Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
g3y89237.exe
|
PE32+ executable (GUI) x86-64 (stripped to external PDB), for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\PowerShell\StartupProfileData-NonInteractive
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\__PSScriptPolicyTest_30oytdva.odu.ps1
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\__PSScriptPolicyTest_3ameqqxp.hmz.psm1
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\__PSScriptPolicyTest_eryajlto.zes.psm1
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\__PSScriptPolicyTest_es3wdygj.rbs.ps1
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\second_data_temp.zip
|
Zip archive data, at least v2.0 to extract, compression method=deflate
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\QEMs.ini
|
PE32+ executable (DLL) (console) x86-64 (stripped to external PDB), for MS Windows
|
dropped
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\g3y89237.exe
|
"C:\Users\user\Desktop\g3y89237.exe"
|
|
|
|
C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
|
"powershell" "Register-ScheduledTask -Action (New-ScheduledTaskAction -Execute \"regsvr32\" -Argument \"/s /i:INSTALL C:\Users\user\AppData/Roaming/QEMs.ini\")
-Trigger (New-ScheduledTaskTrigger -Once -At (Get-Date).AddMinutes(1) -RepetitionInterval (New-TimeSpan -Minutes 1)) -TaskName
'MicrosoftEdgeUpdateTaskMachineUA{8C004488-0C84-408C-CC80-404C848444CC}' -Description 'Default' -Settings (New-ScheduledTaskSettingsSet
-AllowStartIfOnBatteries -DontStopIfGoingOnBatteries)"
|
|
|
|
C:\Windows\System32\regsvr32.exe
|
C:\Windows\system32\regsvr32.EXE /s /i:INSTALL C:\Users\user\AppData/Roaming/QEMs.ini
|
|
|
|
C:\Windows\System32\regsvr32.exe
|
"regsvr32" /s /i:INSTALL C:\Users\user\AppData/Roaming/QEMs.ini
|
|
|
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://nuget.org/NuGet.exe
|
unknown
|
||
|
https://aka.ms/winsvr-2022-pshelp
|
unknown
|
||
|
http://pesterbdd.com/images/Pester.png
|
unknown
|
||
|
http://schemas.xmlsoap.org/soap/encoding/
|
unknown
|
||
|
http://www.apache.org/licenses/LICENSE-2.0.html
|
unknown
|
||
|
http://schemas.xmlsoap.org/wsdl/
|
unknown
|
||
|
https://contoso.com/
|
unknown
|
||
|
https://nuget.org/nuget.exe
|
unknown
|
||
|
https://contoso.com/License
|
unknown
|
||
|
https://contoso.com/Icon
|
unknown
|
||
|
http://osoft.co
|
unknown
|
||
|
http://www.microsoft.
|
unknown
|
||
|
https://aka.ms/pscore68
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
|
unknown
|
||
|
https://github.com/Pester/Pester
|
unknown
|
There are 5 hidden URLs, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
185.196.9.174
|
unknown
|
Switzerland
|
|
|
|
8.8.8.8
|
unknown
|
United States
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\ActiveMovie\devenum 64-bit
|
Version
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2680000
|
trusted library allocation
|
page read and write
|
||
|
1BEE0000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B8B8000
|
trusted library allocation
|
page read and write
|
||
|
1B720000
|
trusted library allocation
|
page read and write
|
||
|
20BAA3C4000
|
heap
|
page read and write
|
||
|
1B580000
|
trusted library allocation
|
page read and write
|
||
|
1BBC0000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B880000
|
trusted library allocation
|
page read and write
|
||
|
1B075000
|
trusted library allocation
|
page read and write
|
||
|
1B800000
|
trusted library allocation
|
page read and write
|
||
|
2396000
|
heap
|
page read and write
|
||
|
1B57F000
|
trusted library allocation
|
page read and write
|
||
|
1BCA0000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34780000
|
trusted library allocation
|
page execute and read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B5D0000
|
trusted library allocation
|
page read and write
|
||
|
1C0A3000
|
trusted library allocation
|
page read and write
|
||
|
1BFD0000
|
trusted library allocation
|
page read and write
|
||
|
20BAA490000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
1AFB0000
|
trusted library allocation
|
page read and write
|
||
|
F858679000
|
stack
|
page read and write
|
||
|
20BAA0F0000
|
heap
|
page read and write
|
||
|
1BFE0000
|
trusted library allocation
|
page read and write
|
||
|
20B919A0000
|
trusted library section
|
page read and write
|
||
|
1B4C0000
|
trusted library allocation
|
page read and write
|
||
|
20B93725000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1BA60000
|
trusted library allocation
|
page read and write
|
||
|
1BE20000
|
trusted library allocation
|
page read and write
|
||
|
1B930000
|
trusted library allocation
|
page read and write
|
||
|
20BA1EB8000
|
trusted library allocation
|
page read and write
|
||
|
1B820000
|
trusted library allocation
|
page read and write
|
||
|
F858878000
|
stack
|
page read and write
|
||
|
1B8C0000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34930000
|
trusted library allocation
|
page read and write
|
||
|
20B90380000
|
heap
|
page read and write
|
||
|
1B570000
|
trusted library allocation
|
page read and write
|
||
|
2683000
|
