Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Fm9MoDgH7O.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
initial sample
|
 |
|
|
C:\1wk599.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\281l59.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\2qkewqk.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\36hmq.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\4uoic.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\4vd771.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\559900.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\5787leo.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\6r61155.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\71122as.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\7788uoi.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\78d5dr1.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\7kiolb.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\83377.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\88oxxqc.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\90omsp.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\93344.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\bp1975.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\e81f5.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\fx2dr.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\g7112.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\hb5kc8c.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\hk977.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\isqwt.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\lb31975.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\m2mwu.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\mkqnd97.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\oaweb.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\ourh31.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\pf753.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\qnd197.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\re8eo.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\rh53197.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\s1oaw.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\spf19.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\urh7531.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\w3790i.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\w7711.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\webp1.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
There are 30 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\Fm9MoDgH7O.exe
|
"C:\Users\user\Desktop\Fm9MoDgH7O.exe"
|
|
|
|
C:\m2mwu.exe
|
c:\m2mwu.exe
|
|
|
|
C:\re8eo.exe
|
c:\re8eo.exe
|
|
|
|
C:\4vd771.exe
|
c:\4vd771.exe
|
|
|
|
C:\qnd197.exe
|
c:\qnd197.exe
|
|
|
|
C:\oaweb.exe
|
c:\oaweb.exe
|
|
|
|
C:\36hmq.exe
|
c:\36hmq.exe
|
|
|
|
C:\4uoic.exe
|
c:\4uoic.exe
|
|
|
|
C:\w7711.exe
|
c:\w7711.exe
|
|
|
|
C:\isqwt.exe
|
c:\isqwt.exe
|
|
|
|
C:\s1oaw.exe
|
c:\s1oaw.exe
|
|
|
|
C:\559900.exe
|
c:\559900.exe
|
|
|
|
C:\spf19.exe
|
c:\spf19.exe
|
|
|
|
C:\93344.exe
|
c:\93344.exe
|
|
|
|
C:\6r61155.exe
|
c:\6r61155.exe
|
|
|
|
C:\7788uoi.exe
|
c:\7788uoi.exe
|
|
|
|
C:\rh53197.exe
|
c:\rh53197.exe
|
|
|
|
C:\5787leo.exe
|
c:\5787leo.exe
|
|
|
|
C:\88oxxqc.exe
|
c:\88oxxqc.exe
|
|
|
|
C:\83377.exe
|
c:\83377.exe
|
|
|
|
C:\w3790i.exe
|
c:\w3790i.exe
|
|
|
|
C:\bp1975.exe
|
c:\bp1975.exe
|
|
|
|
C:\90omsp.exe
|
c:\90omsp.exe
|
|
|
|
C:\lb31975.exe
|
c:\lb31975.exe
|
|
|
|
C:\hb5kc8c.exe
|
c:\hb5kc8c.exe
|
|
|
|
C:\webp1.exe
|
c:\webp1.exe
|
|
|
|
C:\e81f5.exe
|
c:\e81f5.exe
|
|
|
|
C:\281l59.exe
|
c:\281l59.exe
|
|
|
|
C:\71122as.exe
|
c:\71122as.exe
|
|
|
|
C:\urh7531.exe
|
c:\urh7531.exe
|
|
|
|
C:\fx2dr.exe
|
c:\fx2dr.exe
|
|
|
|
C:\mkqnd97.exe
|
c:\mkqnd97.exe
|
|
|
|
C:\78d5dr1.exe
|
c:\78d5dr1.exe
|
|
|
|
C:\2qkewqk.exe
|
c:\2qkewqk.exe
|
|
|
|
C:\ourh31.exe
|
c:\ourh31.exe
|
|
|
|
C:\g7112.exe
|
c:\g7112.exe
|
|
|
|
C:\hk977.exe
|
c:\hk977.exe
|
|
|
|
C:\7kiolb.exe
|
c:\7kiolb.exe
|
|
|
|
C:\7kiolb.exe
|
c:\7kiolb.exe
|
|
|
|
C:\pf753.exe
|
c:\pf753.exe
|
|
There are 30 hidden processes, click here to show them.
