|
273F000
|
trusted library allocation
|
page read and write
|
 |
|
|
| Name: |
00000001.00000002.3904208641.000000000273F000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
273F000
|
| Size: |
1953792
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Malicious sample detected (through community Yara rule) |
System Summary |
|
| Yara detected Njrat |
AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality |
|
| Yara signature match |
System Summary |
|
|
|
2791000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1788900721.0000000002791000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2791000
|
| Size: |
5652480
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Malicious sample detected (through community Yara rule) |
System Summary |
|
| Yara detected Njrat |
AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality |
|
| Yara signature match |
System Summary |
|
|
|
2771000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1522294750.0000000002771000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2771000
|
| Size: |
5873664
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Malicious sample detected (through community Yara rule) |
System Summary |
|
| Yara detected Njrat |
AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality |
|
| Yara signature match |
System Summary |
|
|
|
26CF000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1996580940.00000000026CF000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
26CF000
|
| Size: |
2854912
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Malicious sample detected (through community Yara rule) |
System Summary |
|
| Yara detected Njrat |
AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality |
|
| Yara signature match |
System Summary |
|
| May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory) |
Malware Analysis System Evasion |
Security Software Discovery
|
|
|
263F000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1893858416.000000000263F000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
263F000
|
| Size: |
1667072
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Malicious sample detected (through community Yara rule) |
System Summary |
|
| Yara detected Njrat |
AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality |
|
| Yara signature match |
System Summary |
|
|
|
55CE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1829654438.00000000055CE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
55CE000
|
| Size: |
8192
|
|
|
9D3E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3922667819.0000000009D3E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
9D3E000
|
| Size: |
8192
|
|
|
B93E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3925190493.000000000B93E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
B93E000
|
| Size: |
8192
|
|
|
14679000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.0000000014679000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14679000
|
| Size: |
167936
|
|
|
36B3000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1596683441.00000000036B3000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36B3000
|
| Size: |
8192
|
|
|
508F000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2024101551.000000000508F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
508F000
|
| Size: |
4096
|
|
|
760000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3902393782.0000000000760000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
760000
|
| Size: |
32768
|
|
|
4E0E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1941907030.0000000004E0E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4E0E000
|
| Size: |
8192
|
|
|
368B000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1582929324.000000000368B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
368B000
|
| Size: |
16384
|
|
|
600000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1516362600.0000000000600000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
600000
|
| Size: |
16384
|
|
|
F54F000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F54F000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F54F000
|
| Size: |
167936
|
|
|
692000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000001.00000002.3901921629.0000000000692000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
692000
|
| Size: |
28672
|
|
|
773D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3918725155.000000000773D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
773D000
|
| Size: |
12288
|
|
|
3580000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603494342.0000000003580000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3580000
|
| Size: |
4096
|
|
|
580F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1604234375.000000000580F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
580F000
|
| Size: |
4096
|
|
|
4F4E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1811852987.0000000004F4E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4F4E000
|
| Size: |
8192
|
|
|
7C0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1888473990.00000000007C0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
7C0000
|
| Size: |
4096
|
|
|
4F8E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1947542285.0000000004F8E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4F8E000
|
| Size: |
8192
|
|
|
485F000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2020028280.000000000485F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
485F000
|
| Size: |
4096
|
|
|
9ABE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3922399370.0000000009ABE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
9ABE000
|
| Size: |
8192
|
|
|
5234000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3914626533.0000000005234000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5234000
|
| Size: |
303104
|
|
|
783E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3918809371.000000000783E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
783E000
|
| Size: |
8192
|
|
|
12BDE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3954619384.0000000012BDE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
12BDE000
|
| Size: |
8192
|
|
|
913E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3921409051.000000000913E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
913E000
|
| Size: |
8192
|
|
|
610000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3901487398.0000000000610000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
610000
|
| Size: |
4096
|
|
|
767000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1517110868.0000000000767000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
767000
|
| Size: |
8192
|
|
|
89FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3920792293.00000000089FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
89FE000
|
| Size: |
8192
|
|
|
5B7F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1572120657.0000000005B7F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5B7F000
|
| Size: |
4096
|
|
|
111AB000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.00000000111AB000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
111AB000
|
| Size: |
40960
|
|
|
DB4E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930031717.000000000DB4E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
DB4E000
|
| Size: |
8192
|
|
|
3BDD000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1542654652.0000000003BDD000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3BDD000
|
| Size: |
135168
|
|
|
B7F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1785644385.0000000000B7F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
B7F000
|
| Size: |
4096
|
|
|
F22D000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F22D000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F22D000
|
| Size: |
167936
|
|
|
5520000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1570100824.0000000005520000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5520000
|
| Size: |
4096
|
|
|
550F000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2025257791.000000000550F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
550F000
|
| Size: |
4096
|
|
|
28453000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000028453000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
28453000
|
| Size: |
167936
|
|
|
630000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1777986642.0000000000630000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
630000
|
| Size: |
8192
|
|
|
832000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000007.00000002.1889272438.0000000000832000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
832000
|
| Size: |
4096
|
|
|
1521E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3966101214.000000001521E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1521E000
|
| Size: |
8192
|
|
|
F780000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F780000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F780000
|
| Size: |
167936
|
|
|
196000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1510948915.0000000000196000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
196000
|
| Size: |
8192
|
|
|
F152000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F152000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F152000
|
| Size: |
167936
|
|
|
762000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1517110868.0000000000762000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
762000
|
| Size: |
16384
|
|
|
14449000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.0000000014449000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14449000
|
| Size: |
167936
|
|
|
863E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3920405258.000000000863E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
863E000
|
| Size: |
8192
|
|
|
5ADD000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1604490945.0000000005ADD000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5ADD000
|
| Size: |
4096
|
|
|
199000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1981575229.0000000000199000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
199000
|
| Size: |
28672
|
|
|
F5EA000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F5EA000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F5EA000
|
| Size: |
167936
|
|
|
7FFE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3919694553.0000000007FFE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
7FFE000
|
| Size: |
8192
|
|
|
10F01000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.0000000010F01000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
10F01000
|
| Size: |
167936
|
|
|
93C0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3921662329.00000000093C0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
93C0000
|
| Size: |
65536
|
|
|
37F6000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2008184654.00000000037F6000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
37F6000
|
| Size: |
180224
|
|
|
5AC1000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1596586550.0000000005AC1000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5AC1000
|
| Size: |
4096
|
|
|
7B0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1888297126.00000000007B0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
7B0000
|
| Size: |
16384
|
|
|
8E4000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1892150851.00000000008E4000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
8E4000
|
| Size: |
32768
|
|
|
27A11000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000027A11000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
27A11000
|
| Size: |
167936
|
|
|
36B9000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1596683441.00000000036B9000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36B9000
|
| Size: |
16384
|
|
|
A64000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3903597560.0000000000A64000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
A64000
|
| Size: |
45056
|
|
|
4F8E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1811955422.0000000004F8E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4F8E000
|
| Size: |
8192
|
|
|
10C4D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945602901.0000000010C4D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
10C4D000
|
| Size: |
12288
|
|
|
1205D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3952855189.000000001205D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1205D000
|
| Size: |
12288
|
|
|
C18D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3927532336.000000000C18D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
C18D000
|
| Size: |
12288
|
|
|
737E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3918315556.000000000737E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
737E000
|
| Size: |
8192
|
|
|
36A0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1914521897.00000000036A0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
36A0000
|
| Size: |
188416
|
|
|
4E5E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1566633243.0000000004E5E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4E5E000
|
| Size: |
8192
|
|
|
36C6000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1586172455.00000000036C6000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36C6000
|
| Size: |
12288
|
|
|
B43E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3924715159.000000000B43E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
B43E000
|
| Size: |
8192
|
|
|
196000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1881213252.0000000000196000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
196000
|
| Size: |
8192
|
|
|
F705000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F705000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F705000
|
| Size: |
167936
|
|
|
3634000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1914521897.0000000003634000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3634000
|
| Size: |
4096
|
|
|
11472000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.0000000011472000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
11472000
|
| Size: |
167936
|
|
|
47AE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3913120537.00000000047AE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
47AE000
|
| Size: |
8192
|
|
|
4A2F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1810346807.0000000004A2F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4A2F000
|
| Size: |
4096
|
|
|
BADD000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3925372476.000000000BADD000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
BADD000
|
| Size: |
4096
|
|
|
1F0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1882146354.00000000001F0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1F0000
|
| Size: |
16384
|
|
|
900000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1892845638.0000000000900000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
900000
|
| Size: |
16384
|
|
|
3475000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603413251.0000000003475000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3475000
|
| Size: |
12288
|
|
|
3B53000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1542654652.0000000003B53000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3B53000
|
| Size: |
192512
|
|
|
F3FC000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F3FC000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F3FC000
|
| Size: |
167936
|
|
|
3631000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1601942399.0000000003631000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3631000
|
| Size: |
57344
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory) |
Malware Analysis System Evasion |
Security Software Discovery
|
|
|
5AD9000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1598027225.0000000005AD9000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5AD9000
|
| Size: |
20480
|
|
|
C10000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1786275699.0000000000C10000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
C10000
|
| Size: |
16384
|
|
|
66FD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3917376898.00000000066FD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
66FD000
|
| Size: |
12288
|
|
|
3801000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003801000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3801000
|
| Size: |
188416
|
|
|
683D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3917467634.000000000683D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
683D000
|
| Size: |
12288
|
|
|
5ADA000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1589744038.0000000005ADA000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5ADA000
|
| Size: |
12288
|
|
|
41DC000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.00000000041DC000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
41DC000
|
| Size: |
167936
|
|
|
84BE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3920242392.00000000084BE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
84BE000
|
| Size: |
8192
|
|
|
4E2E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3914012108.0000000004E2E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4E2E000
|
| Size: |
8192
|
|
|
14734000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.0000000014734000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14734000
|
| Size: |
167936
|
|
|
11209000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.0000000011209000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
11209000
|
| Size: |
167936
|
|
|
3710000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1597887443.0000000003710000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3710000
|
| Size: |
32768
|
|
|
5AD8000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1596586550.0000000005AD8000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5AD8000
|
| Size: |
8192
|
|
|
927E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3921523790.000000000927E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
927E000
|
| Size: |
8192
|
|
|
C20000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000006.00000002.1786819153.0000000000C20000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
C20000
|
| Size: |
65536
|
|
|
FB21000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000FB21000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
FB21000
|
| Size: |
167936
|
|
|
3B29000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003B29000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3B29000
|
| Size: |
172032
|
|
|
1335E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3955356303.000000001335E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1335E000
|
| Size: |
8192
|
|
|
3710000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1598581798.0000000003710000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3710000
|
| Size: |
24576
|
|
|
667000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000006.00000002.1781237686.0000000000667000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
667000
|
| Size: |
4096
|
|
|
BC8E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3926712261.000000000BC8E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
BC8E000
|
| Size: |
8192
|
|
|
480000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3901331969.0000000000480000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
480000
|
| Size: |
4096
|
|
|
242F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1521840290.000000000242F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
242F000
|
| Size: |
4096
|
|
|
286A0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.00000000286A0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
286A0000
|
| Size: |
49152
|
|
|
F6C8000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F6C8000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F6C8000
|
| Size: |
167936
|
|
|
4B8D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1926757532.0000000004B8D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4B8D000
|
| Size: |
12288
|
|
|
123E0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3953269819.00000000123E0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
123E0000
|
| Size: |
233472
|
|
|
C64E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3928072041.000000000C64E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
C64E000
|
| Size: |
8192
|
|
|
3665000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1585420449.0000000003665000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3665000
|
| Size: |
4096
|
|
|
7BFE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3919150706.0000000007BFE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
7BFE000
|
| Size: |
8192
|
|
|
14330000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.0000000014330000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14330000
|
| Size: |
167936
|
|
|
D8CE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3929817777.000000000D8CE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
D8CE000
|
| Size: |
8192
|
|
|
3657000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603649085.0000000003657000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3657000
|
| Size: |
81920
|
|
|
367A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1596622346.000000000367A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
367A000
|
| Size: |
77824
|
|
|
36CD000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1597887443.00000000036CD000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36CD000
|
| Size: |
155648
|
|
|
B50000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1521216014.0000000000B50000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B50000
|
| Size: |
16384
|
|
|
49EF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1926320610.00000000049EF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
49EF000
|
| Size: |
4096
|
|
|
997000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1519783862.0000000000997000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
997000
|
| Size: |
4096
|
|
|
36C2000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1582825410.00000000036C2000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36C2000
|
| Size: |
16384
|
|
|
93BE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3921618960.00000000093BE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
93BE000
|
| Size: |
8192
|
|
|
1711E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3966621996.000000001711E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1711E000
|
| Size: |
8192
|
|
|
C78E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3928174230.000000000C78E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
C78E000
|
| Size: |
8192
|
|
|
27FA1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000027FA1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
27FA1000
|
| Size: |
167936
|
|
|
1201D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3952793441.000000001201D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1201D000
|
| Size: |
12288
|
|
|
2731000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3904208641.0000000002731000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2731000
|
| Size: |
45056
|
|
|
5AD8000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1597583312.0000000005AD8000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5AD8000
|
| Size: |
24576
|
|
|
BAD7000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3925372476.000000000BAD7000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
