Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Zzh4Ti7eW0.exe
|
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Roaming\ioibrzb.exe
|
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\Roaming\ioibrzb.exe:Zone.Identifier
|
ASCII text, with CRLF line terminators
|
modified
|
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\Zzh4Ti7eW0.exe
|
"C:\Users\user\Desktop\Zzh4Ti7eW0.exe"
|
|
|
|
C:\Users\user\Desktop\Zzh4Ti7eW0.exe
|
"C:\Users\user\Desktop\Zzh4Ti7eW0.exe"
|
|
|
|
C:\Windows\SysWOW64\WerFault.exe
|
C:\Windows\SysWOW64\WerFault.exe -u -p 7344 -s 996
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://github.com/mgravell/protobuf-net
|
unknown
|
||
|
https://github.com/mgravell/protobuf-neti
|
unknown
|
||
|
https://stackoverflow.com/q/14436606/23354
|
unknown
|
||
|
https://github.com/mgravell/protobuf-netJ
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
|
unknown
|
||
|
https://stackoverflow.com/q/11564914/23354;
|
unknown
|
||
|
https://stackoverflow.com/q/2152978/23354
|
unknown
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
|
ioibrzb
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
59C0000
|
trusted library section
|
page read and write
|
|
|
|
2D41000
|
trusted library allocation
|
page read and write
|
|
|
|
888000
|
heap
|
page read and write
|
||
|
33C7000
|
trusted library allocation
|
page read and write
|
||
|
315A000
|
trusted library allocation
|
page read and write
|
||
|
30FD000
|
trusted library allocation
|
page read and write
|
||
|
33C1000
|
trusted library allocation
|
page read and write
|
||
|
B64000
|
trusted library allocation
|
page read and write
|
||
|
33F6000
|
trusted library allocation
|
page read and write
|
||
|
33AE000
|
trusted library allocation
|
page read and write
|
||
|
8B1000
|
heap
|
page read and write
|
||
|
2F93000
|
trusted library allocation
|
page read and write
|
||
|
2F43000
|
trusted library allocation
|
page read and write
|
||
|
2F87000
|
trusted library allocation
|
page read and write
|
||
|
33EF000
|
trusted library allocation
|
page read and write
|
||
|
4D0E000
|
stack
|
page read and write
|
||
|
41DE000
|
trusted library allocation
|
page read and write
|
||
|
2F2A000
|
trusted library allocation
|
page read and write
|
||
|
3E89000
|
trusted library allocation
|
page read and write
|
||
|
2EE4000
|
trusted library allocation
|
page read and write
|
||
|
33BB000
|
trusted library allocation
|
page read and write
|
||
|
2FC9000
|
trusted library allocation
|
page read and write
|
||
|
2F2C000
|
trusted library allocation
|
page read and write
|
||
|
E90000
|
heap
|
page read and write
|
||
|
33B4000
|
trusted library allocation
|
page read and write
|
||
|
3F0000
|
heap
|
page read and write
|
||
|
3391000
|
trusted library allocation
|
page read and write
|
||
|
E9E000
|
heap
|
page read and write
|
||
|
3026000
|
trusted library allocation
|
page read and write
|
||
|
5F40000
|
trusted library allocation
|
page execute and read and write
|
||
|
302E000
|
trusted library allocation
|
page read and write
|
||
|
3053000
|
trusted library allocation
|
page read and write
|
||
|
3326000
|
trusted library allocation
|
page read and write
|
||
|
25F0000
|
heap
|
page read and write
|
||
|
547F000
|
stack
|
page read and write
|
||
|
2EB3000
|
trusted library allocation
|
page read and write
|
||
|
EB7000
|
heap
|
page read and write
|
||
|
11C4000
|
trusted library allocation
|
page read and write
|
||
|
24AE000
|
stack
|
page read and write
|
||
|
3404000
|
trusted library allocation
|
page read and write
|
||
|
5960000
|