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://www.eyuyan.com)DVarFileInfo$
|
unknown
|
||
|
https://bank.gametea.com:444/nbbanklockpc/moneyout.php?nickname=
|
unknown
|
||
|
http://14.18.141.27:33355/lcy.asp?s11=nc&s12=nc&s13=%POSTGETWinHttp.WinHttpRequest.5.1
|
unknown
|
||
|
https://bank.gametea.com:444/czbanklockpc/chadou.php?nickname=
|
unknown
|
||
|
https://bank.gametea.com:444/lsbanklockpc/moneyout.php?nickname=
|
unknown
|
||
|
http://14.18.141.27:33355/lcy.asp?s11=nc&s12=nc&s13=
|
unknown
|
||
|
http://www.eyuyan.com)
|
unknown
|
||
|
https://bank.gametea.com:444/lsbanklockpc/moneyout.php?nickname=msg_gamemoney
|
unknown
|
||
|
http://14.18.141.27:33355/mcy.asp?at=upm&s13=
|
unknown
|
||
|
https://bank.gametea.com:444/banklockpc/moneyout.php?nickname=msg_showmoney_sh
|
unknown
|
||
|
https://bank.gametea.com:444/czbanklockpc/moneyout.php?nickname=
|
unknown
|
||
|
http://14.18.141.27:33355/mcy.asp?at=getmb&s13=
|
unknown
|
||
|
https://bank.gametea.com:444/banklockpc/moneyout.php?nickname=
|
unknown
|
||
|
http://14.18.141.27:33355/mcy.asp?at=upm&s13=http://14.18.141.27:33355/mcy.asp?at=getmb&s13=okno%E-&
|
unknown
|
||
|
https://bank.gametea.com:444/bank/domoneyshow.php
|
unknown
|
||
|
https://bank.gametea.com:444/czbanklockpc/chadou.php?nickname=msg_chadou
|
unknown
|
There are 6 hidden URLs, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
54E000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
64D000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
72D000
|
heap
|
page read and write
|
|
|
|
6BA000
|
heap
|
page read and write
|
|
|
|
79E000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
65E000
|
heap
|
page read and write
|
|
|
|
72F000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
75E000
|
heap
|
page read and write
|
|
|
|
58A000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
77A000
|
heap
|
page read and write
|
|
|
|
6BE000
|
heap
|
page read and write
|
|
|
|
7ED000
|
heap
|
page read and write
|
|
|
|
5DE000
|
heap
|
page read and write
|
|
|
|
57E000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
77D000
|
heap
|
page read and write
|
|
|
|
5ED000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
6ED000
|
heap
|
page read and write
|
|
|
|
6CE000
|
heap
|
page read and write
|
|
|
|
66E000
|
heap
|
page read and write
|
|
|
|
55E000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
65E000
|
heap
|
page read and write
|
|
|
|
50E000
|
heap
|
page read and write
|
|
|
|
46D000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
4DE000
|
heap
|
page read and write
|
|
|
|
7DE000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
72D000
|
heap
|
page read and write
|
|
|
|
79C000
|
heap
|
page read and write
|
|
|
|
6EE000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
6CE000
|
heap
|
page read and write
|
|
|
|
5DA000
|
heap
|
page read and write
|
|
|
|
5CE000
|
heap
|
page read and write
|
|
|
|
53E000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
4CD000
|
heap
|
page read and write
|
|
|
|
5BE000
|
heap
|
page read and write
|
|
|
|
75A000
|
heap
|
page read and write
|
|
|
|
61D000
|
heap
|
page read and write
|
|
|
|
65D000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
61D000
|
heap
|
page read and write
|
|
|
|
74D000
|
heap
|
page read and write
|
|
|
|
5FD000
|
heap
|
page read and write
|
|
|
|
52D000
|
heap
|
page read and write
|
|
|
|
6EE000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
6BA000
|
heap
|
page read and write
|
|
|
|
6CF000
|
heap
|
page read and write
|
|
|
|
65E000
|
heap
|
page read and write
|
|
|
|
65D000
|
heap
|
page read and write
|
|
|
|
6AD000
|
heap
|
page read and write
|
|
|
|
56E000
|
heap
|
page read and write
|
|
|
|
6CE000
|
heap
|
page read and write
|
|
|
|
5ED000
|
heap
|
page read and write
|
|
|
|
68E000
|
heap
|
page read and write
|
|
|
|
75F000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
60E000
|
heap
|
page read and write
|
|
|
|
5AA000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
4DE000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
7CD000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
5FD000
|
heap
|
page read and write
|
|
|
|
72D000
|
heap
|
page read and write
|
|
|
|
51E000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
4AD000
|
heap
|
page read and write
|
|
|
|
72A000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
86E000
|
heap
|
page read and write
|
|
|
|
80E000
|
heap
|
page read and write
|
|
|
|
54E000
|
heap
|
page read and write
|
|
|
|
4FA000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
75E000
|
heap
|
page read and write
|
|
|
|
7FD000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
71E000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
73E000
|
heap
|
page read and write
|
|
|
|
4BA000
|
heap
|
page read and write
|
|
|
|
7BE000
|
heap
|
page read and write
|
|
|
|
70A000
|
heap
|
page read and write
|
|
|
|
56D000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
76E000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
79D000
|
heap
|
page read and write
|
|
|
|
6FE000
|
heap
|
page read and write
|
|
|
|
67E000
|
heap
|
page read and write
|
|
|
|
68D000
|
heap
|
page read and write
|
|
|
|
401000
|
unkown
|
page execute and read and write
|
|
|
|
5E0000
|
heap
|
page read and write
|
||
|
21D0000
|
heap
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
66F000
|
stack
|
page read and write
|
||
|
6CD000
|
heap
|
page read and write
|
||
|
430000
|
heap
|
page read and write
|
||
|
6B0000
|
direct allocation
|
page execute and read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