BAD7000
|
| Size: |
4096
|
|
|
1A81E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3966971920.000000001A81E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1A81E000
|
| Size: |
8192
|
|
|
3863000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003863000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3863000
|
| Size: |
36864
|
|
|
27EC6000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000027EC6000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
27EC6000
|
| Size: |
167936
|
|
|
A90000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3903685779.0000000000A90000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
A90000
|
| Size: |
65536
|
|
|
9A000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3901136736.000000000009A000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
9A000
|
| Size: |
24576
|
|
|
983E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3922150740.000000000983E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
983E000
|
| Size: |
8192
|
|
|
1511E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3966031025.000000001511E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1511E000
|
| Size: |
8192
|
|
|
1721D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3966689522.000000001721D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1721D000
|
| Size: |
12288
|
|
|
36CA000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1601686128.00000000036CA000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36CA000
|
| Size: |
8192
|
|
|
C68E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3928106409.000000000C68E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
C68E000
|
| Size: |
8192
|
|
|
4B2D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1810504737.0000000004B2D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4B2D000
|
| Size: |
12288
|
|
|
2CF9000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1788900721.0000000002CF9000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2CF9000
|
| Size: |
315392
|
|
|
A0FD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3923057150.000000000A0FD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A0FD000
|
| Size: |
12288
|
|
|
EF04000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000EF04000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
EF04000
|
| Size: |
167936
|
|
|
657000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3901522232.0000000000657000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
657000
|
| Size: |
28672
|
|
|
632000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000006.00000002.1778399373.0000000000632000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
632000
|
| Size: |
16384
|
|
|
36CC000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1598581798.00000000036CC000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36CC000
|
| Size: |
4096
|
|
|
3710000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1597619609.0000000003710000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3710000
|
| Size: |
61440
|
|
|
36C6000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603906815.00000000036C6000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36C6000
|
| Size: |
12288
|
|
|
5CFE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3916625098.0000000005CFE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5CFE000
|
| Size: |
8192
|
|
|
560000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3901365219.0000000000560000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
560000
|
| Size: |
8192
|
|
|
76E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3902393782.000000000076E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
76E000
|
| Size: |
409600
|
|
|
196000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1768517884.0000000000196000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
196000
|
| Size: |
8192
|
|
|
36CE000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1601686128.00000000036CE000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36CE000
|
| Size: |
151552
|
|
|
53CF000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2024623885.00000000053CF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
53CF000
|
| Size: |
4096
|
|
|
238F2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967085104.00000000238F2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
238F2000
|
| Size: |
12288
|
|
|
36AE000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1581907086.00000000036AE000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36AE000
|
| Size: |
126976
|
|
|
28853000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000028853000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
28853000
|
| Size: |
167936
|
|
|
9DE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1520045309.00000000009DE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
9DE000
|
| Size: |
8192
|
|
|
F0F4000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F0F4000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F0F4000
|
| Size: |
36864
|
|
|
C28D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3927597341.000000000C28D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
C28D000
|
| Size: |
12288
|
|
|
4820000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1918853116.0000000004820000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4820000
|
| Size: |
16384
|
|
|
95E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3903511308.000000000095E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
95E000
|
| Size: |
8192
|
|
|
237F000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1996484764.000000000237F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
237F000
|
| Size: |
4096
|
|
|
C15000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1786275699.0000000000C15000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
C15000
|
| Size: |
45056
|
|
|
27E6F000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000027E6F000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
27E6F000
|
| Size: |
167936
|
|
|
4E0E000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2023262286.0000000004E0E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4E0E000
|
| Size: |
8192
|
|
|
723D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3918227481.000000000723D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
723D000
|
| Size: |
12288
|
|
|
3A11000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003A11000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3A11000
|
| Size: |
167936
|
|
|
BA95000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3925372476.000000000BA95000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
BA95000
|
| Size: |
249856
|
|
|
E30000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1788374741.0000000000E30000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
E30000
|
| Size: |
16384
|
|
|
A5F000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1995131466.0000000000A5F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A5F000
|
| Size: |
4096
|
|
|
3B0E000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1542654652.0000000003B0E000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3B0E000
|
| Size: |
192512
|
|
|
2FCB000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1602782408.0000000002FCB000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
2FCB000
|
| Size: |
20480
|
|
|
F853000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F853000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F853000
|
| Size: |
172032
|
|
|
4BD0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1935926113.0000000004BD0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4BD0000
|
| Size: |
4096
|
|
|
480F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1918491822.000000000480F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
480F000
|
| Size: |
4096
|
|
|
36CE000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1596775851.00000000036CE000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36CE000
|
| Size: |
12288
|
|
|
58E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1884071412.000000000058E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
58E000
|
| Size: |
61440
|
|
|
CC4E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3928611192.000000000CC4E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
CC4E000
|
| Size: |
8192
|
|
|
3693000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1582929324.0000000003693000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3693000
|
| Size: |
4096
|
|
|
803000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3902393782.0000000000803000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
803000
|
| Size: |
53248
|
|
|
554E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3915798407.000000000554E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
554E000
|
| Size: |
8192
|
|
|
AD0000
|
heap
|
page execute and read and write
|
|
|
|
| Name: |
0000000A.00000002.1996232034.0000000000AD0000.00000040.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page execute and read and write
|
| Base address: |
AD0000
|
| Size: |
4096
|
|
|
4BE2000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1555385963.0000000004BE2000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4BE2000
|
| Size: |
274432
|
|
|
5DE000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1982131417.00000000005DE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5DE000
|
| Size: |
8192
|
|
|
36B9000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1599041455.00000000036B9000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36B9000
|
| Size: |
16384
|
|
|
3677000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1581907086.0000000003677000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3677000
|
| Size: |
98304
|
|
|
4F4E000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2023700100.0000000004F4E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4F4E000
|
| Size: |
8192
|
|
|
3665000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1586574361.0000000003665000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3665000
|
| Size: |
20480
|
|
|
65A000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000006.00000002.1780861911.000000000065A000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
65A000
|
| Size: |
4096
|
|
|
657E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3917256653.000000000657E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
657E000
|
| Size: |
8192
|
|
|
FBDC000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000FBDC000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
FBDC000
|
| Size: |
167936
|
|
|
F18F000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F18F000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F18F000
|
| Size: |
172032
|
|
|
280D9000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.00000000280D9000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
280D9000
|
| Size: |
167936
|
|
|
368B000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1586144222.000000000368B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
368B000
|
| Size: |
8192
|
|
|
670000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3901728499.0000000000670000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
670000
|
| Size: |
8192
|
|
|
693E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3917537527.000000000693E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
693E000
|
| Size: |
8192
|
|
|
A77E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3923718516.000000000A77E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A77E000
|
| Size: |
8192
|
|
|
40E4000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.00000000040E4000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
40E4000
|
| Size: |
167936
|
|
|
D78E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3929702910.000000000D78E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
D78E000
|
| Size: |
8192
|
|
|
371E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1604020948.000000000371E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
371E000
|
| Size: |
4096
|
|
|
3930000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1804275630.0000000003930000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3930000
|
| Size: |
188416
|
|
|
4970000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1554019486.0000000004970000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4970000
|
| Size: |
4096
|
|
|
298B000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1996580940.000000000298B000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
298B000
|
| Size: |
1052672
|
|
|
5E1F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1572872880.0000000005E1F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5E1F000
|
| Size: |
4096
|
|
|
5D1E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1572706859.0000000005D1E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5D1E000
|
| Size: |
8192
|
|
|
371E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1598047218.000000000371E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
371E000
|
| Size: |
4096
|
|
|
534E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1954439254.000000000534E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
534E000
|
| Size: |
8192
|
|
|
50DE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1568462437.00000000050DE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
50DE000
|
| Size: |
8192
|
|
|
770000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1517586042.0000000000770000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
770000
|
| Size: |
36864
|
|
|
847000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000007.00000002.1890723486.0000000000847000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
847000
|
| Size: |
8192
|
|
|
560000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1515103099.0000000000560000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
560000
|
| Size: |
8192
|
|
|
4BBD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3913442019.0000000004BBD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4BBD000
|
| Size: |
12288
|
|
|
4CE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1771378910.00000000004CE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4CE000
|
| Size: |
8192
|
|
|
3BC4000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003BC4000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3BC4000
|
| Size: |
167936
|
|
|
397E000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2008184654.000000000397E000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
397E000
|
| Size: |
184320
|
|
|
665000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3901625861.0000000000665000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
665000
|
| Size: |
16384
|
|
|
11623000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.0000000011623000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
11623000
|
| Size: |
172032
|
|
|
DA4D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3929966251.000000000DA4D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
DA4D000
|
| Size: |
12288
|
|
|
A9FD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3923919568.000000000A9FD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A9FD000
|
| Size: |
12288
|
|
|
51DE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1568856572.00000000051DE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
51DE000
|
| Size: |
8192
|
|
|
367A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1586481325.000000000367A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
367A000
|
| Size: |
356352
|
|
|
282E0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.00000000282E0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
282E0000
|
| Size: |
167936
|
|
|
3673000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1597619609.0000000003673000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3673000
|
| Size: |
524288
|
|
|
76A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3902393782.000000000076A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
76A000
|
| Size: |
8192
|
|
|
9B000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1510362989.000000000009B000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
9B000
|
| Size: |
20480
|
|
|
AEFD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3924317543.000000000AEFD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
AEFD000
|
| Size: |
12288
|
|
|
9FBD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3922941589.0000000009FBD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
9FBD000
|
| Size: |
12288
|
|
|
88B000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000007.00000002.1891811004.000000000088B000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
88B000
|
| Size: |
4096
|
|
|
71FD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3918196522.00000000071FD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
71FD000
|
| Size: |
12288
|
|
|
49EF000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2021108359.00000000049EF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
49EF000
|
| Size: |
4096
|
|
|
27D77000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000027D77000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
27D77000
|
| Size: |
167936
|
|
|
4D0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1775661779.00000000004D0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4D0000
|
| Size: |
4096
|
|
|
F4B4000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F4B4000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F4B4000
|
| Size: |
172032
|
|
|
A78000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1520716105.0000000000A78000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
A78000
|
| Size: |
8192
|
|
|
7D9000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3902393782.00000000007D9000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
7D9000
|
| Size: |
163840
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory) |
Malware Analysis System Evasion |
Security Software Discovery
|
|
|
4C0E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1810754969.0000000004C0E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4C0E000
|
| Size: |
8192
|
|
|
14486000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.0000000014486000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14486000
|
| Size: |
167936
|
|
|
1000D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3944488067.000000001000D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1000D000
|
| Size: |
12288
|
|
|
154DE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3966385325.00000000154DE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
154DE000
|
| Size: |
8192
|
|
|
CA0E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3928414307.000000000CA0E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
CA0E000
|
| Size: |
8192
|
|
|
527F000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3914626533.000000000527F000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
527F000
|
| Size: |
126976
|
|
|
3994000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1804275630.0000000003994000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3994000
|
| Size: |
192512
|
|
|
5A0E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3916227364.0000000005A0E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5A0E000
|
| Size: |
8192
|
|
|
366E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1581779964.000000000366E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
366E000
|
| Size: |
135168
|
|
|
637000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000A.00000002.1982679297.0000000000637000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
637000
|
| Size: |
8192
|
|
|
4BC0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3913481178.0000000004BC0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4BC0000
|
| Size: |
65536
|
|
|
1484C000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.000000001484C000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1484C000
|
| Size: |
167936
|
|
|
1133F000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.000000001133F000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1133F000
|
| Size: |
167936
|
|
|
4BD0000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2022426801.0000000004BD0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4BD0000
|
| Size: |
4096
|
|
|
F039000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F039000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F039000
|
| Size: |
172032
|
|
|
D64E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3929596326.000000000D64E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
D64E000
|
| Size: |
8192
|
|
|
3620000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603567276.0000000003620000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3620000
|
| Size: |
69632
|
|
|
4A7F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1555068810.0000000004A7F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4A7F000
|
| Size: |
4096
|
|
|
A60000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1520587144.0000000000A60000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
A60000
|
| Size: |
20480
|
|
|
FB5F000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000FB5F000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
FB5F000
|
| Size: |
167936
|
|
|
6CFD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3917831225.0000000006CFD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
6CFD000
|
| Size: |
12288
|
|
|
7D3E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3919263481.0000000007D3E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
7D3E000
|
| Size: |
8192
|
|
|
4E4E000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2023482231.0000000004E4E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4E4E000
|
| Size: |
8192
|
|
|
14238000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.0000000014238000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14238000
|
| Size: |
172032
|
|
|
2631000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1893858416.0000000002631000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2631000
|
| Size: |
45056
|
|
|
70E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3902323462.000000000070E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
70E000
|
| Size: |
8192
|
|
|
61FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3916984150.00000000061FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
61FE000
|
| Size: |
8192
|
|
|
11589000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.0000000011589000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
11589000
|
| Size: |
167936
|
|
|
5E9000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1884071412.00000000005E9000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5E9000
|
| Size: |
8192
|
|
|
F341000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F341000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F341000
|
| Size: |
172032
|
|
|
36C5000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1599270731.00000000036C5000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36C5000
|
| Size: |
28672
|
|
|
637000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000006.00000002.1778399373.0000000000637000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
637000
|
| Size: |
8192
|
|
|
594E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1604410667.000000000594E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
