Group	Mitre Attack
Sample file is different than original file name gathered from version info	System Summary

Details

Name:	00000008.00000002.1827232249.0000015D03000000.00000040.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page execute and read and write
Base address:	15D03000000
Size:	4096

Details

Name:	0000000A.00000003.1743290430.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000008.00000002.1826321338.0000015D0123A000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D0123A000
Size:	12288

Details

Name:	00000000.00000003.1678508507.0000000001182000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1182000
Size:	20480

Details

Name:	00000002.00000002.1685971806.00000000036D3000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	36D3000
Size:	61440

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery

Details

Name:	00000011.00000002.4132618973.000000000489F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	489F000
Size:	4096

Details

Name:	0000000D.00000002.1823474973.0000000003BBF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3BBF000
Size:	4096

Details

Name:	0000000D.00000002.1823534374.0000000003D3E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3D3E000
Size:	8192

Details

Name:	00000011.00000003.2243390204.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000011.00000002.4128618522.00000000007B0000.00000004.00000001.01000000.0000000F.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	7B0000
Size:	4096

Details

Name:	00000011.00000002.4132538055.000000000465E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	465E000
Size:	8192

Details

Name:	0000000C.00000002.1819977758.0000000000DDA000.00000004.00000020.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	DDA000
Size:	8192

Details

Name:	00000005.00000002.1728110157.0000000008320000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	8320000
Size:	8192

Details

Name:	00000011.00000002.4130323474.00000000011D2000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	11D2000
Size:	4096

Details

Name:	0000000A.00000000.1717260217.0000000000ED0000.00000002.00000001.01000000.0000000B.sdmp
TargetID:	10
Dumpstage:	process new
Regiontype:	unkown
Protect:	page readonly
Base address:	ED0000
Size:	4096

Details

Name:	00000002.00000003.1683114628.00000000069EA000.00000004.00000800.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	69EA000
Size:	4096

Details

Name:	00000002.00000002.1685686415.000000000335A000.00000004.00000010.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	335A000
Size:	24576

Details

Name:	00000005.00000002.1726774604.0000000007629000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7629000
Size:	16384

Details

Name:	00000011.00000002.4132482355.000000000451E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	451E000
Size:	8192

Details

Name:	00000011.00000003.2245750388.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000A.00000003.1740363804.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000011.00000003.2246065556.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000A.00000003.1749671755.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000C.00000002.1820166396.0000000002BCF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2BCF000
Size:	4096

Details

Name:	0000000A.00000003.1739918454.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000003.1741204976.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000002.00000003.1685520033.000000000368E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	368E000
Size:	114688

Details

Name:	00000008.00000002.1827295892.0000015D04387000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	15D04387000
Size:	4268032

Details

Name:	00000011.00000003.2225229828.0000000005130000.00000040.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5130000
Size:	4096

Details

Name:	00000000.00000002.1684078376.0000000001184000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1184000
Size:	12288

Details

Name:	0000000B.00000002.1844991679.0000000002F2E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2F2E000
Size:	8192

Details

Name:	00000000.00000002.1684020847.00000000010E4000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	10E4000
Size:	4096

Details

Name:	0000000A.00000002.1787589210.0000000007140000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	7140000
Size:	12288

Details

Name:	00000008.00000002.1874070906.0000015D1B3C0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B3C0000
Size:	180224

Details

Name:	0000000A.00000003.1734222707.00000000051D0000.00000004.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	51D0000
Size:	53248

Details

Name:	00000011.00000000.2207291896.0000000000812000.00000080.00000001.01000000.0000000F.sdmp
TargetID:	17
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	812000
Size:	16384

Details

Name:	00000008.00000002.1878841368.00007FFD99E10000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99E10000
Size:	65536

Details

Name:	00000011.00000003.2242855698.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	0000000A.00000002.1785763791.00000000041CE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	41CE000
Size:	8192

Details

Name:	00000011.00000002.4133353921.00000000056AE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	56AE000
Size:	8192

Details

Name:	00000002.00000003.1679778627.00000000036FD000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36FD000
Size:	122880

Details

Name:	0000000A.00000003.1729040688.00000000051D0000.00000004.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	51D0000
Size:	53248

Details

Name:	0000000C.00000002.1821375414.00000000043CE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	43CE000
Size:	8192

