Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
jSF98v1u4x.exe
|
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\jSF98v1u4x.exe.log
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Java update.exe
|
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Java update.exe:Zone.Identifier
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\Java update.exe.log
|
ASCII text, with CRLF line terminators
|
dropped
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\jSF98v1u4x.exe
|
"C:\Users\user\Desktop\jSF98v1u4x.exe"
|
|
|
|
C:\Users\user\Desktop\jSF98v1u4x.exe
|
"C:\Users\user\Desktop\jSF98v1u4x.exe" ..
|
|
|
|
C:\Users\user\Desktop\jSF98v1u4x.exe
|
"C:\Users\user\Desktop\jSF98v1u4x.exe" ..
|
|
|
|
C:\Users\user\Desktop\jSF98v1u4x.exe
|
"C:\Users\user\Desktop\jSF98v1u4x.exe" ..
|
|
|
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Java update.exe
|
"C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Java update.exe"
|
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
204.48.16.32
|
unknown
|
United States
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER
|
di
|
|
|
|
HKEY_CURRENT_USER\Environment
|
SEE_MASK_NOZONECHECKS
|
|
|
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
|
Windows Update
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Run
|
Windows Update
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
C22000
|
unkown
|
page readonly
|
|
|
|
2E23000
|
heap
|
page read and write
|
||
|
900000
|
heap
|
page read and write
|
||
|
24A0000
|
trusted library allocation
|
page read and write
|
||
|
4F2B000
|
stack
|
page read and write
|
||
|
4FDB000
|
trusted library allocation
|
page read and write
|
||
|
30FF000
|
trusted library allocation
|
page read and write
|
||
|
57D0000
|
trusted library allocation
|
page read and write
|
||
|
5779000
|
trusted library allocation
|
page read and write
|
||
|
11C0000
|
heap
|
page read and write
|
||
|
2F81000
|
trusted library allocation
|
page read and write
|
||
|
3030000
|
heap
|
page execute and read and write
|
||
|
F90000
|
heap
|
page read and write
|
||
|
5796000
|
trusted library allocation
|
page read and write
|
||
|
483D000
|
stack
|
page read and write
|
||
|
527E000
|
stack
|
page read and write
|
||
|
531F000
|
stack
|
page read and write
|
||
|
1560000
|
heap
|
page read and write
|
||
|
67A9000
|
heap
|
page read and write
|
||
|
517E000
|
stack
|
page read and write
|
||
|
900000
|
heap
|
page read and write
|
||
|
A73000
|
trusted library allocation
|
page execute and read and write
|
||
|
C60000
|
trusted library allocation
|
page read and write
|
||
|
D2E000
|
stack
|
page read and write
|
||
|
3020000
|
trusted library allocation
|
page read and write
|
||
|
1020000
|
trusted library allocation
|
page read and write
|
||
|
8F8000
|
stack
|
page read and write
|
||
|
3099000
|
trusted library allocation
|
page read and write
|
||
|
510C000
|
stack
|
page read and write
|
||
|
C20000
|
unkown
|
page readonly
|
||
|
4BFE000
|
trusted library allocation
|
page read and write
|
||
|
30EE000
|
trusted library allocation
|
page read and write
|
||
|
541E000
|
stack
|
page read and write
|
||
|
1764000
|
trusted library allocation
|
page read and write
|
||
|
676F000
|
heap
|
page read and write
|
||
|
2F7E000
|
stack
|
page read and write
|
||
|
4BE4000
|
trusted library allocation
|
page read and write
|
||
|
57D9000
|
trusted library allocation
|
page read and write
|
||
|
5CDE000
|
stack
|
page read and write
|
||
|
57E0000
|
trusted library allocation
|
page read and write
|
||
|
4BEB000
|
trusted library allocation
|
page read and write
|
||
|
5E5F000
|
stack
|
page read and write
|
||
|
F7E000
|
stack
|
page read and write
|
||
|
1454000
|
heap
|
page read and write
|
||
|
1394000
|
heap
|
page read and write
|
||
|
69E0000
|
heap
|
page read and write
|
||
|
672E000
|
stack
|
page read and write
|
||
|
C8B000
|
trusted library allocation
|
page execute and read and write
|
||
|
57F4000
|
trusted library allocation
|
