|
2871000
|
trusted library allocation
|
page read and write
|
 |
|
|
| Name: |
00000000.00000002.1104672970.0000000002871000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2871000
|
| Size: |
675840
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Yara detected Costura Assembly Loader |
Data Obfuscation |
|
| Sample file is different than original file name gathered from version info |
System Summary |
|
| URLs found in memory or binary data |
Networking |
|
| Binary contains paths to debug symbols |
Compliance, System Summary |
|
|
|
2CF1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195281641.0000000002CF1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2CF1000
|
| Size: |
167936
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Yara detected Costura Assembly Loader |
Data Obfuscation |
|
|
|
202000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000000.1056274522.0000000000202000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
202000
|
| Size: |
1699840
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Yara detected Costura Assembly Loader |
Data Obfuscation |
|
|
|
25A0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104281008.00000000025A0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
25A0000
|
| Size: |
40960
|
|
|
8CE7000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1107122225.0000000008CE7000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
8CE7000
|
| Size: |
8192
|
|
|
EC5000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1194501095.0000000000EC5000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
EC5000
|
| Size: |
16384
|
|
|
732E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1197497591.000000000732E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
732E000
|
| Size: |
8192
|
|
|
52A0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196328881.00000000052A0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
52A0000
|
| Size: |
4096
|
|
|
D07000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1193876861.0000000000D07000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
D07000
|
| Size: |
32768
|
|
|
25B2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104331450.00000000025B2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
25B2000
|
| Size: |
4096
|
|
|
89AC000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1197666772.00000000089AC000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
89AC000
|
| Size: |
53248
|
|
|
4F50000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105824338.0000000004F50000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4F50000
|
| Size: |
8192
|
|
|
2820000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1104553309.0000000002820000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
2820000
|
| Size: |
65536
|
|
|
DB8000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1193937748.0000000000DB8000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
DB8000
|
| Size: |
4096
|
|
|
262E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104475819.000000000262E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
262E000
|
| Size: |
8192
|
|
|
285F000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104621980.000000000285F000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
285F000
|
| Size: |
4096
|
|
|
2860000
|
heap
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1104657202.0000000002860000.00000040.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page execute and read and write
|
| Base address: |
2860000
|
| Size: |
4096
|
|
|
4CCE000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105362925.0000000004CCE000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4CCE000
|
| Size: |
8192
|
|
|
4DA0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105656031.0000000004DA0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4DA0000
|
| Size: |
4096
|
|
|
3E39000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195621355.0000000003E39000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3E39000
|
| Size: |
4096
|
|
|
7D5000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103547205.00000000007D5000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
7D5000
|
| Size: |
12288
|
|
|
2B43000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195018561.0000000002B43000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2B43000
|
| Size: |
16384
|
|
|
2593000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1104234548.0000000002593000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
2593000
|
| Size: |
4096
|
|
|
70F0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1106782122.00000000070F0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
70F0000
|
| Size: |
4096
|
|
|
880E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1197618241.000000000880E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
880E000
|
| Size: |
8192
|
|
|
2AC6000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000002.00000002.1194848185.0000000002AC6000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
2AC6000
|
| Size: |
8192
|
|
|
8D0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103638879.00000000008D0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
8D0000
|
| Size: |
4096
|
|
|
89A4000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1197666772.00000000089A4000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
89A4000
|
| Size: |
8192
|
|
|
4D10000
|
heap
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1105544986.0000000004D10000.00000040.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page execute and read and write
|
| Base address: |
4D10000
|
| Size: |
4096
|
|
|
8B3E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1198097613.0000000008B3E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
8B3E000
|
| Size: |
8192
|
|
|
2D1B000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195281641.0000000002D1B000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2D1B000
|
| Size: |
4096
|
|
|
281E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104528204.000000000281E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
281E000
|
| Size: |
8192
|
|
|
11EE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1194607301.00000000011EE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
11EE000
|
| Size: |
8192
|
|
|
2AC0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1194808602.0000000002AC0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2AC0000
|
| Size: |
4096
|
|
|
242F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104050282.000000000242F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