Details

Name:	0000000A.00000002.1785784441.00000000042CF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	42CF000
Size:	4096

Details

Name:	00000002.00000002.1686409632.0000000005E5E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5E5E000
Size:	8192

Details

Name:	0000000A.00000003.1746061040.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000008.00000002.1827295892.0000015D04A0B000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	15D04A0B000
Size:	2990080

Details

Name:	00000002.00000002.1686584640.00000000068F1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	68F1000
Size:	8192

Details

Name:	0000000A.00000003.1742003144.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000C.00000003.1780199806.0000000004B00000.00000040.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4B00000
Size:	4096

Details

Name:	0000000D.00000002.1820385899.00000000004FD000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4FD000
Size:	12288

Details

Name:	0000000A.00000003.1739952889.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000002.00000002.1686049456.00000000036F0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	36F0000
Size:	24576

Details

Name:	00000002.00000003.1680787369.00000000036B5000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36B5000
Size:	4096

Details

Name:	00000007.00000002.1702921767.0000015A0DF14000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF14000
Size:	12288

Details

Name:	0000000A.00000003.1741898558.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000B.00000002.1844727383.0000000001558000.00000004.00000020.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1558000
Size:	143360

Details

Name:	00000005.00000002.1720150604.00000000049AC000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	49AC000
Size:	16384

Details

Name:	0000000C.00000002.1821595327.00000000044F0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	44F0000
Size:	4096

Details

Name:	0000000A.00000003.1730702077.00000000051D0000.00000004.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	51D0000
Size:	53248

Details

Name:	0000000D.00000002.1823889462.0000000004A6F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4A6F000
Size:	4096

Details

Name:	00000008.00000002.1826808874.0000015D01305000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D01305000
Size:	40960

Details

Name:	00000011.00000002.4132137754.0000000003C5E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3C5E000
Size:	8192

Details

Name:	00000002.00000002.1685905616.000000000368E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	368E000
Size:	114688

Details

Name:	0000000A.00000003.1747259535.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000C.00000002.1820530627.00000000035CF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	35CF000
Size:	4096

Details

Name:	0000000D.00000002.1822597943.0000000002CBF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2CBF000
Size:	4096

Details

Name:	0000000C.00000003.1767229656.0000000004930000.00000004.00000800.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	4930000
Size:	180224

Details

Name:	0000000D.00000002.1820971182.0000000000ABA000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	ABA000
Size:	24576

Details

Name:	0000000B.00000002.1846266114.0000000003F3F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	3F3F000
Size:	4096

Details

Name:	00000005.00000002.1720068079.0000000004940000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	4940000
Size:	65536

Details

Name:	0000000D.00000003.1781429109.0000000004AB0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4AB0000
Size:	8192

Details

Name:	0000000B.00000003.1790148819.0000000001540000.00000004.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	1540000
Size:	53248

Details

Name:	0000000A.00000002.1783839556.00000000011F2000.00000080.00000001.01000000.0000000B.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and write copy
Base address:	11F2000
Size:	1712128

Details

Name:	0000000A.00000003.1743073434.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000008.00000002.1876965598.0000015D1B760000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B760000
Size:	4096

Details

Name:	00000000.00000003.1678360170.0000000001140000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1140000
Size:	98304

Details

Name:	0000000B.00000002.1846481966.000000000443F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	443F000
Size:	4096

Details

Name:	0000000C.00000002.1819942759.0000000000DBE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	DBE000
Size:	8192

Details

Name:	00000002.00000002.1686489205.0000000005F9F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5F9F000
Size:	4096

Details

Name:	00000005.00000002.1725689410.0000000006FAD000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6FAD000
Size:	12288

Details

Name:	00000008.00000002.1826286762.0000015D011D0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D011D0000
Size:	28672

Details

Name:	00000011.00000003.2215786472.0000000002E00000.00000004.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	2E00000
Size:	53248

Details

Name:	00000005.00000002.1719767569.00000000030A2000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	30A2000
Size:	12288

Details

Name:	00000005.00000002.1718958180.0000000000DFC000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	DFC000
Size:	147456

Details

Name:	0000000A.00000003.1742243569.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000003.1733449992.00000000051D0000.00000004.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	51D0000
Size:	53248