page read and write
|
||
|
58B000
|
stack
|
page read and write
|
||
|
BEE000
|
stack
|
page read and write
|
||
|
7D0000
|
heap
|
page read and write
|
||
|
2860000
|
heap
|
page execute and read and write
|
||
|
1310000
|
trusted library allocation
|
page read and write
|
||
|
2830000
|
trusted library allocation
|
page read and write
|
||
|
1490000
|
heap
|
page read and write
|
||
|
579E000
|
trusted library allocation
|
page read and write
|
||
|
D5B000
|
heap
|
page read and write
|
||
|
2630000
|
heap
|
page read and write
|
||
|
9E0000
|
heap
|
page read and write
|
||
|
4235000
|
trusted library allocation
|
page read and write
|
||
|
1753000
|
trusted library allocation
|
page execute and read and write
|
||
|
52BE000
|
stack
|
page read and write
|
||
|
7F3000
|
heap
|
page read and write
|
||
|
555E000
|
stack
|
page read and write
|
||
|
B74000
|
trusted library allocation
|
page read and write
|
||
|
67D3000
|
heap
|
page read and write
|
||
|
57A2000
|
trusted library allocation
|
page read and write
|
||
|
3F89000
|
trusted library allocation
|
page read and write
|
||
|
4FF1000
|
trusted library allocation
|
page read and write
|
||
|
A60000
|
trusted library allocation
|
page read and write
|
||
|
503E000
|
stack
|
page read and write
|
||
|
159D000
|
heap
|
page read and write
|
||
|
B24000
|
heap
|
page read and write
|
||
|
297C000
|
trusted library allocation
|
page read and write
|
||
|
38C1000
|
trusted library allocation
|
page read and write
|
||
|
3110000
|
trusted library allocation
|
page read and write
|
||
|
B6F000
|
heap
|
page read and write
|
||
|
4DFF000
|
stack
|
page read and write
|
||
|
4E20000
|
heap
|
page execute and read and write
|
||
|
5810000
|
trusted library allocation
|
page read and write
|
||
|
26AE000
|
trusted library allocation
|
page read and write
|
||
|
3F81000
|
trusted library allocation
|
page read and write
|
||
|
139F000
|
heap
|
page read and write
|
||
|
1350000
|
trusted library allocation
|
page read and write
|
||
|
CD0000
|
trusted library allocation
|
page execute and read and write
|
||
|
7F8000
|
heap
|
page read and write
|
||
|
C40000
|
trusted library allocation
|
page read and write
|
||
|
5800000
|
trusted library allocation
|
page read and write
|
||
|
C64000
|
trusted library allocation
|
page read and write
|
||
|
136E000
|
heap
|
page read and write
|
||
|
4B0F000
|
stack
|
page read and write
|
||
|
CCA000
|
stack
|
page read and write
|
||
|
262D000
|
stack
|
page read and write
|
||
|
4C01000
|
trusted library allocation
|
page read and write
|
||
|
AFE000
|
heap
|
page read and write
|
||
|
579B000
|
trusted library allocation
|
page read and write
|
||
|
53BF000
|
stack
|
page read and write
|
||
|
63F0000
|
heap
|
page read and write
|
||
|
26AE000
|
stack
|
page read and write
|
||
|
FAF000
|
stack
|
page read and write
|
||
|
302E000
|
stack
|
page read and write
|
||
|
2720000
|
heap
|
page read and write
|
||
|
2E30000
|
heap
|
page execute and read and write
|
||
|
F80000
|
trusted library allocation
|
page read and write
|
||
|
5D10000
|
trusted library allocation
|
page read and write
|
||
|
521B000
|
stack
|
page read and write
|
||
|
36A5000
|
trusted library allocation
|
page read and write
|
||
|
1320000
|
trusted library allocation
|
page read and write
|
||
|
5C0000
|
heap
|
page read and write
|
||
|
2E20000
|
heap
|
page read and write
|
||
|
2F60000
|
trusted library allocation
|
page read and write
|
||
|
5780000
|
trusted library allocation
|
page read and write
|
||
|
2650000
|
trusted library allocation
|
page execute and read and write
|
||
|
663E000
|
stack
|
page read and write
|
||
|
17A0000
|
heap
|
page read and write
|
||
|
5770000
|
trusted library allocation
|
page read and write
|
||
|
A2E000
|
stack
|
page read and write
|
||
|
580E000
|
trusted library allocation
|
page read and write
|
||
|
4FCE000
|
stack
|
page read and write
|
||
|
36A9000
|
trusted library allocation
|
page read and write
|
||
|
1787000
|