594E000
|
| Size: |
8192
|
|
|
797000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1517586042.0000000000797000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
797000
|
| Size: |
73728
|
|
|
FC19000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000FC19000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
FC19000
|
| Size: |
135168
|
|
|
BA50000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3925372476.000000000BA50000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
BA50000
|
| Size: |
73728
|
|
|
36B9000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1598173181.00000000036B9000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36B9000
|
| Size: |
16384
|
|
|
4F9E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1567696979.0000000004F9E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4F9E000
|
| Size: |
8192
|
|
|
8EFE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3921244096.0000000008EFE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
8EFE000
|
| Size: |
8192
|
|
|
4122000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000004122000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4122000
|
| Size: |
167936
|
|
|
AC7D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3924133730.000000000AC7D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
AC7D000
|
| Size: |
12288
|
|
|
3710000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1598080679.0000000003710000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3710000
|
| Size: |
24576
|
|
|
366B000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1583232752.000000000366B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
366B000
|
| Size: |
16384
|
|
|
22EF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1893606973.00000000022EF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
22EF000
|
| Size: |
4096
|
|
|
622000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000A.00000002.1982450991.0000000000622000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
622000
|
| Size: |
4096
|
|
|
480000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1514976405.0000000000480000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
480000
|
| Size: |
4096
|
|
|
570000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1884071412.0000000000570000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
570000
|
| Size: |
28672
|
|
|
4D2D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3913929230.0000000004D2D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4D2D000
|
| Size: |
12288
|
|
|
368D000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1597997166.000000000368D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
368D000
|
| Size: |
163840
|
|
|
75BD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3918515904.00000000075BD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
75BD000
|
| Size: |
12288
|
|
|
51F0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3914371229.00000000051F0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
51F0000
|
| Size: |
167936
|
|
|
28265000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000028265000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
28265000
|
| Size: |
172032
|
|
|
A30000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1784750577.0000000000A30000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
A30000
|
| Size: |
16384
|
|
|
368B000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1597760081.000000000368B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
368B000
|
| Size: |
425984
|
|
|
FFCF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3944450757.000000000FFCF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
FFCF000
|
| Size: |
4096
|
|
|
14121000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.0000000014121000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14121000
|
| Size: |
167936
|
|
|
27D7000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1893858416.00000000027D7000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
27D7000
|
| Size: |
2338816
|
|
|
13FDE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956767029.0000000013FDE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
13FDE000
|
| Size: |
8192
|
|
|
5AE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3901405508.00000000005AE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5AE000
|
| Size: |
8192
|
|
|
F8B1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F8B1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F8B1000
|
| Size: |
167936
|
|
|
5AC1000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1597583312.0000000005AC1000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5AC1000
|
| Size: |
61440
|
|
|
1415E000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.000000001415E000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1415E000
|
| Size: |
36864
|
|
|
13BDE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956299554.0000000013BDE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
13BDE000
|
| Size: |
8192
|
|
|
3792000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2008184654.0000000003792000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3792000
|
| Size: |
4096
|
|
|
2A13000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1893858416.0000000002A13000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2A13000
|
| Size: |
176128
|
|
|
548E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1825563258.000000000548E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
548E000
|
| Size: |
8192
|
|
|
4C4B000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1555385963.0000000004C4B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4C4B000
|
| Size: |
135168
|
|
|
6BB000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1983044496.00000000006BB000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6BB000
|
| Size: |
45056
|
|
|
6E7E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3917956599.0000000006E7E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
6E7E000
|
| Size: |
8192
|
|
|
5C8E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3916483668.0000000005C8E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5C8E000
|
| Size: |
8192
|
|
|
8EE000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1992956546.00000000008EE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
8EE000
|
| Size: |
8192
|
|
|
11111000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.0000000011111000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
11111000
|
| Size: |
167936
|
|
|
1137C000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.000000001137C000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1137C000
|
| Size: |
36864
|
|
|
1074E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945155972.000000001074E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1074E000
|
| Size: |
8192
|
|
|
36B8000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1596516045.00000000036B8000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36B8000
|
| Size: |
69632
|
|
|
27DB4000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000027DB4000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
27DB4000
|
| Size: |
172032
|
|
|
10ECD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945817342.0000000010ECD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
10ECD000
|
| Size: |
12288
|
|
|
3330000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603343947.0000000003330000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3330000
|
| Size: |
4096
|
|
|
BA63000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3925372476.000000000BA63000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
BA63000
|
| Size: |
40960
|
|
|
490000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1883804856.0000000000490000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
490000
|
| Size: |
4096
|
|
|
FA66000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000FA66000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
FA66000
|
| Size: |
172032
|
|
|
620000
|
heap
|
page execute and read and write
|
|
|
|
| Name: |
00000006.00000002.1777271128.0000000000620000.00000040.00000020.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page execute and read and write
|
| Base address: |
620000
|
| Size: |
4096
|
|
|
A5FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3923566271.000000000A5FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A5FE000
|
| Size: |
8192
|
|
|
3693000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1581907086.0000000003693000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3693000
|
| Size: |
4096
|
|
|
2FA11000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3982308709.000000002FA11000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2FA11000
|
| Size: |
6078464
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory) |
Malware Analysis System Evasion |
Security Software Discovery
|
|
|
8B3E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3920909807.0000000008B3E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
8B3E000
|
| Size: |
8192
|
|
|
4E4E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1811535958.0000000004E4E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4E4E000
|
| Size: |
8192
|
|
|
3A6E000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003A6E000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3A6E000
|
| Size: |
167936
|
|
|
3C62000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003C62000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3C62000
|
| Size: |
167936
|
|
|
7C3D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3919190418.0000000007C3D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
7C3D000
|
| Size: |
12288
|
|
|
658000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1983044496.0000000000658000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
658000
|
| Size: |
81920
|
|
|
366D000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1583828547.000000000366D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
366D000
|
| Size: |
8192
|
|
|
1A21E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3966804765.000000001A21E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1A21E000
|
| Size: |
8192
|
|
|
1399E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956053138.000000001399E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1399E000
|
| Size: |
8192
|
|
|
7D7D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3919309706.0000000007D7D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
7D7D000
|
| Size: |
12288
|
|
|
650000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3901522232.0000000000650000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
650000
|
| Size: |
20480
|
|
|
367A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1585420449.000000000367A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
367A000
|
| Size: |
229376
|
|
|
3731000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003731000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3731000
|
| Size: |
16384
|
|
|
9E7D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3922809808.0000000009E7D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
9E7D000
|
| Size: |
12288
|
|
|
4D0E000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2022788295.0000000004D0E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4D0E000
|
| Size: |
8192
|
|
|
28193000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000028193000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
28193000
|
| Size: |
167936
|
|
|
A40000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1520449678.0000000000A40000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
A40000
|
| Size: |
53248
|
|
|
36F0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1588755927.00000000036F0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36F0000
|
| Size: |
192512
|
|
|
488F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1809832874.000000000488F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
488F000
|
| Size: |
4096
|
|
|
286FE000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.00000000286FE000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
286FE000
|
| Size: |
172032
|
|
|
36B8000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1582909009.00000000036B8000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36B8000
|
| Size: |
20480
|
|
|
A23E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3923200087.000000000A23E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A23E000
|
| Size: |
8192
|
|
|
3714000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1601686128.0000000003714000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3714000
|
| Size: |
8192
|
|
|
13C1E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956362250.0000000013C1E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
13C1E000
|
| Size: |
8192
|
|
|
76FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3918683041.00000000076FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
76FE000
|
| Size: |
8192
|
|
|
910000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1993292280.0000000000910000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
910000
|
| Size: |
12288
|
|
|
51F0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1568960038.00000000051F0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
51F0000
|
| Size: |
135168
|
|
|
9CFE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3922605280.0000000009CFE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
9CFE000
|
| Size: |
8192
|
|
|
98A000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1519656752.000000000098A000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
98A000
|
| Size: |
4096
|
|
|
14560000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.0000000014560000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14560000
|
| Size: |
172032
|
|
|
887000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000007.00000002.1891658415.0000000000887000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
887000
|
| Size: |
4096
|
|
|
1F5000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1883426768.00000000001F5000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1F5000
|
| Size: |
4096
|
|
|
5AC2000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1590715285.0000000005AC2000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5AC2000
|
| Size: |
8192
|
|
|
36C4000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2008184654.00000000036C4000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
36C4000
|
| Size: |
4096
|
|
|
27ACB000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000027ACB000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
27ACB000
|
| Size: |
167936
|
|
|
6C7000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000001.00000002.3902255070.00000000006C7000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
6C7000
|
| Size: |
4096
|
|
|
282A3000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.00000000282A3000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
282A3000
|
| Size: |
167936
|
|
|
36B4000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1602033994.00000000036B4000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36B4000
|
| Size: |
4096
|
|
|
27EAF000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000027EAF000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
27EAF000
|
| Size: |
12288
|
|
|
4049000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000004049000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4049000
|
| Size: |
172032
|
|
|
1024E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3944689265.000000001024E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1024E000
|
| Size: |
8192
|
|
|
88E000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1992039701.000000000088E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
88E000
|
| Size: |
8192
|
|
|
834000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3902393782.0000000000834000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
834000
|
| Size: |
176128
|
|
|
3713000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1599243399.0000000003713000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3713000
|
| Size: |
12288
|
|
|
B57E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3924859921.000000000B57E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
B57E000
|
| Size: |
8192
|
|
|
14A1E000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.0000000014A1E000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14A1E000
|
| Size: |
172032
|
|
|
6C7000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1983044496.00000000006C7000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6C7000
|
| Size: |
4096
|
|
|
70F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1516611978.000000000070F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
70F000
|
| Size: |
4096
|
|
|
3666000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1583315136.0000000003666000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3666000
|
| Size: |
20480
|
|
|
578000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1884071412.0000000000578000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
578000
|
| Size: |
86016
|
|
|
104CE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3944922506.00000000104CE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
104CE000
|
| Size: |
8192
|
|
|
558F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1827033831.000000000558F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
558F000
|
| Size: |
4096
|
|
|
1417E000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.000000001417E000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1417E000
|
| Size: |
167936
|
|
|
D50E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3929495483.000000000D50E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
D50E000
|
| Size: |
8192
|
|
|
BC4D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3926634820.000000000BC4D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
BC4D000
|
| Size: |
12288
|
|
|
862000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000007.00000002.1891383019.0000000000862000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
862000
|
| Size: |
4096
|
|
|
62FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3917042570.00000000062FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
62FE000
|
| Size: |
8192
|
|
|
A5BE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3923509336.000000000A5BE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A5BE000
|
| Size: |
8192
|
|
|
FAA4000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000FAA4000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
FAA4000
|
| Size: |
167936
|
|
|
66BE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3917346449.00000000066BE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
66BE000
|
| Size: |
8192
|
|
|
3730000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2008184654.0000000003730000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3730000
|
| Size: |
184320
|
|
|
3774000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1542654652.0000000003774000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3774000
|
| Size: |
438272
|
|
|
196000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1981575229.0000000000196000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
196000
|
| Size: |
8192
|
|
|
EDEB000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000EDEB000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
EDEB000
|
| Size: |
167936
|
|
|
690000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3901849209.0000000000690000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
690000
|
| Size: |
8192
|
|
|
2801E000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.000000002801E000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2801E000
|
| Size: |
167936
|
|
|
36BA000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603829577.00000000036BA000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36BA000
|
| Size: |
12288
|
|
|
5A4F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1604432295.0000000005A4F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5A4F000
|
| Size: |
4096
|
|
|
36B6000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1598173181.00000000036B6000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36B6000
|
| Size: |
8192
|
|
|
4DBE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1565877520.0000000004DBE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4DBE000
|
| Size: |
8192
|
|
|
130DE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3955109082.00000000130DE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
130DE000
|
| Size: |
8192
|
|
|
5EE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1516112087.00000000005EE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5EE000
|
| Size: |
8192
|
|
|
6C9000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1983044496.00000000006C9000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6C9000
|
| Size: |
4096
|
|
|
708000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1782388678.0000000000708000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
708000
|
| Size: |
45056
|
|
|
B7FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3925082143.000000000B7FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
B7FE000
|
| Size: |
8192
|
|
|
3654000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1602007125.0000000003654000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3654000
|
| Size: |
94208
|
|
|
7EBE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3919455898.0000000007EBE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
7EBE000
|
| Size: |
8192
|
|
|
143CD000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.00000000143CD000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
143CD000
|
| Size: |
167936
|
|
|
42D4000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.00000000042D4000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
42D4000
|
| Size: |
172032
|
|
|
698000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1782388678.0000000000698000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
698000
|
| Size: |
86016
|
|
|
558F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1954493008.000000000558F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
558F000
|
| Size: |
4096
|
|
|
548E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1954474507.000000000548E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
548E000
|
| Size: |
8192
|
|
|
110D1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.00000000110D1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
110D1000
|
| Size: |
167936
|
|
|
369D000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1914521897.000000000369D000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
369D000
|
| Size: |
8192
|
|
|
544F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1954457987.000000000544F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
544F000
|
| Size: |
4096
|
|
|
4239000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000004239000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4239000
|
| Size: |
167936
|
|
|
1038E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3944822585.000000001038E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1038E000
|
| Size: |
8192
|
|
|
3450000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603390520.0000000003450000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3450000