Details

Name:	0000000A.00000003.1740400068.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000005.00000002.1726398804.0000000007483000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	7483000
Size:	77824

Details

Name:	0000000B.00000002.1847047187.0000000005220000.00000040.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5220000
Size:	4096

Details

Name:	00000011.00000003.2243135582.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000005.00000002.1725749251.000000000706E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	706E000
Size:	8192

Details

Name:	0000000B.00000002.1843813884.00000000011F1000.00000040.00000001.01000000.0000000B.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	11F1000
Size:	4096

Details

Name:	0000000A.00000002.1785004954.00000000019D1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	19D1000
Size:	90112

Details

Name:	00000008.00000002.1878467439.00007FFD99DC0000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99DC0000
Size:	16384

Details

Name:	00000002.00000003.1683020881.00000000068E5000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	68E5000
Size:	20480

Details

Name:	0000000C.00000002.1819499504.0000000000AC1000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	AC1000
Size:	45056

Details

Name:	00000000.00000002.1684001706.00000000010DB000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	10DB000
Size:	8192

Details

Name:	0000000B.00000003.1794867815.0000000001540000.00000004.00001000.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	1540000
Size:	53248

Details

Name:	00000011.00000002.4130323474.0000000001206000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	1206000
Size:	53248

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery
URLs found in memory or binary data	Networking

Details

Name:	0000000A.00000002.1787232288.0000000005810000.00000040.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5810000
Size:	4096

Details

Name:	0000000A.00000002.1787415555.0000000005A54000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	5A54000
Size:	12288

Details

Name:	00000011.00000003.2243819591.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000008.00000002.1871131930.0000015D1B04C000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B04C000
Size:	548864

Details

Name:	00000008.00000002.1826321338.0000015D0123E000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D0123E000
Size:	147456

Details

Name:	00000005.00000002.1726993612.0000000007750000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7750000
Size:	61440

Details

Name:	0000000D.00000002.1820444147.0000000000525000.00000004.00000020.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	525000
Size:	8192

Details

Name:	0000000A.00000003.1746325835.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000000.00000003.1676336990.000000000120F000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	120F000
Size:	102400

Details

Name:	0000000C.00000002.1821940995.0000000004B80000.00000040.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4B80000
Size:	4096

Details

Name:	00000007.00000003.1700733397.000001620FEDE000.00000004.00000800.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	1620FEDE000
Size:	24576

Details

Name:	0000000C.00000002.1819263990.000000000071E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	71E000
Size:	8192

Details

Name:	0000000A.00000002.1785242688.000000000344E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	344E000
Size:	8192

Details

Name:	00000000.00000003.1679664044.00000000010F9000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	10F9000
Size:	12288

Details

Name:	00000008.00000002.1879403339.00007FFD99E50000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99E50000
Size:	65536

Details

Name:	00000007.00000003.1700285938.00000162101AA000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	162101AA000
Size:	4096

Details

Name:	0000000A.00000003.1758054717.00000000019D1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	19D1000
Size:	90112

Details

Name:	0000000D.00000002.1820444147.0000000000520000.00000004.00000020.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	520000
Size:	16384

Details

Name:	00000002.00000002.1686431746.0000000005E9E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5E9E000
Size:	8192

Details

Name:	0000000C.00000002.1821767089.0000000004B20000.00000040.00001000.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4B20000
Size:	4096

Details

Name:	00000005.00000002.1725789384.00000000070EA000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	70EA000
Size:	24576

Details

Name:	00000008.00000002.1863689739.0000015D130B2000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	15D130B2000
Size:	1282048

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	0000000D.00000002.1820971182.0000000000A8E000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	A8E000
Size:	106496

Details

Name:	00000005.00000002.1725935270.000000000729E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	729E000
Size:	8192

Details

Name:	00000002.00000002.1685708689.00000000033B0000.00000004.00000020.00040000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	33B0000
Size:	4096

Details

Name:	00000007.00000002.1703169429.0000015A0E080000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0E080000
Size:	8192

Details

Name:	00000011.00000002.4128932574.0000000000AC1000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	AC1000
Size:	45056

Details

Name:	0000000A.00000003.1729928414.00000000051D0000.00000004.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page read and write
Base address:	51D0000
Size:	53248

Details

Name:	0000000A.00000002.1787529299.0000000006E6F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6E6F000
Size:	4096