trusted library allocation
|
page execute and read and write
|
||
|
309B000
|
trusted library allocation
|
page read and write
|
||
|
5CE0000
|
heap
|
page read and write
|
||
|
1326000
|
trusted library allocation
|
page execute and read and write
|
||
|
8D0000
|
heap
|
page read and write
|
||
|
BA0000
|
heap
|
page read and write
|
||
|
3231000
|
trusted library allocation
|
page read and write
|
||
|
30EC000
|
trusted library allocation
|
page read and write
|
||
|
2680000
|
heap
|
page execute and read and write
|
||
|
57AE000
|
trusted library allocation
|
page read and write
|
||
|
4C2C000
|
trusted library allocation
|
page read and write
|
||
|
4DD9000
|
trusted library allocation
|
page read and write
|
||
|
D6E000
|
stack
|
page read and write
|
||
|
4FEE000
|
trusted library allocation
|
page read and write
|
||
|
A00000
|
trusted library allocation
|
page read and write
|
||
|
28C1000
|
trusted library allocation
|
page read and write
|
||
|
178B000
|
trusted library allocation
|
page execute and read and write
|
||
|
14A5000
|
heap
|
page read and write
|
||
|
B1C000
|
heap
|
page read and write
|
||
|
4B90000
|
trusted library allocation
|
page read and write
|
||
|
AC0000
|
trusted library allocation
|
page read and write
|
||
|
36A1000
|
trusted library allocation
|
page read and write
|
||
|
5811000
|
trusted library allocation
|
page read and write
|
||
|
675D000
|
heap
|
page read and write
|
||
|
248B000
|
trusted library allocation
|
page execute and read and write
|
||
|
132A000
|
trusted library allocation
|
page execute and read and write
|
||
|
5220000
|
heap
|
page execute and read and write
|
||
|
26F0000
|
trusted library allocation
|
page read and write
|
||
|
322E000
|
stack
|
page read and write
|
||
|
A3B000
|
stack
|
page read and write
|
||
|
27F1000
|
trusted library allocation
|
page read and write
|
||
|
153D000
|
heap
|
page read and write
|
||
|
B90000
|
heap
|
page read and write
|
||
|
AA7000
|
trusted library allocation
|
page execute and read and write
|
||
|
1520000
|
heap
|
page read and write
|
||
|
D00000
|
heap
|
page read and write
|
||
|
84D000
|
heap
|
page read and write
|
||
|
4F40000
|
trusted library allocation
|
page read and write
|
||
|
27E0000
|
trusted library allocation
|
page read and write
|
||
|
573C000
|
stack
|
page read and write
|
||
|
125B000
|
stack
|
page read and write
|
||
|
282E000
|
stack
|
page read and write
|
||
|
285C000
|
stack
|
page read and write
|
||
|
33DE000
|
trusted library allocation
|
page read and write
|
||
|
30F0000
|
trusted library allocation
|
page read and write
|
||
|
131D000
|
trusted library allocation
|
page execute and read and write
|
||
|
C2E000
|
unkown
|
page readonly
|
||
|
B5F000
|
stack
|
page read and write
|
||
|
3003000
|
trusted library allocation
|
page read and write
|
||
|
69B0000
|
trusted library allocation
|
page execute and read and write
|
||
|
106F000
|
stack
|
page read and write
|
||
|
1754000
|
trusted library allocation
|
page read and write
|
||
|
B77000
|
heap
|
page read and write
|
||
|
D80000
|
trusted library allocation
|
page read and write
|
||
|
26F9000
|
trusted library allocation
|
page read and write
|
||
|
5635000
|
stack
|
page read and write
|
||
|
5005000
|
trusted library allocation
|
page read and write
|
||
|
57CF000
|
stack
|
page read and write
|
||
|
5E9E000
|
stack
|
page read and write
|
||
|
2E10000
|
trusted library allocation
|
page execute and read and write
|
||
|
1444000
|
heap
|
page read and write
|
||
|
289E000
|
stack
|
page read and write
|
||
|
3979000
|
trusted library allocation
|
page read and write
|
||
|
AAB000
|
trusted library allocation
|
page execute and read and write
|
||
|
D65000
|
heap
|
page read and write
|
||
|
A80000
|
trusted library allocation
|
page read and write
|
||
|
2810000
|
trusted library allocation
|
page read and write
|
||
|
4B4D000
|
stack
|
page read and write
|
||
|
4FBC000
|
stack
|
page read and write
|
||
|
4E3E000
|
stack
|
page read and write
