Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
SecuriteInfo.com.BackDoor.QuasarNET.3.14065.23993.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506
|
Microsoft Cabinet archive data, Windows 2000/XP setup, 71954 bytes, 1 file, at 0x2c +A "authroot.stl", number 1, 6 datablocks,
0x1 compression
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
|
data
|
dropped
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\SecuriteInfo.com.BackDoor.QuasarNET.3.14065.23993.exe
|
"C:\Users\user\Desktop\SecuriteInfo.com.BackDoor.QuasarNET.3.14065.23993.exe"
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
117.18.7.76
|
|
||
|
https://api.ipify.org/
|
unknown
|
||
|
https://stackoverflow.com/q/14436606/23354
|
unknown
|
||
|
http://schemas.datacontract.org/2004/07/
|
unknown
|
||
|
http://ocsps.ssl.com0?
|
unknown
|
||
|
http://www.ssl.com/repository/SSLcomRootCertificationAuthorityRSA.crt0
|
unknown
|
||
|
http://cert.ssl.com/SSL.com-timeStamping-I-RSA-R1.cer0Q
|
unknown
|
||
|
http://ocsps.ssl.com0
|
unknown
|
||
|
http://cert.ssl.com/SSLcom-SubCA-EV-CodeSigning-RSA-4096-R3.cer0
|
unknown
|
||
|
http://sslcom.crl.certum.pl/ctnca.crl0s
|
unknown
|
||
|
http://crls.ssl.com/SSLcom-RootCA-EV-RSA-4096-R2.crl0
|
unknown
|
||
|
https://www.certum.pl/CPS0
|
unknown
|
||
|
http://sslcom.repository.certum.pl/ctnca.cer0:
|
unknown
|
||
|
http://crls.ssl.com/SSLcom-SubCA-EV-CodeSigning-RSA-4096-R3.crl0
|
unknown
|
||
|
http://crls.ssl.com/ssl.com-rsa-RootCA.crl0
|
unknown
|
||
|
http://crls.ssl.com/SSL.com-timeStamping-I-RSA-R1.crl0
|
unknown
|
||
|
https://stackoverflow.com/q/11564914/23354;
|
unknown
|
||
|
https://ipwho.is
|
unknown
|
||
|
https://www.ssl.com/repository0
|
unknown
|
||
|
http://ocsps.ssl.com0_
|
unknown
|
||
|
http://sslcom.ocsp-certum.com08
|
unknown
|
||
|
https://stackoverflow.com/q/2152978/23354sCannot
|
unknown
|
||
|
https://ipwho.is/
|
195.201.57.90
|
||
|
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
|
unknown
|
||
|
http://www.ssl.com/repository/SSLcom-RootCA-EV-RSA-4096-R2.crt0
|
unknown
|
||
|
http://ipwho.is
|
unknown
|
There are 16 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
ipwho.is
|
195.201.57.90
|
||
|
default.qdr.p1.ds-c7110-microsoft.global.dns.qwilted-cds.cqloud.com
|
217.20.57.18
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
117.18.7.76
|
unknown
|
Hong Kong
|
|
|
|
195.201.57.90
|
ipwho.is
|
Germany
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing
|
EnableConsoleTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\SecuriteInfo_RASAPI32
|
EnableFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\SecuriteInfo_RASAPI32
|
EnableAutoFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\SecuriteInfo_RASAPI32
|
EnableConsoleTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\SecuriteInfo_RASAPI32
|
FileTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\SecuriteInfo_RASAPI32
|
ConsoleTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\SecuriteInfo_RASAPI32
|
MaxFileSize
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\SecuriteInfo_RASAPI32
|
FileDirectory
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\SecuriteInfo_RASMANCS
|
EnableFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\SecuriteInfo_RASMANCS
|
EnableAutoFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\SecuriteInfo_RASMANCS
|
EnableConsoleTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\SecuriteInfo_RASMANCS
|
FileTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\SecuriteInfo_RASMANCS
|
ConsoleTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\SecuriteInfo_RASMANCS
|
MaxFileSize
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\SecuriteInfo_RASMANCS
|
FileDirectory
|
There are 5 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
61B0000
|
trusted library section
|
page read and write
|
|
|
|
3BA4000
|
trusted library allocation
|
page read and write
|
|
|
|
4895000
|
trusted library allocation
|
page read and write
|
|
|
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
66A8000
|
heap
|
page read and write
|
||
|
5F20000
|
heap
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
3650000
|
heap
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