47E000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
2280000
|
heap
|
page read and write
|
||
|
56E000
|
stack
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
8CF000
|
stack
|
page read and write
|
||
|
64E000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
2050000
|
direct allocation
|
page read and write
|
||
|
6AA000
|
heap
|
page read and write
|
||
|
767000
|
heap
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
2170000
|
heap
|
page read and write
|
||
|
5B8000
|
heap
|
page read and write
|
||
|
4D0000
|
direct allocation
|
page read and write
|
||
|
530000
|
heap
|
page read and write
|
||
|
71A000
|
heap
|
page read and write
|
||
|
54E000
|
stack
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
400000
|
unkown
|
page readonly
|
||
|
67F000
|
stack
|
page read and write
|
||
|
86F000
|
stack
|
page read and write
|
||
|
6BF000
|
heap
|
page read and write
|
||
|
7D7000
|
heap
|
page read and write
|
||
|
530000
|
heap
|
page read and write
|
||
|
500000
|
heap
|
page read and write
|
||
|
7FF000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
400000
|
unkown
|
page readonly
|
||
|
490000
|
direct allocation
|
page execute and read and write
|
||
|
620000
|
heap
|
page read and write
|
||
|
4E0000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
706000
|
heap
|
page read and write
|
||
|
66F000
|
stack
|
page read and write
|
||
|
55E000
|
stack
|
page read and write
|
||
|
4E0000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
6DA000
|
heap
|
page read and write
|
||
|
2050000
|
direct allocation
|
page read and write
|
||
|
430000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
401000
|
unkown
|
page execute read
|
||
|
620000
|
heap
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
45A000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
5CA000
|
heap
|
page read and write
|
||
|
6AE000
|
stack
|
page read and write
|
||
|
670000
|
heap
|
page read and write
|
||
|
567000
|
heap
|
page read and write
|
||
|
218F000
|
stack
|
page read and write
|
||
|
490000
|
direct allocation
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
4BE000
|
stack
|
page read and write
|
||
|
6AE000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
2200000
|
heap
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
90F000
|
stack
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
490000
|
direct allocation
|
page execute and read and write
|
||
|
7CE000
|
stack
|
page read and write
|
||
|
440000
|
heap
|
page read and write
|
||
|
4D0000
|
direct allocation
|
page execute and read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
83F000
|
stack
|
page read and write
|
||
|
65D000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
428000
|
unkown
|
page readonly
|
||
|
500000
|
heap
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
430000
|
heap
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
22F0000
|
heap
|
page read and write
|
||
|
20A0000
|
heap
|
page read and write
|
||
|
530000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
690000
|
heap
|
page read and write
|
||
|
657000
|
heap
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
46E000
|
heap
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
54E000
|
stack
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
5B0000
|
direct allocation
|
page execute and read and write
|
||
|
430000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
750000
|
heap
|
page read and write
|
||
|
5DE000
|
heap
|
page read and write
|
||
|
6D0000
|
heap
|
page read and write
|
||
|
67E000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
7CD000
|
heap
|
page read and write
|
||
|
65F000
|
heap
|
page read and write
|
||
|
768000
|
heap
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
570000
|
heap
|
page read and write
|
||
|
430000
|
heap
|
page read and write
|
||
|
79D000
|
heap
|
page read and write
|
||
|
707000
|
heap
|
page read and write
|
||
|
78E000
|
heap
|
page read and write
|
||
|
4A0000
|
direct allocation
|
page read and write
|
||
|
5E0000
|
direct allocation
|
page read and write
|
||
|
207F000
|
stack
|
page read and write
|
||
|
20FF000
|
stack
|
page read and write
|
||
|
7CE000
|
heap
|
page read and write
|
||
|
5FD000
|
heap
|
page read and write
|
||
|
530000
|
direct allocation
|
page execute and read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
500000
|
heap
|
page read and write
|
||
|
6EE000
|
heap
|
page read and write
|
||
|
5DE000
|
stack
|
page read and write
|
||
|
2080000
|
heap
|
page read and write
|
||
|
7AE000
|
stack
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
510000
|
heap
|
page read and write
|
||
|
520000
|
direct allocation
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
20F0000
|
heap
|
page read and write
|
||
|
4F0000
|
heap
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
827000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
19D000
|
stack
|
page read and write
|
||
|
5DA000
|
heap
|
page read and write
|
||
|
4CE000
|
heap
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
4CE000
|
stack
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
6B0000
|
direct allocation
|
page execute and read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
2170000
|
heap
|
page read and write
|
||
|
7DE000
|
stack
|
page read and write
|
||
|
7AE000
|
stack
|
page read and write
|
||
|
7EE000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
428000
|
unkown
|
page readonly
|
||
|
19D000
|
stack
|
page read and write
|
||
|
6B0000
|
direct allocation
|
page execute and read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