Details

Name:	0000000D.00000002.1824080982.0000000004B40000.00000040.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4B40000
Size:	4096

Details

Name:	00000000.00000003.1675395239.0000000001073000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1073000
Size:	45056

Details

Name:	00000002.00000002.1686347407.0000000005C1B000.00000004.00000010.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5C1B000
Size:	20480

Details

Name:	00000011.00000002.4133559766.000000000584E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	584E000
Size:	8192

Details

Name:	0000000D.00000002.1823953338.0000000004AE0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4AE0000
Size:	4096

Details

Name:	00000011.00000000.2207267481.00000000007B0000.00000002.00000001.01000000.0000000F.sdmp
TargetID:	17
Dumpstage:	process new
Regiontype:	unkown
Protect:	page readonly
Base address:	7B0000
Size:	4096

Details

Name:	0000000A.00000003.1742137572.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000005.00000002.1728409794.000000000882E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	882E000
Size:	8192

Details

Name:	00000007.00000003.1699265268.0000015A0DF03000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF03000
Size:	40960

Details

Name:	00000002.00000003.1683114628.00000000069F1000.00000004.00000800.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	69F1000
Size:	20480

Details

Name:	0000000B.00000002.1846040866.000000000393E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	393E000
Size:	8192

Details

Name:	00000007.00000003.1702064710.0000015A0DF40000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF40000
Size:	65536

Details

Name:	00000000.00000003.1675232752.0000000001081000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1081000
Size:	53248

Details

Name:	0000000C.00000002.1820041506.000000000276F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	276F000
Size:	4096

Details

Name:	0000000C.00000002.1820852165.000000000398F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	398F000
Size:	4096

Details

Name:	00000008.00000002.1877091363.00007FFD99C12000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7FFD99C12000
Size:	4096

Details

Name:	00000002.00000003.1682905060.0000000006A94000.00000004.00000800.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	6A94000
Size:	4096

Details

Name:	00000011.00000002.4133111299.0000000005190000.00000040.00001000.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5190000
Size:	4096

Details

Name:	00000011.00000002.4131626838.000000000371F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	371F000
Size:	4096

Details

Name:	00000002.00000003.1685547025.00000000036F6000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36F6000
Size:	24576

Details

Name:	00000011.00000002.4132321648.000000000415E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	415E000
Size:	8192

Details

Name:	00000005.00000002.1727569381.0000000007820000.00000004.00000020.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	7820000
Size:	36864

Details

Name:	00000005.00000002.1726774604.0000000007620000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	7620000
Size:	32768

Details

Name:	0000000A.00000003.1741293277.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000D.00000002.1823238796.000000000347E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	347E000
Size:	8192

Details

Name:	00000000.00000003.1678233590.00000000011BD000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	11BD000
Size:	8192

Signature Hits	Behavior Group	Mitre Attack
Sample file is different than original file name gathered from version info	System Summary

Details

Name:	0000000A.00000003.1756332355.00000000019D1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	19D1000
Size:	90112

Details

Name:	00000007.00000003.1701015785.0000015A0DE8B000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DE8B000
Size:	8192

Details

Name:	0000000A.00000002.1787109890.00000000051CF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	51CF000
Size:	4096

Details

Name:	00000005.00000002.1725709024.0000000006FEB000.00000004.00000010.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6FEB000
Size:	20480

Details

Name:	00000011.00000003.2244812376.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000011.00000003.2222914009.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000002.00000003.1682132318.00000000036FD000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	36FD000
Size:	126976

Details

Name:	0000000A.00000003.1743570378.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000C.00000002.1819924057.0000000000D7F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	D7F000
Size:	4096

Details

Name:	00000002.00000002.1686568754.00000000068E0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	68E0000
Size:	4096

Details

Name:	00000005.00000002.1719786501.00000000030A5000.00000040.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page execute and read and write
Base address:	30A5000
Size:	45056

Details

Name:	0000000A.00000003.1747609957.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000A.00000002.1787358759.0000000005880000.00000040.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5880000
Size:	4096

Details

Name:	00000000.00000003.1678120784.0000000001178000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	1178000
Size:	61440

Details

Name:	00000007.00000003.1698071230.0000015A0DF72000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DF72000
Size:	8192