242F000
|
| Size: |
4096
|
|
|
7D0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103547205.00000000007D0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
7D0000
|
| Size: |
16384
|
|
|
5225000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105991005.0000000005225000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5225000
|
| Size: |
40960
|
|
|
4CB0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105362925.0000000004CB0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4CB0000
|
| Size: |
12288
|
|
|
51F6000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195844037.00000000051F6000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
51F6000
|
| Size: |
16384
|
|
|
5235000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196173848.0000000005235000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
5235000
|
| Size: |
45056
|
|
|
3AF9000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104800164.0000000003AF9000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3AF9000
|
| Size: |
716800
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Sample file is different than original file name gathered from version info |
System Summary |
|
| URLs found in memory or binary data |
Networking |
|
| Binary contains paths to debug symbols |
Compliance, System Summary |
|
|
|
51EE000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195844037.00000000051EE000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
51EE000
|
| Size: |
8192
|
|
|
3D99000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195621355.0000000003D99000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D99000
|
| Size: |
4096
|
|
|
7110000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1197267519.0000000007110000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
7110000
|
| Size: |
4096
|
|
|
256E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104148878.000000000256E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
256E000
|
| Size: |
8192
|
|
|
3D49000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195621355.0000000003D49000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D49000
|
| Size: |
4096
|
|
|
2580000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104177141.0000000002580000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2580000
|
| Size: |
8192
|
|
|
56E0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196824585.00000000056E0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
56E0000
|
| Size: |
36864
|
|
|
10DE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1194566647.00000000010DE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
10DE000
|
| Size: |
8192
|
|
|
8CE3000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1107122225.0000000008CE3000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
8CE3000
|
| Size: |
4096
|
|
|
5214000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196064664.0000000005214000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
5214000
|
| Size: |
49152
|
|
|
560E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196633186.000000000560E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
560E000
|
| Size: |
8192
|
|
|
2C7E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195209580.0000000002C7E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
2C7E000
|
| Size: |
8192
|
|
|
D18000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1193937748.0000000000D18000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
D18000
|
| Size: |
90112
|
|
|
56D0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196824585.00000000056D0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
56D0000
|
| Size: |
4096
|
|
|
4E8D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195820557.0000000004E8D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4E8D000
|
| Size: |
12288
|
|
|
2590000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104204769.0000000002590000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2590000
|
| Size: |
8192
|
|
|
2AD7000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000002.00000002.1194951227.0000000002AD7000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
2AD7000
|
| Size: |
4096
|
|
|
4CDD000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105362925.0000000004CDD000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4CDD000
|
| Size: |
16384
|
|
|
2B40000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195018561.0000000002B40000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2B40000
|
| Size: |
4096
|
|
|
25C2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104407820.00000000025C2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
25C2000
|
| Size: |
4096
|
|
|
72EF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1197483884.00000000072EF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
72EF000
|
| Size: |
4096
|
|
|
88DE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1106878308.00000000088DE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
88DE000
|
| Size: |
8192
|
|
|
2CE0000
|
heap
|
page execute and read and write
|
|
|
|
| Name: |
00000002.00000002.1195265889.0000000002CE0000.00000040.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page execute and read and write
|
| Base address: |
2CE0000
|
| Size: |
4096
|
|
|
6F5E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1197156685.0000000006F5E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
6F5E000
|
| Size: |
8192
|
|
|
25C0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104391077.00000000025C0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
25C0000
|
| Size: |
4096
|
|
|
2ADB000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000002.00000002.1194965829.0000000002ADB000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
2ADB000
|
| Size: |
4096
|
|
|
A2F0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1198166229.000000000A2F0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
A2F0000
|
| Size: |
4096
|
|
|
109E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1194548506.000000000109E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
109E000
|
| Size: |
8192
|
|
|
2AC2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1194827828.0000000002AC2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2AC2000
|
| Size: |
4096
|
|
|
D49000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1193937748.0000000000D49000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
D49000
|
| Size: |
364544
|
|
|
53A0000
|
trusted library section
|
page readonly
|
|
|
|
| Name: |
