Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Bill of Lading.exe
|
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Roaming\mmgfreeway.exe
|
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\Roaming\mmgfreeway.exe:Zone.Identifier
|
ASCII text, with CRLF line terminators
|
modified
|
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\Bill of Lading.exe
|
"C:\Users\user\Desktop\Bill of Lading.exe"
|
|
|
|
C:\Windows\Microsoft.NET\Framework\v4.0.30319\InstallUtil.exe
|
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\InstallUtil.exe"
|
|
|
|
C:\Windows\SysWOW64\WerFault.exe
|
C:\Windows\SysWOW64\WerFault.exe -u -p 1036 -s 912
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
xwram1.duckdns.org
|
|
||
|
https://github.com/mgravell/protobuf-net
|
unknown
|
||
|
https://github.com/mgravell/protobuf-neti
|
unknown
|
||
|
https://stackoverflow.com/q/14436606/23354
|
unknown
|
||
|
https://github.com/mgravell/protobuf-netJ
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
|
unknown
|
||
|
https://stackoverflow.com/q/11564914/23354;
|
unknown
|
||
|
https://stackoverflow.com/q/2152978/23354
|
unknown
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
|
mmgfreeway
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
2731000
|
trusted library allocation
|
page read and write
|
|
|
|
2DA9000
|
trusted library allocation
|
page read and write
|
|
|
|
152000
|
remote allocation
|
page execute and read and write
|
|
|
|
50F0000
|
trusted library section
|
page read and write
|
|
|
|
2BF0000
|
trusted library allocation
|
page read and write
|
||
|
2CD8000
|
trusted library allocation
|
page read and write
|
||
|
7EE000
|
heap
|
page read and write
|
||
|
B2B000
|
trusted library allocation
|
page execute and read and write
|
||
|
2C8D000
|
trusted library allocation
|
page read and write
|
||
|
2D08000
|
trusted library allocation
|
page read and write
|
||
|
291A000
|
trusted library allocation
|
page read and write
|
||
|
2B7C000
|
trusted library allocation
|
page read and write
|
||
|
2898000
|
trusted library allocation
|
page read and write
|
||
|
2BB0000
|
trusted library allocation
|
page read and write
|
||
|
2C70000
|
trusted library allocation
|
page read and write
|
||
|
2CD4000
|
trusted library allocation
|
page read and write
|
||
|
2847000
|
trusted library allocation
|
page read and write
|
||
|
112000
|
unkown
|
page readonly
|
||
|
4E0E000
|
stack
|
page read and write
|
||
|
294C000
|
trusted library allocation
|
page read and write
|
||
|
295A000
|
trusted library allocation
|
page read and write
|
||
|
2CF1000
|
trusted library allocation
|
page read and write
|
||
|
653000
|
trusted library allocation
|
page execute and read and write
|
||
|
28ED000
|
trusted library allocation
|
page read and write
|
||
|
2C26000
|
trusted library allocation
|
page read and write
|
||
|
289A000
|
trusted library allocation
|
page read and write
|
||
|
29FE000
|
trusted library allocation
|
page read and write
|
||
|
2A5C000
|
trusted library allocation
|
page read and write
|
||
|
2ADD000
|
trusted library allocation
|
page read and write
|
||
|
4B70000
|
trusted library allocation
|
page read and write
|
||
|
2A30000
|
trusted library allocation
|
page read and write
|
||
|
2C59000
|
trusted library allocation
|
page read and write
|
||
|
77F000
|
heap
|
page read and write
|
||
|
2CEF000
|
trusted library allocation
|
page read and write
|
||
|
3911000
|
trusted library allocation
|
page read and write
|
||
|
6AA000
|
heap
|
page read and write
|
||
|
2826000
|
trusted library allocation
|
page read and write
|
||
|
28B2000
|
trusted library allocation
|
page read and write
|
||
|
2B4F000
|
trusted library allocation
|
page read and write
|
||
|
894000
|
heap
|
page read and write
|
||
|
2A64000
|
trusted library allocation
|
page read and write
|
||
|
28F7000
|
trusted library allocation
|
page read and write
|
||
|
2BCB000
|
trusted library allocation
|
page read and write
|
||
|
29C4000
|
trusted library allocation
|
page read and write
|
||
|
2C57000
|
trusted library allocation
|
page read and write
|
||
|
2B3D000
|
trusted library allocation