Details

Name:	0000000A.00000003.1737534399.0000000005800000.00000040.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	5800000
Size:	8192

Details

Name:	00000005.00000002.1720474826.000000000510B000.00000004.00000800.00020000.00000000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	510B000
Size:	1511424

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	0000000B.00000002.1843813884.00000000010CB000.00000040.00000001.01000000.0000000B.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	10CB000
Size:	913408

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery

Details

Name:	00000008.00000002.1826977668.0000015D02B20000.00000004.00000800.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	15D02B20000
Size:	65536

Details

Name:	0000000B.00000002.1845705934.00000000033FF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	33FF000
Size:	4096

Details

Name:	0000000C.00000002.1820472636.000000000348F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	348F000
Size:	4096

Details

Name:	0000000A.00000002.1787393130.00000000058A0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	58A0000
Size:	4096

Details

Name:	00000011.00000002.4131394563.00000000034DE000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	34DE000
Size:	8192

Details

Name:	0000000A.00000003.1741496937.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000B.00000002.1843619722.0000000000ECF000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	ECF000
Size:	4096

Details

Name:	00000008.00000002.1875609957.0000015D1B44B000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D1B44B000
Size:	69632

Details

Name:	00000008.00000002.1826213992.0000015D011B0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D011B0000
Size:	126976

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000008.00000002.1826954915.0000015D02B10000.00000002.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page readonly
Base address:	15D02B10000
Size:	4096

Details

Name:	00000000.00000003.1676202927.00000000010A0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	10A0000
Size:	4096

Details

Name:	00000007.00000002.1702591965.0000015A0DE60000.00000004.00000020.00040000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DE60000
Size:	4096

Details

Name:	00000011.00000002.4128932574.000000000081B000.00000040.00000001.01000000.0000000F.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	81B000
Size:	1626112

Details

Name:	00000000.00000002.1682651585.000000000059C000.00000002.00000001.01000000.00000003.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page readonly
Base address:	59C000
Size:	151552

Details

Name:	0000000B.00000002.1845828450.000000000357E000.00000004.00000010.00020000.00000000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	357E000
Size:	8192

Details

Name:	00000000.00000002.1682651585.00000000005C2000.00000002.00000001.01000000.00000003.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page readonly
Base address:	5C2000
Size:	40960

Details

Name:	0000000A.00000003.1747200431.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000008.00000002.1826321338.0000015D011F0000.00000004.00000020.00020000.00000000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15D011F0000
Size:	4096

Details

Name:	0000000C.00000002.1820112487.000000000298F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	298F000
Size:	4096

Details

Name:	0000000A.00000003.1741441046.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	00000011.00000002.4131211113.000000000311F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	311F000
Size:	4096

Details

Name:	00000011.00000003.2227115428.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Details

Name:	00000002.00000003.1683114628.00000000069EE000.00000004.00000800.00020000.00000000.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	trusted library allocation
Protect:	page read and write
Base address:	69EE000
Size:	4096

Details

Name:	0000000A.00000003.1740798087.00000000051E1000.00000004.00000020.00020000.00000000.sdmp
TargetID:	10
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	51E1000
Size:	4096

Details

Name:	0000000D.00000002.1823975671.0000000004AF0000.00000040.00001000.00020000.00000000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	direct allocation
Protect:	page execute and read and write
Base address:	4AF0000
Size:	4096

Details

Name:	00000000.00000002.1684287153.000000000120C000.00000004.00000020.00020000.00000000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	120C000
Size:	12288

Details

Name:	00000011.00000002.4132296089.000000000411F000.00000004.00000010.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	411F000
Size:	4096

Details

Name:	00000007.00000002.1702617984.0000015A0DE80000.00000004.00000020.00020000.00000000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap
Protect:	page read and write
Base address:	15A0DE80000
Size:	16384

Details

Name:	00000011.00000003.2222949053.0000000004B21000.00000004.00000020.00020000.00000000.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	heap
Protect:	page read and write
Base address:	4B21000
Size:	4096

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

IOC Report
IGUZ6ZXJA4.exe

Files

Processes

URLs

IPs

Registry

Memdumps

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

IOC ReportIGUZ6ZXJA4.exe

Files

Processes

URLs

IPs

Registry

Memdumps

IOC Report
IGUZ6ZXJA4.exe