9C000
|
stack
|
page read and write
|
||
|
6BE000
|
heap
|
page read and write
|
||
|
2050000
|
direct allocation
|
page execute and read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
428000
|
unkown
|
page readonly
|
||
|
428000
|
unkown
|
page execute read
|
||
|
20FF000
|
stack
|
page read and write
|
||
|
70D000
|
heap
|
page read and write
|
||
|
6BE000
|
heap
|
page read and write
|
||
|
76A000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
5A0000
|
direct allocation
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
7E0000
|
heap
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
8DF000
|
stack
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
6AE000
|
stack
|
page read and write
|
||
|
73E000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
6EF000
|
stack
|
page read and write
|
||
|
6D0000
|
heap
|
page read and write
|
||
|
510000
|
heap
|
page read and write
|
||
|
20F0000
|
heap
|
page read and write
|
||
|
57E000
|
heap
|
page read and write
|
||
|
500000
|
heap
|
page read and write
|
||
|
4BE000
|
stack
|
page read and write
|
||
|
66E000
|
stack
|
page read and write
|
||
|
7EF000
|
stack
|
page read and write
|
||
|
5FE000
|
heap
|
page read and write
|
||
|
64E000
|
heap
|
page read and write
|
||
|
6A0000
|
heap
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
4D0000
|
direct allocation
|
page read and write
|
||
|
540000
|
heap
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
47E000
|
stack
|
page read and write
|
||
|
66F000
|
stack
|
page read and write
|
||
|
7EA000
|
heap
|
page read and write
|
||
|
47E000
|
stack
|
page read and write
|
||
|
75E000
|
heap
|
page read and write
|
||
|
20A0000
|
heap
|
page read and write
|
||
|
6AE000
|
heap
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
77D000
|
heap
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
72D000
|
heap
|
page read and write
|
||
|
55E000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
9C000
|
stack
|
page read and write
|
||
|
5FA000
|
heap
|
page read and write
|
||
|
4BE000
|
stack
|
page read and write
|
||
|
85F000
|
stack
|
page read and write
|
||
|
6AA000
|
heap
|
page read and write
|
||
|
778000
|
heap
|
page read and write
|
||
|
80F000
|
stack
|
page read and write
|
||
|
22A0000
|
heap
|
page read and write
|
||
|
60E000
|
heap
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
440000
|
heap
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
69F000
|
stack
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
2050000
|
direct allocation
|
page read and write
|
||
|
B3F000
|
stack
|
page read and write
|
||
|
7CE000
|
stack
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
55E000
|
stack
|
page read and write
|
||
|
8FF000
|
stack
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
6B0000
|
direct allocation
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
401000
|
unkown
|
page execute read
|
||
|
401000
|
unkown
|
page execute read
|
||
|
700000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
440000
|
heap
|
page read and write
|
||
|
4F0000
|
heap
|
page read and write
|
||
|
59E000
|
stack
|
page read and write
|
||
|
77F000
|
stack
|
page read and write
|
||
|
4E0000
|
direct allocation
|
page read and write
|
||
|
5B0000
|
direct allocation
|
page read and write
|
||
|
56E000
|
heap
|
page read and write
|
||
|
4F0000
|
heap
|
page read and write
|
||
|
54E000
|
stack
|
page read and write
|
||
|
7D7000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
590000
|
heap
|
page read and write
|
||
|
500000
|
heap
|
page read and write
|
||
|
560000
|
direct allocation
|
page execute and read and write
|
||
|
5B0000
|
direct allocation
|
page execute and read and write
|
||
|
4DE000
|
heap
|
page read and write
|
||
|
208F000
|
stack
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
490000
|
direct allocation
|
page execute and read and write
|
||
|
65E000
|
heap
|
page read and write
|
||
|
5C0000
|
heap
|
page read and write
|
||
|
708000
|
heap
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
5B0000
|
direct allocation
|
page read and write
|
||
|
55E000
|
stack
|
page read and write
|
||
|
530000
|
direct allocation
|
page read and write
|
||
|
21C0000
|
heap
|
page read and write
|
||
|
74A000
|
heap
|
page read and write
|
||
|
92F000
|
stack
|
page read and write
|
||
|
69E000
|
heap
|
page read and write
|
||
|
8AF000
|
stack
|
page read and write
|
||
|
47E000
|
stack
|
page read and write
|
||
|
430000
|
heap
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
520000
|
direct allocation
|
page execute and read and write
|
||
|
58E000
|
stack
|
page read and write
|
||
|
4F0000
|
heap
|
page read and write
|
||
|
4D0000
|
direct allocation
|
page read and write
|
||
|
450000
|
heap
|
page read and write
|
||
|
4E0000
|
direct allocation
|
page execute and read and write
|
||
|
56D000
|
heap
|
page read and write
|
||
|
21B0000
|
heap
|
page read and write
|
||
|
76E000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
2050000
|
direct allocation
|
page read and write
|
||
|
6DE000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
57E000
|
stack
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
500000
|
heap
|
page read and write
|
||
|
500000
|
heap
|
page read and write
|
||
|
490000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
4A0000
|
direct allocation
|
page execute and read and write
|
||
|
490000
|
direct allocation
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
560000
|
direct allocation
|
page execute and read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
5C0000
|
heap