73E0000
|
trusted library allocation
|
page read and write
|
||
|
7380000
|
trusted library allocation
|
page read and write
|
||
|
5E70000
|
heap
|
page execute and read and write
|
||
|
13EE000
|
heap
|
page read and write
|
||
|
8E40000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
7390000
|
trusted library allocation
|
page read and write
|
||
|
66FF000
|
heap
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
67AF000
|
heap
|
page read and write
|
||
|
8E20000
|
trusted library allocation
|
page read and write
|
||
|
67AF000
|
heap
|
page read and write
|
||
|
8E20000
|
trusted library allocation
|
page read and write
|
||
|
736C000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
65D0000
|
trusted library allocation
|
page read and write
|
||
|
5DC9000
|
trusted library allocation
|
page execute and read and write
|
||
|
90E0000
|
trusted library allocation
|
page read and write
|
||
|
66F5000
|
heap
|
page read and write
|
||
|
141A000
|
heap
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
5F50000
|
heap
|
page read and write
|
||
|
366B000
|
trusted library allocation
|
page execute and read and write
|
||
|
5EA6000
|
trusted library allocation
|
page read and write
|
||
|
5F10000
|
trusted library allocation
|
page read and write
|
||
|
7160000
|
trusted library allocation
|
page read and write
|
||
|
13CA000
|
heap
|
page read and write
|
||
|
7184000
|
trusted library allocation
|
page read and write
|
||
|
7120000
|
trusted library allocation
|
page read and write
|
||
|
8E30000
|
trusted library allocation
|
page read and write
|
||
|
9140000
|
trusted library allocation
|
page read and write
|
||
|
9F1000
|
unkown
|
page execute read
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
7390000
|
trusted library allocation
|
page read and write
|
||
|
13D3000
|
heap
|
page read and write
|
||
|
7370000
|
trusted library allocation
|
page read and write
|
||
|
6707000
|
heap
|
page read and write
|
||
|
7260000
|
trusted library allocation
|
page read and write
|
||
|
6707000
|
heap
|
page read and write
|
||
|
377D000
|
trusted library allocation
|
page execute and read and write
|
||
|
6707000
|
heap
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
72D0000
|
trusted library allocation
|
page execute and read and write
|
||
|
8E30000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
3BDE000
|
trusted library allocation
|
page read and write
|
||
|
66C1000
|
heap
|
page read and write
|
||
|
80AE000
|
unkown
|
page read and write
|
||
|
66F8000
|
heap
|
page read and write
|
||
|
680B000
|
heap
|
page read and write
|
||
|
72B0000
|
trusted library allocation
|
page read and write
|
||
|
6190000
|
trusted library allocation
|
page read and write
|
||
|
12D6000
|
heap
|
page read and write
|
||
|
6A7B000
|
trusted library allocation
|
page read and write
|
||
|
7390000
|
trusted library allocation
|
page read and write
|
||
|
6627000
|
heap
|
page read and write
|
||
|
1429000
|
heap
|
page read and write
|
||
|
70A0000
|
trusted library allocation
|
page execute and read and write
|
||
|
3610000
|
trusted library allocation
|
page read and write
|
||
|
5F20000
|
trusted library allocation
|
page read and write
|
||
|
141B000
|
heap
|
page read and write
|
||
|
66E6000
|
heap
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
A8A000
|
unkown
|
page readonly
|
||
|
7280000
|
trusted library allocation
|
page execute and read and write
|
||
|
680C000
|
heap
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
3BDA000
|
trusted library allocation
|
page read and write
|
||
|
1510000
|
direct allocation
|
page execute and read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
DB4000
|
unkown
|
page readonly
|
||
|
1340000
|
heap
|
page read and write
|
||
|
6708000
|
heap
|
page read and write
|
||
|
66F2000
|
heap
|
page read and write
|
||
|
73A0000
|
trusted library allocation
|
page read and write
|
||
|
7400000
|
heap
|
page read and write
|
||
|
6715000
|
heap
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
73B0000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
678E000
|
heap
|
page read and write
|
||
|
129E000
|
stack
|
page read and write