trusted library allocation
|
page read and write
|
||
|
2280BF71000
|
heap
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B680000
|
trusted library allocation
|
page read and write
|
||
|
1525000
|
heap
|
page read and write
|
||
|
1B9A0000
|
trusted library allocation
|
page read and write
|
||
|
1BDB0000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34850000
|
trusted library allocation
|
page execute and read and write
|
||
|
20BAA74F000
|
heap
|
page read and write
|
||
|
1B560000
|
trusted library allocation
|
page read and write
|
||
|
7FFD349C8000
|
trusted library allocation
|
page read and write
|
||
|
1B420000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2280BDB0000
|
heap
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
20B900CC000
|
heap
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B0F4000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
20B900C2000
|
heap
|
page read and write
|
||
|
1B760000
|
trusted library allocation
|
page read and write
|
||
|
1B450000
|
trusted library allocation
|
page read and write
|
||
|
1B490000
|
trusted library allocation
|
page read and write
|
||
|
20BA9BBD000
|
heap
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1BCC0000
|
trusted library allocation
|
page read and write
|
||
|
29CB000
|
trusted library allocation
|
page read and write
|
||
|
7FFD348D0000
|
trusted library allocation
|
page read and write
|
||
|
7FFD3467B000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B850000
|
trusted library allocation
|
page read and write
|
||
|
1C040000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2738000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B560000
|
trusted library allocation
|
page read and write
|
||
|
20BAA160000
|
heap
|
page execute and read and write
|
||
|
24E0000
|
heap
|
page read and write
|
||
|
1BF00000
|
trusted library allocation
|
page read and write
|
||
|
AD3D1FD000
|
stack
|
page read and write
|
||
|
7FFD349D0000
|
trusted library allocation
|
page read and write
|
||
|
1BFA0000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34670000
|
trusted library allocation
|
page read and write
|
||
|
1B570000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34880000
|
trusted library allocation
|
page read and write
|
||
|
20BAA273000
|
heap
|
page read and write
|
||
|
705000
|
heap
|
page read and write
|
||
|
23AF000
|
heap
|
page read and write
|
||
|
1B530000
|
trusted library allocation
|
page read and write
|
||
|
7FF70BF41000
|
unkown
|
page execute read
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1BE80000
|
trusted library allocation
|
page read and write
|
||
|
20BAA462000
|
heap
|
page read and write
|
||
|
1AF00000
|
trusted library allocation
|
page read and write
|
||
|
1B0A0000
|
trusted library allocation
|
page read and write
|
||
|
649000
|
heap
|
page read and write
|
||
|
1B050000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34A90000
|
trusted library allocation
|
page execute and read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2393000
|
heap
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
20B91C37000
|
trusted library allocation
|
page read and write
|
||
|
1B001000
|
heap
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1BC20000
|
trusted library allocation
|
page read and write
|
||
|
1B900000
|
trusted library allocation
|
page read and write
|
||
|
20BA1E99000
|
trusted library allocation
|
page read and write
|
||
|
1BB50000
|
trusted library allocation
|
page read and write
|
||
|
1C010000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1BE27000
|
trusted library allocation
|
page read and write
|
||
|
1B410000
|
trusted library allocation
|
page read and write
|
||
|
2742000
|
trusted library allocation
|
page read and write
|
||
|
F858779000
|
stack
|
page read and write
|
||
|
1AFA0000
|
trusted library allocation
|
page read and write
|
||
|
2E30000
|
heap
|
page read and write
|
||
|
1B0DD000
|
heap
|
page read and write
|
||
|
7FFD34663000
|
trusted library allocation
|
page execute and read and write
|
||
|
1B560000
|
trusted library allocation
|
page read and write
|
||
|
1B440000
|
trusted library allocation
|
page read and write
|
||
|
26B0000
|
heap
|
page read and write
|
||
|
1B3C0000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B4FF000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34694000
|
trusted library allocation
|
page read and write
|
||
|
1BA80000
|
trusted library allocation
|
page read and write
|
||
|
20B90180000
|
heap
|
page read and write
|
||
|
1B7A0000
|
trusted library allocation
|
page read and write
|
||
|
2280BEB0000
|
heap
|
page read and write
|
||
|
1B4DC000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1AFD3000
|
trusted library allocation
|
page read and write
|
||
|
7FFD346BC000
|
trusted library allocation
|
page execute and read and write
|
||
|
1BEC0000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2280C1C0000
|
heap
|
page read and write
|
||
|
1B481000
|
trusted library allocation
|
page read and write
|
||
|
1AF50000
|
trusted library allocation
|
page read and write