|
page read and write
|
||
|
8AE000
|
stack
|
page read and write
|
||
|
2BF4000
|
trusted library allocation
|
page read and write
|
||
|
2B8B000
|
trusted library allocation
|
page read and write
|
||
|
285E000
|
trusted library allocation
|
page read and write
|
||
|
2971000
|
trusted library allocation
|
page read and write
|
||
|
2941000
|
trusted library allocation
|
page read and write
|
||
|
2BC7000
|
trusted library allocation
|
page read and write
|
||
|
2962000
|
trusted library allocation
|
page read and write
|
||
|
2C87000
|
trusted library allocation
|
page read and write
|
||
|
51D0000
|
trusted library allocation
|
page read and write
|
||
|
2AFC000
|
trusted library allocation
|
page read and write
|
||
|
296D000
|
trusted library allocation
|
page read and write
|
||
|
2910000
|
trusted library allocation
|
page read and write
|
||
|
2973000
|
trusted library allocation
|
page read and write
|
||
|
292D000
|
trusted library allocation
|
page read and write
|
||
|
2AC8000
|
trusted library allocation
|
page read and write
|
||
|
2AAB000
|
trusted library allocation
|
page read and write
|
||
|
2CA6000
|
trusted library allocation
|
page read and write
|
||
|
6E1000
|
heap
|
page read and write
|
||
|
2914000
|
trusted library allocation
|
page read and write
|
||
|
BF0000
|
trusted library allocation
|
page read and write
|
||
|
2B02000
|
trusted library allocation
|
page read and write
|
||
|
2C37000
|
trusted library allocation
|
page read and write
|
||
|
686000
|
trusted library allocation
|
page execute and read and write
|
||
|
2C39000
|
trusted library allocation
|
page read and write
|
||
|
65D000
|
trusted library allocation
|
page execute and read and write
|
||
|
2C5B000
|
trusted library allocation
|
page read and write
|
||
|
2C98000
|
trusted library allocation
|
page read and write
|
||
|
28F9000
|
trusted library allocation
|
page read and write
|
||
|
7A7000
|
trusted library allocation
|
page execute and read and write
|
||
|
2B17000
|
trusted library allocation
|
page read and write
|
||
|
28C7000
|
trusted library allocation
|
page read and write
|
||
|
771000
|
heap
|
page read and write
|
||
|
2B8D000
|
trusted library allocation
|
page read and write
|
||
|
2D21000
|
trusted library allocation
|
page read and write
|
||
|
2BF2000
|
trusted library allocation
|
page read and write
|
||
|
2A88000
|
trusted library allocation
|
page read and write
|
||
|
2AFE000
|
trusted library allocation
|
page read and write
|
||
|
29D3000
|
trusted library allocation
|
page read and write
|
||
|
2A28000
|
trusted library allocation
|
page read and write
|
||
|
2B72000
|
trusted library allocation
|
page read and write
|
||
|
B10000
|
trusted library allocation
|
page read and write
|
||
|
856000
|
heap
|
page read and write
|
||
|
2B5C000
|
trusted library allocation
|
page read and write
|
||
|
2B3A000
|
trusted library allocation
|
page read and write
|
||
|
2A02000
|
trusted library allocation
|
page read and write
|
||
|
29C6000
|
trusted library allocation
|
page read and write
|
||
|
29AF000
|
trusted library allocation
|
page read and write
|
||
|
2C8F000
|
trusted library allocation
|
page read and write
|
||
|
2A2C000
|
trusted library allocation
|
page read and write
|
||
|
2CDA000
|
trusted library allocation
|
page read and write
|
||
|
2C14000
|
trusted library allocation
|
page read and write
|
||
|
29AB000
|
trusted library allocation
|
page read and write
|
||
|
2B34000
|
trusted library allocation
|
page read and write
|
||
|
2CDD000
|
trusted library allocation
|
page read and write
|
||
|
635000
|
heap
|
page read and write
|
||
|
284D000
|
trusted library allocation
|
page read and write
|
||
|
282E000
|
trusted library allocation
|
page read and write
|
||
|
2A7D000
|
trusted library allocation
|
page read and write
|
||
|
844000
|
heap
|
page read and write
|
||
|
52A0000
|
trusted library allocation
|
page read and write
|
||
|
2C41000
|
trusted library allocation
|
page read and write
|
||
|
2B36000
|
trusted library allocation
|
page read and write
|
||
|
28CB000
|
trusted library allocation
|
page read and write