|
||
|
6190000
|
trusted library allocation
|
page read and write
|
||
|
67A7000
|
heap
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
6140000
|
trusted library allocation
|
page read and write
|
||
|
7380000
|
trusted library allocation
|
page read and write
|
||
|
70B0000
|
trusted library allocation
|
page read and write
|
||
|
66B9000
|
heap
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
5F1F000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
764C000
|
stack
|
page read and write
|
||
|
5EC0000
|
trusted library allocation
|
page read and write
|
||
|
7150000
|
trusted library allocation
|
page read and write
|
||
|
1DDE000
|
stack
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
7FAE000
|
stack
|
page read and write
|
||
|
9100000
|
trusted library allocation
|
page read and write
|
||
|
6839000
|
heap
|
page read and write
|
||
|
6150000
|
trusted library allocation
|
page read and write
|
||
|
9190000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
70F0000
|
trusted library allocation
|
page read and write
|
||
|
6707000
|
heap
|
page read and write
|
||
|
8E20000
|
trusted library allocation
|
page read and write
|
||
|
8C40000
|
trusted library allocation
|
page read and write
|
||
|
6A20000
|
trusted library allocation
|
page read and write
|
||
|
66C1000
|
heap
|
page read and write
|
||
|
6789000
|
heap
|
page read and write
|
||
|
8C2B000
|
stack
|
page read and write
|
||
|
8DF0000
|
trusted library allocation
|
page read and write
|
||
|
13CA000
|
heap
|
page read and write
|
||
|
3624000
|
trusted library allocation
|
page read and write
|
||
|
90D0000
|
trusted library allocation
|
page read and write
|
||
|
71F0000
|
trusted library allocation
|
page read and write
|
||
|
6100000
|
trusted library allocation
|
page read and write
|
||
|
7EAE000
|
stack
|
page read and write
|
||
|
73D0000
|
trusted library allocation
|
page read and write
|
||
|
9160000
|
trusted library allocation
|
page read and write
|
||
|
6789000
|
heap
|
page read and write
|
||
|
6708000
|
heap
|
page read and write
|
||
|
67B8000
|
heap
|
page read and write
|
||
|
61A0000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
61A0000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
758E000
|
stack
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
7080000
|
trusted library allocation
|
page read and write
|
||
|
8C40000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
66B5000
|
heap
|
page read and write
|
||
|
7240000
|
trusted library allocation
|
page read and write
|
||
|
6608000
|
heap
|
page read and write
|
||
|
88AD000
|
stack
|
page read and write
|
||
|
9F1000
|
unkown
|
page execute read
|
||
|
7380000
|
trusted library allocation
|
page read and write
|
||
|
13DB000
|
heap
|
page read and write
|
||
|
5ED5000
|
trusted library allocation
|
page read and write
|
||
|
8880000
|
trusted library allocation
|
page read and write
|
||
|
66A8000
|
heap
|
page read and write
|
||
|
66B3000
|
heap
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
6A3E000
|
trusted library allocation
|
page read and write
|
||
|
66B9000
|
heap
|
page read and write
|
||
|
73A0000
|
trusted library allocation
|
page read and write
|
||
|
3773000
|
trusted library allocation
|
page read and write
|
||
|
72F0000
|
trusted library allocation
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
5DC0000
|
trusted library allocation
|
page read and write
|
||
|
7F440000
|
trusted library allocation
|
page execute and read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
678E000
|
heap
|
page read and write
|
||
|
5F20000
|
trusted library allocation
|
page read and write
|
||
|
F9D000
|
stack
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
13DE000
|
heap
|
page read and write
|
||
|
8E30000
|
trusted library allocation
|
page read and write
|
||
|
73A0000
|
trusted library allocation
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
9110000
|
trusted library allocation
|
page read and write
|
||
|
4BC8000
|
trusted library allocation
|
page read and write
|
||
|
678E000
|
heap
|
page read and write
|
||
|
6780000
|
heap
|
page read and write
|
||
|
6190000
|
trusted library allocation
|