|
||
|
1527000
|
heap
|
page read and write
|
||
|
1030000
|
heap
|
page read and write
|
||
|
2480000
|
trusted library allocation
|
page read and write
|
||
|
26A1000
|
trusted library allocation
|
page read and write
|
||
|
2FEE000
|
stack
|
page read and write
|
||
|
2710000
|
trusted library allocation
|
page read and write
|
||
|
34C3000
|
trusted library allocation
|
page read and write
|
||
|
1140000
|
heap
|
page read and write
|
||
|
26FC000
|
trusted library allocation
|
page read and write
|
||
|
1780000
|
trusted library allocation
|
page read and write
|
||
|
517E000
|
stack
|
page read and write
|
||
|
13B0000
|
heap
|
page read and write
|
||
|
C54000
|
trusted library allocation
|
page read and write
|
||
|
5070000
|
heap
|
page execute and read and write
|
||
|
5D5E000
|
stack
|
page read and write
|
||
|
4E50000
|
heap
|
page read and write
|
||
|
13A1000
|
heap
|
page read and write
|
||
|
17B0000
|
heap
|
page read and write
|
||
|
769000
|
stack
|
page read and write
|
||
|
3238000
|
trusted library allocation
|
page read and write
|
||
|
5CF0000
|
trusted library allocation
|
page execute and read and write
|
||
|
B63000
|
trusted library allocation
|
page execute and read and write
|
||
|
5800000
|
trusted library allocation
|
page read and write
|
||
|
1010000
|
heap
|
page read and write
|
||
|
CB0000
|
heap
|
page read and write
|
||
|
C15000
|
heap
|
page read and write
|
||
|
1760000
|
trusted library allocation
|
page read and write
|
||
|
2670000
|
heap
|
page read and write
|
||
|
14A0000
|
heap
|
page read and write
|
||
|
69D0000
|
heap
|
page read and write
|
||
|
4F30000
|
trusted library allocation
|
page read and write
|
||
|
2FDF000
|
trusted library allocation
|
page read and write
|
||
|
2D78000
|
trusted library allocation
|
page read and write
|
||
|
5490000
|
heap
|
page execute and read and write
|
||
|
4C15000
|
trusted library allocation
|
page read and write
|
||
|
5790000
|
heap
|
page read and write
|
||
|
5A2C000
|
stack
|
page read and write
|
||
|
118E000
|
stack
|
page read and write
|
||
|
11B3000
|
trusted library allocation
|
page execute and read and write
|
||
|
1030000
|
heap
|
page read and write
|
||
|
2E40000
|
trusted library allocation
|
page read and write
|
||
|
4DD0000
|
trusted library allocation
|
page read and write
|
||
|
28CA000
|
trusted library allocation
|
page read and write
|
||
|
5325000
|
stack
|
page read and write
|
||
|
323E000
|
trusted library allocation
|
page read and write
|
||
|
57AA000
|
trusted library allocation
|
page read and write
|
||
|
7F280000
|
trusted library allocation
|
page execute and read and write
|
||
|
6740000
|
heap
|
page read and write
|
||
|
3975000
|
trusted library allocation
|
page read and write
|
||
|
1110000
|
heap
|
page read and write
|
||
|
5A6D000
|
stack
|
page read and write
|
||
|
543C000
|
stack
|
page read and write
|
||
|
14EE000
|
stack
|
page read and write
|
||
|
5130000
|
heap
|
page read and write
|
||
|
27D4000
|
trusted library allocation
|
page read and write
|
||
|
5C8C000
|
stack
|
page read and write
|
||
|
8E0000
|
heap
|
page read and write
|
||
|
26A8000
|
trusted library allocation
|
page read and write
|
||
|
AD0000
|
heap
|
page read and write
|
||
|
5CC9000
|
stack
|
page read and write
|
||
|
1330000
|
trusted library allocation
|
page read and write
|
||
|
1313000
|
trusted library allocation
|
page read and write
|
||
|
57E0000
|
heap
|
page execute and read and write
|
||
|
1500000
|
heap
|
page read and write
|
||
|
4FD6000
|
trusted library allocation
|
page read and write
|
||
|
3080000
|
trusted library allocation
|
page read and write
|
||
|
69A0000
|
trusted library allocation
|
page read and write
|
||
|
DA0000
|
heap
|
page read and write
|
||
|
1360000
|
heap
|
page read and write
|
||
|
27D6000
|
trusted library allocation
|
page read and write
|
||
|
5C1B000
|
stack
|
page read and write
|
||
|
55CE000
|
stack
|
page read and write
|
||
|
11B0000
|
trusted library allocation