trusted library allocation
|
page read and write
|
||
|
57B0000
|
trusted library allocation
|
page execute and read and write
|
||
|
702000
|
remote allocation
|
page execute and read and write
|
||
|
2F78000
|
trusted library allocation
|
page read and write
|
||
|
300D000
|
trusted library allocation
|
page read and write
|
||
|
2FC3000
|
trusted library allocation
|
page read and write
|
||
|
8FF000
|
heap
|
page read and write
|
||
|
30DA000
|
trusted library allocation
|
page read and write
|
||
|
2EFE000
|
trusted library allocation
|
page read and write
|
||
|
30DC000
|
trusted library allocation
|
page read and write
|
||
|
880000
|
heap
|
page read and write
|
||
|
ED3000
|
heap
|
page read and write
|
||
|
2F34000
|
trusted library allocation
|
page read and write
|
||
|
2F45000
|
trusted library allocation
|
page read and write
|
||
|
2EDA000
|
trusted library allocation
|
page read and write
|
||
|
313F000
|
trusted library allocation
|
page read and write
|
||
|
2FA6000
|
trusted library allocation
|
page read and write
|
||
|
33ED000
|
trusted library allocation
|
page read and write
|
||
|
2B82000
|
trusted library allocation
|
page read and write
|
||
|
3E0000
|
heap
|
page read and write
|
||
|
3395000
|
trusted library allocation
|
page read and write
|
||
|
2F6E000
|
trusted library allocation
|
page read and write
|
||
|
30E2000
|
trusted library allocation
|
page read and write
|
||
|
11F0000
|
trusted library allocation
|
page read and write
|
||
|
2F47000
|
trusted library allocation
|
page read and write
|
||
|
2B80000
|
trusted library allocation
|
page read and write
|
||
|
1090000
|
heap
|
page read and write
|
||
|
57EC000
|
heap
|
page read and write
|
||
|
2F91000
|
trusted library allocation
|
page read and write
|
||
|
2F51000
|
trusted library allocation
|
page read and write
|
||
|
2F32000
|
trusted library allocation
|
page read and write
|
||
|
3144000
|
trusted library allocation
|
page read and write
|
||
|
3376000
|
trusted library allocation
|
page read and write
|
||
|
33CF000
|
trusted library allocation
|
page read and write
|
||
|
333D000
|
trusted library allocation
|
page read and write
|
||
|
5920000
|
trusted library allocation
|
page execute and read and write
|
||
|
3070000
|
trusted library allocation
|
page read and write
|
||
|
3791000
|
trusted library allocation
|
page read and write
|
||
|
2B4E000
|
stack
|
page read and write
|
||
|
2FAC000
|
trusted library allocation
|
page read and write
|
||
|
488D000
|
stack
|
page read and write
|
||
|
2FE2000
|
trusted library allocation
|
page read and write
|
||
|
2FC1000
|
trusted library allocation
|
page read and write
|
||
|
2EE8000
|
trusted library allocation
|
page read and write
|
||
|
335A000
|
trusted library allocation
|
page read and write
|
||
|
2ECB000
|
trusted library allocation
|
page read and write
|
||
|
3175000
|
trusted library allocation
|
page read and write
|
||
|
2FF6000
|
trusted library allocation
|
page read and write
|
||
|
2FA8000
|
trusted library allocation
|
page read and write
|
||
|
3399000
|
trusted library allocation
|
page read and write
|
||
|
3360000
|
trusted library allocation
|
page read and write
|
||
|
CF7000
|
stack
|
page read and write
|
||
|
3335000
|
trusted library allocation
|
page read and write
|
||
|
2EC7000
|
trusted library allocation
|
page read and write
|
||
|
11E0000
|
trusted library allocation
|
page read and write
|
||
|
304D000
|
trusted library allocation
|
page read and write
|
||
|
2CAE000
|
stack
|
page read and write
|
||
|
33AC000
|
trusted library allocation
|
