Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
rpedido-002297.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Local\Temp\nss65F.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Templates\Eddadigtet\Sarcocol\Betalingsunderskud.Smm
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\7831-51J
|
SQLite 3.x database, last written using SQLite version 3036000, page size 2048, file counter 7, database pages 59, cookie
0x52, schema 4, UTF-8, version-valid-for 7
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\nspC5B.tmp\System.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Templates\Eddadigtet\Sarcocol\bushers.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Templates\Eddadigtet\Sarcocol\driegh.Con
|
ASCII text, with very long lines (65536), with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Templates\Eddadigtet\Sarcocol\meropidae.kej
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Templates\Eddadigtet\Sarcocol\plastron.ori
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Templates\Gaulin.ini
|
ASCII text, with CRLF line terminators
|
dropped
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\rpedido-002297.exe
|
"C:\Users\user\Desktop\rpedido-002297.exe"
|
|
|
|
C:\Users\user\Desktop\rpedido-002297.exe
|
"C:\Users\user\Desktop\rpedido-002297.exe"
|
|
|
|
C:\Program Files (x86)\dISegzvEbDPORTPogVMrwZRPcgzGUBqBoVxtkMCnuejeRLXVUsEItiyojcctMHhS\ffHgJPmoWftQT.exe
|
"C:\Program Files (x86)\dISegzvEbDPORTPogVMrwZRPcgzGUBqBoVxtkMCnuejeRLXVUsEItiyojcctMHhS\ffHgJPmoWftQT.exe"
|
|
|
|
C:\Windows\SysWOW64\sethc.exe
|
"C:\Windows\SysWOW64\sethc.exe"
|
|
|
|
C:\Program Files (x86)\dISegzvEbDPORTPogVMrwZRPcgzGUBqBoVxtkMCnuejeRLXVUsEItiyojcctMHhS\ffHgJPmoWftQT.exe
|
"C:\Program Files (x86)\dISegzvEbDPORTPogVMrwZRPcgzGUBqBoVxtkMCnuejeRLXVUsEItiyojcctMHhS\ffHgJPmoWftQT.exe"
|
|
|
|
C:\Program Files\Mozilla Firefox\firefox.exe
|
"C:\Program Files\Mozilla Firefox\Firefox.exe"
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://www.nidedabeille.net/qwre/
|
195.110.124.133
|
|
|
|
http://www.guvosh.info/weoa/
|
209.74.64.189
|
|
|
|
http://www.diterra.shop/i214/
|
52.223.13.41
|
|
|
|
http://www.diterra.shop/i214/?sdqp=DdBtjpu0&SLTxDJ=8L+v0iKQi3SEHLT2WRo67D7fdIZ1owlHl2rmrOR1JwYTeA0xdiNmVuQJUv8W+96NKPQHmSfbhnGjNIdnMhMOhWIupUnYlb8qpfN48FFLVIFHw+P9rJXDvU0=
|
52.223.13.41
|
|
|
|
http://www.nuvsgloves.shop/211a/
|
3.33.130.190
|
|
|
|
http://www.myplayamate.llc/rhg0/?SLTxDJ=2L1ve2bmhFTS5KzkmMxIzSFacPcGfmR9IE3yYvHp2/L/wTys70xKqVLp323vXEq+zj0T9FJ1aW2OvbGQ4Lpp6uTFnvn++ufGxUl1x1y0DnQlMq5exFAJ/qg=&sdqp=DdBtjpu0
|
3.33.130.190
|
|
|
|
http://www.ciao83.top/osru/?SLTxDJ=Zr9lePhs13vfiSXUgPBOQmFuuEIf7wPoKDQkwm1HCgeL+p61jRVuWaM60djbP4lo+XHfO/zYruNTVKRckEUHjUHONRjPInqHY94AphWcG+NTuGKPqY7AU7g=&sdqp=DdBtjpu0
|
103.149.183.47
|
|
|
|
http://www.bejho.net/m4fe/?SLTxDJ=j+QGOmJgLx8aZTbQ/UU455ao2mlxc0BwRC8m2DvQUT3YjU8qv77b8K+aSHVJXg73d6cB6HYz/W+ec5eRF6coKG6Ok7VuH1Gqb2tjeoQuqK3f3rky9yZBMig=&sdqp=DdBtjpu0
|
64.225.91.73
|
|
|
|
http://www.kerennih31.click/195u/
|
104.223.44.195
|
|
|
|
http://www.kerennih31.click/195u/?SLTxDJ=aNYDz25QeW1nHygD0LaYtsh6raBYIBnRK9eBJq58sI9PMC6Y0hkfI4Z/VJ9iKp+j++1Gwc5EXUVHTapx585cEAZeHKtDaaAZqpmCFOpgojzJ8At9FsJqyBw=&sdqp=DdBtjpu0