|
page read and write
|
||
|
4BE6000
|
trusted library allocation
|
page read and write
|
||
|
30E0000
|
trusted library allocation
|
page execute and read and write
|
||
|
27DB000
|
trusted library allocation
|
page read and write
|
||
|
57F0000
|
trusted library allocation
|
page execute and read and write
|
||
|
30F3000
|
trusted library allocation
|
page read and write
|
||
|
28B0000
|
heap
|
page execute and read and write
|
||
|
3015000
|
trusted library allocation
|
page read and write
|
||
|
542C000
|
stack
|
page read and write
|
||
|
BF0000
|
heap
|
page read and write
|
||
|
11D0000
|
heap
|
page read and write
|
||
|
5010000
|
trusted library allocation
|
page read and write
|
||
|
4E1C000
|
stack
|
page read and write
|
||
|
532E000
|
stack
|
page read and write
|
||
|
65E0000
|
heap
|
page read and write
|
||
|
2660000
|
trusted library allocation
|
page read and write
|
||
|
5825000
|
trusted library allocation
|
page read and write
|
||
|
57B6000
|
trusted library allocation
|
page read and write
|
||
|
67AC000
|
heap
|
page read and write
|
||
|
A5E000
|
stack
|
page read and write
|
||
|
38C5000
|
trusted library allocation
|
page read and write
|
||
|
133B000
|
trusted library allocation
|
page execute and read and write
|
||
|
1740000
|
trusted library allocation
|
page read and write
|
||
|
3971000
|
trusted library allocation
|
page read and write
|
||
|
4C4E000
|
stack
|
page read and write
|
||
|
30E8000
|
trusted library allocation
|
page read and write
|
||
|
3125000
|
trusted library allocation
|
page read and write
|
||
|
1580000
|
heap
|
page read and write
|
||
|
296E000
|
stack
|
page read and write
|
||
|
11B4000
|
trusted library allocation
|
page read and write
|
||
|
4FD4000
|
trusted library allocation
|
page read and write
|
||
|
FF0000
|
trusted library allocation
|
page read and write
|
||
|
1555000
|
heap
|
page read and write
|
||
|
28CE000
|
trusted library allocation
|
page read and write
|
||
|
577C000
|
trusted library allocation
|
page read and write
|
||
|
577E000
|
stack
|
page read and write
|
||
|
297E000
|
trusted library allocation
|
page read and write
|
||
|
3056000
|
trusted library allocation
|
page read and write
|
||
|
49BD000
|
stack
|
page read and write
|
||
|
2D6E000
|
stack
|
page read and write
|
||
|
547C000
|
stack
|
page read and write
|
||
|
307E000
|
trusted library allocation
|
page read and write
|
||
|
D14000
|
heap
|
page read and write
|
||
|
D70000
|
trusted library allocation
|
page execute and read and write
|
||
|
65DA000
|
stack
|
page read and write
|
||
|
551F000
|
stack
|
page read and write
|
||
|
30D1000
|
trusted library allocation
|
page read and write
|
||
|
1337000
|
trusted library allocation
|
page execute and read and write
|
||
|
4FE0000
|
trusted library allocation
|
page read and write
|
||
|
5780000
|
trusted library allocation
|
page read and write
|
||
|
1359000
|
stack
|
page read and write
|
||
|
4239000
|
trusted library allocation
|
page read and write
|
||
|
57FB000
|
trusted library allocation
|
page read and write
|
||
|
59D5000
|
stack
|
page read and write
|
||
|
5480000
|
trusted library allocation
|
page read and write
|
||
|
CFD000
|
heap
|
page read and write
|
||
|
B38000
|
stack
|
page read and write
|
||
|
2E70000
|
heap
|
page read and write
|
||
|
7ED000
|
heap
|
page read and write
|
||
|
6782000
|
heap
|
page read and write
|
||
|
C53000
|
trusted library allocation
|
page execute and read and write
|
||
|
15A7000
|
heap
|
page read and write
|
||
|
2487000
|
trusted library allocation
|
page execute and read and write
|
||
|
27EE000
|
trusted library allocation
|
page read and write
|
||
|
2805000
|
trusted library allocation
|
page read and write
|
||
|
26EC000
|
stack
|
page read and write
|
||
|
4C20000
|
trusted library allocation
|
page read and write
|
||
|
1540000
|
heap
|
page read and write
|
||
|
5C5000
|
heap
|
page read and write
|
||
|
2971000
|
trusted library allocation
|
page read and write
|