|
||
|
2538000
|
trusted library allocation
|
page read and write
|
||
|
29FC000
|
trusted library allocation
|
page read and write
|
||
|
2A8C000
|
trusted library allocation
|
page read and write
|
||
|
5235000
|
trusted library allocation
|
page read and write
|
||
|
8F0000
|
trusted library allocation
|
page read and write
|
||
|
695000
|
heap
|
page read and write
|
||
|
2AFA000
|
trusted library allocation
|
page read and write
|
||
|
51F0000
|
trusted library allocation
|
page execute and read and write
|
||
|
2ACD000
|
trusted library allocation
|
page read and write
|
||
|
28C5000
|
trusted library allocation
|
page read and write
|
||
|
50E0000
|
trusted library allocation
|
page execute and read and write
|
||
|
8D0000
|
trusted library allocation
|
page read and write
|
||
|
2926000
|
trusted library allocation
|
page read and write
|
||
|
4C1E000
|
stack
|
page read and write
|
||
|
282A000
|
trusted library allocation
|
page read and write
|
||
|
2BB2000
|
trusted library allocation
|
page read and write
|
||
|
2BE2000
|
trusted library allocation
|
page read and write
|
||
|
4B80000
|
trusted library allocation
|
page read and write
|
||
|
2C28000
|
trusted library allocation
|
page read and write
|
||
|
29DD000
|
trusted library allocation
|
page read and write
|
||
|
2D25000
|
trusted library allocation
|
page read and write
|
||
|
2C6E000
|
trusted library allocation
|
page read and write
|
||
|
7C8000
|
heap
|
page read and write
|
||
|
2A1E000
|
trusted library allocation
|
page read and write
|
||
|
2D02000
|
trusted library allocation
|
page read and write
|
||
|
24AF000
|
stack
|
page read and write
|
||
|
455E000
|
stack
|
page read and write
|
||
|
2C6C000
|
trusted library allocation
|
page read and write
|
||
|
2D27000
|
trusted library allocation
|
page read and write
|
||
|
2BA8000
|
trusted library allocation
|
page read and write
|
||
|
4F4E000
|
stack
|
page read and write
|
||
|
2CA8000
|
trusted library allocation
|
page read and write
|
||
|
2AD9000
|
trusted library allocation
|
page read and write
|
||
|
2849000
|
trusted library allocation
|
page read and write
|
||
|
2828000
|
trusted library allocation
|
page read and write
|
||
|
BE0000
|
trusted library allocation
|
page read and write
|
||
|
2C8B000
|
trusted library allocation
|
page read and write
|
||
|
2C79000
|
trusted library allocation
|
page read and write
|
||
|
29E5000
|
trusted library allocation
|
page read and write
|
||
|
2BAE000
|
trusted library allocation
|
page read and write
|
||
|
2CAC000
|
trusted library allocation
|
page read and write
|
||
|
2AA3000
|
trusted library allocation
|
page read and write
|
||
|
292A000
|
trusted library allocation
|
page read and write
|
||
|
2720000
|
heap
|
page execute and read and write
|
||
|
2905000
|
trusted library allocation
|
page read and write
|
||
|
2CF8000
|
trusted library allocation
|
page read and write
|
||
|
2916000
|
trusted library allocation
|
page read and write
|
||
|
2CBB000
|
trusted library allocation
|
page read and write
|
||
|
2230000
|
heap
|
page read and write
|
||
|
293B000
|
trusted library allocation
|
page read and write
|
||
|
4C30000
|
heap
|
page execute and read and write
|
||
|
2903000
|
trusted library allocation
|
page read and write
|
||
|
2C3D000
|
trusted library allocation
|
page read and write
|
||
|
28D2000
|
trusted library allocation
|
page read and write
|
||
|
286B000
|
trusted library allocation
|
page read and write
|
||
|
2885000
|
trusted library allocation
|
page read and write
|
||
|
29E1000
|
trusted library allocation
|
page read and write
|
||
|
2B93000
|
trusted library allocation
|
page read and write
|
||
|
29C2000
|
trusted library allocation
|
page read and write
|
||
|
287F000
|
trusted library allocation
|
page read and write
|
||
|
296F000
|
trusted library allocation
|
page read and write
|
||
|
2CA2000
|
trusted library allocation
|
page read and write
|
||
|
610000
|
heap
|
page read and write
|
||
|
2AC4000
|
trusted library allocation
|
page read and write
|
||
|
29D0000
|
trusted library allocation
|
page read and write
|
||
|
295C000
|