|
||
|
7FF70BF40000
|
unkown
|
page readonly
|
||
|
20BAA130000
|
heap
|
page execute and read and write
|
||
|
2D4E000
|
stack
|
page read and write
|
||
|
1B770000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34920000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1BE30000
|
trusted library allocation
|
page read and write
|
||
|
1B4AD000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34993000
|
trusted library allocation
|
page read and write
|
||
|
2395000
|
heap
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1BA70000
|
trusted library allocation
|
page read and write
|
||
|
7FF70C008000
|
unkown
|
page write copy
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2683000
|
trusted library allocation
|
page read and write
|
||
|
1B0F3000
|
heap
|
page read and write
|
||
|
1B5D0000
|
trusted library allocation
|
page read and write
|
||
|
1B560000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
23A7000
|
heap
|
page read and write
|
||
|
1B4BE000
|
stack
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1AA4F000
|
heap
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
9C5000
|
heap
|
page read and write
|
||
|
1B710000
|
trusted library allocation
|
page read and write
|
||
|
272C000
|
trusted library allocation
|
page read and write
|
||
|
1B23F000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1C020000
|
trusted library allocation
|
page read and write
|
||
|
1B740000
|
trusted library allocation
|
page read and write
|
||
|
1520000
|
heap
|
page read and write
|
||
|
1BE30000
|
trusted library allocation
|
page read and write
|
||
|
1BF42000
|
trusted library allocation
|
page read and write
|
||
|
1B760000
|
trusted library allocation
|
page read and write
|
||
|
1BE90000
|
trusted library allocation
|
page read and write
|
||
|
7FFD349B9000
|
trusted library allocation
|
page read and write
|
||
|
1B430000
|
trusted library allocation
|
page read and write
|
||
|
2697000
|
trusted library allocation
|
page read and write
|
||
|
1BF90000
|
trusted library allocation
|
page read and write
|
||
|
1AF30000
|
trusted library allocation
|
page read and write
|
||
|
1B6DF000
|
stack
|
page read and write
|
||
|
F8586FE000
|
stack
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34683000
|
trusted library allocation
|
page read and write
|
||
|
1B8A0000
|
trusted library allocation
|
page read and write
|
||
|
1B001000
|
heap
|
page read and write
|
||
|
24D0000
|
heap
|
page execute and read and write
|
||
|
2690000
|
remote allocation
|
page read and write
|
||
|
22D0000
|
heap
|
page read and write
|
||
|
20B9017B000
|
heap
|
page read and write
|
||
|
1BEF0000
|
trusted library allocation
|
page read and write
|
||
|
20BAA3A9000
|
heap
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B9F0000
|
trusted library allocation
|
page read and write
|
||
|
1BC50000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
20B939EB000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1BEAF000
|
trusted library allocation
|
page read and write
|
||
|
1B560000
|
trusted library allocation
|
page read and write
|
||
|
7FFD3472C000
|
trusted library allocation
|
page execute and read and write
|
||
|
7FFD34730000
|
trusted library allocation
|
page execute and read and write
|
||
|
1B4E0000
|
trusted library allocation
|
page read and write
|
||
|
1B0F0000
|
trusted library allocation
|
page read and write
|
||
|
20B92913000
|
trusted library allocation
|
page read and write
|
||
|
1AF00000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
1B4F0000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34AA0000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34664000
|
trusted library allocation
|
page read and write
|
||
|
F858BBC000
|
stack
|
page read and write
|
||
|
20BA1EA6000
|
trusted library allocation
|
page read and write
|
||
|
20B900DE000
|
heap
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1BED0000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1C090000
|
trusted library allocation
|
page read and write
|
||
|
1BF6E000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34680000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B080000
|
trusted library allocation
|
page read and write
|
||
|
1B560000
|
trusted library allocation
|
page read and write
|
||
|
1B570000
|
trusted library allocation
|
page read and write
|
||
|
1B5C0000
|
trusted library allocation
|
page read and write
|
||
|
20BAA3C0000
|
heap
|
page read and write
|
||
|
1BBE0000
|
trusted library allocation
|
page read and write
|
||
|
1B420000
|
trusted library allocation
|
page read and write
|
||
|
7FFD8B3AB000
|
unkown
|
page read and write
|
||
|
1BE20000
|
trusted library allocation
|
page read and write
|
||
|
1B3D0000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34820000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1BA10000
|
trusted library allocation
|
page read and write
|
||
|
2A50000
|
trusted library allocation
|
page read and write
|
||
|
1B071000
|
heap
|
page read and write
|
||
|
2680000
|
trusted library allocation
|
page read and write
|
||