page read and write
|
||
|
57CC000
|
heap
|
page read and write
|
||
|
B87000
|
trusted library allocation
|
page execute and read and write
|
||
|
4E3E000
|
stack
|
page read and write
|
||
|
3047000
|
trusted library allocation
|
page read and write
|
||
|
2FBD000
|
trusted library allocation
|
page read and write
|
||
|
6A2000
|
unkown
|
page readonly
|
||
|
3110000
|
trusted library allocation
|
page read and write
|
||
|
3051000
|
trusted library allocation
|
page read and write
|
||
|
3154000
|
trusted library allocation
|
page read and write
|
||
|
318C000
|
trusted library allocation
|
page read and write
|
||
|
3152000
|
trusted library allocation
|
page read and write
|
||
|
5F3F000
|
stack
|
page read and write
|
||
|
2EFA000
|
trusted library allocation
|
page read and write
|
||
|
3011000
|
trusted library allocation
|
page read and write
|
||
|
339B000
|
trusted library allocation
|
page read and write
|
||
|
30EF000
|
trusted library allocation
|
page read and write
|
||
|
870000
|
heap
|
page read and write
|
||
|
B97000
|
trusted library allocation
|
page execute and read and write
|
||
|
2F74000
|
trusted library allocation
|
page read and write
|
||
|
2CB0000
|
heap
|
page execute and read and write
|
||
|
2F95000
|
trusted library allocation
|
page read and write
|
||
|
33F1000
|
trusted library allocation
|
page read and write
|
||
|
3D48000
|
trusted library allocation
|
page read and write
|
||
|
2FC7000
|
trusted library allocation
|
page read and write
|
||
|
25AF000
|
stack
|
page read and write
|
||
|
2F01000
|
trusted library allocation
|
page read and write
|
||
|
33B0000
|
trusted library allocation
|
page read and write
|
||
|
1210000
|
trusted library allocation
|
page read and write
|
||
|
2EF2000
|
trusted library allocation
|
page read and write
|
||
|
B9B000
|
trusted library allocation
|
page execute and read and write
|
||
|
2FF4000
|
trusted library allocation
|
page read and write
|
||
|
2FC5000
|
trusted library allocation
|
page read and write
|
||
|
311B000
|
trusted library allocation
|
page read and write
|
||
|
2EE6000
|
trusted library allocation
|
page read and write
|
||
|
337A000
|
trusted library allocation
|
page read and write
|
||
|
335C000
|
trusted library allocation
|
page read and write
|
||
|
3393000
|
trusted library allocation
|
page read and write
|
||
|
2BB8000
|
heap
|
page read and write
|
||
|
30A8000
|
trusted library allocation
|
page read and write
|
||
|
30C9000
|
trusted library allocation
|
page read and write
|
||
|
30A4000
|
trusted library allocation
|
page read and write
|
||
|
2EDE000
|
trusted library allocation
|
page read and write
|
||
|
3156000
|
trusted library allocation
|
page read and write
|
||
|
302C000
|
trusted library allocation
|
page read and write
|
||
|
33E9000
|
trusted library allocation
|
page read and write
|
||
|
30A6000
|
trusted library allocation
|
page read and write
|
||
|
2FF2000
|
trusted library allocation
|
page read and write
|
||
|
5AD0000
|
trusted library allocation
|
page read and write
|
||
|
5D3E000
|
stack
|
page read and write
|
||
|
26B0000
|
trusted library allocation
|
page read and write
|
||
|
338D000
|
trusted library allocation
|
page read and write
|
||
|
27BF000
|
trusted library allocation
|
page read and write
|
||
|
2EC3000
|
trusted library allocation
|
page read and write
|
||
|
8CE000
|
unkown
|
page readonly
|
||
|
3003000
|
trusted library allocation
|
page read and write
|
||
|
2FD7000
|
trusted library allocation
|
page read and write
|
||
|
3066000
|
trusted library allocation
|
page read and write