|
104.223.44.195
|
|
|
|
http://www.animazor.online/f57g/?SLTxDJ=PpyUL764Lok+Ppx0Qx+flf+oLnZjKtESHdypv4ujlvPdkHCPNJQcR2wKvaRzAHBpGeyN5Ompg3h0vZ2hJul1rBg78gGMUKvCjJ308wc1KBj/j4QDVYdFWXw=&sdqp=DdBtjpu0
|
85.159.66.93
|
|
|
|
http://www.animazor.online/f57g/
|
85.159.66.93
|
|
|
|
http://www.pqoff.cyou/8hdf/?SLTxDJ=lLOyoMBfr5jpOHc3aGxYSKEVrJDOBL4hs/wtu5LQPMr8OmGbaQfYchAMtHZyuHHG/1HmBLCYvytSJ41hCNMOCinrONpnSIX56rBOFOVmXblBC0Id8Y2VjXg=&sdqp=DdBtjpu0
|
176.123.9.220
|
|
|
|
http://www.casadisole.org/8aav/?SLTxDJ=cXEBHFhJYRIEdLtDrD47XouJ9lOJ6Jbz9q+FGHwZbcqkL3CqI33gRqzfzaRS4tnulKfTicgkVTcPWkXwiz1QB5bpYjLPXLzN677G0LXTHI3kekNY/RjEFGc=&sdqp=DdBtjpu0
|
93.125.99.74
|
|
|
|
http://www.spectre.center/zerq/?sdqp=DdBtjpu0&SLTxDJ=JJygX/9Yqp2kCJm1X937CsoHlxMYbOn5BbW6iXsQ58IJmHXe+LE0Ahk0W9b16x8ck1wrZbbWmuYj5v7E2XXBWkCBLNkXiRXO/bLJPNeQGE5OCLVGIG7pjJ0=
|
5.39.10.93
|
|
|
|
http://www.bejho.net/m4fe/
|
64.225.91.73
|
|
|
|
http://www.myplayamate.llc/rhg0/
|
3.33.130.190
|
|
|
|
http://www.030002626.xyz/49rz/
|
65.21.196.90
|
|
|
|
http://www.casadisole.org/8aav/
|
93.125.99.74
|
|
|
|
http://www.my1pgz.pro/4db5/
|
156.227.17.86
|
|
|
|
http://www.rbseating.shop/39es/
|
162.250.125.14
|
|
|
|
http://www.pqoff.cyou/8hdf/
|
176.123.9.220
|
|
|
|
http://www.nuvsgloves.shop/211a/?SLTxDJ=sCokzXCHPe9EljO2li5uWyvEvprmidp85P956psXE5pPHneasvASkBMAjzQyqTiufapuM3ZSx9u+6TTkMqSOIoBMOr8rXdhmKhHpcoXyFg81cDzlWYIjmEI=&sdqp=DdBtjpu0
|
3.33.130.190
|
|
|
|
http://www.ciao83.top/osru/
|
103.149.183.47
|
|
|
|
http://www.guvosh.info/weoa/?SLTxDJ=EoFNcPjpgMXDCm2GvpzDf2Up793BOIi+pKCezFiYD4jbj2Yo7D13E7BcxzwFrISbrXGSJXEIolRF+rdzKXlRzk56QF0257Aw5rMH1zy2O6JYE5jaN7phvns=&sdqp=DdBtjpu0
|
209.74.64.189
|
|
|
|
http://www.nidedabeille.net/qwre/?SLTxDJ=5IUmOmgXmzXVv/gX216kUflcAKBqivLO9FqsMlOL+FkZEQacAcRtqW88LIybSleJd1eUrkQHdwoeigFGPvuQFpglB+P4g6ziRlq8MXCZxaJOIp9OQX7VofM=&sdqp=DdBtjpu0
|
195.110.124.133
|
|
|
|
http://www.rbseating.shop/39es/?SLTxDJ=eQshfEfdwSnAzrJ2jxGgNrEDJqWG121KZX6fzsQi9Q6srdS+pCoeb+ZZoWaInIAsqOuwaQAybftVmN+kQrlALvUyxAy6phvN3h0mYXE1KKUlyvAZJeg5ZIE=&sdqp=DdBtjpu0
|
162.250.125.14
|
|
|
|
http://www.030002626.xyz/49rz/?SLTxDJ=EhbzRBRYrjyKBBl3aRsEbBXbhOXLjCE10r+nsIopZm23Glpi7Qy7+DNq+4vPd57NXdgKEXQmc8fDDe8aO6D/jhEFr7XAm7t+Z7WB57wuun69z0f4xguMScI=&sdqp=DdBtjpu0
|
65.21.196.90
|
|
|
|
https://duckduckgo.com/chrome_newtab
|
unknown
|
||
|
http://giganet.ua/ru
|
unknown
|
||
|
https://uk.search.yahoo.com/favicon.icohttps://uk.search.yahoo.com/search
|
unknown
|
||
|
https://duckduckgo.com/ac/?q=
|
unknown
|
||
|
https://nojs.domaincntrol.com
|
unknown
|
||
|
https://www.imena.ua/domains
|
unknown
|
||
|
https://www.imena.ua/documents
|
unknown
|
||
|
https://img.imena.ua/js/bundle.min.js
|
unknown
|
||
|
http://inau.ua/
|
unknown
|
||
|
https://www.imena.ua/en/how-search
|
unknown
|
||
|
https://www.imena.ua/vps
|
unknown
|
||
|
http://inference.location.live.com11111111-1111-1111-1111-111111111111https://partnernext-inference.
|
unknown
|
||
|
https://www.ripe.net/
|
unknown
|
||
|
http://www.ibm.com/data/dtd/v11/ibmxhtml1-transitional.dtd-//W3O//DTD
|
unknown
|
||
|
https://www.imena.ua/hosting
|
unknown
|
||
|
http://www.gopher.ftp://ftp.