00000002.00000002.1196503190.00000000053A0000.00000002.08000000.00040000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library section
|
| Protect: |
page readonly
|
| Base address: |
53A0000
|
| Size: |
4096
|
|
|
4D90000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1105629047.0000000004D90000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
4D90000
|
| Size: |
65536
|
|
|
12EE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1194632348.00000000012EE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
12EE000
|
| Size: |
8192
|
|
|
9F0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1193831744.00000000009F0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
9F0000
|
| Size: |
8192
|
|
|
57D0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196904245.00000000057D0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
57D0000
|
| Size: |
53248
|
|
|
7A0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103494840.00000000007A0000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
7A0000
|
| Size: |
4096
|
|
|
6EAE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1106711331.0000000006EAE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
6EAE000
|
| Size: |
8192
|
|
|
2ABD000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000002.00000002.1194778243.0000000002ABD000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
2ABD000
|
| Size: |
4096
|
|
|
DB0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1193937748.0000000000DB0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
DB0000
|
| Size: |
12288
|
|
|
2AF0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1194981763.0000000002AF0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2AF0000
|
| Size: |
4096
|
|
|
89DE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1106896847.00000000089DE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
89DE000
|
| Size: |
8192
|
|
|
259D000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1104265873.000000000259D000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
259D000
|
| Size: |
4096
|
|
|
71EE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1197466447.00000000071EE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
71EE000
|
| Size: |
8192
|
|
|
550B000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196606288.000000000550B000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
550B000
|
| Size: |
20480
|
|
|
4CBB000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105362925.0000000004CBB000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4CBB000
|
| Size: |
69632
|
|
|
8730000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1106802659.0000000008730000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
8730000
|
| Size: |
65536
|
|
|
2917000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104672970.0000000002917000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2917000
|
| Size: |
4096
|
|
|
200000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000000.1056247209.0000000000200000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
200000
|
| Size: |
4096
|
|
|
2840000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104599009.0000000002840000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2840000
|
| Size: |
65536
|
|
|
89A9000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1197666772.00000000089A9000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
89A9000
|
| Size: |
8192
|
|
|
8A52000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1106915067.0000000008A52000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
8A52000
|
| Size: |
36864
|
|
|
A0C0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1107228562.000000000A0C0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
A0C0000
|
| Size: |
4096
|
|
|
87CE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1197602444.00000000087CE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
87CE000
|
| Size: |
8192
|
|
|
496C000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105342979.000000000496C000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
496C000
|
| Size: |
16384
|
|
|
5370000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196456169.0000000005370000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
5370000
|
| Size: |
65536
|
|
|
988000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103685563.0000000000988000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
988000
|
| Size: |
12288
|
|
|
4D30000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105568406.0000000004D30000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4D30000
|
| Size: |
65536
|
|
|
D39000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1193937748.0000000000D39000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
D39000
|
| Size: |
24576
|
|
|
4F90000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105924335.0000000004F90000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4F90000
|
| Size: |
45056
|
|
|
CF7000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1193849361.0000000000CF7000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
CF7000
|
| Size: |
36864
|
|
|
5265000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1106060875.0000000005265000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5265000
|
| Size: |
12288
|
|
|
5230000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1106039947.0000000005230000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5230000
|
| Size: |
4096
|
|
|
9E8000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103685563.00000000009E8000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
9E8000
|
| Size: |
16384
|
|
|
EC0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1194501095.0000000000EC0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
EC0000
|
| Size: |
16384
|
|
|
8680000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000002.00000002.1197528686.0000000008680000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
8680000
|
| Size: |
65536
|
|
|
57DE000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196904245.00000000057DE000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
57DE000
|
| Size: |
24576
|
|
|
5690000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196652914.0000000005690000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5690000
|
| Size: |
4096
|
|
|
2AA0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1194668807.0000000002AA0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2AA0000
|
| Size: |
8192
|
|
|
2A90000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1194652533.0000000002A90000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2A90000
|
| Size: |