|
page read and write
|
||
|
560000
|
direct allocation
|
page execute and read and write
|
||
|
570000
|
heap
|
page read and write
|
||
|
5DE000
|
heap
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
78A000
|
heap
|
page read and write
|
||
|
2470000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
5DA000
|
heap
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
47E000
|
stack
|
page read and write
|
||
|
83F000
|
stack
|
page read and write
|
||
|
47E000
|
stack
|
page read and write
|
||
|
4CE000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
79C000
|
heap
|
page read and write
|
||
|
78F000
|
stack
|
page read and write
|
||
|
74E000
|
heap
|
page read and write
|
||
|
430000
|
heap
|
page read and write
|
||
|
5CE000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
2050000
|
direct allocation
|
page execute and read and write
|
||
|
57E000
|
stack
|
page read and write
|
||
|
54E000
|
stack
|
page read and write
|
||
|
58E000
|
stack
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
500000
|
heap
|
page read and write
|
||
|
96F000
|
stack
|
page read and write
|
||
|
1E0000
|
heap
|
page read and write
|
||
|
490000
|
direct allocation
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
401000
|
unkown
|
page execute read
|
||
|
5BE000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
4A0000
|
heap
|
page read and write
|
||
|
6B0000
|
heap
|
page read and write
|
||
|
6FE000
|
heap
|
page read and write
|
||
|
520000
|
direct allocation
|
page read and write
|
||
|
560000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
9C000
|
stack
|
page read and write
|
||
|
205F000
|
stack
|
page read and write
|
||
|
1F7E000
|
stack
|
page read and write
|
||
|
2210000
|
heap
|
page read and write
|
||
|
93F000
|
stack
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
75E000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
510000
|
heap
|
page read and write
|
||
|
5B0000
|
direct allocation
|
page execute and read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
6DF000
|
stack
|
page read and write
|
||
|
4AA000
|
heap
|
page read and write
|
||
|
5BE000
|
stack
|
page read and write
|
||
|
6DA000
|
heap
|
page read and write
|
||
|
60E000
|
heap
|
page read and write
|
||
|
798000
|
heap
|
page read and write
|
||
|
8AF000
|
stack
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
2170000
|
heap
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
710000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
6DA000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
4BE000
|
stack
|
page read and write
|
||
|
1E0000
|
heap
|
page read and write
|
||
|
500000
|
heap
|
page read and write
|
||
|
640000
|
heap
|
page read and write
|
||
|
5FE000
|
heap
|
page read and write
|
||
|
2240000
|
heap
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
21E0000
|
heap
|
page read and write
|
||
|
5FE000
|
heap
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
4B0000
|
heap
|
page read and write
|
||
|
79E000
|
stack
|
page read and write
|
||
|
807000
|
heap
|
page read and write
|
||
|
20F0000
|
heap
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
760000
|
heap
|
page read and write
|
||
|
4CA000
|
heap
|
page read and write
|
||
|
64E000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
401000
|
unkown
|
page execute read
|
||
|
740000
|
heap
|
page read and write
|
||
|
740000
|
heap
|
page read and write
|
||
|
530000
|
heap
|
page read and write
|
||
|
54E000
|
stack
|
page read and write
|
||
|
54E000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
7FF000
|
stack
|
page read and write
|
||
|
55A000
|
heap
|
page read and write
|
||
|
97F000
|
stack
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
19D000
|
stack
|
page read and write
|
||
|
4EE000
|
heap
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
70B000
|
heap
|
page read and write
|
||
|
67A000
|
heap
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
9DF000
|
stack
|
page read and write
|
||
|
2290000
|
heap
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
6CE000
|
heap
|
page read and write
|
||
|
67F000
|
stack
|
page read and write
|
||
|
58E000
|
heap
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
47E000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
7BF000
|
stack
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
797000
|
heap
|
page read and write
|
||
|
72E000
|
heap
|
page read and write
|
||
|
20E0000
|
heap
|
page read and write
|
||
|
75F000
|
stack
|
page read and write
|
||
|
2270000
|
heap
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
430000
|
heap
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
4DE000
|
stack
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
75F000
|
stack
|
page read and write
|
||
|
8FF000
|
stack
|
page read and write
|
||
|
4C0000
|
heap
|
page read and write
|
||
|
560000
|
direct allocation
|
page read and write
|
||
|
5EE000
|
heap
|
page read and write
|
||
|
7ED000
|
heap
|
page read and write
|
||
|
93F000
|
stack
|
page read and write
|
||
|
2050000
|
direct allocation
|
page read and write
|
||
|
500000
|
heap
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
19D000
|
stack
|
page read and write
|
||
|
520000
|
direct allocation
|
page execute and read and write
|
||
|
5A0000
|
direct allocation
|
page execute and read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
428000
|
unkown
|
page readonly
|
||
|
430000
|
heap
|
page read and write
|
||
|
20AF000
|
stack
|
page read and write
|
||
|
6F0000
|
heap
|
page read and write
|
||
|
5A0000
|
direct allocation
|
page read and write
|
||
|