|
1B5E0000
|
trusted library allocation
|
page read and write
|
||
|
1B980000
|
trusted library allocation
|
page read and write
|
||
|
20BAA041000
|
heap
|
page read and write
|
||
|
1B530000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
F85978A000
|
stack
|
page read and write
|
||
|
20B9010D000
|
heap
|
page read and write
|
||
|
1B4D0000
|
trusted library allocation
|
page read and write
|
||
|
1B551000
|
trusted library allocation
|
page read and write
|
||
|
1BCD0000
|
trusted library allocation
|
page read and write
|
||
|
1B4B0000
|
trusted library allocation
|
page read and write
|
||
|
1B580000
|
trusted library allocation
|
page read and write
|
||
|
1B760000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
20BAA1A2000
|
heap
|
page read and write
|
||
|
7FFD34710000
|
trusted library allocation
|
page read and write
|
||
|
1BA00000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
20B91AC0000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2680000
|
trusted library allocation
|
page read and write
|
||
|
29D2000
|
trusted library allocation
|
page read and write
|
||
|
AD3CFFE000
|
stack
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
3F2000
|
stack
|
page read and write
|
||
|
1B830000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1BC20000
|
trusted library allocation
|
page read and write
|
||
|
2680000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
20BAA415000
|
heap
|
page read and write
|
||
|
1B553000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1BB90000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
1A6F0000
|
trusted library allocation
|
page read and write
|
||
|
1BEC0000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B910000
|
trusted library allocation
|
page read and write
|
||
|
1B960000
|
trusted library allocation
|
page read and write
|
||
|
1B555000
|
trusted library allocation
|
page read and write
|
||
|
20BAA3C8000
|
heap
|
page read and write
|
||
|
20B91A20000
|
heap
|
page execute and read and write
|
||
|
1B3D0000
|
trusted library allocation
|
page read and write
|
||
|
1B950000
|
trusted library allocation
|
page read and write
|
||
|
12B0000
|
heap
|
page read and write
|
||
|
7FFD348B0000
|
trusted library allocation
|
page read and write
|
||
|
7FFD349F0000
|
trusted library allocation
|
page read and write
|
||
|
7FFD3468A000
|
trusted library allocation
|
page read and write
|
||
|
1B2A8000
|
trusted library allocation
|
page read and write
|
||
|
20BAA5D0000
|
heap
|
page read and write
|
||
|
20B936A2000
|
trusted library allocation
|
page read and write
|
||
|
1B026000
|
heap
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1AF60000
|
trusted library allocation
|
page read and write
|
||
|
1B3C0000
|
trusted library allocation
|
page read and write
|
||
|
1B10C000
|
trusted library allocation
|
page read and write
|
||
|
1BF00000
|
trusted library allocation
|
page read and write
|
||
|
20BAA0AF000
|
heap
|
page read and write
|
||
|
7FFD34860000
|
trusted library allocation
|
page read and write
|
||
|
20B901A0000
|
heap
|
page read and write
|
||
|
1B270000
|
trusted library allocation
|
page read and write
|
||
|
1B9E0000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B130000
|
trusted library allocation
|
page read and write
|
||
|
7FF70BF41000
|
unkown
|
page execute read
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1BED0000
|
trusted library allocation
|
page read and write
|
||
|
1B570000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
7FFD3468D000
|
trusted library allocation
|
page execute and read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B0C0000
|
trusted library allocation
|
page read and write
|
||
|
7FF70BF93000
|
unkown
|
page readonly
|
||
|
1B27E000
|
stack
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
1B3C0000
|
trusted library allocation
|
page read and write
|
||
|
7FF70BF93000
|
unkown
|
page readonly
|
||
|
1BA40000
|
trusted library allocation
|
page read and write
|
||
|
1B760000
|
trusted library allocation
|
page read and write
|
||
|
1B4E0000
|
trusted library allocation
|
page read and write
|
||
|
1B772000
|
heap
|
page read and write
|
||
|
1C056000
|
trusted library allocation
|
page read and write
|
||
|
2350000
|
heap
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B570000
|
trusted library allocation
|
page read and write
|
||
|
1BEA0000
|
trusted library allocation
|
page read and write
|
||
|
1BE50000
|
trusted library allocation
|
page read and write
|
||
|
1BC40000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B3D0000
|
trusted library allocation
|
page read and write
|
||
|
1AF83000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B6D0000
|
trusted library allocation
|
page read and write
|
||
|
850000
|
heap
|
page read and write
|
||
|
1B430000
|
trusted library allocation
|
page read and write
|
||
|
1B2A0000
|
trusted library allocation
|
page read and write
|
||
|
1AF20000
|
trusted library allocation
|
page read and write
|
||
|
1B053000
|
heap
|
page read and write
|
||
|
1BF30000
|
trusted library allocation
|