trusted library allocation
|
page read and write
|
||
|
680000
|
heap
|
page read and write
|
||
|
29A7000
|
trusted library allocation
|
page read and write
|
||
|
8FD000
|
trusted library allocation
|
page execute and read and write
|
||
|
23D7000
|
trusted library allocation
|
page read and write
|
||
|
828000
|
heap
|
page read and write
|
||
|
2860000
|
trusted library allocation
|
page read and write
|
||
|
4F7E000
|
stack
|
page read and write
|
||
|
297E000
|
trusted library allocation
|
page read and write
|
||
|
28B4000
|
trusted library allocation
|
page read and write
|
||
|
2BEA000
|
trusted library allocation
|
page read and write
|
||
|
2A93000
|
trusted library allocation
|
page read and write
|
||
|
3731000
|
trusted library allocation
|
page read and write
|
||
|
2822000
|
trusted library allocation
|
page read and write
|
||
|
51E0000
|
trusted library allocation
|
page read and write
|
||
|
290A000
|
trusted library allocation
|
page read and write
|
||
|
2B68000
|
trusted library allocation
|
page read and write
|
||
|
50D0000
|
trusted library allocation
|
page execute and read and write
|
||
|
2ABE000
|
trusted library allocation
|
page read and write
|
||
|
2A8E000
|
trusted library allocation
|
page read and write
|
||
|
2AC0000
|
trusted library allocation
|
page read and write
|
||
|
2C24000
|
trusted library allocation
|
page read and write
|
||
|
2C46000
|
trusted library allocation
|
page read and write
|
||
|
2CC1000
|
trusted library allocation
|
page read and write
|
||
|
29E7000
|
trusted library allocation
|
page read and write
|
||
|
5250000
|
trusted library section
|
page read and write
|
||
|
504E000
|
stack
|
page read and write
|
||
|
2B26000
|
trusted library allocation
|
page read and write
|
||
|
670000
|
heap
|
page read and write
|
||
|
2CD2000
|
trusted library allocation
|
page read and write
|
||
|
4F7000
|
stack
|
page read and write
|
||
|
654000
|
trusted library allocation
|
page read and write
|
||
|
2979000
|
trusted library allocation
|
page read and write
|
||
|
289E000
|
trusted library allocation
|
page read and write
|
||
|
4B6F000
|
stack
|
page read and write
|
||
|
2907000
|
trusted library allocation
|
page read and write
|
||
|
660000
|
trusted library allocation
|
page read and write
|
||
|
C00000
|
heap
|
page read and write
|
||
|
2CAA000
|
trusted library allocation
|
page read and write
|
||
|
2C91000
|
trusted library allocation
|
page read and write
|
||
|
4F0F000
|
stack
|
page read and write
|
||
|
2CC4000
|
trusted library allocation
|
page read and write
|
||
|
4BE0000
|
heap
|
page execute and read and write
|
||
|
2850000
|
trusted library allocation
|
page read and write
|
||
|
298E000
|
trusted library allocation
|
page read and write
|
||
|
29E3000
|
trusted library allocation
|
page read and write
|
||
|
2B74000
|
trusted library allocation
|
page read and write
|
||
|
2A5A000
|
trusted library allocation
|
page read and write
|
||
|
2943000
|
trusted library allocation
|
page read and write
|
||
|
B27000
|
trusted library allocation
|
page execute and read and write
|
||
|
49DE000
|
stack
|
page read and write
|
||
|
28E4000
|
trusted library allocation
|
page read and write
|
||
|
2C85000
|
trusted library allocation
|
page read and write
|
||
|
2340000
|
trusted library allocation
|
page read and write
|
||
|
55BE000
|
heap
|
page read and write
|
||
|
2D0C000
|
trusted library allocation
|
page read and write
|
||
|
29C000
|
stack
|
page read and write
|
||
|
2843000
|
trusted library allocation
|
page read and write
|
||
|
2A66000
|
trusted library allocation
|
page read and write
|
||
|
397000
|
stack
|
page read and write
|
||
|
29A9000
|
trusted library allocation
|
page read and write
|
||
|
2958000
|
trusted library allocation
|
page read and write
|
||
|
2BCE000
|
trusted library allocation
|
page read and write
|
||
|
B1A000
|
trusted library allocation
|
page execute and read and write
|
||
|
2B32000
|
trusted library allocation
|
page read and write
|
||
|
233E000
|
stack
|
page read and write
|
||
|
620000
|
heap
|
page read and write
|
||
|
4B90000
|
trusted library allocation