4BE000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
428000
|
unkown
|
page execute read
|
||
|
428000
|
unkown
|
page execute read
|
||
|
6B0000
|
direct allocation
|
page read and write
|
||
|
500000
|
heap
|
page read and write
|
||
|
5E0000
|
direct allocation
|
page execute and read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
757000
|
heap
|
page read and write
|
||
|
4FE000
|
stack
|
page read and write
|
||
|
64A000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
520000
|
heap
|
page read and write
|
||
|
5AE000
|
stack
|
page read and write
|
||
|
54E000
|
stack
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
4D0000
|
direct allocation
|
page read and write
|
||
|
7F7000
|
heap
|
page read and write
|
||
|
A0F000
|
stack
|
page read and write
|
||
|
1F8E000
|
stack
|
page read and write
|
||
|
500000
|
heap
|
page read and write
|
||
|
500000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
5A0000
|
direct allocation
|
page execute and read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
2220000
|
heap
|
page read and write
|
||
|
630000
|
heap
|
page read and write
|
||
|
58E000
|
stack
|
page read and write
|
||
|
72D000
|
heap
|
page read and write
|
||
|
4F0000
|
heap
|
page read and write
|
||
|
707000
|
heap
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
94F000
|
stack
|
page read and write
|
||
|
490000
|
direct allocation
|
page execute and read and write
|
||
|
698000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
89F000
|
stack
|
page read and write
|
||
|
4E0000
|
heap
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
59E000
|
stack
|
page read and write
|
||
|
510000
|
heap
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
5E0000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
8CF000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
64A000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
577000
|
heap
|
page read and write
|
||
|
54E000
|
heap
|
page read and write
|
||
|
47E000
|
stack
|
page read and write
|
||
|
510000
|
heap
|
page read and write
|
||
|
74E000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
6EE000
|
heap
|
page read and write
|
||
|
797000
|
heap
|
page read and write
|
||
|
7AF000
|
stack
|
page read and write
|
||
|
205F000
|
stack
|
page read and write
|
||
|
5E0000
|
heap
|
page read and write
|
||
|
7DF000
|
stack
|
page read and write
|
||
|
607000
|
heap
|
page read and write
|
||
|
618000
|
heap
|
page read and write
|
||
|
687000
|
heap
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
490000
|
direct allocation
|
page execute and read and write
|
||
|
710000
|
heap
|
page read and write
|
||
|
6A7000
|
heap
|
page read and write
|
||
|
64D000
|
heap
|
page read and write
|
||
|
21F0000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
59E000
|
heap
|
page read and write
|
||
|
500000
|
heap
|
page read and write
|
||
|
6B8000
|
heap
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
7BF000
|
stack
|
page read and write
|
||
|
767000
|
heap
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
8CF000
|
stack
|
page read and write
|
||
|
6AE000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
780000
|
heap
|
page read and write
|
||
|
2170000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
54E000
|
stack
|
page read and write
|
||
|
54E000
|
stack
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
560000
|
heap
|
page read and write
|
||
|
740000
|
heap
|
page read and write
|
||
|
67F000
|
stack
|
page read and write
|
||
|
58E000
|
stack
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
4FA000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
540000
|
heap
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
54E000
|
stack
|
page read and write
|
||
|
5D0000
|
direct allocation
|
page read and write
|
||
|
2050000
|
direct allocation
|
page execute and read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
697000
|
heap
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
76F000
|
stack
|
page read and write
|
||
|
59E000
|
stack
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
8CF000
|
stack
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
59E000
|
stack
|
page read and write
|
||
|
4D0000
|
direct allocation
|
page execute and read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
213F000
|
stack
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
7CF000
|
stack
|
page read and write
|
||
|
64A000
|
heap
|
page read and write
|
||
|
59A000
|
heap
|
page read and write
|
||
|
93F000
|
stack
|
page read and write
|
||
|
560000
|
direct allocation
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
5AE000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
7BE000
|
stack
|
page read and write
|
||
|
7EE000
|
heap
|
page read and write
|
||
|
5D0000
|
heap
|
page read and write
|
||
|
56E000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
64E000
|
heap
|
page read and write
|
||
|
90F000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
428000
|
unkown
|
page execute read
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
490000
|
direct allocation
|
page read and write
|
||
|
69F000
|
stack
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
500000
|
heap
|
page read and write
|
||
|
61E000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
428000
|
unkown
|
page execute read
|
||
|
400000
|
unkown
|
page readonly
|
||
|
600000
|
heap
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
500000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
428000
|
unkown
|
page execute read
|
||
|
6A0000
|
heap
|
page read and write
|
||
|