|
| Size: |
8192
|
|
|
C40E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3927764546.000000000C40E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
C40E000
|
| Size: |
8192
|
|
|
C2CE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3927635900.000000000C2CE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
C2CE000
|
| Size: |
8192
|
|
|
60D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3901446990.000000000060D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
60D000
|
| Size: |
12288
|
|
|
417000
|
unkown
|
page execute read
|
|
|
|
| Name: |
00000000.00000002.1512512496.0000000000417000.00000020.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page execute read
|
| Base address: |
417000
|
| Size: |
4096
|
|
|
564E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3915936375.000000000564E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
564E000
|
| Size: |
8192
|
|
|
144E3000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.00000000144E3000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
144E3000
|
| Size: |
167936
|
|
|
21EE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1893435446.00000000021EE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
21EE000
|
| Size: |
8192
|
|
|
3641000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1601942399.0000000003641000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3641000
|
| Size: |
172032
|
|
|
3667000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1582266982.0000000003667000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3667000
|
| Size: |
4096
|
|
|
697D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3917575957.000000000697D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
697D000
|
| Size: |
12288
|
|
|
3716000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1598047218.0000000003716000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3716000
|
| Size: |
8192
|
|
|
D48000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1787887220.0000000000D48000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
D48000
|
| Size: |
8192
|
|
|
AB3D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3924033798.000000000AB3D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
AB3D000
|
| Size: |
12288
|
|
|
3959000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003959000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3959000
|
| Size: |
36864
|
|
|
5BBC000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1572238456.0000000005BBC000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5BBC000
|
| Size: |
16384
|
|
|
633D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3917082347.000000000633D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
633D000
|
| Size: |
12288
|
|
|
8C7E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3921038867.0000000008C7E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
8C7E000
|
| Size: |
8192
|
|
|
14791000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.0000000014791000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14791000
|
| Size: |
167936
|
|
|
1291E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3954294939.000000001291E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1291E000
|
| Size: |
8192
|
|
|
D90E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3929857373.000000000D90E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
D90E000
|
| Size: |
8192
|
|
|
199000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1881213252.0000000000199000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
199000
|
| Size: |
28672
|
|
|
10A0E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945414441.0000000010A0E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
10A0E000
|
| Size: |
8192
|
|
|
612000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000006.00000002.1776761796.0000000000612000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
612000
|
| Size: |
4096
|
|
|
B33E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3924632534.000000000B33E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
B33E000
|
| Size: |
8192
|
|
|
480000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1981793742.0000000000480000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
480000
|
| Size: |
4096
|
|
|
111CB000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.00000000111CB000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
111CB000
|
| Size: |
172032
|
|
|
3718000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1597871616.0000000003718000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3718000
|
| Size: |
28672
|
|
|
508E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1812310878.000000000508E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
508E000
|
| Size: |
8192
|
|
|
9F7E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3922894317.0000000009F7E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
9F7E000
|
| Size: |
8192
|
|
|
7F1000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1517586042.00000000007F1000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
7F1000
|
| Size: |
163840
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory) |
Malware Analysis System Evasion |
Security Software Discovery
|
|
|
590E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3916153095.000000000590E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
590E000
|
| Size: |
8192
|
|
|
CD8E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3928748354.000000000CD8E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
CD8E000
|
| Size: |
8192
|
|
|
A37E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3923318338.000000000A37E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A37E000
|
| Size: |
8192
|
|
|
8C3E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3920991512.0000000008C3E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
8C3E000
|
| Size: |
8192
|
|
|
D40D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3929427662.000000000D40D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
D40D000
|
| Size: |
12288
|
|
|
366F000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1596622346.000000000366F000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
366F000
|
| Size: |
8192
|
|
|
36CC000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1582846729.00000000036CC000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36CC000
|
| Size: |
4096
|
|
|
CB4E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3928554364.000000000CB4E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
CB4E000
|
| Size: |
8192
|
|
|
27C7F000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000027C7F000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
27C7F000
|
| Size: |
167936
|
|
|
287B9000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.00000000287B9000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
287B9000
|
| Size: |
167936
|
|
|
3858000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2008184654.0000000003858000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3858000
|
| Size: |
180224
|
|
|
1549E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3966340031.000000001549E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1549E000
|
| Size: |
8192
|
|
|
368D000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1586107545.000000000368D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
368D000
|
| Size: |
151552
|
|
|
1229E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3953045128.000000001229E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1229E000
|
| Size: |
8192
|
|
|
38BE000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.00000000038BE000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
38BE000
|
| Size: |
167936
|
|
|
140DE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956851267.00000000140DE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
140DE000
|
| Size: |
8192
|
|
|
36C9000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1584647605.00000000036C9000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36C9000
|
| Size: |
32768
|
|
|
3CBF000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003CBF000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3CBF000
|
| Size: |
167936
|
|
|
6C2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3902219583.00000000006C2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
6C2000
|
| Size: |
4096
|
|
|
1371D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3955786666.000000001371D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1371D000
|
| Size: |
12288
|
|
|
344E000
|
unkown
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603368038.000000000344E000.00000004.00000001.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page read and write
|
| Base address: |
344E000
|
| Size: |
8192
|
|
|
494D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3913298491.000000000494D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
494D000
|
| Size: |
12288
|
|
|
122DE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3953082255.00000000122DE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
122DE000
|
| Size: |
8192
|
|
|
D68E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3929632911.000000000D68E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
D68E000
|
| Size: |
8192
|
|
|
36CD000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1591174080.00000000036CD000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36CD000
|
| Size: |
16384
|
|
|
BDCE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3926892959.000000000BDCE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
BDCE000
|
| Size: |
8192
|
|
|
5AC4000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1590154643.0000000005AC4000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5AC4000
|
| Size: |
40960
|
|
|
534E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1818359209.000000000534E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
534E000
|
| Size: |
8192
|
|
|
567E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1570368050.000000000567E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
567E000
|
| Size: |
8192
|
|
|
7E9000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1517586042.00000000007E9000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
7E9000
|
| Size: |
28672
|
|
|
81D000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1517586042.000000000081D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
81D000
|
| Size: |
180224
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory) |
Malware Analysis System Evasion |
Security Software Discovery
|
|
|
38BA000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2008184654.00000000038BA000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
38BA000
|
| Size: |
180224
|
|
|
4BC0000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000A.00000002.2022162970.0000000004BC0000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
4BC0000
|
| Size: |
8192
|
|
|
5ACE000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1589614635.0000000005ACE000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5ACE000
|
| Size: |
61440
|
|
|
12B9E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3954577605.0000000012B9E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
12B9E000
|
| Size: |
8192
|
|
|
36B9000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1596739767.00000000036B9000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36B9000
|
| Size: |
16384
|
|
|
3ACB000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003ACB000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3ACB000
|
| Size: |
167936
|
|
|
1A25E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3966848372.000000001A25E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1A25E000
|
| Size: |
8192
|
|
|
3676000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603709255.0000000003676000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3676000
|
| Size: |
8192
|
|
|
11286000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.0000000011286000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
11286000
|
| Size: |
172032
|
|
|
27F63000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000027F63000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
27F63000
|
| Size: |
167936
|
|
|
3714000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1601889948.0000000003714000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3714000
|
| Size: |
8192
|
|
|
4A8E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1926361953.0000000004A8E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4A8E000
|
| Size: |
8192
|
|
|
BAD3000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3925372476.000000000BAD3000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
BAD3000
|
| Size: |
12288
|
|
|
F92C000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F92C000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F92C000
|
| Size: |
167936
|
|
|
11435000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.0000000011435000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
11435000
|
| Size: |
167936
|
|
|
530F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1814720649.000000000530F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
530F000
|
| Size: |
4096
|
|
|
3976000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003976000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3976000
|
| Size: |
167936
|
|
|
1060E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945042449.000000001060E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1060E000
|
| Size: |
8192
|
|
|
570E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1604207522.000000000570E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
570E000
|
| Size: |
8192
|
|
|
70BD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3918106915.00000000070BD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
70BD000
|
| Size: |
12288
|
|
|
BAE5000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3925372476.000000000BAE5000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
BAE5000
|
| Size: |
12288
|
|
|
379D000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.000000000379D000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
379D000
|
| Size: |
180224
|
|
|
A60000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3903597560.0000000000A60000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
A60000
|
| Size: |
12288
|
|
|
3695000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1581907086.0000000003695000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3695000
|
| Size: |
8192
|
|
|
36C2000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1583336631.00000000036C2000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36C2000
|
| Size: |
61440
|
|
|
486F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1552184746.000000000486F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
486F000
|
| Size: |
4096
|
|
|
48FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1552468660.00000000048FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
48FE000
|
| Size: |
8192
|
|
|
A4BE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3923446768.000000000A4BE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A4BE000
|
| Size: |
8192
|
|
|
61A000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000006.00000002.1776987512.000000000061A000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
61A000
|
| Size: |
8192
|
|
|
6BBE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3917738984.0000000006BBE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
6BBE000
|
| Size: |
8192
|
|
|
7B0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1517586042.00000000007B0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
7B0000
|
| Size: |
229376
|
|
|
3710000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1597693488.0000000003710000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3710000
|
| Size: |
61440
|
|
|
F9AC000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F9AC000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F9AC000
|
| Size: |
167936
|
|
|
1461C000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.000000001461C000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1461C000
|
| Size: |
167936
|
|
|
1331E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3955301168.000000001331E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1331E000
|
| Size: |
8192
|
|
|
652000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000006.00000002.1780719281.0000000000652000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
652000
|
| Size: |
4096
|
|
|
1078E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945194785.000000001078E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1078E000
|
| Size: |
8192
|
|
|
EE69000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000EE69000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
EE69000
|
| Size: |
167936
|
|
|
AB7D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3924076259.000000000AB7D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
AB7D000
|
| Size: |
12288
|
|
|
57BF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1571237755.00000000057BF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
57BF000
|
| Size: |
4096
|
|
|
54F0000
|
unclassified section
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3915749264.00000000054F0000.00000004.10000000.00040000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
unclassified section
|
| Protect: |
page read and write
|
| Base address: |
54F0000
|
| Size: |
4096
|
|
|
AA5000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1995624773.0000000000AA5000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
AA5000
|
| Size: |
45056
|
|
|
B6BE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3924956156.000000000B6BE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
B6BE000
|
| Size: |
8192
|
|
|
920000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1994462865.0000000000920000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
920000
|
| Size: |
16384
|
|
|
812000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3902393782.0000000000812000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
812000
|
| Size: |
135168
|
|
|
2873C000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.000000002873C000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2873C000
|
| Size: |
167936
|
|
|
B9BE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3925228391.000000000B9BE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
B9BE000
|
| Size: |
8192
|
|
|
3610000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603544016.0000000003610000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3610000
|
| Size: |
4096
|
|
|
1571D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3966572021.000000001571D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1571D000
|
| Size: |
12288
|
|
|
A8FD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3923851285.000000000A8FD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A8FD000
|
| Size: |
12288
|
|
|
10F7B000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.0000000010F7B000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
10F7B000
|
| Size: |
172032
|
|
|
62A000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000A.00000002.1982470049.000000000062A000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
62A000
|
| Size: |
8192
|
|
|
544F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1824344831.000000000544F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
544F000
|
| Size: |
4096
|
|
|
48CF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3913196477.00000000048CF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
48CF000
|
| Size: |
4096
|
|
|
F304000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F304000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F304000
|
| Size: |
167936
|
|
|
A30000
|
heap
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1520320490.0000000000A30000.00000040.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page execute and read and write
|
| Base address: |
A30000
|
| Size: |
4096
|
|
|
147EF000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.00000000147EF000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
147EF000
|
| Size: |
167936
|
|
|
5F3E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3916797153.0000000005F3E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5F3E000
|
| Size: |
8192
|
|
|
75A000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1516977772.000000000075A000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
75A000
|
| Size: |
8192
|
|
|
52C0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3914626533.00000000052C0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
52C0000
|
| Size: |
4096
|
|
|
3E15000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003E15000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3E15000
|
| Size: |
167936
|
|
|
288FB000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.00000000288FB000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
288FB000
|
| Size: |
4096
|
|
|
196000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3901238423.0000000000196000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
196000
|
| Size: |
8192
|
|
|
6FE000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1782388678.00000000006FE000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6FE000
|
| Size: |
36864
|
|
|
3710000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1597760081.0000000003710000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3710000
|
| Size: |
61440
|
|
|
CF0E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3928905844.000000000CF0E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
CF0E000
|
| Size: |
8192
|
|
|
14A99000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.0000000014A99000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14A99000
|
| Size: |
135168
|
|
|
8AFE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3920859763.0000000008AFE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
8AFE000
|
| Size: |
8192
|
|
|
141BB000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.00000000141BB000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
141BB000
|
| Size: |
167936
|
|
|
36B1000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603776548.00000000036B1000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36B1000
|
| Size: |
12288
|
|
|
5E3E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3916744512.0000000005E3E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5E3E000
|
| Size: |
8192
|
|
|
D7CE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3929745571.000000000D7CE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
D7CE000
|
| Size: |
8192
|
|
|
4F8E000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2023993079.0000000004F8E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4F8E000
|
| Size: |
8192
|
|
|
6AE000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1782388678.00000000006AE000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6AE000
|
| Size: |
65536
|
|
|
997D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3922283556.000000000997D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
997D000
|
| Size: |
12288
|
|
|
3679000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1583336631.0000000003679000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3679000
|
| Size: |
290816
|
|
|