page read and write
|
||
|
65D1000
|
heap
|
page read and write
|
||
|
67AD000
|
heap
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
8E50000
|
trusted library allocation
|
page read and write
|
||
|
5E20000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
remote allocation
|
page read and write
|
||
|
8E20000
|
trusted library allocation
|
page read and write
|
||
|
65D0000
|
heap
|
page read and write
|
||
|
3780000
|
heap
|
page execute and read and write
|
||
|
6140000
|
trusted library allocation
|
page read and write
|
||
|
7270000
|
trusted library allocation
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
6783000
|
heap
|
page read and write
|
||
|
6140000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
5EE0000
|
trusted library allocation
|
page read and write
|
||
|
67B4000
|
heap
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
66FF000
|
heap
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
13C3000
|
heap
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
8E60000
|
trusted library allocation
|
page read and write
|
||
|
3D14000
|
trusted library allocation
|
page read and write
|
||
|
134E000
|
heap
|
page read and write
|
||
|
6190000
|
trusted library allocation
|
page read and write
|
||
|
7380000
|
trusted library allocation
|
page read and write
|
||
|
6723000
|
heap
|
page read and write
|
||
|
73E0000
|
trusted library allocation
|
page read and write
|
||
|
674C000
|
heap
|
page read and write
|
||
|
6631000
|
heap
|
page read and write
|
||
|
662D000
|
heap
|
page read and write
|
||
|
8E11000
|
trusted library allocation
|
page read and write
|
||
|
70C0000
|
trusted library allocation
|
page read and write
|
||
|
7110000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
6190000
|
trusted library allocation
|
page read and write
|
||
|
7365000
|
trusted library allocation
|
page read and write
|
||
|
5E50000
|
trusted library allocation
|
page read and write
|
||
|
91C0000
|
trusted library allocation
|
page read and write
|
||
|
7340000
|
trusted library allocation
|
page read and write
|
||
|
141C000
|
heap
|
page read and write
|
||
|
73A0000
|
trusted library allocation
|
page read and write
|
||
|
1425000
|
heap
|
page read and write
|
||
|
66BC000
|
heap
|
page read and write
|
||
|
5E25000
|
trusted library allocation
|
page read and write
|
||
|
1D9E000
|
stack
|
page read and write
|
||
|
6789000
|
heap
|
page read and write
|
||
|
8C40000
|
trusted library allocation
|
page read and write
|
||
|
8C40000
|
trusted library allocation
|
page read and write
|
||
|
61A0000
|
trusted library allocation
|
page execute and read and write
|
||
|
DB1000
|
unkown
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
8C30000
|
trusted library allocation
|
page read and write
|
||
|
6A20000
|
trusted library allocation
|
page read and write
|
||
|
5F20000
|
trusted library allocation
|
page read and write
|
||
|
6130000
|
trusted library allocation
|
page read and write
|
||
|
3B45000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
61A0000
|
trusted library allocation
|
page read and write
|
||
|
8E59000
|
trusted library allocation
|
page read and write
|
||
|
8E30000
|
trusted library allocation
|
page read and write
|
||
|
6789000
|
heap
|
page read and write
|
||
|
65D0000
|
trusted library allocation
|
page read and write
|
||
|
750D000
|
stack
|
page read and write
|
||
|
66C0000
|
heap
|
page read and write
|
||
|
388E000
|
stack
|
page read and write
|
||
|
6717000
|
heap
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
5F20000
|
trusted library allocation
|
page read and write
|
||
|
67CD000
|
heap
|
page read and write
|
||
|
8C40000
|
trusted library allocation
|
page read and write
|
||
|
5DC6000
|
trusted library allocation
|
page execute and read and write
|
||
|
13EE000
|
heap
|
page read and write
|
||
|
134A000
|
heap
|
page read and write
|
||
|
70E0000
|
trusted library allocation
|
page read and write
|
||
|
5DCC000
|
trusted library allocation
|
page execute and read and write
|
||
|
1210000
|
heap
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
91B0000
|
trusted library allocation
|
page read and write
|
||
|
67A7000
|
heap