|
unknown
|
||
|
http://www.030002626.xyz/cgi-sys/suspendedpage.cgi?SLTxDJ=EhbzRBRYrjyKBBl3aRsEbBXbhOXLjCE10r
|
unknown
|
||
|
https://www.google.com
|
unknown
|
||
|
https://www.imena.ua/
|
unknown
|
||
|
https://domaincntrol.com/?orighost=
|
unknown
|
||
|
http://www.w3c.org/TR/1999/REC-html401-19991224/frameset.dtd
|
unknown
|
||
|
https://uk.search.yahoo.com/sugg/chrome?output=fxjson&appid=crmas&command=
|
unknown
|
||
|
https://drive.google.com/
|
unknown
|
||
|
https://www.imena.ua/domains/prices
|
unknown
|
||
|
https://inference.location.live.net/inferenceservice/v21/Pox/GetLocationUsingFingerprinte1e71f6b-214
|
unknown
|
||
|
https://www.imena.ua/ua
|
unknown
|
||
|
http://partner.mirohost.net
|
unknown
|
||
|
http://rbseating.shop/39es/?SLTxDJ=eQshfEfdwSnAzrJ2jxGgNrEDJqWG121KZX6fzsQi9Q6srdS
|
unknown
|
||
|
https://www.imena.ua/domains/premium-domains
|
unknown
|
||
|
https://apis.google.com
|
unknown
|
||
|
https://www.imena.ua/blog/
|
unknown
|
||
|
https://ocsp.quovadisoffshore.com0
|
unknown
|
||
|
https://www.imena.ua/datacenter
|
unknown
|
||
|
https://www.imena.ua/domains/regtm
|
unknown
|
||
|
https://www.imena.ua/how-search
|
unknown
|
||
|
https://www.imena.ua/job
|
unknown
|
||
|
https://drive.google.com/:
|
unknown
|
||
|
https://www.google.com/images/branding/product/ico/googleg_lodp.ico
|
unknown
|
||
|
http://www.nuvsgloves.shop
|
unknown
|
||
|
https://www.imena.ua/contact
|
unknown
|
||
|
https://www.imena.ua/en
|
unknown
|
||
|
http://www.ix.net.ua/ru
|
unknown
|
||
|
https://img.imena.ua/css/media-set.css
|
unknown
|
||
|
https://duckduckgo.com/favicon.icohttps://duckduckgo.com/?q=
|
unknown
|
||
|
https://mail.mirohost.net
|
unknown
|
||
|
https://drive.usercontent.google.com/
|
unknown
|
||
|
https://www.imena.ua/help
|
unknown
|
||
|
http://nsis.sf.net/NSIS_ErrorError
|
unknown
|
||
|
https://www.ecosia.org/newtab/
|
unknown
|
||
|
https://control.imena.ua/login.php?lang=2
|
unknown
|
||
|
https://ac.ecosia.org/autocomplete?q=
|
unknown
|
||
|
https://control.mirohost.net/auth/login.php?lang=ru
|
unknown
|
||
|
https://www.imena.ua/ru
|
unknown
|
||
|
https://www.imena.ua/whois.php?domain=spectre.center
|
unknown
|
||
|
https://www.imena.ua/check-domain
|
unknown
|
||
|
https://www.imena.ua/payments
|
unknown
|
||
|
https://www.imena.ua/servers
|
unknown
|
||
|
http://ogp.me/ns#
|
unknown
|
||
|
http://www.w3c.org/TR/1999/REC-html401-19991224/loose.dtd
|
unknown
|
||
|
http://www.quovadis.bm0
|
unknown
|
||
|
https://www.imena.ua/check-domain?step=transfer
|
unknown
|
||
|
http://schema.org/Organization
|
unknown
|
||
|
https://www.imena.ua/support/domains-finance/sposoby-oplaty-uslug-imena-ua
|
unknown
|
||
|
https://cdn.ecosia.org/assets/images/ico/favicon.icohttps://www.ecosia.org/search?q=
|
unknown
|
||
|
https://gemini.google.com/app?q=
|
unknown
|
||
|
https://www.imena.ua/support/domains-finance/icann-i-ee-funkcii
|
unknown
|
There are 84 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
ngsafh.yiqingkepa.com
|
103.149.183.47
|
|
|
|
www.guvosh.info
|
209.74.64.189
|
|
|
|
rbseating.shop
|
162.250.125.14
|
|
|
|
www.bejho.net
|
64.225.91.73
|
|
|
|
pqoff.cyou
|
176.123.9.220
|
|
|
|
www.spectre.center
|
5.39.10.93
|
|
|
|
www.diterra.shop
|
52.223.13.41
|
|
|
|
natroredirect.natrocdn.com
|
85.159.66.93
|
|
|
|
nidedabeille.net
|
195.110.124.133
|
|
|
|
casadisole.org
|
93.125.99.74
|
|
|
|
kerennih31.click
|
104.223.44.195
|
|
|
|
nuvsgloves.shop
|
3.33.130.190
|
|
|
|
www.my1pgz.pro
|
156.227.17.86
|
|
|
|
030002626.xyz
|
65.21.196.90
|
|
|
|
myplayamate.llc
|
3.33.130.190
|
|
|
|
www.kerennih31.click
|
unknown
|
|
|
|
www.nuvsgloves.shop
|
unknown
|
|
|
|
www.nidedabeille.net
|
unknown
|
|
|
|
www.myplayamate.llc
|
unknown
|
|
|
|
www.ciao83.top
|
unknown
|
|
|
|
www.030002626.xyz
|
unknown
|
|
|
|
www.nnnvvehuqyl.bond
|
unknown
|
|
|
|
www.pqoff.cyou
|
unknown
|
|
|
|
www.rbseating.shop
|
unknown
|
|
|
|
www.casadisole.org
|
unknown
|
|
|
|
www.animazor.online
|
unknown
|
|
|
|
drive.usercontent.google.com
|
142.250.176.193
|
||
|
drive.google.com
|
142.250.80.78
|
There are 18 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
104.223.44.195
|
kerennih31.click
|
United States
|
|
|
|
65.21.196.90
|
030002626.xyz
|
United States
|
|
|
|
209.74.64.189
|
www.guvosh.info
|
United States
|
|
|
|
162.250.125.14
|
rbseating.shop
|
United States
|
|
|
|
85.159.66.93
|
natroredirect.natrocdn.com
|
Turkey
|
|
|
|
64.225.91.73
|
www.bejho.net
|
United States
|
|
|
|
195.110.124.133
|
nidedabeille.net
|
Italy
|
|
|
|
103.149.183.47
|
ngsafh.yiqingkepa.com
|
unknown
|
|
|
|
156.227.17.86
|
www.my1pgz.pro
|
Seychelles
|
|
|
|
93.125.99.74
|
casadisole.org
|
Belarus
|
|
|
|
52.223.13.41
|
www.diterra.shop
|
United States
|
|
|
|
176.123.9.220
|
pqoff.cyou
|
Moldova Republic of
|
|
|
|
5.39.10.93
|
www.spectre.center
|
France
|
|
|
|
3.33.130.190
|
nuvsgloves.shop
|
United States
|
|
|
|
142.250.80.78
|
drive.google.com
|
United States
|
||
|
142.250.176.193
|
drive.usercontent.google.com
|
United States
|
There are 6 hidden IPs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\beddingen\cricothyroidean\dipterist
|
Mineralulden
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
32C0000
|
direct allocation
|
page execute and read and write
|
|
|
|
29B4000
|
heap
|
page read and write
|
|
|
|
12C0000
|
system
|
page execute and read and write
|
|
|
|
33C00000
|
unclassified section
|
page execute and read and write
|
|