page read and write
|
||
|
1B230000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
2280BF78000
|
heap
|
page read and write
|
||
|
1C030000
|
trusted library allocation
|
page read and write
|
||
|
2680000
|
trusted library allocation
|
page read and write
|
||
|
2736000
|
trusted library allocation
|
page read and write
|
||
|
1B586000
|
trusted library allocation
|
page read and write
|
||
|
1B000000
|
trusted library allocation
|
page read and write
|
||
|
7FFD349CC000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
1B210000
|
trusted library allocation
|
page read and write
|
||
|
1BFC3000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34A70000
|
trusted library allocation
|
page read and write
|
||
|
20B935B7000
|
trusted library allocation
|
page read and write
|
||
|
1B3C0000
|
trusted library allocation
|
page read and write
|
||
|
1BC70000
|
trusted library allocation
|
page read and write
|
||
|
7DF412530000
|
trusted library allocation
|
page execute and read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1AF7F000
|
stack
|
page read and write
|
||
|
20BA1EA8000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34950000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34B00000
|
trusted library allocation
|
page read and write
|
||
|
20B9351D000
|
trusted library allocation
|
page read and write
|
||
|
640000
|
heap
|
page read and write
|
||
|
7FFD34830000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
1B640000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B3C0000
|
trusted library allocation
|
page read and write
|
||
|
7FFD8B3AC000
|
unkown
|
page readonly
|
||
|
2A70000
|
trusted library allocation
|
page read and write
|
||
|
1B570000
|
trusted library allocation
|
page read and write
|
||
|
20BAA05C000
|
heap
|
page read and write
|
||
|
7FFD3481A000
|
trusted library allocation
|
page read and write
|
||
|
F85968E000
|
stack
|
page read and write
|
||
|
20BAA296000
|
heap
|
page read and write
|
||
|
2680000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
remote allocation
|
page read and write
|
||
|
1BF20000
|
trusted library allocation
|
page read and write
|
||
|
1B560000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B580000
|
trusted library allocation
|
page read and write
|
||
|
1AF80000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1BFB0000
|
trusted library allocation
|
page read and write
|
||
|
1B060000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B520000
|
trusted library allocation
|
page read and write
|
||
|
7FF70C00C000
|
unkown
|
page readonly
|
||
|
1B5A0000
|
trusted library allocation
|
page read and write
|
||
|
1B489000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1AF10000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
2170000
|
direct allocation
|
page read and write
|
||
|
1BF70000
|
trusted library allocation
|
page read and write
|
||
|
1B590000
|
trusted library allocation
|
page read and write
|
||
|
1B3F0000
|
trusted library allocation
|
page read and write
|
||
|
1B06A000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1BE40000
|
trusted library allocation
|
page read and write
|
||
|
1BF47000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B540000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
F85970E000
|
stack
|
page read and write
|
||
|
1BC8D000
|
trusted library allocation
|
page read and write
|
||
|
1B120000
|
trusted library allocation
|
page read and write
|
||
|
1BDC0000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34960000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
20BAA289000
|
heap
|
page read and write
|
||
|
1AEF0000
|
trusted library allocation
|
page read and write
|
||
|
1B007000
|
heap
|
page read and write
|
||
|
7FFD3466D000
|
trusted library allocation
|
page execute and read and write
|
||
|
1B280000
|
trusted library allocation
|
page read and write
|
||
|
1B990000
|
trusted library allocation
|
page read and write
|
||
|
1B610000
|
trusted library allocation
|
page read and write
|
||
|
29C3000
|
trusted library allocation
|
page read and write
|
||
|
1BF40000
|
trusted library allocation
|
page read and write
|
||
|
20B8FF90000
|
heap
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B840000
|
trusted library allocation
|
page read and write
|
||
|
1AEF3000
|
trusted library allocation
|
page read and write
|
||
|
2719000
|
trusted library allocation
|
page read and write
|
||
|
F858937000
|
stack
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B650000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2A53000
|
trusted library allocation
|
page read and write
|
||
|
F858CBC000
|
stack
|
page read and write
|
||
|
1B620000
|
trusted library allocation
|
page read and write
|
||
|
2680000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B210000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34850000
|
trusted library allocation
|
page execute and read and write
|
||
|
1B590000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34860000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B400000
|
trusted library allocation
|