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
5DAF000
|
stack
|
page read and write
|
||
|
5E40000
|
trusted library allocation
|
page execute and read and write
|
||
|
5F20000
|
trusted library allocation
|
page read and write
|
||
|
7170000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
13C0000
|
heap
|
page read and write
|
||
|
8E1A000
|
trusted library allocation
|
page read and write
|
||
|
918E000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
7380000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
7370000
|
trusted library allocation
|
page read and write
|
||
|
73E0000
|
trusted library allocation
|
page read and write
|
||
|
7D68000
|
stack
|
page read and write
|
||
|
5DF0000
|
trusted library allocation
|
page read and write
|
||
|
5E30000
|
trusted library allocation
|
page read and write
|
||
|
68D0000
|
trusted library allocation
|
page read and write
|
||
|
7220000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
66EA000
|
heap
|
page read and write
|
||
|
7380000
|
trusted library allocation
|
page read and write
|
||
|
66C9000
|
heap
|
page read and write
|
||
|
66BC000
|
heap
|
page read and write
|
||
|
66B0000
|
heap
|
page read and write
|
||
|
679F000
|
heap
|
page read and write
|
||
|
6708000
|
heap
|
page read and write
|
||
|
8E20000
|
trusted library allocation
|
page read and write
|
||
|
66A8000
|
heap
|
page read and write
|
||
|
3B64000
|
trusted library allocation
|
page read and write
|
||
|
8E00000
|
trusted library allocation
|
page execute and read and write
|
||
|
12C0000
|
heap
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
7247000
|
trusted library allocation
|
page read and write
|
||
|
13D3000
|
heap
|
page read and write
|
||
|
6A20000
|
trusted library allocation
|
page read and write
|
||
|
5DC3000
|
trusted library allocation
|
page read and write
|
||
|
67AD000
|
heap
|
page read and write
|
||
|
7060000
|
trusted library allocation
|
page read and write
|
||
|
8E20000
|
trusted library allocation
|
page read and write
|
||
|
1938000
|
stack
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
66EA000
|
heap
|
page read and write
|
||
|
678F000
|
heap
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
8E11000
|
trusted library allocation
|
page read and write
|
||
|
5F20000
|
trusted library allocation
|
page read and write
|
||
|
E9D000
|
stack
|
page read and write
|
||
|
66E6000
|
heap
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
7230000
|
trusted library allocation
|
page read and write
|
||
|
36EE000
|
stack
|
page read and write
|
||
|
13C2000
|
heap
|
page read and write
|
||
|
7365000
|
trusted library allocation
|
page read and write
|
||
|
3B3D000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
61A0000
|
trusted library allocation
|
page read and write
|
||
|
3B57000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
6120000
|
heap
|
page read and write
|
||
|
4BD7000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
65F1000
|
heap
|
page read and write
|
||
|
7264000
|
trusted library allocation
|
page read and write
|
||
|
8E18000
|
trusted library allocation
|
page read and write
|
||
|
A90000
|
unkown
|
page write copy
|
||
|
7E6D000
|
stack
|
page read and write
|
||
|
7140000
|
trusted library allocation
|
page read and write
|
||
|
7040000
|
trusted library allocation
|
page read and write
|
||
|
3891000
|
trusted library allocation
|
page read and write
|
||
|
8E2E000
|
trusted library allocation
|
page read and write
|
||
|
65E3000
|
heap
|
page read and write
|
||
|
90F0000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
13CE000
|
heap
|
page read and write
|
||
|
70D0000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
3657000
|
heap
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
13DE000
|
heap
|
page read and write
|
||
|
8E16000
|
trusted library allocation
|
page read and write
|
||
|
3690000
|
trusted library allocation
|
page execute and read and write
|
||
|
61A0000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
13CA000
|
heap
|
page read and write
|
||
|
13CC000
|
heap
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
13E6000
|
heap
|
page read and write
|
||
|
3667000