|
|
322E0000
|
unclassified section
|
page execute and read and write
|
|
|
|
3AC0000
|
unkown
|
page execute and read and write
|
|
|
|
1660000
|
remote allocation
|
page execute and read and write
|
|
|
|
4A70000
|
trusted library allocation
|
page read and write
|
|
|
|
4AC0000
|
trusted library allocation
|
page read and write
|
|
|
|
33EA000
|
direct allocation
|
page execute and read and write
|
|
|
|
4901000
|
heap
|
page read and write
|
||
|
32150000
|
direct allocation
|
page read and write
|
||
|
4AB1000
|
heap
|
page read and write
|
||
|
422B000
|
unkown
|
page execute and read and write
|
||
|
31FC000
|
unkown
|
page read and write
|
||
|
2D0000
|
heap
|
page read and write
|
||
|
4D8D000
|
direct allocation
|
page execute and read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
30000
|
heap
|
page read and write
|
||
|
2204000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
321A0000
|
direct allocation
|
page read and write
|
||
|
6B8E000
|
unclassified section
|
page read and write
|
||
|
217320A0000
|
system
|
page execute and read and write
|
||
|
7DD0000
|
trusted library allocation
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4406000
|
unkown
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
59D000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2FD5000
|
heap
|
page read and write
|
||
|
2FA1000
|
heap
|
page read and write
|
||
|
5F0000
|
unkown
|
page execute read
|
||
|
21B9000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
380000
|
heap
|
page read and write
|
||
|
25D0000
|
unkown
|
page readonly
|
||
|
30C0000
|
unkown
|
page execute and read and write
|
||
|
2C0000
|
unkown
|
page readonly
|
||
|
DB5B7FE000
|
stack
|
page read and write
|
||
|
21BF000
|
heap
|
page read and write
|
||
|
20F7000
|
heap
|
page read and write
|
||
|
7D45000
|
heap
|
page read and write
|
||
|
6546000
|
unclassified section
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4BC0000
|
trusted library allocation
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
841F000
|
stack
|
page read and write
|
||
|
21732030000
|
heap
|
page read and write
|
||
|
2630000
|
direct allocation
|
page read and write
|
||
|
237E000
|
stack
|
page read and write
|
||
|
35E4000
|
unkown
|
page read and write
|
||
|
3DE000
|
unkown
|
page readonly
|
||
|
31D2D000
|
stack
|
page read and write
|
||
|
3E7000
|
unkown
|
page readonly
|
||
|
533C000
|
unclassified section
|
page read and write
|
||
|
2600000
|
direct allocation
|
page read and write
|
||
|
21732289000
|
heap
|
page read and write
|
||
|
2100000
|
direct allocation
|
page read and write
|
||
|
7D48000
|
heap
|
page read and write
|
||
|
7D11000
|
heap
|
page read and write
|
||
|
2F7D000
|
heap
|
page read and write
|
||
|
408000
|
unkown
|
page readonly
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
958000
|
stack
|
page read and write
|
||
|
2F22000
|
unkown
|
page read and write
|
||
|
217340AE000
|
trusted library allocation
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
8B0000
|
heap
|
page read and write
|
||
|
33A000
|
stack
|
page read and write
|
||
|
3DE000
|
unkown
|
page readonly
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
21BF000
|
heap
|
page read and write
|
||
|
2FD9000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
30000
|
heap
|
page read and write
|
||
|
31CEE000
|
stack
|
page read and write
|
||
|
408000
|
unkown
|
page readonly
|
||
|
219E000
|
heap
|
page read and write
|
||
|
3DE000
|
unkown
|
page readonly
|
||
|
DB59FFC000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
E10000
|
unkown
|
page readonly
|
||
|
2D80000
|
unkown
|
page read and write
|
||
|
7D4A000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2173213D000
|
system
|
page execute and read and write
|
||
|
2D90000
|
heap
|
page read and write
|
||
|
686A000
|
unclassified section
|
page read and write
|
||
|
303C000
|
unkown
|
page read and write
|
||
|
3D1000
|
unkown
|
page execute read
|
||
|
34DDD000
|
unclassified section
|
page execute and read and write
|
||
|
2650000
|
direct allocation
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
25C0000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
31E30000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
9B000
|
stack
|
page read and write
|
||
|
31FBE000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
40A000
|
unkown
|
page write copy
|
||
|
2F24000
|
heap
|
page read and write
|
||
|
3040000
|
trusted library allocation
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4C60000
|
direct allocation
|
page execute and read and write
|
||
|
32780000
|
direct allocation
|
page execute and read and write
|
||
|
578000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
66D8000
|
unclassified section
|
page read and write
|
||
|
4D89000
|
direct allocation
|
page execute and read and write
|
||
|
1051000
|
unkown
|
page readonly
|
||
|
2490000
|
direct allocation
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
42D000
|
unkown
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
A80000
|
heap
|
page read and write
|
||
|
31F80000
|
remote allocation
|
page read and write
|
||
|
4BC0000
|
trusted library allocation
|
page read and write
|
||
|
BF0000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2196000
|
heap
|
page read and write
|
||
|
CC0000
|
unkown
|
page readonly
|
||
|
3227E000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2F58000
|
heap
|
page read and write