430000
|
heap
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
570000
|
heap
|
page read and write
|
||
|
818000
|
heap
|
page read and write
|
||
|
6EF000
|
stack
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
401000
|
unkown
|
page execute read
|
||
|
19D000
|
stack
|
page read and write
|
||
|
8AF000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
5F0000
|
heap
|
page read and write
|
||
|
637000
|
heap
|
page read and write
|
||
|
6B0000
|
direct allocation
|
page execute and read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
8CF000
|
stack
|
page read and write
|
||
|
70E000
|
heap
|
page read and write
|
||
|
8CF000
|
stack
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
428000
|
unkown
|
page readonly
|
||
|
9C000
|
stack
|
page read and write
|
||
|
490000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
428000
|
unkown
|
page execute read
|
||
|
557000
|
heap
|
page read and write
|
||
|
4E0000
|
heap
|
page read and write
|
||
|
6FA000
|
heap
|
page read and write
|
||
|
4B0000
|
heap
|
page read and write
|
||
|
7CF000
|
stack
|
page read and write
|
||
|
500000
|
heap
|
page read and write
|
||
|
560000
|
direct allocation
|
page read and write
|
||
|
5AE000
|
stack
|
page read and write
|
||
|
6BE000
|
heap
|
page read and write
|
||
|
72F000
|
stack
|
page read and write
|
||
|
6AE000
|
stack
|
page read and write
|
||
|
45E000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
19D000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
49A000
|
heap
|
page read and write
|
||
|
588000
|
heap
|
page read and write
|
||
|
5C0000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
590000
|
heap
|
page read and write
|
||
|
79E000
|
heap
|
page read and write
|
||
|
50E000
|
heap
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
73A000
|
heap
|
page read and write
|
||
|
48E000
|
stack
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
510000
|
heap
|
page read and write
|
||
|
8EF000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
640000
|
heap
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
49E000
|
heap
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
53E000
|
heap
|
page read and write
|
||
|
4A0000
|
heap
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
428000
|
unkown
|
page execute read
|
||
|
401000
|
unkown
|
page execute read
|
||
|
79E000
|
stack
|
page read and write
|
||
|
71E000
|
heap
|
page read and write
|
||
|
8BF000
|
stack
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
68E000
|
heap
|
page read and write
|
||
|
6C0000
|
heap
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
21A0000
|
heap
|
page read and write
|
||
|
4D0000
|
direct allocation
|
page execute and read and write
|
||
|
52E000
|
heap
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
4B0000
|
heap
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
6AE000
|
stack
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
5A0000
|
direct allocation
|
page read and write
|
||
|
4FE000
|
heap
|
page read and write
|
||
|
57A000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
430000
|
heap
|
page read and write
|
||
|
5ED000
|
heap
|
page read and write
|
||
|
2050000
|
direct allocation
|
page execute and read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
47E000
|
stack
|
page read and write
|
||
|
560000
|
heap
|
page read and write
|
||
|
6A0000
|
heap
|
page read and write
|
||
|
60A000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
428000
|
unkown
|
page execute read
|
||
|
401000
|
unkown
|
page execute read
|
||
|
520000
|
direct allocation
|
page execute and read and write
|
||
|
6BE000
|
stack
|
page read and write
|
||
|
5D0000
|
heap
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
8EF000
|
stack
|
page read and write
|
||
|
7FE000
|
heap
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
77E000
|
heap
|
page read and write
|
||
|
76E000
|
heap
|
page read and write
|
||
|
737000
|
heap
|
page read and write
|
||
|
5D0000
|
direct allocation
|
page execute and read and write
|
||
|
6DE000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
19D000
|
stack
|
page read and write
|
||
|
620000
|
heap
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
65E000
|
stack
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
7BF000
|
stack
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
6EE000
|
heap
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
5F7000
|
heap
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
740000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
2050000
|
direct allocation
|
page execute and read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
428000
|
unkown
|
page execute read
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
52D000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
560000
|
direct allocation
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
500000
|
heap
|
page read and write
|
||
|
5B0000
|
direct allocation
|
page read and write
|
||
|
560000
|
direct allocation
|
page execute and read and write
|
||
|
54E000
|
stack
|
page read and write
|
||
|
2130000
|
heap
|
page read and write
|
||
|
4EA000
|
heap
|
page read and write
|
||
|
730000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
400000
|
unkown
|
page readonly
|
||
|
560000
|
heap
|
page read and write
|
||
|
5D0000
|
heap
|
page read and write
|
||
|
848000
|
heap
|
page read and write
|
||
|
8BF000
|
stack
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
ADF000
|
stack
|
page read and write
|
||
|
58E000
|
stack
|
page read and write
|
||
|
53E000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