|
trusted library allocation
|
page execute and read and write
|
||
|
7070000
|
trusted library allocation
|
page read and write
|
||
|
138B000
|
heap
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
91A0000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
7290000
|
trusted library allocation
|
page read and write
|
||
|
7365000
|
trusted library allocation
|
page read and write
|
||
|
662D000
|
heap
|
page read and write
|
||
|
5F61000
|
trusted library allocation
|
page read and write
|
||
|
12D0000
|
heap
|
page read and write
|
||
|
3660000
|
trusted library allocation
|
page read and write
|
||
|
66B0000
|
heap
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
662E000
|
heap
|
page read and write
|
||
|
DB4000
|
unkown
|
page readonly
|
||
|
5F30000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
8C40000
|
trusted library allocation
|
page read and write
|
||
|
89AE000
|
stack
|
page read and write
|
||
|
5E80000
|
trusted library allocation
|
page read and write
|
||
|
6627000
|
heap
|
page read and write
|
||
|
8E20000
|
trusted library allocation
|
page read and write
|
||
|
9130000
|
trusted library allocation
|
page read and write
|
||
|
7130000
|
trusted library allocation
|
page read and write
|
||
|
3770000
|
trusted library allocation
|
page read and write
|
||
|
6123000
|
heap
|
page read and write
|
||
|
66F6000
|
heap
|
page read and write
|
||
|
7364000
|
trusted library allocation
|
page read and write
|
||
|
3680000
|
trusted library allocation
|
page read and write
|
||
|
3D12000
|
trusted library allocation
|
page read and write
|
||
|
3620000
|
trusted library allocation
|
page read and write
|
||
|
1C9E000
|
unkown
|
page read and write
|
||
|
66A8000
|
heap
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
65D1000
|
heap
|
page read and write
|
||
|
3D0B000
|
trusted library allocation
|
page read and write
|
||
|
65CD000
|
stack
|
page read and write
|
||
|
73E0000
|
trusted library allocation
|
page read and write
|
||
|
4891000
|
trusted library allocation
|
page read and write
|
||
|
6190000
|
trusted library allocation
|
page read and write
|
||
|
66FF000
|
heap
|
page read and write
|
||
|
1418000
|
heap
|
page read and write
|
||
|
6618000
|
heap
|
page read and write
|
||
|
73B0000
|
trusted library allocation
|
page read and write
|
||
|
8E40000
|
trusted library allocation
|
page execute and read and write
|
||
|
67E0000
|
heap
|
page read and write
|
||
|
8890000
|
trusted library allocation
|
page read and write
|
||
|
8E20000
|
trusted library allocation
|
page read and write
|
||
|
66D1000
|
heap
|
page read and write
|
||
|
65D1000
|
heap
|
page read and write
|
||
|
376E000
|
stack
|
page read and write
|
||
|
7190000
|
trusted library allocation
|
page execute and read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
7100000
|
trusted library allocation
|
page execute and read and write
|
||
|
670F000
|
heap
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
8C40000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
3D10000
|
trusted library allocation
|
page read and write
|
||
|
13D5000
|
heap
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
9150000
|
trusted library allocation
|
page read and write
|
||
|
6631000
|
heap
|
page read and write
|
||
|
6839000
|
heap
|
page read and write
|
||
|
13D5000
|
heap
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
67A3000
|
heap
|
page read and write
|
||
|
6A20000
|
trusted library allocation
|
page read and write
|
||
|
67B4000
|
heap
|
page read and write
|
||
|
66B9000
|
heap
|
page read and write
|
||
|
66A8000
|
heap
|
page read and write
|
||
|
5DD0000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
6100000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
65D0000
|
trusted library allocation
|
page read and write
|
||
|
6190000
|
trusted library allocation
|
page read and write
|
||
|
3B29000
|
trusted library allocation
|
page read and write
|
||
|
13D5000
|
heap
|
page read and write
|
||
|
3B61000
|
trusted library allocation
|
page read and write
|
||
|
8E18000
|
trusted library allocation
|
page read and write
|
||
|
754E000
|
stack
|
page read and write
|
||
|
6190000
|