8192
|
|
|
3879000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104800164.0000000003879000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3879000
|
| Size: |
2027520
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Sample file is different than original file name gathered from version info |
System Summary |
|
| URLs found in memory or binary data |
Networking |
|
| Binary contains paths to debug symbols |
Compliance, System Summary |
|
|
|
6FAF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1106729561.0000000006FAF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
6FAF000
|
| Size: |
4096
|
|
|
4F60000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105841992.0000000004F60000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4F60000
|
| Size: |
4096
|
|
|
246D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104104996.000000000246D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
246D000
|
| Size: |
12288
|
|
|
711A000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1197267519.000000000711A000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
711A000
|
| Size: |
24576
|
|
|
54C0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196583662.00000000054C0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
54C0000
|
| Size: |
8192
|
|
|
E8E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1194483166.0000000000E8E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
E8E000
|
| Size: |
8192
|
|
|
7113000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1197267519.0000000007113000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
7113000
|
| Size: |
4096
|
|
|
52B0000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000002.00000002.1196347583.00000000052B0000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
52B0000
|
| Size: |
65536
|
|
|
4D83000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105601104.0000000004D83000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4D83000
|
| Size: |
16384
|
|
|
5940000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1197008566.0000000005940000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
5940000
|
| Size: |
45056
|
|
|
10E0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1194586004.00000000010E0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
10E0000
|
| Size: |
12288
|
|
|
4D80000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105601104.0000000004D80000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4D80000
|
| Size: |
4096
|
|
|
4D00000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105522970.0000000004D00000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4D00000
|
| Size: |
65536
|
|
|
56C5000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196766540.00000000056C5000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
56C5000
|
| Size: |
40960
|
|
|
2B3E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1194998726.0000000002B3E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
2B3E000
|
| Size: |
8192
|
|
|
2D97000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195281641.0000000002D97000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2D97000
|
| Size: |
4096
|
|
|
4D13000
|
heap
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1105544986.0000000004D13000.00000040.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page execute and read and write
|
| Base address: |
4D13000
|
| Size: |
4096
|
|
|
53AA000
|
trusted library section
|
page readonly
|
|
|
|
| Name: |
00000002.00000002.1196503190.00000000053AA000.00000002.08000000.00040000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library section
|
| Protect: |
page readonly
|
| Base address: |
53AA000
|
| Size: |
4096
|
|
|
232E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104028870.000000000232E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
232E000
|
| Size: |
8192
|
|
|
2AD0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1194920215.0000000002AD0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2AD0000
|
| Size: |
4096
|
|
|
56A0000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000002.00000002.1196668081.00000000056A0000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
56A0000
|
| Size: |
65536
|
|
|
7130000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1197448526.0000000007130000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
7130000
|
| Size: |
4096
|
|
|
9C6000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103685563.00000000009C6000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
9C6000
|
| Size: |
122880
|
|
|
2D23000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195281641.0000000002D23000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2D23000
|
| Size: |
471040
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Sample file is different than original file name gathered from version info |
System Summary |
|
| URLs found in memory or binary data |
Networking |
|
| Binary contains paths to debug symbols |
Compliance, System Summary |
|
|
|
2ACA000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000002.00000002.1194886785.0000000002ACA000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
2ACA000
|
| Size: |
4096
|
|
|
890E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1197634758.000000000890E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
890E000
|
| Size: |
8192
|
|
|
4E20000
|
trusted library section
|
page readonly
|
|
|
|
| Name: |
00000000.00000002.1105786379.0000000004E20000.00000002.08000000.00040000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library section
|
| Protect: |
page readonly
|
| Base address: |
4E20000
|
| Size: |
65536
|
|
|
963000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103685563.0000000000963000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
963000
|
| Size: |
147456
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Sample file is different than original file name gathered from version info |
System Summary |
|
|
|
977000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1193784513.0000000000977000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
977000
|
| Size: |
36864
|
|
|
68F0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1106187579.00000000068F0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
68F0000
|
| Size: |
24576
|
|
|
25C7000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1104426126.00000000025C7000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
25C7000
|
| Size: |
4096
|
|
|
2AA3000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000002.00000002.1194705365.0000000002AA3000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