||
|
576F000
|
stack
|
page read and write
|
||
|
CEF000
|
stack
|
page read and write
|
||
|
662E000
|
stack
|
page read and write
|
||
|
5D1E000
|
stack
|
page read and write
|
||
|
66B000
|
stack
|
page read and write
|
||
|
11C5000
|
heap
|
page read and write
|
||
|
7D7000
|
heap
|
page read and write
|
||
|
57DC000
|
stack
|
page read and write
|
||
|
B31000
|
heap
|
page read and write
|
||
|
1549000
|
heap
|
page read and write
|
||
|
51FE000
|
stack
|
page read and write
|
||
|
2840000
|
trusted library allocation
|
page read and write
|
||
|
11A0000
|
trusted library allocation
|
page read and write
|
||
|
806000
|
heap
|
page read and write
|
||
|
2839000
|
trusted library allocation
|
page read and write
|
||
|
11BD000
|
trusted library allocation
|
page execute and read and write
|
||
|
5A4E000
|
stack
|
page read and write
|
||
|
A10000
|
heap
|
page read and write
|
||
|
5794000
|
trusted library allocation
|
page read and write
|
||
|
B70000
|
trusted library allocation
|
page read and write
|
||
|
2E60000
|
trusted library allocation
|
page read and write
|
||
|
283C000
|
trusted library allocation
|
page read and write
|
||
|
2F85000
|
trusted library allocation
|
page read and write
|
||
|
B64000
|
trusted library allocation
|
page read and write
|
||
|
905000
|
heap
|
page read and write
|
||
|
FEE000
|
stack
|
page read and write
|
||
|
57B1000
|
trusted library allocation
|
page read and write
|
||
|
4231000
|
trusted library allocation
|
page read and write
|
||
|
AF0000
|
heap
|
page read and write
|
||
|
4FCC000
|
stack
|
page read and write
|
||
|
64DB000
|
stack
|
page read and write
|
||
|
2849000
|
trusted library allocation
|
page read and write
|
||
|
4FF5000
|
stack
|
page read and write
|
||
|
2FAE000
|
stack
|
page read and write
|
||
|
30F6000
|
trusted library allocation
|
page read and write
|
||
|
5830000
|
trusted library allocation
|
page read and write
|
||
|
AFA000
|
heap
|
page read and write
|
||
|
CE7000
|
heap
|
page read and write
|
||
|
CE0000
|
heap
|
page read and write
|
||
|
57BD000
|
trusted library allocation
|
page read and write
|
||
|
30DD000
|
trusted library allocation
|
page read and write
|
||
|
4BDC000
|
stack
|
page read and write
|
||
|
4F8E000
|
stack
|
page read and write
|
||
|
57E8000
|
trusted library allocation
|
page read and write
|
||
|
B17000
|
heap
|
page read and write
|
||
|
1368000
|
heap
|
page read and write
|
||
|
57F6000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
heap
|
page read and write
|
||
|
56CE000
|
stack
|
page read and write
|
||
|
38C9000
|
trusted library allocation
|
page read and write
|
||
|
4DC5000
|
stack
|
page read and write
|
||
|
50BE000
|
stack
|
page read and write
|
||
|
12CE000
|
stack
|
page read and write
|
||
|
3120000
|
heap
|
page read and write
|
||
|
4BF0000
|
trusted library allocation
|
page read and write
|
||
|
5789000
|
trusted library allocation
|
page read and write
|
||
|
2700000
|
trusted library allocation
|
page read and write
|
||
|
F6E000
|
stack
|
page read and write
|
||
|
A74000
|
trusted library allocation
|
page read and write
|
||
|
25EF000
|
stack
|
page read and write
|
||
|
2850000
|
trusted library allocation
|
page read and write
|
||
|
1586000
|
heap
|
page read and write
|
||
|
51BE000
|
stack
|
page read and write
|
||
|
DC9000
|
stack
|
page read and write
|
||
|
171F000
|
stack
|
page read and write
|
||
|
5790000
|
trusted library allocation
|
page read and write
|
||
|
C87000
|
trusted library allocation
|
page execute and read and write
|
||
|
24EE000
|
stack
|
page read and write
|
||
|
A84000
|
trusted library allocation
|
page read and write
|
||
|
4C29000
|
trusted library allocation
|
page read and write
|
||
|
59E0000
|
trusted library allocation
|
page read and write
|
||
|
1332000
|
trusted library allocation
|
page read and write
|
||
|
C10000
|
heap
|
page read and write
|
||
|
D08000
|
heap
|
page read and write
|
There are 397 hidden memdumps, click here to show them.