|
||
|
3CE0000
|
direct allocation
|
page read and write
|
||
|
2CBE000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
24A0000
|
direct allocation
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
31F80000
|
remote allocation
|
page read and write
|
||
|
7D2A000
|
heap
|
page read and write
|
||
|
14FE000
|
stack
|
page read and write
|
||
|
4B10000
|
trusted library allocation
|
page read and write
|
||
|
178A000
|
remote allocation
|
page execute and read and write
|
||
|
21732440000
|
trusted library allocation
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
3C2C000
|
unkown
|
page read and write
|
||
|
2F08000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4902000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
7CD6000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
7B0000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
21733F0C000
|
trusted library allocation
|
page read and write
|
||
|
3230C000
|
system
|
page read and write
|
||
|
F7C000
|
stack
|
page read and write
|
||
|
7D2F000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
21733F19000
|
trusted library allocation
|
page read and write
|
||
|
32800000
|
unclassified section
|
page execute and read and write
|
||
|
21732250000
|
heap
|
page read and write
|
||
|
1951000
|
unkown
|
page readonly
|
||
|
4598000
|
unkown
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2490000
|
unkown
|
page readonly
|
||
|
4901000
|
heap
|
page read and write
|
||
|
1060000
|
heap
|
page read and write
|
||
|
E7A000
|
stack
|
page read and write
|
||
|
10F0000
|
heap
|
page read and write
|
||
|
24A0000
|
unkown
|
page read and write
|
||
|
321A0000
|
direct allocation
|
page read and write
|
||
|
3E7000
|
unkown
|
page readonly
|
||
|
70000
|
heap
|
page read and write
|
||
|
2206000
|
heap
|
page read and write
|
||
|
454000
|
unkown
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
21A7000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
3436B000
|
unclassified section
|
page execute and read and write
|
||
|
25E0000
|
direct allocation
|
page read and write
|
||
|
7B8000
|
heap
|
page read and write
|
||
|
31D0000
|
heap
|
page read and write
|
||
|
2460000
|
unkown
|
page readonly
|
||
|
219C000
|
heap
|
page read and write
|
||
|
3204C000
|
stack
|
page read and write
|
||
|
2206000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
21B9000
|
heap
|
page read and write
|
||
|
3214C000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
97E000
|
stack
|
page read and write
|
||
|
133F000
|
system
|
page execute and read and write
|
||
|
457000
|
unkown
|
page readonly
|
||
|
10F0000
|
heap
|
page read and write
|
||
|
4F2C000
|
direct allocation
|
page execute and read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
F7C000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
233E000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
10005000
|
unkown
|
page readonly
|
||
|
4F30000
|
direct allocation
|
page execute and read and write
|
||
|
7D42000
|
heap
|
page read and write
|
||
|
3E5000
|
unkown
|
page read and write
|
||
|
2FBC000
|
heap
|
page read and write
|
||
|
2470000
|
unkown
|
page read and write
|
||
|
2F24000
|
heap
|
page read and write
|
||
|
FB0000
|
unkown
|
page readonly
|
||
|
2D60000
|
unkown
|
page readonly
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2FF3000
|
heap
|
page read and write
|
||
|
1050000
|
unkown
|
page readonly
|
||
|
5EE000
|
unkown
|
page execute read
|
||
|
4A4E000
|
unkown
|
page read and write
|
||
|
2660000
|
heap
|
page read and write
|
||
|
21A7000
|
heap
|
page read and write
|
||
|
2F20000
|
heap
|
page read and write
|
||
|
2D0000
|
heap
|
page read and write
|
||
|
3047000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
321E0000
|
heap
|
page read and write
|
||
|
217A000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
626000
|
unkown
|
page execute read
|
||
|
21B2000
|
heap
|
page read and write
|
||
|
3D0000
|
unkown
|
page readonly
|
||
|
7D0D000
|
heap
|
page read and write
|
||
|
26C0000
|
unkown
|
page execute and read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
321F5000
|
heap
|
page read and write
|
||
|
2F1B000
|
heap
|
page read and write
|
||
|
2F77000
|
heap
|
page read and write
|
||
|
2F22000
|
unkown
|
page read and write
|
||
|
2204000
|
heap
|
page read and write
|
||
|
2F1F000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
16A000
|
stack
|
page read and write
|
||
|
370000
|
unkown
|
page readonly
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2F9A000
|
heap
|
page read and write
|
||
|
3776000
|
unkown
|
page read and write
|
||
|
2120000
|
direct allocation
|
page read and write
|
||
|
234E000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
10F8000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
21BF000
|
heap
|
page read and write
|
||
|
7D3C000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
25C0000
|
heap
|
page read and write
|
||
|
2460000
|
unkown
|
page readonly
|
||
|
21B9000
|
heap
|
page read and write
|
||
|
10F8000
|
heap
|
page read and write
|
||
|
2470000
|
unkown
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
21732286000
|
heap
|
page read and write
|
||
|
6090000
|
unclassified section
|
page read and write
|
||
|
21B2000
|
heap
|
page read and write
|
||
|
24AE000
|
stack
|
page read and write
|
||
|
7B8000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
32032000
|
system
|
page read and write