2AA3000
|
| Size: |
4096
|
|
|
9F8000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103685563.00000000009F8000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
9F8000
|
| Size: |
8192
|
|
|
8C7000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103605415.00000000008C7000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
8C7000
|
| Size: |
32768
|
|
|
56C0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196766540.00000000056C0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
56C0000
|
| Size: |
12288
|
|
|
4F70000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1105857395.0000000004F70000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
4F70000
|
| Size: |
65536
|
|
|
D10000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1193937748.0000000000D10000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
D10000
|
| Size: |
28672
|
|
|
DFF000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1194342520.0000000000DFF000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
DFF000
|
| Size: |
65536
|
|
|
5330000
|
heap
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1106162286.0000000005330000.00000040.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page execute and read and write
|
| Base address: |
5330000
|
| Size: |
4096
|
|
|
6CF0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1106634350.0000000006CF0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6CF0000
|
| Size: |
81920
|
|
|
5260000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196277051.0000000005260000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
5260000
|
| Size: |
65536
|
|
|
2830000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104576468.0000000002830000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2830000
|
| Size: |
65536
|
|
|
25BA000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1104364984.00000000025BA000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
25BA000
|
| Size: |
4096
|
|
|
5220000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105991005.0000000005220000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5220000
|
| Size: |
12288
|
|
|
637000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103432450.0000000000637000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
637000
|
| Size: |
36864
|
|
|
950000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103685563.0000000000950000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
950000
|
| Size: |
40960
|
|
|
DE1000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1194342520.0000000000DE1000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
DE1000
|
| Size: |
98304
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Sample file is different than original file name gathered from version info |
System Summary |
|
| URLs found in memory or binary data |
Networking |
|
| Binary contains paths to debug symbols |
Compliance, System Summary |
|
|
|
4E1C000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105755002.0000000004E1C000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4E1C000
|
| Size: |
16384
|
|
|
900000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103653205.0000000000900000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
900000
|
| Size: |
12288
|
|
|
737000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103465985.0000000000737000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
737000
|
| Size: |
36864
|
|
|
2B50000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000002.00000002.1195052507.0000000002B50000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
2B50000
|
| Size: |
65536
|
|
|
705F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1197181838.000000000705F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
705F000
|
| Size: |
4096
|
|
|
8B2E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1107072184.0000000008B2E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
8B2E000
|
| Size: |
8192
|
|
|
6912000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1106187579.0000000006912000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
6912000
|
| Size: |
1634304
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| URLs found in memory or binary data |
Networking |
|
|
|
8C2F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1107102536.0000000008C2F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
8C2F000
|
| Size: |
4096
|
|
|
5269000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1106138038.0000000005269000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5269000
|
| Size: |
8192
|
|
|
86CE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1197585227.00000000086CE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
86CE000
|
| Size: |
8192
|
|
|
4FA0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105949548.0000000004FA0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4FA0000
|
| Size: |
8192
|
|
|
5230000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196173848.0000000005230000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
5230000
|
| Size: |
16384
|
|
|
D2F000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1193937748.0000000000D2F000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
D2F000
|
| Size: |
36864
|
|
|
25B6000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1104347814.00000000025B6000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
25B6000
|
| Size: |
8192
|
|
|
DA8000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1193937748.0000000000DA8000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
DA8000
|
| Size: |
12288
|
|
|
995000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103685563.0000000000995000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
995000
|
| Size: |
196608
|
|
|
25CB000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1104442293.00000000025CB000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
25CB000
|
| Size: |
4096
|
|
|
9F4000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103685563.00000000009F4000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
9F4000
|
| Size: |
8192
|
|
|
51D4000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195844037.00000000051D4000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
51D4000
|
| Size: |
16384
|
|
|
7330000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1197514262.0000000007330000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
7330000
|
| Size: |
4096
|
|
|
889E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1106860047.000000000889E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
889E000
|