840000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1890694996.0000000000840000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
840000
|
| Size: |
8192
|
|
|
A7E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1785006968.0000000000A7E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A7E000
|
| Size: |
8192
|
|
|
3820000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1804275630.0000000003820000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3820000
|
| Size: |
192512
|
|
|
540E000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2025029193.000000000540E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
540E000
|
| Size: |
8192
|
|
|
109CD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945365119.00000000109CD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
109CD000
|
| Size: |
12288
|
|
|
84F000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1991892666.000000000084F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
84F000
|
| Size: |
4096
|
|
|
36B6000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1596756630.00000000036B6000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36B6000
|
| Size: |
8192
|
|
|
71B000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1784241665.000000000071B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
71B000
|
| Size: |
8192
|
|
|
50CE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1812853357.00000000050CE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
50CE000
|
| Size: |
8192
|
|
|
8CE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1891838398.00000000008CE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
8CE000
|
| Size: |
8192
|
|
|
3F89000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003F89000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3F89000
|
| Size: |
172032
|
|
|
85A000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000007.00000002.1891246212.000000000085A000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
85A000
|
| Size: |
4096
|
|
|
F742000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F742000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F742000
|
| Size: |
167936
|
|
|
12F9E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3954987830.0000000012F9E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
12F9E000
|
| Size: |
8192
|
|
|
64A000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000006.00000002.1780462211.000000000064A000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
64A000
|
| Size: |
4096
|
|
|
36CE000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603931012.00000000036CE000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36CE000
|
| Size: |
151552
|
|
|
391C000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2008184654.000000000391C000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
391C000
|
| Size: |
180224
|
|
|
A33E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3923268134.000000000A33E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A33E000
|
| Size: |
8192
|
|
|
A2E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1520172398.0000000000A2E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A2E000
|
| Size: |
8192
|
|
|
3EEF000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003EEF000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3EEF000
|
| Size: |
167936
|
|
|
3D1C000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003D1C000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D1C000
|
| Size: |
172032
|
|
|
BA3E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3925328466.000000000BA3E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
BA3E000
|
| Size: |
8192
|
|
|
366B000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1598152185.000000000366B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
366B000
|
| Size: |
16384
|
|
|
3910000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1542654652.0000000003910000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3910000
|
| Size: |
622592
|
|
|
284CD000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.00000000284CD000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
284CD000
|
| Size: |
172032
|
|
|
3791000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1804275630.0000000003791000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3791000
|
| Size: |
8192
|
|
|
81A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1517586042.000000000081A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
81A000
|
| Size: |
8192
|
|
|
36CB000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1582151493.00000000036CB000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36CB000
|
| Size: |
8192
|
|
|
6F7D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3918014148.0000000006F7D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
6F7D000
|
| Size: |
12288
|
|
|
3714000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603994771.0000000003714000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3714000
|
| Size: |
8192
|
|
|
3714000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1596536028.0000000003714000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3714000
|
| Size: |
12288
|
|
|
690000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1782388678.0000000000690000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
690000
|
| Size: |
28672
|
|
|
4A8E000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2021245626.0000000004A8E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4A8E000
|
| Size: |
8192
|
|
|
1050E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3944965472.000000001050E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1050E000
|
| Size: |
8192
|
|
|
B20000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000001.00000002.3903930129.0000000000B20000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
B20000
|
| Size: |
12288
|
|
|
5A3F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1571854596.0000000005A3F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5A3F000
|
| Size: |
4096
|
|
|
69A000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000001.00000002.3902020268.000000000069A000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
69A000
|
| Size: |
12288
|
|
|
632000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000A.00000002.1982679297.0000000000632000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
632000
|
| Size: |
16384
|
|
|
51CF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1813113516.00000000051CF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
51CF000
|
| Size: |
4096
|
|
|
5110000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1604159930.0000000005110000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5110000
|
| Size: |
4096
|
|
|
12A9E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3954508751.0000000012A9E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
12A9E000
|
| Size: |
8192
|
|
|
590000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1981912679.0000000000590000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
590000
|
| Size: |
16384
|
|
|
35DE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603518812.00000000035DE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
35DE000
|
| Size: |
8192
|
|
|
84FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3920286207.00000000084FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
84FE000
|
| Size: |
8192
|
|
|
10DCE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945759829.0000000010DCE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
10DCE000
|
| Size: |
8192
|
|
|
4FAE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3914180559.0000000004FAE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4FAE000
|
| Size: |
8192
|
|
|
CC8E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3928666331.000000000CC8E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
CC8E000
|
| Size: |
8192
|
|
|
B6FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3925004162.000000000B6FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
B6FE000
|
| Size: |
8192
|
|
|
F6A5000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F6A5000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F6A5000
|
| Size: |
36864
|
|
|
B5BE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3924894648.000000000B5BE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
B5BE000
|
| Size: |
8192
|
|
|
36AE000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1582929324.00000000036AE000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36AE000
|
| Size: |
8192
|
|
|
BAE1000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3925372476.000000000BAE1000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
BAE1000
|
| Size: |
4096
|
|
|
A5E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3903564868.0000000000A5E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A5E000
|
| Size: |
8192
|
|
|
B83E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3925131578.000000000B83E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
B83E000
|
| Size: |
8192
|
|
|
568E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3915992553.000000000568E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
568E000
|
| Size: |
8192
|
|
|
F4F2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F4F2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F4F2000
|
| Size: |
167936
|
|
|
5CA0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3916578290.0000000005CA0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5CA0000
|
| Size: |
4096
|
|
|
36B5000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1594098761.00000000036B5000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36B5000
|
| Size: |
98304
|
|
|
F5AD000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F5AD000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F5AD000
|
| Size: |
167936
|
|
|
13D1E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956449059.0000000013D1E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
13D1E000
|
| Size: |
8192
|
|
|
28156000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000028156000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
28156000
|
| Size: |
167936
|
|
|
1295E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3954374268.000000001295E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1295E000
|
| Size: |
8192
|
|
|
546C000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3915505810.000000000546C000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
546C000
|
| Size: |
16384
|
|
|
A7FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3923787805.000000000A7FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A7FE000
|
| Size: |
8192
|
|
|
892000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000A.00000002.1992195321.0000000000892000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
892000
|
| Size: |
4096
|
|
|
14276000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.0000000014276000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14276000
|
| Size: |
167936
|
|
|
4A5F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3913389555.0000000004A5F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4A5F000
|
| Size: |
4096
|
|
|
3ADF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1604091471.0000000003ADF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3ADF000
|
| Size: |
4096
|
|
|
5AD8000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1590715285.0000000005AD8000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5AD8000
|
| Size: |
8192
|
|
|
36C6000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1582136602.00000000036C6000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36C6000
|
| Size: |
28672
|
|
|
6E3D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3917927056.0000000006E3D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
6E3D000
|
| Size: |
12288
|
|
|
50CE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1949526237.00000000050CE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
50CE000
|
| Size: |
8192
|
|
|
32F4000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1602832263.00000000032F4000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
32F4000
|
| Size: |
16384
|
|
|
79BE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3918984685.00000000079BE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
79BE000
|
| Size: |
8192
|
|
|
7ABE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3919039791.0000000007ABE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
7ABE000
|
| Size: |
8192
|
|
|
3710000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603931012.0000000003710000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3710000
|
| Size: |
4096
|
|
|
95C0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3921882975.00000000095C0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
95C0000
|
| Size: |
65536
|
|
|
23EF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3904178205.00000000023EF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
23EF000
|
| Size: |
4096
|
|
|
4C28000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1555385963.0000000004C28000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4C28000
|
| Size: |
122880
|
|
|
60BE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3916906930.00000000060BE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
60BE000
|
| Size: |
8192
|
|
|
5AE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1515886730.00000000005AE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5AE000
|
| Size: |
8192
|
|
|
10C8E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945651937.0000000010C8E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
10C8E000
|
| Size: |
8192
|
|
|
A9E000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1995380610.0000000000A9E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A9E000
|
| Size: |
8192
|
|
|
366E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603684799.000000000366E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
366E000
|
| Size: |
4096
|
|
|
13A9E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956135658.0000000013A9E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
13A9E000
|
| Size: |
8192
|
|
|
7AF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1888108834.00000000007AF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
7AF000
|
| Size: |
4096
|
|
|
873E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3920480253.000000000873E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
873E000
|
| Size: |
8192
|
|
|
66D000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1983044496.000000000066D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
66D000
|
| Size: |
57344
|
|
|
3693000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1581779964.0000000003693000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3693000
|
| Size: |
4096
|
|
|
EFFC000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000EFFC000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
EFFC000
|
| Size: |
167936
|
|
|
80FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3919879391.00000000080FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
80FE000
|
| Size: |
8192
|
|
|
1215E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3952922400.000000001215E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1215E000
|
| Size: |
8192
|
|
|
3641000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603618128.0000000003641000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3641000
|
| Size: |
77824
|
|
|
36BD000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1598080679.00000000036BD000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36BD000
|
| Size: |
65536
|
|
|
368B000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1596814220.000000000368B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
368B000
|
| Size: |
8192
|
|
|
5CB0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3916602824.0000000005CB0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5CB0000
|
| Size: |
4096
|
|
|
1064E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945092283.000000001064E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1064E000
|
| Size: |
8192
|
|
|
BFE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1786038587.0000000000BFE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
BFE000
|
| Size: |
8192
|
|
|
F83D000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F83D000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F83D000
|
| Size: |
8192
|
|
|
42C000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000000.1429567305.000000000042C000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
42C000
|
| Size: |
274432
|
|
|
36C9000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1596495575.00000000036C9000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36C9000
|
| Size: |
16384
|
|
|
6AA000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000001.00000002.3902092927.00000000006AA000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
6AA000
|
| Size: |
4096
|
|
|
1A11E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3966735264.000000001A11E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1A11E000
|
| Size: |
8192
|
|
|
610000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1982255616.0000000000610000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
610000
|
| Size: |
16384
|
|
|
6BA000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000001.00000002.3902186534.00000000006BA000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
6BA000
|
| Size: |
4096
|
|
|
2850E000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.000000002850E000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2850E000
|
| Size: |
167936
|
|
|
4E4E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1943853736.0000000004E4E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4E4E000
|
| Size: |
8192
|
|
|
6A7D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3917642131.0000000006A7D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
6A7D000
|
| Size: |
12288
|
|
|
4B80000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1555385963.0000000004B80000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4B80000
|
| Size: |
393216
|
|
|
56BE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1570725569.00000000056BE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
56BE000
|
| Size: |
8192
|
|
|
52CE000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2024328655.00000000052CE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
52CE000
|
| Size: |
8192
|
|
|
760000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1516991511.0000000000760000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
760000
|
| Size: |
8192
|
|
|
83BE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3920173616.00000000083BE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
83BE000
|
| Size: |
8192
|
|
|
BBE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1785806271.0000000000BBE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
BBE000
|
| Size: |
8192
|
|
|
3711000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1601889948.0000000003711000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3711000
|
| Size: |
8192
|
|
|
3677000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1583190142.0000000003677000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3677000
|
| Size: |
368640
|
|
|
2839B000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.000000002839B000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2839B000
|
| Size: |
167936
|
|
|
4BC0000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000006.00000002.1810641546.0000000004BC0000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
4BC0000
|
| Size: |
8192
|
|
|
5DFE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3916714206.0000000005DFE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5DFE000
|
| Size: |
8192
|
|
|
3B98000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1542654652.0000000003B98000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3B98000
|
| Size: |
192512
|
|
|
D18D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3929157175.000000000D18D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
D18D000
|
| Size: |
12288
|
|
|
3710000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1596536028.0000000003710000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3710000
|
| Size: |
12288
|
|
|
36B0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1590478466.00000000036B0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36B0000
|
| Size: |
135168
|
|
|
4CBD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1565364631.0000000004CBD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4CBD000
|
| Size: |
12288
|
|
|
36C9000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1582846729.00000000036C9000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36C9000
|
| Size: |
8192
|
|
|
36CE000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1598080679.00000000036CE000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36CE000
|
| Size: |
151552
|
|
|
3FE7000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003FE7000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3FE7000
|
| Size: |
36864
|
|
|
5A7E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1571990678.0000000005A7E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5A7E000
|
| Size: |
8192
|
|
|
6B2000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000001.00000002.3902152969.00000000006B2000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
6B2000
|
| Size: |
4096
|
|
|
10B0D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945487573.0000000010B0D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
10B0D000
|
| Size: |
12288
|
|
|
85FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3920361656.00000000085FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
85FE000
|
| Size: |
8192
|
|
|
520E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1953104281.000000000520E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
520E000
|
| Size: |
8192
|
|
|
C00D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3927214934.000000000C00D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
C00D000
|
| Size: |
12288
|
|
|
112C4000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.00000000112C4000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
112C4000
|
| Size: |
167936
|
|
|
C04D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3927282857.000000000C04D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
C04D000
|
| Size: |
12288
|
|
|
1349D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3955469908.000000001349D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1349D000
|
| Size: |
12288
|
|
|
199000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3901238423.0000000000199000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
199000
|
| Size: |
28672
|
|
|
C30000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1787176300.0000000000C30000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
C30000
|
| Size: |
16384
|
|
|
D3F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1787613879.0000000000D3F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
D3F000
|
| Size: |
4096
|
|
|
1345F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3955437601.000000001345F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1345F000
|
| Size: |
4096
|
|
|
6ABE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3917685132.0000000006ABE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