|
||
|
7CD0000
|
heap
|
page read and write
|
||
|
1500000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
15C0000
|
unkown
|
page readonly
|
||
|
4BC0000
|
trusted library allocation
|
page read and write
|
||
|
10001000
|
unkown
|
page execute read
|
||
|
4C3D000
|
stack
|
page read and write
|
||
|
31D6D000
|
stack
|
page read and write
|
||
|
FC0000
|
unkown
|
page read and write
|
||
|
1951000
|
unkown
|
page readonly
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2DF0000
|
unkown
|
page readonly
|
||
|
2F24000
|
heap
|
page read and write
|
||
|
21BB000
|
heap
|
page read and write
|
||
|
452000
|
unkown
|
page read and write
|
||
|
1070000
|
unkown
|
page read and write
|
||
|
3A9A000
|
unkown
|
page read and write
|
||
|
21A7000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
1070000
|
unkown
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
7D54000
|
heap
|
page read and write
|
||
|
24E4000
|
heap
|
page read and write
|
||
|
32432000
|
heap
|
page read and write
|
||
|
40A000
|
unkown
|
page write copy
|
||
|
7D34000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2FB0000
|
heap
|
page read and write
|
||
|
3F50000
|
unkown
|
page read and write
|
||
|
22A0000
|
heap
|
page read and write
|
||
|
321E1000
|
heap
|
page read and write
|
||
|
517C000
|
unclassified section
|
page read and write
|
||
|
2110000
|
direct allocation
|
page read and write
|
||
|
40E2000
|
unkown
|
page read and write
|
||
|
7B0000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2F2B000
|
heap
|
page read and write
|
||
|
2F1F000
|
heap
|
page read and write
|
||
|
2490000
|
unkown
|
page readonly
|
||
|
4901000
|
heap
|
page read and write
|
||
|
21732140000
|
system
|
page execute and read and write
|
||
|
20E0000
|
direct allocation
|
page read and write
|
||
|
4BDE000
|
heap
|
page read and write
|
||
|
24E0000
|
heap
|
page read and write
|
||
|
83F000
|
stack
|
page read and write
|
||
|
1318000
|
system
|
page execute and read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
570000
|
heap
|
page read and write
|
||
|
3215B000
|
heap
|
page read and write
|
||
|
2F74000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2DE4000
|
heap
|
page read and write
|
||
|
2F24000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4BE0000
|
unkown
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
20BE000
|
stack
|
page read and write
|
||
|
E10000
|
unkown
|
page readonly
|
||
|
5724000
|
unclassified section
|
page read and write
|
||
|
BF0000
|
heap
|
page read and write
|
||
|
3110000
|
heap
|
page read and write
|
||
|
790000
|
unkown
|
page readonly
|
||
|
7CD1000
|
heap
|
page read and write
|
||
|
472A000
|
unkown
|
page read and write
|
||
|
DB5A7FD000
|
stack
|
page read and write
|
||
|
FD0000
|
unkown
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
14BC000
|
unkown
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
572F000
|
stack
|
page read and write
|
||
|
3D1000
|
unkown
|
page execute read
|
||
|
6D20000
|
unclassified section
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
219B000
|
heap
|
page read and write
|
||
|
C80000
|
unkown
|
page read and write
|
||
|
21733F02000
|
trusted library allocation
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
243E000
|
stack
|
page read and write
|
||
|
33200000
|
unclassified section
|
page execute and read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4274000
|
unkown
|
page read and write
|
||
|
25C0000
|
direct allocation
|
page read and write
|
||
|
7A0000
|
unkown
|
page readonly
|
||
|
244F000
|
stack
|
page read and write
|
||
|
4FE000
|
stack
|
page read and write
|
||
|
990000
|
system
|
page execute and read and write
|
||
|
380000
|
heap
|
page read and write
|
||
|
21732440000
|
trusted library allocation
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
3214C000
|
system
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
7CDD000
|
heap
|
page read and write
|
||
|
24A0000
|
unkown
|
page read and write
|
||
|
2E4F000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
C3E000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2206000
|
heap
|
page read and write
|
||
|
7A10000
|
trusted library allocation
|
page read and write
|
||
|
2F69000
|
heap
|
page read and write
|
||
|
1050000
|
unkown
|
page readonly
|
||
|
31C0000
|
heap
|
page read and write
|
||
|
2D34000
|
heap
|
page read and write
|
||
|
4A25000
|
heap
|
page read and write
|
||
|
7A0000
|
unkown
|
page readonly
|
||
|
23BF000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
21733F1C000
|
trusted library allocation
|
page read and write
|
||
|
63B4000
|
unclassified section
|
page read and write
|
||
|
219C000
|
heap
|
page read and write
|
||
|
5AC000
|
heap
|
page read and write
|
||
|
23C0000
|
heap
|
page read and write
|
||
|
2290000
|
heap
|
page read and write
|
||
|
325D9000
|
direct allocation
|
page execute and read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
25D0000
|
direct allocation
|
page read and write
|
||
|
2F77000
|
heap
|
page read and write
|
||
|
91B000
|
stack
|
page read and write
|
||
|
3D0000
|
unkown
|
page readonly
|
||
|
2610000
|
direct allocation
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
3242E000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
3908000
|
unkown
|
page read and write
|
||
|
7CEA000
|
heap
|
page read and write
|
||
|
25D0000
|
unkown
|
page readonly
|
||
|
5BE000
|
heap
|
page read and write