|
page read and write
|
||
|
600000
|
heap
|
page read and write
|
||
|
2A19000
|
trusted library allocation
|
page read and write
|
||
|
2B4B000
|
trusted library allocation
|
page read and write
|
||
|
28D6000
|
trusted library allocation
|
page read and write
|
||
|
2A2A000
|
trusted library allocation
|
page read and write
|
||
|
2B55000
|
trusted library allocation
|
page read and write
|
||
|
2A2E000
|
trusted library allocation
|
page read and write
|
||
|
2A68000
|
trusted library allocation
|
page read and write
|
||
|
5090000
|
trusted library allocation
|
page read and write
|
||
|
2A43000
|
trusted library allocation
|
page read and write
|
||
|
2894000
|
trusted library allocation
|
page read and write
|
||
|
2ABC000
|
trusted library allocation
|
page read and write
|
||
|
A0E000
|
stack
|
page read and write
|
||
|
7F3000
|
heap
|
page read and write
|
||
|
2A49000
|
trusted library allocation
|
page read and write
|
||
|
2C1E000
|
trusted library allocation
|
page read and write
|
||
|
2520000
|
heap
|
page read and write
|
||
|
6C7000
|
heap
|
page read and write
|
||
|
2881000
|
trusted library allocation
|
page read and write
|
||
|
23A0000
|
remote allocation
|
page read and write
|
||
|
2D06000
|
trusted library allocation
|
page read and write
|
||
|
2C2A000
|
trusted library allocation
|
page read and write
|
||
|
2AC6000
|
trusted library allocation
|
page read and write
|
||
|
4E7F000
|
stack
|
page read and write
|
||
|
2C76000
|
trusted library allocation
|
page read and write
|
||
|
2A54000
|
trusted library allocation
|
page read and write
|
||
|
2BC5000
|
trusted library allocation
|
page read and write
|
||
|
29CE000
|
trusted library allocation
|
page read and write
|
||
|
2B70000
|
trusted library allocation
|
page read and write
|
||
|
2B7A000
|
trusted library allocation
|
page read and write
|
||
|
2AB6000
|
trusted library allocation
|
page read and write
|
||
|
2A90000
|
trusted library allocation
|
page read and write
|
||
|
2990000
|
trusted library allocation
|
page read and write
|
||
|
2D0A000
|
trusted library allocation
|
page read and write
|
||
|
2D12000
|
trusted library allocation
|
page read and write
|
||
|
2856000
|
trusted library allocation
|
page read and write
|
||
|
2B38000
|
trusted library allocation
|
page read and write
|
||
|
2896000
|
trusted library allocation
|
page read and write
|
||
|
BD0000
|
trusted library allocation
|
page execute and read and write
|
||
|
640000
|
trusted library allocation
|
page read and write
|
||
|
2862000
|
trusted library allocation
|
page read and write
|
||
|
29DF000
|
trusted library allocation
|
page read and write
|
||
|
2879000
|
trusted library allocation
|
page read and write
|
||
|
6A0000
|
heap
|
page read and write
|
||
|
52D0000
|
trusted library allocation
|
page execute and read and write
|
||
|
2BEE000
|
trusted library allocation
|
page read and write
|
||
|
29F8000
|
trusted library allocation
|
page read and write
|
||
|
2C3B000
|
trusted library allocation
|
page read and write
|
||
|
28FD000
|
trusted library allocation
|
page read and write
|
||
|
2A6A000
|
trusted library allocation
|
page read and write
|
||
|
2D0E000
|
trusted library allocation
|
page read and write
|
||
|
2CA4000
|
trusted library allocation
|
page read and write
|
||
|
2B04000
|
trusted library allocation
|
page read and write
|
||
|
67E000
|
stack
|
page read and write
|
||
|
2B95000
|
trusted library allocation
|
page read and write
|
||
|
2901000
|
trusted library allocation
|
page read and write
|
||
|
2B9A000
|
trusted library allocation
|
page read and write
|
||
|
2B57000
|
trusted library allocation
|
page read and write
|
||
|
28CD000
|
trusted library allocation
|
page read and write
|
||
|
15C000
|
remote allocation
|
page execute and read and write
|
||
|
2B4D000
|
trusted library allocation
|
page read and write
|
||
|
2A17000
|
trusted library allocation
|
page read and write
|
||
|
55D2000
|
heap
|
page read and write
|
||
|
28C3000
|
trusted library allocation
|
page read and write
|
||
|
2C93000
|
trusted library allocation
|
page read and write
|
||
|