6ABE000
|
| Size: |
8192
|
|
|
607E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3916874289.000000000607E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
607E000
|
| Size: |
8192
|
|
|
D04E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3929041365.000000000D04E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
D04E000
|
| Size: |
8192
|
|
|
560000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1981889613.0000000000560000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
560000
|
| Size: |
4096
|
|
|
650000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1983044496.0000000000650000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
650000
|
| Size: |
28672
|
|
|
8DBD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3921125494.0000000008DBD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
8DBD000
|
| Size: |
12288
|
|
|
C50E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3927936666.000000000C50E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
C50E000
|
| Size: |
8192
|
|
|
285A8000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.00000000285A8000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
285A8000
|
| Size: |
172032
|
|
|
3771000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1542654652.0000000003771000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3771000
|
| Size: |
8192
|
|
|
ADFE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3924261342.000000000ADFE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
ADFE000
|
| Size: |
8192
|
|
|
BF0E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3927088237.000000000BF0E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
BF0E000
|
| Size: |
8192
|
|
|
827E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3920074864.000000000827E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
827E000
|
| Size: |
8192
|
|
|
557E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1570222594.000000000557E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
557E000
|
| Size: |
8192
|
|
|
8D7E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3921093240.0000000008D7E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
8D7E000
|
| Size: |
8192
|
|
|
508E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1948186226.000000000508E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
508E000
|
| Size: |
8192
|
|
|
149A1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.00000000149A1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
149A1000
|
| Size: |
49152
|
|
|
3668000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1583828547.0000000003668000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3668000
|
| Size: |
12288
|
|
|
155DE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3966450925.00000000155DE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
155DE000
|
| Size: |
8192
|
|
|
ACBD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3924165912.000000000ACBD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
ACBD000
|
| Size: |
12288
|
|
|
9BBD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3922467018.0000000009BBD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
9BBD000
|
| Size: |
12288
|
|
|
36AE000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1581779964.00000000036AE000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36AE000
|
| Size: |
143360
|
|
|
115C6000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.00000000115C6000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
115C6000
|
| Size: |
167936
|
|
|
199000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1510948915.0000000000199000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
199000
|
| Size: |
28672
|
|
|
FD8D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3944243887.000000000FD8D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
FD8D000
|
| Size: |
12288
|
|
|
4D0E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1939435612.0000000004D0E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4D0E000
|
| Size: |
8192
|
|
|
84C000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000007.00000002.1891137734.000000000084C000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
84C000
|
| Size: |
4096
|
|
|
1539E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3966267912.000000001539E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1539E000
|
| Size: |
8192
|
|
|
D54D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3929527577.000000000D54D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
D54D000
|
| Size: |
12288
|
|
|
914000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1993292280.0000000000914000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
914000
|
| Size: |
32768
|
|
|
65BD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3917287776.00000000065BD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
65BD000
|
| Size: |
12288
|
|
|
36B7000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1602033994.00000000036B7000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36B7000
|
| Size: |
4096
|
|
|
F969000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F969000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F969000
|
| Size: |
167936
|
|
|
27B66000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000027B66000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
27B66000
|
| Size: |
167936
|
|
|
1385E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3955914063.000000001385E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1385E000
|
| Size: |
8192
|
|
|
114CE000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.00000000114CE000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
114CE000
|
| Size: |
167936
|
|
|
4BC0000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000007.00000002.1929859019.0000000004BC0000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
4BC0000
|
| Size: |
8192
|
|
|
12F5E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3954952773.0000000012F5E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
12F5E000
|
| Size: |
8192
|
|
|
7FBE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3919608473.0000000007FBE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
7FBE000
|
| Size: |
8192
|
|
|
752000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1516851566.0000000000752000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
752000
|
| Size: |
4096
|
|
|
96F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1519272372.000000000096F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
96F000
|
| Size: |
4096
|
|
|
490E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3913246359.000000000490E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
490E000
|
| Size: |
8192
|
|
|
7E7E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3919390945.0000000007E7E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
7E7E000
|
| Size: |
8192
|
|
|
74BD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3918432210.00000000074BD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
74BD000
|
| Size: |
12288
|
|
|
480000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1769520887.0000000000480000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
480000
|
| Size: |
4096
|
|
|
3717000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1591028472.0000000003717000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3717000
|
| Size: |
32768
|
|
|
239A6000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967085104.00000000239A6000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
239A6000
|
| Size: |
12288
|
|
|
3A44000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1542654652.0000000003A44000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3A44000
|
| Size: |
192512
|
|
|
6D3D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3917866659.0000000006D3D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
6D3D000
|
| Size: |
12288
|
|
|
27FDE000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000027FDE000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
27FDE000
|
| Size: |
167936
|
|
|
4087000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000004087000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4087000
|
| Size: |
167936
|
|
|
684000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1781498972.0000000000684000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
684000
|
| Size: |
32768
|
|
|
27B09000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000027B09000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
27B09000
|
| Size: |
167936
|
|
|
542D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3915404439.000000000542D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
542D000
|
| Size: |
12288
|
|
|
36CE000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1598581798.00000000036CE000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36CE000
|
| Size: |
151552
|
|
|
21AF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1893194685.00000000021AF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
21AF000
|
| Size: |
4096
|
|
|
11074000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.0000000011074000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
11074000
|
| Size: |
167936
|
|
|
66B000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000006.00000002.1781367979.000000000066B000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
66B000
|
| Size: |
4096
|
|
|
F628000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F628000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F628000
|
| Size: |
167936
|
|
|
CDCE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3928796193.000000000CDCE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
CDCE000
|
| Size: |
8192
|
|
|
3E72000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003E72000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3E72000
|
| Size: |
167936
|
|
|
63C000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000A.00000002.1982905431.000000000063C000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
63C000
|
| Size: |
4096
|
|
|
28623000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000028623000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
28623000
|
| Size: |
167936
|
|
|
CD0000
|
heap
|
page execute and read and write
|
|
|
|
| Name: |
00000001.00000002.3904093380.0000000000CD0000.00000040.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page execute and read and write
|
| Base address: |
CD0000
|
| Size: |
8192
|
|
|
1241B000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3953269819.000000001241B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1241B000
|
| Size: |
241664
|
|
|
1014E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3944605070.000000001014E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1014E000
|
| Size: |
8192
|
|
|
595000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1982016813.0000000000595000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
595000
|
| Size: |
4096
|
|
|
813E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3919961260.000000000813E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
813E000
|
| Size: |
8192
|
|
|
36BD000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1582025441.00000000036BD000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36BD000
|
| Size: |
65536
|
|
|
4950000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3913343166.0000000004950000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4950000
|
| Size: |
4096
|
|
|
554E000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2025513125.000000000554E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
554E000
|
| Size: |
8192
|
|
|
C7CE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3928224747.000000000C7CE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
C7CE000
|
| Size: |
8192
|
|
|
88BE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3920672819.00000000088BE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
88BE000
|
| Size: |
8192
|
|
|
14907000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.0000000014907000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14907000
|
| Size: |
167936
|
|
|
51EE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3914328437.00000000051EE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
51EE000
|
| Size: |
8192
|
|
|
6CB000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000001.00000002.3902292094.00000000006CB000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
6CB000
|
| Size: |
4096
|
|
|
113F7000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.00000000113F7000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
113F7000
|
| Size: |
167936
|
|
|
89BE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3920754390.00000000089BE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
89BE000
|
| Size: |
8192
|
|
|
5B4E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3916339311.0000000005B4E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5B4E000
|
| Size: |
8192
|
|
|
366A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1586553499.000000000366A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
366A000
|
| Size: |
20480
|
|
|
1321E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3955232583.000000001321E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1321E000
|
| Size: |
8192
|
|
|
75E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3902358857.000000000075E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
75E000
|
| Size: |
8192
|
|
|
12D1E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3954745879.0000000012D1E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
12D1E000
|
| Size: |
8192
|
|
|
660000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3901625861.0000000000660000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
660000
|
| Size: |
16384
|
|
|
3671000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1596470559.0000000003671000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3671000
|
| Size: |
114688
|
|
|
917E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3921457935.000000000917E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
917E000
|
| Size: |
8192
|
|
|
600000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1776514534.0000000000600000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
600000
|
| Size: |
8192
|
|
|
887E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3920615506.000000000887E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
887E000
|
| Size: |
8192
|
|
|
37FD000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1804275630.00000000037FD000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
37FD000
|
| Size: |
8192
|
|
|
3631000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1914521897.0000000003631000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3631000
|
| Size: |
8192
|
|
|
630000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1982571989.0000000000630000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
630000
|
| Size: |
8192
|
|
|
8AB000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000A.00000002.1992811442.00000000008AB000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
8AB000
|
| Size: |
4096
|
|
|
3695000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1582266982.0000000003695000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3695000
|
| Size: |
8192
|
|
|
283D8000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.00000000283D8000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
283D8000
|
| Size: |
36864
|
|
|
402000
|
unkown
|
page execute read
|
|
|
|
| Name: |
00000000.00000002.1512512496.0000000000402000.00000020.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page execute read
|
| Base address: |
402000
|
| Size: |
36864
|
|
|
AB0000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000001.00000002.3903857384.0000000000AB0000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
AB0000
|
| Size: |
65536
|
|
|
1381E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3955869721.000000001381E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1381E000
|
| Size: |
8192
|
|
|
11036000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.0000000011036000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
11036000
|
| Size: |
167936
|
|
|
14964000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.0000000014964000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14964000
|
| Size: |
167936
|
|
|
36CD000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1581890884.00000000036CD000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36CD000
|
| Size: |
16384
|
|
|
2833D000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.000000002833D000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2833D000
|
| Size: |
172032
|
|
|
903D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3921349744.000000000903D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
903D000
|
| Size: |
12288
|
|
|
36D1000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1588707946.00000000036D1000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36D1000
|
| Size: |
319488
|
|
|
54AC000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3915619017.00000000054AC000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
54AC000
|
| Size: |
16384
|
|
|
1219E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3952970842.000000001219E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1219E000
|
| Size: |
8192
|
|
|
680000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1781498972.0000000000680000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
680000
|
| Size: |
12288
|
|
|
C90E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3928340757.000000000C90E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
C90E000
|
| Size: |
8192
|
|
|
11246000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.0000000011246000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
11246000
|
| Size: |
167936
|
|
|
A47E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3923379584.000000000A47E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A47E000
|
| Size: |
8192
|
|
|
13E9E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956613277.0000000013E9E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
13E9E000
|
| Size: |
8192
|
|
|
1116E000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.000000001116E000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1116E000
|
| Size: |
167936
|
|
|
36BD000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1596664463.00000000036BD000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36BD000
|
| Size: |
49152
|
|
|
5AD8000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1596212574.0000000005AD8000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5AD8000
|
| Size: |
8192
|
|
|
DD4E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930132237.000000000DD4E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
DD4E000
|
| Size: |
8192
|
|
|
136DE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3955703419.00000000136DE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
136DE000
|
| Size: |
8192
|
|
|
2809C000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.000000002809C000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2809C000
|
| Size: |
167936
|
|
|
787D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3918866192.000000000787D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
787D000
|
| Size: |
12288
|
|
|
431D000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.000000000431D000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
431D000
|
| Size: |
90112
|
|
|
D28E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3929264447.000000000D28E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
D28E000
|
| Size: |
8192
|
|
|
3713000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1595508236.0000000003713000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3713000
|
| Size: |
16384
|
|
|
27CBC000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000027CBC000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
27CBC000
|
| Size: |
167936
|
|
|
36AF000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1598173181.00000000036AF000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36AF000
|
| Size: |
24576
|
|
|
4F6E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3914147677.0000000004F6E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4F6E000
|
| Size: |
8192
|
|
|
10FB9000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.0000000010FB9000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
10FB9000
|
| Size: |
167936
|
|
|
67FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3917436745.00000000067FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
67FE000
|
| Size: |
8192
|
|
|
747D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3918367657.000000000747D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
747D000
|
| Size: |
12288
|
|
|
4D0E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1810996654.0000000004D0E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4D0E000
|
| Size: |
8192
|
|
|
FE8E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3944347412.000000000FE8E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
FE8E000
|
| Size: |
8192
|
|
|
12E1E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3954821027.0000000012E1E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
12E1E000
|
| Size: |
8192
|
|
|
46C8000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2019692961.00000000046C8000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
46C8000
|
| Size: |
4096
|
|
|
57FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1571370413.00000000057FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
57FE000
|
| Size: |
8192
|
|
|
1561E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3966496904.000000001561E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1561E000
|
| Size: |
8192
|
|
|
28490000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000028490000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
28490000
|
| Size: |
167936
|
|
|
41A000
|
unkown
|
page execute read
|
|
|
|
| Name: |
00000000.00000002.1512512496.000000000041A000.00000020.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page execute read
|
| Base address: |
41A000
|
| Size: |
8192
|
|
|
36B6000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1599181065.00000000036B6000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36B6000
|
| Size: |
8192
|
|
|
366B000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1581907086.000000000366B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
366B000
|
| Size: |
12288
|
|
|
488E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1924797264.000000000488E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
488E000
|
| Size: |
8192
|
|
|
123DE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3953181533.00000000123DE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
123DE000
|
| Size: |
8192
|
|
|
4277000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000004277000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4277000
|
| Size: |
167936
|
|
|
4B7D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1555269373.0000000004B7D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4B7D000
|
| Size: |
12288
|
|
|
1088D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945262301.000000001088D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1088D000
|
| Size: |
12288
|
|
|