570000
|
heap
|
page read and write
|
||
|
430000
|
heap
|
page read and write
|
||
|
5A7000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
520000
|
direct allocation
|
page read and write
|
||
|
72D000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
4CE000
|
stack
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
6D0000
|
heap
|
page read and write
|
||
|
4D0000
|
direct allocation
|
page execute and read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
89F000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
401000
|
unkown
|
page execute read
|
||
|
89F000
|
stack
|
page read and write
|
||
|
53A000
|
heap
|
page read and write
|
||
|
6B0000
|
direct allocation
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
500000
|
heap
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
430000
|
heap
|
page read and write
|
||
|
8A7000
|
heap
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
6CB000
|
heap
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
55E000
|
heap
|
page read and write
|
||
|
590000
|
heap
|
page read and write
|
||
|
6B0000
|
direct allocation
|
page execute and read and write
|
||
|
4D0000
|
direct allocation
|
page execute and read and write
|
||
|
430000
|
heap
|
page read and write
|
||
|
6AA000
|
heap
|
page read and write
|
||
|
6DE000
|
heap
|
page read and write
|
||
|
4BE000
|
stack
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
6AE000
|
heap
|
page read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
5CE000
|
stack
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
9C000
|
stack
|
page read and write
|
||
|
5E0000
|
heap
|
page read and write
|
||
|
76F000
|
stack
|
page read and write
|
||
|
57E000
|
stack
|
page read and write
|
||
|
8CF000
|
stack
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
6B0000
|
direct allocation
|
page read and write
|
||
|
4BE000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
47E000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
430000
|
heap
|
page read and write
|
||
|
68E000
|
stack
|
page read and write
|
||
|
55E000
|
heap
|
page read and write
|
||
|
490000
|
direct allocation
|
page read and write
|
||
|
4BA000
|
heap
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
517000
|
heap
|
page read and write
|
||
|
75A000
|
heap
|
page read and write
|
||
|
72E000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
428000
|
unkown
|
page readonly
|
||
|
19D000
|
stack
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
ABF000
|
stack
|
page read and write
|
||
|
2080000
|
heap
|
page read and write
|
||
|
5EA000
|
heap
|
page read and write
|
||
|
67F000
|
stack
|
page read and write
|
||
|
7B7000
|
heap
|
page read and write
|
||
|
47E000
|
stack
|
page read and write
|
||
|
5DE000
|
heap
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
6BA000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
2220000
|
heap
|
page read and write
|
||
|
2250000
|
heap
|
page read and write
|
||
|
66F000
|
stack
|
page read and write
|
||
|
4FE000
|
heap
|
page read and write
|
||
|
560000
|
direct allocation
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
47E000
|
stack
|
page read and write
|
||
|
6CF000
|
stack
|
page read and write
|
||
|
1F0000
|
heap
|
page read and write
|
||
|
5EE000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
400000
|
unkown
|
page readonly
|
||
|
19D000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
9C000
|
stack
|
page read and write
|
||
|
5F0000
|
heap
|
page read and write
|
||
|
69A000
|
heap
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
90E000
|
stack
|
page read and write
|
||
|
54E000
|
stack
|
page read and write
|
||
|
54E000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
5C0000
|
heap
|
page read and write
|
||
|
430000
|
heap
|
page read and write
|
||
|
54A000
|
heap
|
page read and write
|
||
|
6B0000
|
direct allocation
|
page read and write
|
||
|
422000
|
unkown
|
page execute and read and write
|
||
|
428000
|
unkown
|
page readonly
|
||
|
4D0000
|
direct allocation
|
page read and write
|
||
|
500000
|
heap
|
page read and write
|
||
|
21A0000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
2140000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
640000
|
heap
|
page read and write
|
||
|
4AE000
|
heap
|
page read and write
|
||
|
500000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
428000
|
unkown
|
page readonly
|
||
|
401000
|
unkown
|
page execute read
|
||
|
490000
|
direct allocation
|
page execute and read and write
|
||
|
54E000
|
stack
|
page read and write
|
||
|
83F000
|
stack
|
page read and write
|
||
|
428000
|
unkown
|
page execute read
|
||
|
71A000
|
heap
|
page read and write
|
||
|
500000
|
heap
|
page read and write
|
||
|
47E000
|
stack
|
page read and write
|
||
|
4E0000
|
heap
|
page read and write
|
||
|
560000
|
direct allocation
|
page execute and read and write
|
||
|
19D000
|
stack
|
page read and write
|
||
|
5A0000
|
direct allocation
|
page execute and read and write
|
||
|
8DF000
|
stack
|
page read and write
|
||
|
550000
|
heap
|
page read and write
|
||
|
67F000
|
stack
|
page read and write
|
||
|
61D000
|
heap
|
page read and write
|
||
|
490000
|
direct allocation
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
400000
|
unkown
|
page readonly
|
||
|
48E000
|
stack
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
4DE000
|
stack
|
page read and write
|
||
|
71E000
|
heap
|
page read and write
|
||
|
430000
|
heap
|
page read and write
|
||
|
6BE000
|
stack
|
page read and write
|
There are 1013 hidden memdumps, click here to show them.