2B97000
|
trusted library allocation
|
page read and write
|
||
|
2B1B000
|
trusted library allocation
|
page read and write
|
||
|
2AF8000
|
trusted library allocation
|
page read and write
|
||
|
BCC000
|
stack
|
page read and write
|
||
|
2C1C000
|
trusted library allocation
|
page read and write
|
||
|
2AF0000
|
trusted library allocation
|
page read and write
|
||
|
271E000
|
stack
|
page read and write
|
||
|
2C22000
|
trusted library allocation
|
page read and write
|
||
|
2BAC000
|
trusted library allocation
|
page read and write
|
||
|
8E3000
|
trusted library allocation
|
page execute and read and write
|
||
|
2986000
|
trusted library allocation
|
page read and write
|
||
|
2BC3000
|
trusted library allocation
|
page read and write
|
||
|
2B00000
|
trusted library allocation
|
page read and write
|
||
|
29FA000
|
trusted library allocation
|
page read and write
|
||
|
5080000
|
trusted library allocation
|
page execute and read and write
|
||
|
9E0000
|
trusted library allocation
|
page read and write
|
||
|
2C3F000
|
trusted library allocation
|
page read and write
|
||
|
2928000
|
trusted library allocation
|
page read and write
|
||
|
150000
|
remote allocation
|
page execute and read and write
|
||
|
900000
|
heap
|
page read and write
|
||
|
29A1000
|
trusted library allocation
|
page read and write
|
||
|
2945000
|
trusted library allocation
|
page read and write
|
||
|
2A35000
|
trusted library allocation
|
page read and write
|
||
|
2AC2000
|
trusted library allocation
|
page read and write
|
||
|
2BA6000
|
trusted library allocation
|
page read and write
|
||
|
2A15000
|
trusted library allocation
|
page read and write
|
||
|
2C43000
|
trusted library allocation
|
page read and write
|
||
|
2B07000
|
trusted library allocation
|
page read and write
|
||
|
2877000
|
trusted library allocation
|
page read and write
|
||
|
4BDE000
|
stack
|
page read and write
|
||
|
7C0000
|
heap
|
page read and write
|
||
|
2345000
|
trusted library allocation
|
page read and write
|
||
|
7FA000
|
heap
|
page read and write
|
||
|
2B1D000
|
trusted library allocation
|
page read and write
|
||
|
50A0000
|
trusted library allocation
|
page read and write
|
||
|
2BE8000
|
trusted library allocation
|
page read and write
|
||
|
2C55000
|
trusted library allocation
|
page read and write
|
||
|
630000
|
heap
|
page read and write
|
||
|
B8E000
|
stack
|
page read and write
|
||
|
29B1000
|
trusted library allocation
|
page read and write
|
||
|
2B7E000
|
trusted library allocation
|
page read and write
|
||
|
11B000
|
stack
|
page read and write
|
||
|
29B3000
|
trusted library allocation
|
page read and write
|
||
|
2C0D000
|
trusted library allocation
|
page read and write
|
||
|
2ABA000
|
trusted library allocation
|
page read and write
|
||
|
288C000
|
trusted library allocation
|
page read and write
|
||
|
6AE000
|
heap
|
page read and write
|
||
|
B0F000
|
stack
|
page read and write
|
||
|
2B78000
|
trusted library allocation
|
page read and write
|
||
|
9D0000
|
trusted library allocation
|
page execute and read and write
|
||
|
28CF000
|
trusted library allocation
|
page read and write
|
||
|
50C0000
|
trusted library allocation
|
page read and write
|
||
|
2CD6000
|
trusted library allocation
|
page read and write
|
||
|
2AD7000
|
trusted library allocation
|
page read and write
|
||
|
51C0000
|
trusted library allocation
|
page read and write
|
||
|
2BC9000
|
trusted library allocation
|
page read and write
|
||
|
2864000
|
trusted library allocation
|
page read and write
|
||
|
4DCE000
|
stack
|
page read and write
|
||
|
2977000
|
trusted library allocation
|
page read and write
|
||
|
2AE1000
|
trusted library allocation
|
page read and write
|
||
|
297B000
|
trusted library allocation
|
page read and write
|
||
|
2A50000
|
trusted library allocation
|
page read and write
|
||
|
2C51000
|
trusted library allocation
|
page read and write
|
||
|
2A45000
|
trusted library allocation
|
page read and write
|
||
|
293D000
|
trusted library allocation
|
page read and write
|
||
|
2C05000
|
trusted library allocation
|
page read and write
|
||
|
2B15000
|