page read and write
|
||
|
1B470000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1BC00000
|
trusted library allocation
|
page read and write
|
||
|
1BB9E000
|
stack
|
page read and write
|
||
|
1B560000
|
trusted library allocation
|
page read and write
|
||
|
20B91A90000
|
trusted library allocation
|
page read and write
|
||
|
1B110000
|
trusted library allocation
|
page read and write
|
||
|
1B9B0000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1BB70000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B630000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34900000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
2A72000
|
trusted library allocation
|
page read and write
|
||
|
29C8000
|
trusted library allocation
|
page read and write
|
||
|
1C05A000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1BF06000
|
trusted library allocation
|
page read and write
|
||
|
1B560000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
20B91DD8000
|
trusted library allocation
|
page read and write
|
||
|
2680000
|
trusted library allocation
|
page read and write
|
||
|
1B690000
|
trusted library allocation
|
page read and write
|
||
|
1B760000
|
trusted library allocation
|
page read and write
|
||
|
1B3E0000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
1B400000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
23B2000
|
heap
|
page read and write
|
||
|
20B900C6000
|
heap
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B580000
|
trusted library allocation
|
page read and write
|
||
|
1BE90000
|
trusted library allocation
|
page read and write
|
||
|
1B210000
|
trusted library allocation
|
page read and write
|
||
|
2680000
|
trusted library allocation
|
page read and write
|
||
|
1B1C2000
|
heap
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B0D0000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34990000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
F858A39000
|
stack
|
page read and write
|
||
|
1B557000
|
trusted library allocation
|
page read and write
|
||
|
7FFD8B3F0000
|
unkown
|
page readonly
|
||
|
1AFC0000
|
trusted library allocation
|
page read and write
|
||
|
1B6F0000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B770000
|
trusted library allocation
|
page read and write
|
||
|
7FFD346CC000
|
trusted library allocation
|
page execute and read and write
|
||
|
2280D7E0000
|
heap
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
7DF49C5C0000
|
trusted library allocation
|
page execute and read and write
|
||
|
20B925AB000
|
trusted library allocation
|
page read and write
|
||
|
1B7F0000
|
trusted library allocation
|
page read and write
|
||
|
1B500000
|
trusted library allocation
|
page read and write
|
||
|
1B260000
|
trusted library allocation
|
page read and write
|
||
|
1B480000
|
trusted library allocation
|
page read and write
|
||
|
1BF03000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2280D8EE000
|
heap
|
page read and write
|
||
|
1B763000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34870000
|
trusted library allocation
|
page read and write
|
||
|
1B2B0000
|
trusted library allocation
|
page read and write
|
||
|
1B54D000
|
stack
|
page read and write
|
||
|
20B9365D000
|
trusted library allocation
|
page read and write
|
||
|
20BAA720000
|
heap
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B005000
|
trusted library allocation
|
page read and write
|
||
|
29CF000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34720000
|
trusted library allocation
|
page read and write
|
||
|
1B590000
|
trusted library allocation
|
page read and write
|
||
|
7FF70C00C000
|
unkown
|
page readonly
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
23D0000
|
heap
|
page execute and read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B001000
|
heap
|
page read and write
|
||
|
1BE20000
|
trusted library allocation
|
page read and write
|
||
|
2280D7E1000
|
heap
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
1BEB0000
|
trusted library allocation
|
page read and write
|
||
|
20B919F0000
|
heap
|
page readonly
|
||
|
2388000
|
heap
|
page read and write
|
||
|
1B041000
|
heap
|
page read and write
|
||
|
2280BF12000
|
heap
|
page read and write
|
||
|
20BA1BD1000
|
trusted library allocation
|
page read and write
|
||
|
263D000
|
stack
|
page read and write
|
||
|
1B19E000
|
heap
|
page read and write
|
||
|
24E0000
|
trusted library section
|
page read and write
|
||
|
1B9D0000
|
trusted library allocation
|
page read and write
|
||
|
1B140000
|
trusted library allocation
|
page read and write
|
||
|
20B90385000
|
heap
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B760000
|
heap
|
page read and write
|
||
|
1BEE0000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34847000
|
trusted library allocation
|
page read and write
|
||
|
20BA1BE1000
|
trusted library allocation
|
page read and write
|
||
|
1B6A0000
|
trusted library allocation
|
page read and write
|
||
|
1B551000
|
trusted library allocation
|
page read and write
|
||
|
2A5B000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2280BEF0000
|
heap