|
||
|
E05000
|
heap
|
page read and write
|
||
|
EC4000
|
heap
|
page read and write
|
||
|
3024000
|
trusted library allocation
|
page read and write
|
||
|
3079000
|
trusted library allocation
|
page read and write
|
||
|
5950000
|
trusted library allocation
|
page execute and read and write
|
||
|
318E000
|
trusted library allocation
|
page read and write
|
||
|
30A2000
|
trusted library allocation
|
page read and write
|
||
|
3009000
|
trusted library allocation
|
page read and write
|
||
|
30BF000
|
trusted library allocation
|
page read and write
|
||
|
5777000
|
trusted library allocation
|
page read and write
|
||
|
527F000
|
stack
|
page read and write
|
||
|
B70000
|
trusted library allocation
|
page read and write
|
||
|
700000
|
remote allocation
|
page execute and read and write
|
||
|
129C000
|
stack
|
page read and write
|
||
|
7E0000
|
heap
|
page read and write
|
||
|
2F72000
|
trusted library allocation
|
page read and write
|
||
|
11E6000
|
trusted library allocation
|
page execute and read and write
|
||
|
3141000
|
trusted library allocation
|
page read and write
|
||
|
41CE000
|
trusted library allocation
|
page read and write
|
||
|
59A5000
|
trusted library allocation
|
page read and write
|
||
|
8AD000
|
heap
|
page read and write
|
||
|
3081000
|
trusted library allocation
|
page read and write
|
||
|
2F70000
|
trusted library allocation
|
page read and write
|
||
|
3339000
|
trusted library allocation
|
page read and write
|
||
|
2FD5000
|
trusted library allocation
|
page read and write
|
||
|
2ED0000
|
trusted library allocation
|
page read and write
|
||
|
2EDC000
|
trusted library allocation
|
page read and write
|
||
|
3102000
|
trusted library allocation
|
page read and write
|
||
|
96F000
|
heap
|
page read and write
|
||
|
5BBE000
|
stack
|
page read and write
|
||
|
B6D000
|
trusted library allocation
|
page execute and read and write
|
||
|
3118000
|
trusted library allocation
|
page read and write
|
||
|
4F40000
|
heap
|
page read and write
|
||
|
11B0000
|
trusted library allocation
|
page read and write
|
||
|
2CC0000
|
heap
|
page read and write
|
||
|
5930000
|
trusted library allocation
|
page read and write
|
||
|
E00000
|
heap
|
page read and write
|
||
|
306A000
|
trusted library allocation
|
page read and write
|
||
|
11F2000
|
trusted library allocation
|
page read and write
|
||
|
3150000
|
trusted library allocation
|
page read and write
|
||
|
316B000
|
trusted library allocation
|
page read and write
|
||
|
2FD9000
|
trusted library allocation
|
page read and write
|
||
|
B50000
|
trusted library allocation
|
page read and write
|
||
|
BC0000
|
heap
|
page read and write
|
||
|
3186000
|
trusted library allocation
|
page read and write
|
||
|
30F5000
|
trusted library allocation
|
page read and write
|
||
|
3EB8000
|
trusted library allocation
|
page read and write
|
||
|
DD0000
|
heap
|
page read and write
|
||
|
2730000
|
trusted library allocation
|
page read and write
|
||
|
2FF8000
|
trusted library allocation
|
page read and write
|
||
|
3191000
|
trusted library allocation
|
page read and write
|
||
|
3328000
|
trusted library allocation
|
page read and write
|
||
|
2F20000
|
trusted library allocation
|
page read and write
|
||
|
3378000
|
trusted library allocation
|
page read and write
|
||
|
316D000
|
trusted library allocation
|
page read and write
|
||
|
272E000
|
stack
|
page read and write
|
||
|
30DE000
|
trusted library allocation
|
page read and write
|
||
|
30E6000
|
trusted library allocation
|
page read and write
|
||
|
4D50000
|
heap
|