trusted library allocation
|
page read and write
|
||
|
2ACF000
|
trusted library allocation
|
page read and write
|
||
|
1E0000
|
heap
|
page read and write
|
||
|
110000
|
unkown
|
page readonly
|
||
|
2C53000
|
trusted library allocation
|
page read and write
|
||
|
2CED000
|
trusted library allocation
|
page read and write
|
||
|
5590000
|
heap
|
page read and write
|
||
|
55A2000
|
heap
|
page read and write
|
||
|
2A00000
|
trusted library allocation
|
page read and write
|
||
|
2947000
|
trusted library allocation
|
page read and write
|
||
|
86D000
|
heap
|
page read and write
|
||
|
29CC000
|
trusted library allocation
|
page read and write
|
||
|
2C0B000
|
trusted library allocation
|
page read and write
|
||
|
2964000
|
trusted library allocation
|
page read and write
|
||
|
2830000
|
trusted library allocation
|
page read and write
|
||
|
2A8A000
|
trusted library allocation
|
page read and write
|
||
|
289C000
|
trusted library allocation
|
page read and write
|
||
|
B22000
|
trusted library allocation
|
page read and write
|
||
|
28B6000
|
trusted library allocation
|
page read and write
|
||
|
4BF0000
|
trusted library section
|
page read and write
|
||
|
28EA000
|
trusted library allocation
|
page read and write
|
||
|
2C72000
|
trusted library allocation
|
page read and write
|
||
|
8ED000
|
trusted library allocation
|
page execute and read and write
|
||
|
28FB000
|
trusted library allocation
|
page read and write
|
||
|
2A04000
|
trusted library allocation
|
page read and write
|
||
|
51B0000
|
trusted library allocation
|
page execute and read and write
|
||
|
3921000
|
trusted library allocation
|
page read and write
|
||
|
33C1000
|
trusted library allocation
|
page read and write
|
||
|
2CF5000
|
trusted library allocation
|
page read and write
|
||
|
2918000
|
trusted library allocation
|
page read and write
|
||
|
287D000
|
trusted library allocation
|
page read and write
|
||
|
2D2C000
|
trusted library allocation
|
page read and write
|
||
|
B12000
|
trusted library allocation
|
page read and write
|
||
|
2B76000
|
trusted library allocation
|
page read and write
|
||
|
28E8000
|
trusted library allocation
|
page read and write
|
||
|
2A77000
|
trusted library allocation
|
page read and write
|
||
|
208000
|
unkown
|
page readonly
|
||
|
23B0000
|
heap
|
page execute and read and write
|
||
|
2CAE000
|
trusted library allocation
|
page read and write
|
||
|
2CF3000
|
trusted library allocation
|
page read and write
|
||
|
2A4D000
|
trusted library allocation
|
page read and write
|
||
|
4A70000
|
heap
|
page read and write
|
||
|
37AD000
|
trusted library allocation
|
page read and write
|
||
|
690000
|
heap
|
page read and write
|
||
|
2B2A000
|
trusted library allocation
|
page read and write
|
||
|
2BEC000
|
trusted library allocation
|
page read and write
|
||
|
28A0000
|
trusted library allocation
|
page read and write
|
||
|
29E9000
|
trusted library allocation
|
page read and write
|
||
|
48DB000
|
heap
|
page read and write
|
||
|
808000
|
heap
|
page read and write
|
||
|
5690000
|
heap
|
page read and write
|
||
|
7AB000
|
trusted library allocation
|
page execute and read and write
|
||
|
2AE3000
|
trusted library allocation
|
page read and write
|
||
|
834000
|
heap
|
page read and write
|
||
|
9F0000
|
heap
|
page read and write
|
||
|
26CD000
|
stack
|
page read and write
|
||
|
2B91000
|
trusted library allocation
|
page read and write
|
||
|
2BAA000
|
trusted library allocation
|
page read and write
|
||
|
2B22000
|
trusted library allocation
|
page read and write
|
||
|
2A5E000
|
trusted library allocation
|
page read and write
|
||
|
293F000
|
trusted library allocation
|
page read and write
|
||
|
288A000
|
trusted library allocation
|
page read and write
|
||
|
290C000
|
trusted library allocation
|
page read and write
|
||
|
2B51000
|
trusted library allocation
|
page read and write
|
||
|
2AA1000
|
trusted library allocation
|
page read and write
|
||
|
8E0000
|
trusted library allocation
|
page read and write
|
||
|
51C6000
|
trusted library allocation
|
page read and write
|
||
|
4A1E000
|
stack
|
page read and write
|
||