|
||
|
21BE000
|
heap
|
page read and write
|
||
|
5EFE000
|
unclassified section
|
page read and write
|
||
|
5062000
|
unclassified section
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
3D1000
|
unkown
|
page execute read
|
||
|
4901000
|
heap
|
page read and write
|
||
|
324B0000
|
direct allocation
|
page execute and read and write
|
||
|
1124000
|
heap
|
page read and write
|
||
|
408000
|
unkown
|
page readonly
|
||
|
31FC000
|
unkown
|
page read and write
|
||
|
E00000
|
unkown
|
page readonly
|
||
|
1060000
|
heap
|
page read and write
|
||
|
247F000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
321A0000
|
direct allocation
|
page read and write
|
||
|
10003000
|
unkown
|
page readonly
|
||
|
10000000
|
unkown
|
page readonly
|
||
|
2F4C000
|
heap
|
page read and write
|
||
|
21732282000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2460000
|
heap
|
page read and write
|
||
|
2DB0000
|
unkown
|
page readonly
|
||
|
4BE000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2640000
|
direct allocation
|
page read and write
|
||
|
5F2000
|
unkown
|
page execute read
|
||
|
21733F00000
|
trusted library allocation
|
page read and write
|
||
|
7CF0000
|
heap
|
page read and write
|
||
|
15C0000
|
unkown
|
page readonly
|
||
|
2B0000
|
unkown
|
page readonly
|
||
|
2163000
|
heap
|
page read and write
|
||
|
2F19000
|
heap
|
page read and write
|
||
|
CC0000
|
unkown
|
page readonly
|
||
|
93F000
|
stack
|
page read and write
|
||
|
2F74000
|
heap
|
page read and write
|
||
|
2620000
|
direct allocation
|
page read and write
|
||
|
2D34000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
1396000
|
system
|
page execute and read and write
|
||
|
21BE000
|
heap
|
page read and write
|
||
|
781000
|
unkown
|
page readonly
|
||
|
21BC000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
31DDE000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
7D40000
|
heap
|
page read and write
|
||
|
343DD000
|
unclassified section
|
page execute and read and write
|
||
|
5122000
|
unclassified section
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2DE0000
|
heap
|
page read and write
|
||
|
427000
|
unkown
|
page read and write
|
||
|
2F52000
|
heap
|
page read and write
|
||
|
2CFE000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
326F4000
|
system
|
page read and write
|
||
|
2206000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2FDF000
|
heap
|
page read and write
|
||
|
2270000
|
unkown
|
page readonly
|
||
|
2B0000
|
unkown
|
page readonly
|
||
|
2D70000
|
unkown
|
page readonly
|
||
|
4901000
|
heap
|
page read and write
|
||
|
435000
|
unkown
|
page read and write
|
||
|
10EC000
|
unkown
|
page read and write
|
||
|
6EB2000
|
unclassified section
|
page read and write
|
||
|
3D0000
|
unkown
|
page readonly
|
||
|
2D90000
|
heap
|
page read and write
|
||
|
3DE000
|
unkown
|
page readonly
|
||
|
24E4000
|
heap
|
page read and write
|
||
|
3E5000
|
unkown
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
1066000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
3150000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
790000
|
unkown
|
page readonly
|
||
|
40A000
|
unkown
|
page read and write
|
||
|
25AF000
|
stack
|
page read and write
|
||
|
325DD000
|
direct allocation
|
page execute and read and write
|
||
|
31CAE000
|
stack
|
page read and write
|
||
|
457000
|
unkown
|
page readonly
|
||
|
5EC000
|
unkown
|
page execute read
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
DB5BFFF000
|
stack
|
page read and write
|
||
|
219E000
|
heap
|
page read and write
|
||
|
3DBE000
|
unkown
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2DB0000
|
unkown
|
page readonly
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2F8A000
|
heap
|
page read and write
|
||
|
21732277000
|
heap
|
page read and write
|
||
|
1041000
|
unkown
|
page readonly
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
24B0000
|
direct allocation
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
3CF0000
|
direct allocation
|
page read and write
|
||
|
5EA000
|
unkown
|
page execute read
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2DE4000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
220F000
|
heap
|
page read and write
|
||
|
2281000
|
unkown
|
page readonly
|
||
|
2F7D000
|
heap
|
page read and write
|
||
|
781000
|
unkown
|
page readonly
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2F2A000
|
heap
|
page read and write
|
||
|
2DF0000
|
unkown
|
page readonly
|
||
|
E00000
|
unkown
|
page readonly
|
||
|
217325B0000
|
heap
|
page read and write
|
||
|
2F64000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
110F000
|
heap
|
page read and write
|
||
|
E7A000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
535000
|
heap
|
page read and write
|
||
|
2E90000
|
trusted library allocation
|
page read and write
|
||
|
4A00000
|
heap
|
page read and write
|
||
|
4FB0000
|
trusted library allocation
|
page execute and read and write
|
||
|
3E5000
|
unkown
|
page read and write
|
||
|
5B6000
|
heap
|
page read and write
|
||
|
5A48000
|
unclassified section
|
page read and write
|
||
|
217340A4000
|
trusted library allocation
|
page read and write
|
||
|
C19000
|
unkown
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
21733E00000
|
trusted library allocation
|
page read and write
|
||
|
71000
|
heap
|
page read and write
|
||
|
DB5AFFE000
|
stack
|
page read and write
|
||
|
2540000
|
heap