trusted library allocation
|
page read and write
|
||
|
691A000
|
stack
|
page read and write
|
||
|
8E20000
|
trusted library allocation
|
page read and write
|
||
|
66DE000
|
heap
|
page read and write
|
||
|
73E0000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
66AE000
|
heap
|
page read and write
|
||
|
3600000
|
trusted library section
|
page read and write
|
||
|
684C000
|
heap
|
page read and write
|
||
|
6779000
|
heap
|
page read and write
|
||
|
8FCE000
|
stack
|
page read and write
|
||
|
6632000
|
heap
|
page read and write
|
||
|
66EE000
|
heap
|
page read and write
|
||
|
670A000
|
heap
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
6A24000
|
trusted library allocation
|
page read and write
|
||
|
680B000
|
heap
|
page read and write
|
||
|
61A0000
|
trusted library allocation
|
page read and write
|
||
|
66EE000
|
heap
|
page read and write
|
||
|
7216000
|
trusted library allocation
|
page read and write
|
||
|
66FF000
|
heap
|
page read and write
|
||
|
72CE000
|
trusted library allocation
|
page read and write
|
||
|
5EAC000
|
trusted library allocation
|
page read and write
|
||
|
66B9000
|
heap
|
page read and write
|
||
|
1320000
|
heap
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
67B1000
|
heap
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
3B2C000
|
trusted library allocation
|
page read and write
|
||
|
7358000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
67A3000
|
heap
|
page read and write
|
||
|
3662000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
88A0000
|
trusted library allocation
|
page read and write
|
||
|
67B6000
|
heap
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
8E20000
|
trusted library allocation
|
page read and write
|
||
|
8E20000
|
trusted library allocation
|
page read and write
|
||
|
7051000
|
trusted library allocation
|
page read and write
|
||
|
6180000
|
trusted library allocation
|
page read and write
|
||
|
9180000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
remote allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
7180000
|
trusted library allocation
|
page read and write
|
||
|
7330000
|
trusted library allocation
|
page execute and read and write
|
||
|
7210000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
4BB8000
|
trusted library allocation
|
page read and write
|
||
|
38C5000
|
trusted library allocation
|
page read and write
|
||
|
9F0000
|
unkown
|
page readonly
|
||
|
3BA0000
|
trusted library allocation
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
617B000
|
stack
|
page read and write
|
||
|
65D1000
|
heap
|
page read and write
|
||
|
680C000
|
heap
|
page read and write
|
||
|
90CE000
|
stack
|
page read and write
|
||
|
6774000
|
heap
|
page read and write
|
||
|
7367000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
8E20000
|
trusted library allocation
|
page read and write
|
||
|
5E60000
|
trusted library allocation
|
page read and write
|
||
|
66FF000
|
heap
|
page read and write
|
||
|
8E30000
|
trusted library allocation
|
page read and write
|
||
|
8B2E000
|
stack
|
page read and write
|
||
|
66C8000
|
heap
|
page read and write
|
||
|
7320000
|
trusted library allocation
|
page read and write
|
||
|
9F0000
|
unkown
|
page readonly
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
3D0D000
|
trusted library allocation
|
page read and write
|
||
|
73F0000
|
heap
|
page read and write
|
||
|
66B9000
|
heap
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
73C0000
|
trusted library allocation
|
page read and write
|
||
|
12C7000
|
heap
|
page read and write
|
||
|
7300000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
8E26000
|
trusted library allocation
|
page read and write
|
||
|
66A8000
|
heap
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
5F10000
|
trusted library allocation
|
page read and write
|
||
|
12B0000
|
trusted library section
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
3623000
|
trusted library allocation
|
page execute and read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
73B0000
|
trusted library allocation
|
page execute and read and write
|
||
|
1200000
|
heap
|
page read and write
|
||
|
7380000
|