37D6000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1604044454.00000000037D6000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
37D6000
|
| Size: |
36864
|
|
|
BECD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3927025415.000000000BECD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
BECD000
|
| Size: |
12288
|
|
|
36B2000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1585146230.00000000036B2000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36B2000
|
| Size: |
45056
|
|
|
B30000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1521096712.0000000000B30000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
B30000
|
| Size: |
65536
|
|
|
36C5000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1596797349.00000000036C5000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36C5000
|
| Size: |
16384
|
|
|
3704000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1914521897.0000000003704000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3704000
|
| Size: |
196608
|
|
|
4825000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1918853116.0000000004825000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4825000
|
| Size: |
45056
|
|
|
51E0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1568960038.00000000051E0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
51E0000
|
| Size: |
36864
|
|
|
3668000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1581873706.0000000003668000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3668000
|
| Size: |
24576
|
|
|
76A000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1517355977.000000000076A000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
76A000
|
| Size: |
4096
|
|
|
5DB000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1884071412.00000000005DB000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5DB000
|
| Size: |
53248
|
|
|
88F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1784377028.000000000088F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
88F000
|
| Size: |
4096
|
|
|
3881000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003881000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3881000
|
| Size: |
167936
|
|
|
36C9000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1599290260.00000000036C9000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36C9000
|
| Size: |
12288
|
|
|
D14E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3929107426.000000000D14E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
D14E000
|
| Size: |
8192
|
|
|
837E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3920132361.000000000837E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
837E000
|
| Size: |
8192
|
|
|
F8EE000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F8EE000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F8EE000
|
| Size: |
167936
|
|
|
131DE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3955182720.00000000131DE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
131DE000
|
| Size: |
8192
|
|
|
36CD000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1586595054.00000000036CD000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36CD000
|
| Size: |
16384
|
|
|
36BD000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1584308708.00000000036BD000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36BD000
|
| Size: |
12288
|
|
|
9B000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1767946741.000000000009B000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
9B000
|
| Size: |
20480
|
|
|
EEC6000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000EEC6000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
EEC6000
|
| Size: |
167936
|
|
|
367A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603734420.000000000367A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
367A000
|
| Size: |
217088
|
|
|
27A6E000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000027A6E000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
27A6E000
|
| Size: |
167936
|
|
|
36C2000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1582266982.00000000036C2000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36C2000
|
| Size: |
16384
|
|
|
27BC3000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000027BC3000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
27BC3000
|
| Size: |
167936
|
|
|
CECE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3928858993.000000000CECE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
CECE000
|
| Size: |
8192
|
|
|
37D0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1604044454.00000000037D0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
37D0000
|
| Size: |
16384
|
|
|
36C0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1583292996.00000000036C0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36C0000
|
| Size: |
69632
|
|
|
1535D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3966220630.000000001535D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1535D000
|
| Size: |
12288
|
|
|
9A7D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3922354050.0000000009A7D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
9A7D000
|
| Size: |
12288
|
|
|
1010E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3944561499.000000001010E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1010E000
|
| Size: |
8192
|
|
|
39B4000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.00000000039B4000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
39B4000
|
| Size: |
167936
|
|
|
3D7A000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003D7A000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D7A000
|
| Size: |
167936
|
|
|
4890000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1925588903.0000000004890000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4890000
|
| Size: |
4096
|
|
|
5A4E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3916266579.0000000005A4E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5A4E000
|
| Size: |
8192
|
|
|
ED71000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000ED71000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
ED71000
|
| Size: |
167936
|
|
|
A73E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3923681888.000000000A73E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A73E000
|
| Size: |
8192
|
|
|
530F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1954418922.000000000530F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
530F000
|
| Size: |
4096
|
|
|
5AA0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1604469097.0000000005AA0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5AA0000
|
| Size: |
135168
|
|
|
3678000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1597693488.0000000003678000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3678000
|
| Size: |
503808
|
|
|
402000
|
unkown
|
page execute read
|
|
|
|
| Name: |
00000000.00000000.1429516766.0000000000402000.00000020.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page execute read
|
| Base address: |
402000
|
| Size: |
159744
|
|
|
8E0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1892150851.00000000008E0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
8E0000
|
| Size: |
12288
|
|
|
12CDE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3954695554.0000000012CDE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
12CDE000
|
| Size: |
8192
|
|
|
61BE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3916958026.00000000061BE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
61BE000
|
| Size: |
8192
|
|
|
CA4E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3928477719.000000000CA4E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
CA4E000
|
| Size: |
8192
|
|
|
3693000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1582266982.0000000003693000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3693000
|
| Size: |
4096
|
|
|
92BD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3921557851.00000000092BD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
92BD000
|
| Size: |
12288
|
|
|
A0BE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3923003198.000000000A0BE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A0BE000
|
| Size: |
8192
|
|
|
1525E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3966142529.000000001525E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1525E000
|
| Size: |
8192
|
|
|
27F03000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000027F03000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
27F03000
|
| Size: |
167936
|
|
|
51CE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1951166406.00000000051CE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
51CE000
|
| Size: |
8192
|
|
|
9B000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1981430649.000000000009B000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
9B000
|
| Size: |
20480
|
|
|
103CD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3944858668.00000000103CD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
103CD000
|
| Size: |
12288
|
|
|
3B67000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003B67000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3B67000
|
| Size: |
167936
|
|
|
63A000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000006.00000002.1779779663.000000000063A000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
63A000
|
| Size: |
4096
|
|
|
58FF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1571490346.00000000058FF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
58FF000
|
| Size: |
4096
|
|
|
36BD000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1586529842.00000000036BD000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36BD000
|
| Size: |
81920
|
|
|
3470000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603413251.0000000003470000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3470000
|
| Size: |
16384
|
|
|
F3BC000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F3BC000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F3BC000
|
| Size: |
167936
|
|
|
5B8D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3916381389.0000000005B8D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5B8D000
|
| Size: |
12288
|
|
|
493E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1553013741.000000000493E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
493E000
|
| Size: |
8192
|
|
|
950000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1994884933.0000000000950000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
950000
|
| Size: |
16384
|
|
|
5090000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2024210228.0000000005090000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5090000
|
| Size: |
4096
|
|
|
97A000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1519383673.000000000097A000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
97A000
|
| Size: |
4096
|
|
|
11321000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.0000000011321000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
11321000
|
| Size: |
36864
|
|
|
2889E000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.000000002889E000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2889E000
|
| Size: |
167936
|
|
|
12E5E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3954873187.0000000012E5E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
12E5E000
|
| Size: |
8192
|
|
|
54ED000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3915687345.00000000054ED000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
54ED000
|
| Size: |
12288
|
|
|
682000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000001.00000002.3901762423.0000000000682000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
682000
|
| Size: |
8192
|
|
|
C54E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3927998038.000000000C54E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
C54E000
|
| Size: |
8192
|
|
|
D2CE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3929311548.000000000D2CE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
D2CE000
|
| Size: |
8192
|
|
|
10B4E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945530975.0000000010B4E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
10B4E000
|
| Size: |
8192
|
|
|
1395E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3955994868.000000001395E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1395E000
|
| Size: |
8192
|
|
|
3866000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1804275630.0000000003866000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3866000
|
| Size: |
188416
|
|
|
C8CE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3928297236.000000000C8CE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
C8CE000
|
| Size: |
8192
|
|
|
6FBD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3918047051.0000000006FBD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
6FBD000
|
| Size: |
12288
|
|
|
4B8D000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2021618918.0000000004B8D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4B8D000
|
| Size: |
12288
|
|
|
4F4F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1945043503.0000000004F4F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4F4F000
|
| Size: |
4096
|
|
|
4830000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000007.00000002.1920249949.0000000004830000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
4830000
|
| Size: |
65536
|
|
|
F37F000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F37F000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F37F000
|
| Size: |
167936
|
|
|
36B0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1582884811.00000000036B0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36B0000
|
| Size: |
53248
|
|
|
A7BE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3923755254.000000000A7BE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A7BE000
|
| Size: |
8192
|
|
|
9BFE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3922524375.0000000009BFE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
9BFE000
|
| Size: |
8192
|
|
|
900000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1993132822.0000000000900000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
900000
|
| Size: |
4096
|
|
|
509F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1567975559.000000000509F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
509F000
|
| Size: |
4096
|
|
|
AA0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1995624773.0000000000AA0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
AA0000
|
| Size: |
16384
|
|
|
E2E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1788174288.0000000000E2E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
E2E000
|
| Size: |
8192
|
|
|
36C1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2008184654.00000000036C1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
36C1000
|
| Size: |
8192
|
|
|
5810000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1604388692.0000000005810000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5810000
|
| Size: |
40960
|
|
|
491E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1809960798.000000000491E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
491E000
|
| Size: |
8192
|
|
|
75FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3918574920.00000000075FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
75FE000
|
| Size: |
8192
|
|
|
823E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3920044224.000000000823E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
823E000
|
| Size: |
8192
|
|
|
2D0C000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1522294750.0000000002D0C000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2D0C000
|
| Size: |
311296
|
|
|
733D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3918285797.000000000733D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
733D000
|
| Size: |
12288
|
|
|
145BE000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.00000000145BE000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
145BE000
|
| Size: |
167936
|
|
|
70FD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3918141047.00000000070FD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
70FD000
|
| Size: |
12288
|
|
|
89A000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000A.00000002.1992334284.000000000089A000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
89A000
|
| Size: |
4096
|
|
|
11F1E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3952700478.0000000011F1E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
11F1E000
|
| Size: |
8192
|
|
|
470E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1917931187.000000000470E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
470E000
|
| Size: |
8192
|
|
|
3AC9000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1542654652.0000000003AC9000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3AC9000
|
| Size: |
61440
|
|
|
870000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1891521465.0000000000870000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
870000
|
| Size: |
16384
|
|
|
6BFD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3917765216.0000000006BFD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
6BFD000
|
| Size: |
12288
|
|
|
357F000
|
unkown
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603462193.000000000357F000.00000004.00000001.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page read and write
|
| Base address: |
357F000
|
| Size: |
4096
|
|
|
96FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3922000476.00000000096FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
96FE000
|
| Size: |
8192
|
|
|
C3CD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3927706052.000000000C3CD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
C3CD000
|
| Size: |
12288
|
|
|
371E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1601659181.000000000371E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
371E000
|
| Size: |
4096
|
|
|
797E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3918954182.000000000797E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
797E000
|
| Size: |
8192
|
|
|
86A000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000007.00000002.1891408306.000000000086A000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
86A000
|
| Size: |
4096
|
|
|
D10000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1521549692.0000000000D10000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
D10000
|
| Size: |
20480
|
|
|
AFFE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3924380223.000000000AFFE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
AFFE000
|
| Size: |
8192
|
|
|
4920000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1810093212.0000000004920000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4920000
|
| Size: |
4096
|
|
|
3634000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603567276.0000000003634000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3634000
|
| Size: |
45056
|
|
|
7D3000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3902393782.00000000007D3000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
7D3000
|
| Size: |
20480
|
|
|
3710000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1601686128.0000000003710000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3710000
|
| Size: |
12288
|
|
|
3794000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1804275630.0000000003794000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3794000
|
| Size: |
4096
|
|
|
366D000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1585420449.000000000366D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
366D000
|
| Size: |
8192
|
|
|
DA0E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3929931364.000000000DA0E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
DA0E000
|
| Size: |
8192
|
|
|
578E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3916100802.000000000578E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
578E000
|
| Size: |
8192
|
|
|
142F3000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.00000000142F3000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
142F3000
|
| Size: |
167936
|
|
|
76C000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1517372722.000000000076C000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
76C000
|
| Size: |
4096
|
|
|
C14D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3927416982.000000000C14D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
C14D000
|
| Size: |
12288
|
|
|
12A5E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3954466001.0000000012A5E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
12A5E000
|
| Size: |
8192
|
|
|
A70000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1520716105.0000000000A70000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
A70000
|
| Size: |
4096
|
|
|
32FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1602832263.00000000032FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
32FE000
|
| Size: |
8192
|
|
|
10F3E000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.0000000010F3E000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
10F3E000
|
| Size: |
167936
|
|
|
417F000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.000000000417F000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
417F000
|
| Size: |
167936
|
|
|
682000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1983044496.0000000000682000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
682000
|
| Size: |
229376
|
|
|
285E6000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.00000000285E6000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
285E6000
|
| Size: |
167936
|
|
|
38CB000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1804275630.00000000038CB000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
38CB000
|
| Size: |
188416
|
|
|
64A000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000A.00000002.1982924281.000000000064A000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
64A000
|
| Size: |
4096
|
|
|
94C0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3921770118.00000000094C0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
94C0000
|
| Size: |
65536
|
|
|
1309E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3955058273.000000001309E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1309E000
|
| Size: |
8192
|
|
|
14A5C000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.0000000014A5C000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
14A5C000
|
| Size: |
167936
|
|
|
D00E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3928992857.000000000D00E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
D00E000
|
| Size: |
8192
|
|
|
EF41000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000EF41000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
EF41000
|
| Size: |
167936
|
|
|
F497000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F497000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F497000
|
| Size: |
36864
|
|
|
3C24000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003C24000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3C24000
|
| Size: |
167936
|
|
|
13ADE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956207443.0000000013ADE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
13ADE000
|
| Size: |
8192
|
|
|
4950000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1553490095.0000000004950000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
4950000
|
| Size: |
12288
|
|
|
820000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1889226416.0000000000820000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