|
page read and write
|
||
|
2D60000
|
unkown
|
page readonly
|
||
|
21BF000
|
heap
|
page read and write
|
||
|
2FCE000
|
heap
|
page read and write
|
||
|
6FC000
|
stack
|
page read and write
|
||
|
3D0000
|
unkown
|
page readonly
|
||
|
2FA9000
|
heap
|
page read and write
|
||
|
3E7000
|
unkown
|
page readonly
|
||
|
21BB000
|
heap
|
page read and write
|
||
|
2F24000
|
heap
|
page read and write
|
||
|
2130000
|
heap
|
page read and write
|
||
|
2D30000
|
heap
|
page read and write
|
||
|
20F5000
|
heap
|
page read and write
|
||
|
A7F000
|
stack
|
page read and write
|
||
|
31C6F000
|
stack
|
page read and write
|
||
|
21732360000
|
heap
|
page read and write
|
||
|
24D0000
|
direct allocation
|
page read and write
|
||
|
2EE0000
|
unkown
|
page read and write
|
||
|
21732440000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2DE0000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
83DE000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
21732440000
|
trusted library allocation
|
page read and write
|
||
|
3D1000
|
unkown
|
page execute read
|
||
|
7CDF000
|
heap
|
page read and write
|
||
|
2F1B000
|
heap
|
page read and write
|
||
|
2F24000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2204000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
20F0000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
3E7000
|
unkown
|
page readonly
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2F6E000
|
heap
|
page read and write
|
||
|
2200000
|
heap
|
page read and write
|
||
|
24E0000
|
heap
|
page read and write
|
||
|
21733F08000
|
trusted library allocation
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
4901000
|
heap
|
page read and write
|
||
|
370000
|
unkown
|
page readonly
|
||
|
58B6000
|
unclassified section
|
page read and write
|
||
|
4C9D000
|
unkown
|
page execute and read and write
|
||
|
1041000
|
unkown
|
page readonly
|
||
|
7CCE000
|
stack
|
page read and write
|
||
|
320F2000
|
system
|
page read and write
|
||
|
21B2000
|
heap
|
page read and write
|
||
|
2F00000
|
heap
|
page read and write
|
||
|
21BF000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4900000
|
heap
|
page read and write
|
||
|
2FA6000
|
heap
|
page read and write
|
||
|
2E50000
|
heap
|
page read and write
|
||
|
32305000
|
heap
|
page read and write
|
||
|
2173225A000
|
heap
|
page read and write
|
||
|
7D06000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2C0000
|
unkown
|
page readonly
|
||
|
2F19000
|
heap
|
page read and write
|
||
|
5D6C000
|
unclassified section
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
7D4A000
|
heap
|
page read and write
|
||
|
21B6000
|
heap
|
page read and write
|
||
|
21BF000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2FE2000
|
unkown
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
7CFD000
|
heap
|
page read and write
|
||
|
7D17000
|
heap
|
page read and write
|
||
|
3277C000
|
direct allocation
|
page execute and read and write
|
||
|
21BB000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
6222000
|
unclassified section
|
page read and write
|
||
|
457000
|
unkown
|
page readonly
|
||
|
4C50000
|
trusted library allocation
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
5BDA000
|
unclassified section
|
page read and write
|
||
|
1342000
|
system
|
page execute and read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2F2A000
|
heap
|
page read and write
|
||
|
31E1F000
|
stack
|
page read and write
|
||
|
3E5000
|
unkown
|
page read and write
|
||
|
4D72000
|
unkown
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
1333000
|
system
|
page execute and read and write
|
||
|
2D80000
|
unkown
|
page read and write
|
||
|
1323000
|
system
|
page execute and read and write
|
||
|
31F1F000
|
stack
|
page read and write
|
||
|
2D34000
|
heap
|
page read and write
|
||
|
32150000
|
direct allocation
|
page read and write
|
||
|
31FFF000
|
stack
|
page read and write
|
||
|
4BDA000
|
heap
|
page read and write
|
||
|
31F80000
|
remote allocation
|
page read and write
|
||
|
2480000
|
direct allocation
|
page read and write
|
||
|
217340B4000
|
trusted library allocation
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
5E8000
|
unkown
|
page execute read
|
||
|
2EE0000
|
unkown
|
page read and write
|
||
|
24C0000
|
direct allocation
|
page read and write
|
||
|
33A000
|
stack
|
page read and write
|
||
|
1126000
|
heap
|
page read and write
|
||
|
6FC000
|
stack
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2F8A000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
7CB000
|
unkown
|
page read and write
|
||
|
530000
|
heap
|
page read and write
|
||
|
1051000
|
unkown
|
page readonly
|
||
|
25F0000
|
direct allocation
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
252E000
|
stack
|
page read and write
|
||
|
649000
|
unkown
|
page execute read
|
||
|
FB0000
|
unkown
|
page readonly
|
||
|
C80000
|
unkown
|
page read and write
|
||
|
21A7000
|
heap
|
page read and write
|
||
|
31EDE000
|
stack
|
page read and write
|
||
|
2D70000
|
unkown
|
page readonly
|
||
|
4901000
|
heap
|
page read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
217323D0000
|
heap
|
page read and write
|
||
|
7CF3000
|
heap
|
page read and write
|
||
|
429D000
|
unkown
|
page execute and read and write
|
||
|
4901000
|
heap
|
page read and write
|
||
|
2138000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
There are 677 hidden memdumps, click here to show them.