page read and write
|
||
|
5760000
|
trusted library allocation
|
page read and write
|
||
|
30A0000
|
trusted library allocation
|
page read and write
|
||
|
2F62000
|
trusted library allocation
|
page read and write
|
||
|
3087000
|
trusted library allocation
|
page read and write
|
||
|
8F6000
|
heap
|
page read and write
|
||
|
2FEE000
|
trusted library allocation
|
page read and write
|
||
|
2FAE000
|
trusted library allocation
|
page read and write
|
||
|
58C0000
|
trusted library section
|
page read and write
|
||
|
33B2000
|
trusted library allocation
|
page read and write
|
||
|
316F000
|
trusted library allocation
|
page read and write
|
||
|
2EF8000
|
trusted library allocation
|
page read and write
|
||
|
F13000
|
heap
|
page read and write
|
||
|
55B0000
|
trusted library section
|
page read and write
|
||
|
2F30000
|
trusted library allocation
|
page read and write
|
||
|
2F76000
|
trusted library allocation
|
page read and write
|
||
|
3D44000
|
trusted library allocation
|
page read and write
|
||
|
2EE0000
|
trusted library allocation
|
page read and write
|
||
|
337F000
|
trusted library allocation
|
page read and write
|
||
|
5B7E000
|
stack
|
page read and write
|
||
|
322B000
|
trusted library allocation
|
page read and write
|
||
|
8C8000
|
heap
|
page read and write
|
||
|
5940000
|
trusted library allocation
|
page read and write
|
||
|
33CD000
|
trusted library allocation
|
page read and write
|
||
|
9F0000
|
heap
|
page read and write
|
||
|
6A0000
|
unkown
|
page readonly
|
||
|
2F4D000
|
trusted library allocation
|
page read and write
|
||
|
306C000
|
trusted library allocation
|
page read and write
|
||
|
5750000
|
trusted library allocation
|
page execute and read and write
|
||
|
3352000
|
trusted library allocation
|
page read and write
|
||
|
33C5000
|
trusted library allocation
|
page read and write
|
||
|
30C1000
|
trusted library allocation
|
page read and write
|
||
|
B8A000
|
trusted library allocation
|
page execute and read and write
|
||
|
8B3000
|
heap
|
page read and write
|
||
|
2EFC000
|
trusted library allocation
|
page read and write
|
||
|
30C5000
|
trusted library allocation
|
page read and write
|
||
|
2F54000
|
trusted library allocation
|
page read and write
|
||
|
2780000
|
heap
|
page execute and read and write
|
||
|
3320000
|
trusted library allocation
|
page read and write
|
||
|
2F58000
|
trusted library allocation
|
page read and write
|
||
|
333F000
|
trusted library allocation
|
page read and write
|
||
|
57C2000
|
heap
|
page read and write
|
||
|
2FD1000
|
trusted library allocation
|
page read and write
|
||
|
33BF000
|
trusted library allocation
|
page read and write
|
||
|
5F50000
|
heap
|
page read and write
|
||
|
333B000
|
trusted library allocation
|
page read and write
|
||
|
2F89000
|
trusted library allocation
|
page read and write
|
||
|
3133000
|
trusted library allocation
|
page read and write
|
||
|
3372000
|
trusted library allocation
|
page read and write
|
||
|
2F11000
|
trusted library allocation
|
page read and write
|
||
|
5910000
|
trusted library allocation
|
page execute and read and write
|
||
|
3D41000
|
trusted library allocation
|
page read and write
|
||
|
2EF4000
|
trusted library allocation
|
page read and write
|
||
|
37C000
|
stack
|
page read and write
|
||
|
2F8F000
|
trusted library allocation
|
page read and write
|
||
|
2F9E000
|
trusted library allocation
|
page read and write
|
||
|
94F000
|
heap
|
page read and write
|
||
|
2FA4000
|
trusted library allocation
|
page read and write
|
||
|
12A0000
|
heap
|
page read and write
|
||