| Size: |
8192
|
|
|
3CF9000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195621355.0000000003CF9000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3CF9000
|
| Size: |
4096
|
|
|
8CEA000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1107122225.0000000008CEA000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
8CEA000
|
| Size: |
24576
|
|
|
3D21000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195621355.0000000003D21000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3D21000
|
| Size: |
4096
|
|
|
7B0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103521625.00000000007B0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
7B0000
|
| Size: |
8192
|
|
|
8A00000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1106915067.0000000008A00000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
8A00000
|
| Size: |
307200
|
|
|
2594000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104250157.0000000002594000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2594000
|
| Size: |
4096
|
|
|
52C2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196393590.00000000052C2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
52C2000
|
| Size: |
57344
|
|
|
51DB000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195844037.00000000051DB000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
51DB000
|
| Size: |
69632
|
|
|
8C0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103605415.00000000008C0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
8C0000
|
| Size: |
20480
|
|
|
4DB0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105707676.0000000004DB0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4DB0000
|
| Size: |
65536
|
|
|
4CE2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105362925.0000000004CE2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4CE2000
|
| Size: |
49152
|
|
|
2710000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104513500.0000000002710000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2710000
|
| Size: |
4096
|
|
|
22EE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104007488.00000000022EE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
22EE000
|
| Size: |
8192
|
|
|
5202000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195844037.0000000005202000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
5202000
|
| Size: |
49152
|
|
|
D00000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1193876861.0000000000D00000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
D00000
|
| Size: |
20480
|
|
|
25AD000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.1104298523.00000000025AD000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
25AD000
|
| Size: |
4096
|
|
|
2CBC000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195228509.0000000002CBC000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
2CBC000
|
| Size: |
16384
|
|
|
270B000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104495105.000000000270B000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
270B000
|
| Size: |
20480
|
|
|
3871000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104800164.0000000003871000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3871000
|
| Size: |
28672
|
|
|
2B60000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195132233.0000000002B60000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2B60000
|
| Size: |
65536
|
|
|
56EB000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196824585.00000000056EB000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
56EB000
|
| Size: |
16384
|
|
|
4CB4000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105362925.0000000004CB4000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4CB4000
|
| Size: |
16384
|
|
|
3CF1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195621355.0000000003CF1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3CF1000
|
| Size: |
28672
|
|
|
5220000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196115028.0000000005220000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
5220000
|
| Size: |
57344
|
|
|
8CE5000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1107122225.0000000008CE5000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
8CE5000
|
| Size: |
4096
|
|
|
522F000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196115028.000000000522F000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
522F000
|
| Size: |
4096
|
|
|
2AAD000
|
trusted library allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000002.00000002.1194738990.0000000002AAD000.00000040.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
2AAD000
|
| Size: |
4096
|
|
|
56B0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196715237.00000000056B0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
56B0000
|
| Size: |
32768
|
|
|
53B3000
|
heap
|
page execute and read and write
|
|
|
|
| Name: |
00000002.00000002.1196537050.00000000053B3000.00000040.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page execute and read and write
|
| Base address: |
53B3000
|
| Size: |
4096
|
|
|
4D70000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105589482.0000000004D70000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4D70000
|
| Size: |
4096
|
|
|
2CC0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195250150.0000000002CC0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2CC0000
|
| Size: |
4096
|
|
|
52C0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196393590.00000000052C0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
52C0000
|
| Size: |
4096
|
|
|
4CD6000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105362925.0000000004CD6000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4CD6000
|
| Size: |
16384
|
|
|
51FD000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195844037.00000000051FD000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
51FD000
|
| Size: |
16384
|
|
|
A22000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103967601.0000000000A22000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
A22000
|
| Size: |
184320
|
|
|
4CD1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105362925.0000000004CD1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4CD1000
|
| Size: |
16384
|
|
|
70EE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1106764339.00000000070EE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
70EE000
|
| Size: |
8192
|
|
|
94E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103669762.000000000094E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
94E000
|
| Size: |
8192
|
|
|