|
page read and write
|
||
|
1B560000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B563000
|
trusted library allocation
|
page read and write
|
||
|
1B560000
|
trusted library allocation
|
page read and write
|
||
|
1B6B0000
|
trusted library allocation
|
page read and write
|
||
|
20BAA739000
|
heap
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1AF40000
|
trusted library allocation
|
page read and write
|
||
|
20BAA363000
|
heap
|
page read and write
|
||
|
1B3E0000
|
trusted library allocation
|
page read and write
|
||
|
1B450000
|
trusted library allocation
|
page read and write
|
||
|
7FFD349E0000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
1BE40000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B440000
|
trusted library allocation
|
page read and write
|
||
|
1B560000
|
trusted library allocation
|
page read and write
|
||
|
2A6B000
|
trusted library allocation
|
page read and write
|
||
|
1B06F000
|
trusted library allocation
|
page read and write
|
||
|
2680000
|
trusted library allocation
|
page read and write
|
||
|
2680000
|
trusted library allocation
|
page read and write
|
||
|
20B90109000
|
heap
|
page read and write
|
||
|
2530000
|
heap
|
page read and write
|
||
|
21D0000
|
heap
|
page read and write
|
||
|
20BAA270000
|
heap
|
page read and write
|
||
|
F8588BE000
|
stack
|
page read and write
|
||
|
20B936E7000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34834000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34A60000
|
trusted library allocation
|
page read and write
|
||
|
20B91BB1000
|
trusted library allocation
|
page read and write
|
||
|
2680000
|
trusted library allocation
|
page read and write
|
||
|
26A0000
|
heap
|
page execute and read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1BF20000
|
trusted library allocation
|
page read and write
|
||
|
1B6E0000
|
trusted library allocation
|
page read and write
|
||
|
20BA1EA0000
|
trusted library allocation
|
page read and write
|
||
|
126C1000
|
trusted library allocation
|
page read and write
|
||
|
1BBA0000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
1B7B0000
|
trusted library allocation
|
page read and write
|
||
|
1B780000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
1B0B0000
|
trusted library allocation
|
page read and write
|
||
|
1B090000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34AC0000
|
trusted library allocation
|
page read and write
|
||
|
1B613000
|
trusted library allocation
|
page read and write
|
||
|
1B3C0000
|
trusted library allocation
|
page read and write
|
||
|
20BAA3D0000
|
heap
|
page read and write
|
||
|
1B200000
|
trusted library allocation
|
page read and write
|
||
|
1B610000
|
trusted library allocation
|
page read and write
|
||
|
1B600000
|
trusted library allocation
|
page read and write
|
||
|
1BF80000
|
trusted library allocation
|
page read and write
|
||
|
1B5F0000
|
trusted library allocation
|
page read and write
|
||
|
1AFE0000
|
trusted library allocation
|
page read and write
|
||
|
1AF70000
|
trusted library allocation
|
page read and write
|
||
|
1BDA0000
|
trusted library allocation
|
page read and write
|
||
|
1AEA0000
|
trusted library section
|
page read and write
|
||
|
1BF50000
|
trusted library allocation
|
page read and write
|
||
|
1B3C7000
|
trusted library allocation
|
page read and write
|
||
|
7FFD349B0000
|
trusted library allocation
|
page read and write
|
||
|
1B770000
|
trusted library allocation
|
page read and write
|
||
|
21C0000
|
heap
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
740000
|
heap
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B510000
|
trusted library allocation
|
page read and write
|
||
|
6DA000
|
heap
|
page read and write
|
||
|
2663000
|
trusted library allocation
|
page read and write
|
||
|
1BB30000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
F858D3E000
|
stack
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
1B1BE000
|
heap
|
page read and write
|
||
|
20B91BA0000
|
heap
|
page read and write
|
||
|
20B92D8B000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
F858C3F000
|
stack
|
page read and write
|
||
|
7FFD34811000
|
trusted library allocation
|
page read and write
|
||
|
2683000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34844000
|
trusted library allocation
|
page read and write
|
||
|
2500000
|
trusted library allocation
|
page read and write
|
||
|
7FFD348F0000
|
trusted library allocation
|
page read and write
|
||
|
1BE20000
|
trusted library allocation
|
page read and write
|
||
|
1B890000
|
trusted library allocation
|
page read and write
|
||
|
1B490000
|
trusted library allocation
|
page read and write
|
||
|
1B4F0000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B970000
|
trusted library allocation
|
page read and write
|
||
|
1BEA0000
|
trusted library allocation
|
page read and write
|
||
|
820000
|
heap
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B290000
|
trusted library allocation
|
page read and write
|
||
|
1B567000
|
trusted library allocation
|
page read and write
|
||
|
64B000
|
heap
|
page read and write