820000
|
| Size: |
8192
|
|
|
84A000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000007.00000002.1891112348.000000000084A000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
84A000
|
| Size: |
4096
|
|
|
4007000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000004007000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4007000
|
| Size: |
172032
|
|
|
520E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1814119840.000000000520E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
520E000
|
| Size: |
8192
|
|
|
6A7000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000001.00000002.3902066504.00000000006A7000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
6A7000
|
| Size: |
4096
|
|
|
643E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3917135696.000000000643E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
643E000
|
| Size: |
8192
|
|
|
3794000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2008184654.0000000003794000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3794000
|
| Size: |
180224
|
|
|
B2FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3924576145.000000000B2FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
B2FE000
|
| Size: |
8192
|
|
|
3F2C000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003F2C000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3F2C000
|
| Size: |
167936
|
|
|
26C1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1996580940.00000000026C1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
26C1000
|
| Size: |
45056
|
|
|
AB0000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000A.00000002.1995982428.0000000000AB0000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
AB0000
|
| Size: |
65536
|
|
|
39FF000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1542654652.00000000039FF000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
39FF000
|
| Size: |
192512
|
|
|
1440B000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.000000001440B000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1440B000
|
| Size: |
172032
|
|
|
AA3E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3923963166.000000000AA3E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
AA3E000
|
| Size: |
8192
|
|
|
4638000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1917591284.0000000004638000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4638000
|
| Size: |
8192
|
|
|
6AE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1887599195.00000000006AE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
6AE000
|
| Size: |
8192
|
|
|
FAE4000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000FAE4000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
FAE4000
|
| Size: |
167936
|
|
|
4F0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1776139540.00000000004F0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4F0000
|
| Size: |
24576
|
|
|
5140000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1601577340.0000000005140000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5140000
|
| Size: |
4096
|
|
|
36B7000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603803401.00000000036B7000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36B7000
|
| Size: |
4096
|
|
|
135DE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3955579977.00000000135DE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
135DE000
|
| Size: |
8192
|
|
|
BAE9000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3925372476.000000000BAE9000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
BAE9000
|
| Size: |
16384
|
|
|
148A9000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.00000000148A9000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
148A9000
|
| Size: |
167936
|
|
|
27C41000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000027C41000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
27C41000
|
| Size: |
167936
|
|
|
368D000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1589839204.000000000368D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
368D000
|
| Size: |
278528
|
|
|
BD8D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3926821498.000000000BD8D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
BD8D000
|
| Size: |
12288
|
|
|
28816000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000028816000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
28816000
|
| Size: |
167936
|
|
|
286C1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.00000000286C1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
286C1000
|
| Size: |
167936
|
|
|
AA0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3903763523.0000000000AA0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
AA0000
|
| Size: |
20480
|
|
|
68A000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000001.00000002.3901797710.000000000068A000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
68A000
|
| Size: |
8192
|
|
|
6C5000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1782388678.00000000006C5000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6C5000
|
| Size: |
229376
|
|
|
63C000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000006.00000002.1780326865.000000000063C000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
63C000
|
| Size: |
4096
|
|
|
FBBC000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000FBBC000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
FBBC000
|
| Size: |
36864
|
|
|
1359E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3955537190.000000001359E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1359E000
|
| Size: |
8192
|
|
|
5AD8000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1590154643.0000000005AD8000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5AD8000
|
| Size: |
8192
|
|
|
283F5000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.00000000283F5000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
283F5000
|
| Size: |
172032
|
|
|
97FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3922091192.00000000097FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
97FE000
|
| Size: |
8192
|
|
|
11661000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.0000000011661000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
11661000
|
| Size: |
135168
|
|
|
5C90000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3916532270.0000000005C90000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5C90000
|
| Size: |
4096
|
|
|
740000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1516733274.0000000000740000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
740000
|
| Size: |
8192
|
|
|
F077000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F077000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F077000
|
| Size: |
167936
|
|
|
1281D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3954155209.000000001281D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1281D000
|
| Size: |
12288
|
|
|
8EBE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3921194741.0000000008EBE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
8EBE000
|
| Size: |
8192
|
|
|
BA6E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3925372476.000000000BA6E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
BA6E000
|
| Size: |
155648
|
|
|
38FB000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.00000000038FB000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
38FB000
|
| Size: |
167936
|
|
|
529F000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3914626533.000000000529F000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
529F000
|
| Size: |
114688
|
|
|
36C2000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1584308708.00000000036C2000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36C2000
|
| Size: |
61440
|
|
|
27CF9000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000027CF9000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
27CF9000
|
| Size: |
167936
|
|
|
5CBC000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1572461671.0000000005CBC000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5CBC000
|
| Size: |
16384
|
|
|
B0FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3924432903.000000000B0FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
B0FE000
|
| Size: |
8192
|
|
|
842000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000007.00000002.1890723486.0000000000842000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
842000
|
| Size: |
16384
|
|
|
36AE000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1582266982.00000000036AE000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36AE000
|
| Size: |
61440
|
|
|
10D8D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945722090.0000000010D8D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
10D8D000
|
| Size: |
12288
|
|
|
B47E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3924773057.000000000B47E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
B47E000
|
| Size: |
8192
|
|
|
1A35D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3966919071.000000001A35D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1A35D000
|
| Size: |
12288
|
|
|
EFBF000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000EFBF000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
EFBF000
|
| Size: |
167936
|
|
|
B9FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3925280511.000000000B9FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
B9FE000
|
| Size: |
8192
|
|
|
199000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1768517884.0000000000199000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
199000
|
| Size: |
28672
|
|
|
63A000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000A.00000002.1982812967.000000000063A000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
63A000
|
| Size: |
4096
|
|
|
EEA9000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000EEA9000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
EEA9000
|
| Size: |
28672
|
|
|
372D000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2008184654.000000000372D000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
372D000
|
| Size: |
8192
|
|
|
4BE0000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000001.00000002.3913575879.0000000004BE0000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
4BE0000
|
| Size: |
20480
|
|
|
36B8000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1597957030.00000000036B8000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36B8000
|
| Size: |
86016
|
|
|
8A7000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
0000000A.00000002.1992516814.00000000008A7000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
8A7000
|
| Size: |
4096
|
|
|
1028E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3944744220.000000001028E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1028E000
|
| Size: |
8192
|
|
|
13E5E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956559475.0000000013E5E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
13E5E000
|
| Size: |
8192
|
|
|
3676000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1597834313.0000000003676000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3676000
|
| Size: |
8192
|
|
|
108CE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945302231.00000000108CE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
108CE000
|
| Size: |
8192
|
|
|
366D000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1596830296.000000000366D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
366D000
|
| Size: |
8192
|
|
|
3677000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1582266982.0000000003677000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3677000
|
| Size: |
98304
|
|
|
FECE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3944389953.000000000FECE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
FECE000
|
| Size: |
8192
|
|
|
4D10000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1811147358.0000000004D10000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4D10000
|
| Size: |
135168
|
|
|
3695000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1582929324.0000000003695000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3695000
|
| Size: |
8192
|
|
|
647D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3917161389.000000000647D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
647D000
|
| Size: |
12288
|
|
|
593E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1571611913.000000000593E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
593E000
|
| Size: |
8192
|
|
|
13F9E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956702913.0000000013F9E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
13F9E000
|
| Size: |
8192
|
|
|
83A000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000007.00000002.1889523980.000000000083A000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
83A000
|
| Size: |
8192
|
|
|
5225000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1568960038.0000000005225000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5225000
|
| Size: |
8192
|
|
|
9E3E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3922766676.0000000009E3E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
9E3E000
|
| Size: |
8192
|
|
|
5A4000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1884071412.00000000005A4000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5A4000
|
| Size: |
221184
|
|
|
1139A000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.000000001139A000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1139A000
|
| Size: |
167936
|
|
|
36B5000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1597935466.00000000036B5000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36B5000
|
| Size: |
98304
|
|
|
32EE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1602832263.00000000032EE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
32EE000
|
| Size: |
8192
|
|
|
4F5E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1567117146.0000000004F5E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4F5E000
|
| Size: |
8192
|
|
|
A1FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3923154639.000000000A1FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A1FE000
|
| Size: |
8192
|
|
|
38C7000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1542654652.00000000038C7000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
38C7000
|
| Size: |
188416
|
|
|
3A19000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1804275630.0000000003A19000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3A19000
|
| Size: |
192512
|
|
|
146D6000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956891792.00000000146D6000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
146D6000
|
| Size: |
172032
|
|
|
56CF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000006.00000002.1832397425.00000000056CF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
6
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
56CF000
|
| Size: |
4096
|
|
|
99B000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1519912861.000000000099B000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
99B000
|
| Size: |
4096
|
|
|
B30000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3903965831.0000000000B30000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B30000
|
| Size: |
16384
|
|
|
13D5E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3956490017.0000000013D5E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
13D5E000
|
| Size: |
8192
|
|
|
3641000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1602081625.0000000003641000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3641000
|
| Size: |
77824
|
|
|
4E6D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3914063741.0000000004E6D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4E6D000
|
| Size: |
12288
|
|
|
BAD9000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3925372476.000000000BAD9000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
BAD9000
|
| Size: |
12288
|
|
|
476E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3913062933.000000000476E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
476E000
|
| Size: |
8192
|
|
|
600000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.1982234411.0000000000600000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
600000
|
| Size: |
8192
|
|
|
B1FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3924489969.000000000B1FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
B1FE000
|
| Size: |
8192
|
|
|
B37000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3903965831.0000000000B37000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
B37000
|
| Size: |
28672
|
|
|
3DD7000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3905992127.0000000003DD7000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3DD7000
|
| Size: |
167936
|
|
|
993D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3922247949.000000000993D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
993D000
|
| Size: |
12288
|
|
|
982000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1519530590.0000000000982000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
982000
|
| Size: |
4096
|
|
|
27DF2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967643390.0000000027DF2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
27DF2000
|
| Size: |
167936
|
|
|
48EE000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2020423695.00000000048EE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
48EE000
|
| Size: |
8192
|
|
|
400000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000000.1429471891.0000000000400000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
400000
|
| Size: |
4096
|
|
|
366F000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1597834313.000000000366F000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
366F000
|
| Size: |
16384
|
|
|
BAEF000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3925372476.000000000BAEF000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
BAEF000
|
| Size: |
8192
|
|
|
3800000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1542654652.0000000003800000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3800000
|
| Size: |
192512
|
|
|
F28A000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F28A000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F28A000
|
| Size: |
172032
|
|
|
A6FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3923650404.000000000A6FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A6FE000
|
| Size: |
8192
|
|
|
77E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1517586042.000000000077E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
77E000
|
| Size: |
98304
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Sample file is different than original file name gathered from version info |
System Summary |
|
|
|
EDAE000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000EDAE000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
EDAE000
|
| Size: |
167936
|
|
|
D3CE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3929388100.000000000D3CE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
D3CE000
|
| Size: |
8192
|
|
|
3695000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1581779964.0000000003695000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
3695000
|
| Size: |
8192
|
|
|
50AF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3914219783.00000000050AF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
50AF000
|
| Size: |
4096
|
|
|
77A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1517586042.000000000077A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
77A000
|
| Size: |
8192
|
|
|
564F000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.2025785363.000000000564F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
564F000
|
| Size: |
4096
|
|
|
42A000
|
unkown
|
page write copy
|
|
|
|
| Name: |
00000000.00000000.1429550744.000000000042A000.00000008.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page write copy
|
| Base address: |
42A000
|
| Size: |
4096
|
|
|
1A91E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3967042304.000000001A91E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1A91E000
|
| Size: |
8192
|
|
|
AA7000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3903763523.0000000000AA7000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
AA7000
|
| Size: |
28672
|
|
|
50ED000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3914256127.00000000050ED000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
50ED000
|
| Size: |
12288
|
|
|
ADBD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3924224962.000000000ADBD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
ADBD000
|
| Size: |
12288
|
|
|
7AFD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3919081832.0000000007AFD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
7AFD000
|
| Size: |
12288
|
|
|
F7BD000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F7BD000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F7BD000
|
| Size: |
172032
|
|
|
8FFE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3921316152.0000000008FFE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
8FFE000
|
| Size: |
8192
|
|
|
5F7E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3916821975.0000000005F7E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
5F7E000
|
| Size: |
8192
|
|
|
F114000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F114000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F114000
|
| Size: |
172032
|
|
|
1150B000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3945858446.000000001150B000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1150B000
|
| Size: |
172032
|
|
|
877E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3920526853.000000000877E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
877E000
|
| Size: |
8192
|
|
|
B20000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1520871382.0000000000B20000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
B20000
|
| Size: |
65536
|
|
|
9B000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.1879952816.000000000009B000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
9B000
|
| Size: |
20480
|
|
|
522D000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3914573418.000000000522D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
522D000
|
| Size: |
4096
|
|
|
4BF0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3913631459.0000000004BF0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4BF0000
|
| Size: |
233472
|
|
|
F1CD000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000001.00000002.3930212040.000000000F1CD000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
1
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F1CD000
|
| Size: |
167936
|
|
|
32FB000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1602832263.00000000032FB000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
32FB000
|
| Size: |
4096
|
|
|
36C2000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1603882913.00000000036C2000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36C2000
|
| Size: |
12288
|
|
|
36B6000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000003.1596683441.00000000036B6000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
36B6000
|
| Size: |
8192
|
|
|
800000
|
heap
|
page execute and read and write
|
|
|
|
| Name: |
00000007.00000002.1888675533.0000000000800000.00000040.00000020.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page execute and read and write
|
| Base address: |
800000
|
| Size: |
4096
|
|