2AA4000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1194723148.0000000002AA4000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2AA4000
|
| Size: |
4096
|
|
|
2B70000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195193220.0000000002B70000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2B70000
|
| Size: |
4096
|
|
|
519D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105968335.000000000519D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
519D000
|
| Size: |
12288
|
|
|
95B000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103685563.000000000095B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
95B000
|
| Size: |
24576
|
|
|
4DA2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105656031.0000000004DA2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4DA2000
|
| Size: |
57344
|
|
|
4F80000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105885676.0000000004F80000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4F80000
|
| Size: |
32768
|
|
|
25E0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104458821.00000000025E0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
25E0000
|
| Size: |
4096
|
|
|
4CF5000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105488097.0000000004CF5000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4CF5000
|
| Size: |
45056
|
|
|
25B0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104315088.00000000025B0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
25B0000
|
| Size: |
4096
|
|
|
2AD2000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1194936555.0000000002AD2000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2AD2000
|
| Size: |
4096
|
|
|
6FEE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1106745991.0000000006FEE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
6FEE000
|
| Size: |
8192
|
|
|
E4E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1194463235.0000000000E4E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
E4E000
|
| Size: |
8192
|
|
|
3F79000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195621355.0000000003F79000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
3F79000
|
| Size: |
4096
|
|
|
9F0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103685563.00000000009F0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
9F0000
|
| Size: |
12288
|
|
|
5240000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196231636.0000000005240000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
5240000
|
| Size: |
65536
|
|
|
5240000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1106060875.0000000005240000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
5240000
|
| Size: |
147456
|
|
|
879E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1106839788.000000000879E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
879E000
|
| Size: |
8192
|
|
|
DA4000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1193937748.0000000000DA4000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
DA4000
|
| Size: |
12288
|
|
|
7117000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1197267519.0000000007117000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
7117000
|
| Size: |
8192
|
|
|
9E0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1193812343.00000000009E0000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
9E0000
|
| Size: |
4096
|
|
|
8A4E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1106915067.0000000008A4E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
8A4E000
|
| Size: |
12288
|
|
|
56B9000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196715237.00000000056B9000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
56B9000
|
| Size: |
8192
|
|
|
4F89000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105885676.0000000004F89000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4F89000
|
| Size: |
8192
|
|
|
8960000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1197666772.0000000008960000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
8960000
|
| Size: |
274432
|
|
|
8CE0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1107122225.0000000008CE0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
8CE0000
|
| Size: |
4096
|
|
|
5210000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196064664.0000000005210000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
5210000
|
| Size: |
4096
|
|
|
54B0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1196568697.00000000054B0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
54B0000
|
| Size: |
4096
|
|
|
6DF0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1106686833.0000000006DF0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
6DF0000
|
| Size: |
4096
|
|
|
53B0000
|
heap
|
page execute and read and write
|
|
|
|
| Name: |
00000002.00000002.1196537050.00000000053B0000.00000040.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page execute and read and write
|
| Base address: |
53B0000
|
| Size: |
4096
|
|
|
8910000
|
heap
|
page execute and read and write
|
|
|
|
| Name: |
00000002.00000002.1197651078.0000000008910000.00000040.00000020.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page execute and read and write
|
| Base address: |
8910000
|
| Size: |
4096
|
|
|
7115000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1197267519.0000000007115000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
7115000
|
| Size: |
4096
|
|
|
51D0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195844037.00000000051D0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
51D0000
|
| Size: |
12288
|
|
|
4CF0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1105488097.0000000004CF0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4CF0000
|
| Size: |
16384
|
|
|
2AB0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1194755025.0000000002AB0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2AB0000
|
| Size: |
24576
|
|
|
51F1000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195844037.00000000051F1000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
51F1000
|
| Size: |
16384
|
|
|
2850000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1104621980.0000000002850000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2850000
|
| Size: |
57344
|
|
|
9FC000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.1103685563.00000000009FC000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
9FC000
|
| Size: |
16384
|
|
|
2D1D000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000002.00000002.1195281641.0000000002D1D000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
2
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2D1D000
|
| Size: |
20480
|
|