|
28AD000
|
trusted library allocation
|
page read and write
|
||
|
23C1000
|
trusted library allocation
|
page read and write
|
||
|
2A26000
|
trusted library allocation
|
page read and write
|
||
|
295E000
|
trusted library allocation
|
page read and write
|
||
|
2C5D000
|
trusted library allocation
|
page read and write
|
||
|
2956000
|
trusted library allocation
|
page read and write
|
||
|
2C07000
|
trusted library allocation
|
page read and write
|
||
|
2BB5000
|
trusted library allocation
|
page read and write
|
||
|
52B0000
|
trusted library allocation
|
page execute and read and write
|
||
|
2980000
|
trusted library allocation
|
page read and write
|
||
|
2AE6000
|
trusted library allocation
|
page read and write
|
||
|
2960000
|
trusted library allocation
|
page read and write
|
||
|
298C000
|
trusted library allocation
|
page read and write
|
||
|
2C10000
|
trusted library allocation
|
page read and write
|
||
|
2C20000
|
trusted library allocation
|
page read and write
|
||
|
29EB000
|
trusted library allocation
|
page read and write
|
||
|
2B3F000
|
trusted library allocation
|
page read and write
|
||
|
2BE6000
|
trusted library allocation
|
page read and write
|
||
|
221D000
|
stack
|
page read and write
|
||
|
51A0000
|
trusted library allocation
|
page read and write
|
||
|
2ADB000
|
trusted library allocation
|
page read and write
|
||
|
2AEC000
|
trusted library allocation
|
page read and write
|
||
|
2D23000
|
trusted library allocation
|
page read and write
|
||
|
2AA5000
|
trusted library allocation
|
page read and write
|
||
|
29CA000
|
trusted library allocation
|
page read and write
|
||
|
21DE000
|
stack
|
page read and write
|
||
|
2A47000
|
trusted library allocation
|
page read and write
|
||
|
2AAD000
|
trusted library allocation
|
page read and write
|
||
|
282C000
|
trusted library allocation
|
page read and write
|
||
|
8E4000
|
trusted library allocation
|
page read and write
|
||
|
B16000
|
trusted library allocation
|
page execute and read and write
|
||
|
29C8000
|
trusted library allocation
|
page read and write
|
||
|
28B0000
|
trusted library allocation
|
page read and write
|
||
|
29AD000
|
trusted library allocation
|
page read and write
|
||
|
5550000
|
trusted library allocation
|
page execute and read and write
|
||
|
2A60000
|
trusted library allocation
|
page read and write
|
||
|
2A79000
|
trusted library allocation
|
page read and write
|
||
|
2A13000
|
trusted library allocation
|
page read and write
|
||
|
2845000
|
trusted library allocation
|
page read and write
|
||
|
28E0000
|
trusted library allocation
|
page read and write
|
||
|
28E2000
|
trusted library allocation
|
page read and write
|
||
|
2C9A000
|
trusted library allocation
|
page read and write
|
||
|
2883000
|
trusted library allocation
|
page read and write
|
||
|
664000
|
trusted library allocation
|
page read and write
|
||
|
2AA7000
|
trusted library allocation
|
page read and write
|
||
|
2A86000
|
trusted library allocation
|
page read and write
|
||
|
2A32000
|
trusted library allocation
|
page read and write
|
||
|
48A0000
|
heap
|
page read and write
|
||
|
28E6000
|
trusted library allocation
|
page read and write
|
||
|
28C9000
|
trusted library allocation
|
page read and write
|
||
|
2824000
|
trusted library allocation
|
page read and write
|
||
|
190000
|
heap
|
page read and write
|
||
|
2868000
|
trusted library allocation
|
page read and write
|
||
|
2982000
|
trusted library allocation
|
page read and write
|
||
|
2CD0000
|
trusted library allocation
|
page read and write
|
||
|
2ADF000
|
trusted library allocation
|
page read and write
|
||
|
2C64000
|
trusted library allocation
|
page read and write
|
||
|
2B53000
|
trusted library allocation
|
page read and write
|
||
|
5150000
|
trusted library section
|
page read and write
|
||
|
284B000
|
trusted library allocation
|
page read and write
|
||
|
68A000
|
trusted library allocation
|
page execute and read and write
|
||
|
238E000
|
stack
|
page read and write
|
||
|
2B30000
|
trusted library allocation
|
page read and write
|
There are 495 hidden memdumps, click here to show them.