|
2D0E000
|
stack
|
page read and write
|
||
|
2FBF000
|
trusted library allocation
|
page read and write
|
||
|
30C7000
|
trusted library allocation
|
page read and write
|
||
|
2791000
|
trusted library allocation
|
page read and write
|
||
|
33CB000
|
trusted library allocation
|
page read and write
|
||
|
5790000
|
trusted library allocation
|
page read and write
|
||
|
3112000
|
trusted library allocation
|
page read and write
|
||
|
2BC8000
|
trusted library allocation
|
page read and write
|
||
|
2FAA000
|
trusted library allocation
|
page read and write
|
||
|
8BA000
|
heap
|
page read and write
|
||
|
537E000
|
stack
|
page read and write
|
||
|
B63000
|
trusted library allocation
|
page execute and read and write
|
||
|
4D70000
|
heap
|
page execute and read and write
|
||
|
5BFE000
|
stack
|
page read and write
|
||
|
E98000
|
heap
|
page read and write
|
||
|
4D4E000
|
stack
|
page read and write
|
||
|
30E4000
|
trusted library allocation
|
page read and write
|
||
|
309C000
|
trusted library allocation
|
page read and write
|
||
|
11FB000
|
trusted library allocation
|
page execute and read and write
|
||
|
2FDD000
|
trusted library allocation
|
page read and write
|
||
|
2EC9000
|
trusted library allocation
|
page read and write
|
||
|
E4E000
|
stack
|
page read and write
|
||
|
3165000
|
trusted library allocation
|
page read and write
|
||
|
33A8000
|
trusted library allocation
|
page read and write
|
||
|
96A000
|
heap
|
page read and write
|
||
|
3307000
|
trusted library allocation
|
page read and write
|
||
|
2FF0000
|
trusted library allocation
|
page read and write
|
||
|
2B90000
|
trusted library allocation
|
page read and write
|
||
|
3182000
|
trusted library allocation
|
page read and write
|
||
|
3356000
|
trusted library allocation
|
page read and write
|
||
|
3406000
|
trusted library allocation
|
page read and write
|
||
|
2F37000
|
trusted library allocation
|
page read and write
|
||
|
3343000
|
trusted library allocation
|
page read and write
|
||
|
57A9000
|
trusted library allocation
|
page read and write
|
||
|
6F9000
|
stack
|
page read and write
|
||
|
30F9000
|
trusted library allocation
|
page read and write
|
||
|
5AC6000
|
trusted library allocation
|
page read and write
|
||
|
5280000
|
trusted library section
|
page read and write
|
||
|
331E000
|
trusted library allocation
|
page read and write
|
||
|
3135000
|
trusted library allocation
|
page read and write
|
||
|
57E0000
|
heap
|
page read and write
|
||
|
54F0000
|
heap
|
page read and write
|
||
|
F4F000
|
heap
|
page read and write
|
||
|
119F000
|
stack
|
page read and write
|
||
|
304B000
|
trusted library allocation
|
page read and write
|
||
|
2D10000
|
trusted library allocation
|
page read and write
|
||
|
3158000
|
trusted library allocation
|
page read and write
|
||
|
98C000
|
stack
|
page read and write
|
||
|
3068000
|
trusted library allocation
|
page read and write
|
||
|
3188000
|
trusted library allocation
|
page read and write
|
||
|
302A000
|
trusted library allocation
|
page read and write
|
||
|
8FC000
|
heap
|
page read and write
|
||
|
2FFA000
|
trusted library allocation
|
page read and write
|
||
|
300B000
|
trusted library allocation
|
page read and write
|
||
|
313D000
|
trusted library allocation
|
page read and write
|
||
|
4BD0000
|
heap
|
page read and write
|
||
|
30C3000
|
trusted library allocation
|
page read and write
|
||
|
2FD3000
|
trusted library allocation
|
page read and write
|
||
|
2F19000
|
trusted library allocation
|
page read and write
|
||
|
25FE000
|
heap
|
page read and write