trusted library allocation
|
page read and write
|
||
|
6632000
|
heap
|
page read and write
|
||
|
8870000
|
trusted library allocation
|
page read and write
|
||
|
6190000
|
trusted library allocation
|
page read and write
|
||
|
7200000
|
trusted library allocation
|
page read and write
|
||
|
73A0000
|
trusted library allocation
|
page read and write
|
||
|
66BC000
|
heap
|
page read and write
|
||
|
72A0000
|
trusted library allocation
|
page read and write
|
||
|
1940000
|
direct allocation
|
page read and write
|
||
|
8E44000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
61A0000
|
trusted library allocation
|
page read and write
|
||
|
6707000
|
heap
|
page read and write
|
||
|
9116000
|
trusted library allocation
|
page read and write
|
||
|
3B54000
|
trusted library allocation
|
page read and write
|
||
|
65F9000
|
heap
|
page read and write
|
||
|
7360000
|
remote allocation
|
page read and write
|
||
|
6631000
|
heap
|
page read and write
|
||
|
7366000
|
trusted library allocation
|
page read and write
|
||
|
7380000
|
trusted library allocation
|
page read and write
|
||
|
8E70000
|
trusted library allocation
|
page read and write
|
||
|
3634000
|
trusted library allocation
|
page read and write
|
||
|
73AA000
|
trusted library allocation
|
page read and write
|
||
|
8E11000
|
trusted library allocation
|
page read and write
|
||
|
6100000
|
trusted library allocation
|
page execute and read and write
|
||
|
A90000
|
unkown
|
page write copy
|
||
|
7310000
|
trusted library allocation
|
page read and write
|
||
|
66EE000
|
heap
|
page read and write
|
||
|
6110000
|
trusted library allocation
|
page read and write
|
||
|
362D000
|
trusted library allocation
|
page execute and read and write
|
||
|
13DB000
|
heap
|
page read and write
|
||
|
1259000
|
stack
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
36A0000
|
heap
|
page read and write
|
||
|
72C0000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
1421000
|
heap
|
page read and write
|
||
|
131E000
|
stack
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
66B9000
|
heap
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
1422000
|
heap
|
page read and write
|
||
|
1425000
|
heap
|
page read and write
|
||
|
66BA000
|
heap
|
page read and write
|
||
|
9120000
|
trusted library allocation
|
page read and write
|
||
|
671F000
|
heap
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
8C40000
|
trusted library allocation
|
page read and write
|
||
|
A8A000
|
unkown
|
page readonly
|
||
|
3630000
|
trusted library allocation
|
page read and write
|
||
|
372E000
|
stack
|
page read and write
|
||
|
6783000
|
heap
|
page read and write
|
||
|
66C1000
|
heap
|
page read and write
|
||
|
7F458000
|
trusted library allocation
|
page execute and read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
5DB0000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
7364000
|
trusted library allocation
|
page read and write
|
||
|
66A8000
|
heap
|
page read and write
|
||
|
6A1B000
|
stack
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
5898000
|
trusted library allocation
|
page read and write
|
||
|
7390000
|
trusted library allocation
|
page read and write
|
||
|
72E0000
|
trusted library allocation
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
7030000
|
trusted library allocation
|
page read and write
|
||
|
66EA000
|
heap
|
page read and write
|
||
|
65F0000
|
heap
|
page read and write
|
||
|
7250000
|
trusted library allocation
|
page read and write
|
||
|
66D0000
|
heap
|
page read and write
|
||
|
66C1000
|
heap
|
page read and write
|
||
|
13CD000
|
heap
|
page read and write
|
||
|
8E10000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
9170000
|
trusted library allocation
|
page read and write
|
||
|
7365000
|
trusted library allocation
|
page read and write
|
||
|
7090000
|
trusted library allocation
|
page read and write
|
||
|
5ED0000
|
trusted library allocation
|
page read and write
|
||
|
7360000
|
trusted library allocation
|
page read and write
|
||
|
5A2D000
|
stack
|
page read and write
|
||
|
8E20000
|
trusted library allocation
|
page read and write
|
There are 603 hidden memdumps, click here to show them.