|
||
|
337C000
|
trusted library allocation
|
page read and write
|
||
|
3014000
|
trusted library allocation
|
page read and write
|
||
|
30E0000
|
trusted library allocation
|
page read and write
|
||
|
3374000
|
trusted library allocation
|
page read and write
|
||
|
306E000
|
trusted library allocation
|
page read and write
|
||
|
57A0000
|
trusted library allocation
|
page read and write
|
||
|
25ED000
|
stack
|
page read and write
|
||
|
2F2E000
|
trusted library allocation
|
page read and write
|
||
|
3137000
|
trusted library allocation
|
page read and write
|
||
|
2B60000
|
heap
|
page read and write
|
||
|
2B50000
|
trusted library allocation
|
page execute and read and write
|
||
|
30CC000
|
trusted library allocation
|
page read and write
|
||
|
2ED4000
|
trusted library allocation
|
page read and write
|
||
|
5770000
|
trusted library allocation
|
page read and write
|
||
|
2D30000
|
heap
|
page execute and read and write
|
||
|
315D000
|
trusted library allocation
|
page read and write
|
||
|
2F4F000
|
trusted library allocation
|
page read and write
|
||
|
55AE000
|
stack
|
page read and write
|
||
|
3007000
|
trusted library allocation
|
page read and write
|
||
|
30BD000
|
trusted library allocation
|
page read and write
|
||
|
304F000
|
trusted library allocation
|
page read and write
|
||
|
8F9000
|
heap
|
page read and write
|
||
|
3B92000
|
trusted library allocation
|
page read and write
|
||
|
3354000
|
trusted library allocation
|
page read and write
|
||
|
308E000
|
trusted library allocation
|
page read and write
|
||
|
33F3000
|
trusted library allocation
|
page read and write
|
||
|
3358000
|
trusted library allocation
|
page read and write
|
||
|
5E3E000
|
stack
|
page read and write
|
||
|
335E000
|
trusted library allocation
|
page read and write
|
||
|
2FEC000
|
trusted library allocation
|
page read and write
|
||
|
3022000
|
trusted library allocation
|
page read and write
|
||
|
5600000
|
remote allocation
|
page read and write
|
||
|
2BB0000
|
heap
|
page read and write
|
||
|
2EAE000
|
trusted library allocation
|
page read and write
|
||
|
5C20000
|
trusted library allocation
|
page execute and read and write
|
||
|
2733000
|
trusted library allocation
|
page read and write
|
||
|
5AF0000
|
trusted library section
|
page read and write
|
||
|
26C0000
|
heap
|
page read and write
|
||
|
3184000
|
trusted library allocation
|
page read and write
|
||
|
2EB0000
|
trusted library allocation
|
page read and write
|
||
|
30F7000
|
trusted library allocation
|
page read and write
|
||
|
26BF000
|
trusted library allocation
|
page read and write
|
||
|
3173000
|
trusted library allocation
|
page read and write
|
||
|
336C000
|
trusted library allocation
|
page read and write
|
||
|
2FDF000
|
trusted library allocation
|
page read and write
|
||
|
332B000
|
trusted library allocation
|
page read and write
|
||
|
11DD000
|
trusted library allocation
|
page execute and read and write
|
||
|
2FDB000
|
trusted library allocation
|
page read and write
|
||
|
11EA000
|
trusted library allocation
|
page execute and read and write
|
||
|
3408000
|
trusted library allocation
|
page read and write
|
||
|
2EF6000
|
trusted library allocation
|
page read and write
|
||
|
310E000
|
trusted library allocation
|
page read and write
|
||
|
11E2000
|
trusted library allocation
|
page read and write
|
||
|
972000
|
heap
|
page read and write
|
||
|
125E000
|
stack
|
page read and write
|
||
|
B77000
|
trusted library allocation
|
page read and write
|
||
|
2FA2000
|
trusted library allocation
|
page read and write
|
||
|
2F17000
|
trusted library allocation
|
page read and write
|
||
|
3055000
|
trusted library allocation
|
page read and write
|
||
|
2F56000
|
trusted library allocation
|
page read and write
|
||
|
2F13000
|
trusted library allocation
|
page read and write
|
||
|
310C000
|
trusted library allocation
|
page read and write
|
||
|
313B000
|
trusted library allocation
|
page read and write
|
||
|
11C0000
|
trusted library allocation
|
page read and write
|
||
|
3096000
|
trusted library allocation
|
page read and write
|
||
|
4E80000
|
trusted library section
|
page read and write
|
||
|
30FF000
|
trusted library allocation
|
page read and write
|
||
|
B74000
|
trusted library allocation
|
page read and write
|
||
|
308B000
|
trusted library allocation
|
page read and write
|
||
|
3089000
|
trusted library allocation
|
page read and write
|
||
|
2EC1000
|
trusted library allocation
|
page read and write
|
||
|
2F7A000
|
trusted library allocation
|
page read and write
|
||
|
3020000
|
trusted library allocation
|
page read and write
|
||
|
E8E000
|
stack
|
page read and write
|
||
|
2F4B000
|
trusted library allocation
|
page read and write
|
||
|
334C000
|
trusted library allocation
|
page read and write
|
||
|
309A000
|
trusted library allocation
|
page read and write
|
||
|
338F000
|
trusted library allocation
|
page read and write
|
||
|
2F15000
|
trusted library allocation
|
page read and write
|
||
|
5AE0000
|
trusted library allocation
|
page read and write
|
||
|
4E7F000
|
stack
|
page read and write
|
||
|
2F1D000
|
trusted library allocation
|
page read and write
|
||
|
339E000
|
trusted library allocation
|
page read and write
|
||
|
2FB5000
|
trusted library allocation
|
page read and write
|
||
|
11C3000
|
trusted library allocation
|
page execute and read and write
|
||
|
875000
|
heap
|
page read and write
|
||
|
3139000
|
trusted library allocation
|
page read and write
|
||
|
3058000
|
trusted library allocation
|
page read and write
|
||
|
2E49000
|
trusted library allocation
|
page read and write
|
||
|
3116000
|
trusted library allocation
|
page read and write
|
||
|
33C9000
|
trusted library allocation
|
page read and write
|
||
|
3083000
|
trusted library allocation
|
page read and write
|
||
|
5780000
|
trusted library allocation
|
page read and write
|
||
|
108F000
|
stack
|
page read and write
|
||
|
2F6C000
|
trusted library allocation
|
page read and write
|
||
|
3177000
|
trusted library allocation
|
page read and write
|
||
|
3EA9000
|
trusted library allocation
|
page read and write
|
||
|
33EB000
|
trusted library allocation
|
page read and write
|
||
|
26A0000
|
trusted library allocation
|
page execute and read and write
|
||
|
2F0F000
|
trusted library allocation
|
page read and write
|
||
|
3341000
|
trusted library allocation
|
page read and write
|
||
|
11CD000
|
trusted library allocation
|
page execute and read and write
|
||
|
2F24000
|
trusted library allocation
|
page read and write
|
||
|
11D3000
|
trusted library allocation
|
page read and write
|
||
|
5AC0000
|
trusted library allocation
|
page read and write
|
||
|
2EE2000
|
trusted library allocation
|
page read and write
|
||
|
59B0000
|
trusted library allocation
|
page execute and read and write
|
||
|
11F7000
|
trusted library allocation
|
page execute and read and write
|
||
|
30CE000
|
trusted library allocation
|
page read and write
|
||
|
2EC5000
|
trusted library allocation
|
page read and write
|
||
|
47FF000
|
trusted library allocation
|
page read and write
|
There are 433 hidden memdumps, click here to show them.