|
||
|
29C6000
|
trusted library allocation
|
page read and write
|
||
|
707000
|
heap
|
page read and write
|
||
|
7FFD3467D000
|
trusted library allocation
|
page execute and read and write
|
||
|
2697000
|
trusted library allocation
|
page read and write
|
||
|
20B90080000
|
heap
|
page read and write
|
||
|
2670000
|
heap
|
page execute and read and write
|
||
|
273E000
|
trusted library allocation
|
page read and write
|
||
|
1B560000
|
trusted library allocation
|
page read and write
|
||
|
20B919B0000
|
trusted library section
|
page read and write
|
||
|
2687000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B553000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34970000
|
trusted library allocation
|
page read and write
|
||
|
1BB40000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34AB0000
|
trusted library allocation
|
page read and write
|
||
|
1B030000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B000000
|
heap
|
page read and write
|
||
|
2A00000
|
trusted library allocation
|
page read and write
|
||
|
1B4C0000
|
trusted library allocation
|
page read and write
|
||
|
1BEB0000
|
trusted library allocation
|
page read and write
|
||
|
1B76A000
|
heap
|
page read and write
|
||
|
72E000
|
heap
|
page read and write
|
||
|
7FFD34820000
|
trusted library allocation
|
page execute and read and write
|
||
|
1B570000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1BB70000
|
trusted library allocation
|
page read and write
|
||
|
24F0000
|
trusted library section
|
page read and write
|
||
|
2280BE90000
|
heap
|
page read and write
|
||
|
20B900BE000
|
heap
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
90E000
|
stack
|
page read and write
|
||
|
20B91A85000
|
heap
|
page read and write
|
||
|
736000
|
heap
|
page read and write
|
||
|
1B560000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34660000
|
trusted library allocation
|
page read and write
|
||
|
1BCA0000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34980000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2726000
|
trusted library allocation
|
page read and write
|
||
|
1C0A0000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
9A0000
|
heap
|
page read and write
|
||
|
1B810000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B57A000
|
trusted library allocation
|
page read and write
|
||
|
1BC60000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2A08000
|
trusted library allocation
|
page read and write
|
||
|
1290000
|
heap
|
page read and write
|
||
|
20B90089000
|
heap
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
12711000
|
trusted library allocation
|
page read and write
|
||
|
F8589BA000
|
stack
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B000000
|
trusted library allocation
|
page read and write
|
||
|
1BC10000
|
trusted library allocation
|
page read and write
|
||
|
1B500000
|
trusted library allocation
|
page read and write
|
||
|
7DF49C5B0000
|
trusted library allocation
|
page execute and read and write
|
||
|
AD3CDF9000
|
stack
|
page read and write
|
||
|
F85857E000
|
stack
|
page read and write
|
||
|
7FFD34746000
|
trusted library allocation
|
page execute and read and write
|
||
|
7FFD34890000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2680000
|
trusted library allocation
|
page read and write
|
||
|
1B3E0000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1BBF0000
|
trusted library allocation
|
page read and write
|
||
|
1BE50000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34840000
|
trusted library allocation
|
page read and write
|
||
|
20BAA37E000
|
heap
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
1BA20000
|
trusted library allocation
|
page read and write
|
||
|
1B220000
|
trusted library allocation
|
page read and write
|
||
|
1B560000
|
trusted library allocation
|
page read and write
|
||
|
1B8B0000
|
trusted library allocation
|
page read and write
|
||
|
1B770000
|
trusted library allocation
|
page read and write
|
||
|
1BE23000
|
trusted library allocation
|
page read and write
|
||
|
7FFD348C0000
|
trusted library allocation
|
page read and write
|
||
|
1B0E0000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
20B91A00000
|
trusted library allocation
|
page read and write
|
||
|
2A59000
|
trusted library allocation
|
page read and write
|
||
|
1B555000
|
trusted library allocation
|
page read and write
|
||
|
1B560000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
20B90360000
|
heap
|
page read and write
|
||
|
1B520000
|
trusted library allocation
|
page read and write
|
||
|
1B553000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
1AFFE000
|
stack
|
page read and write
|
||
|
1C070000
|
trusted library allocation
|
page read and write
|
||
|
1BF10000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B3C3000
|
trusted library allocation
|
page read and write
|
||
|
1B470000
|
trusted library allocation
|
page read and write
|
||
|
1B590000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34670000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34A53000
|
trusted library allocation
|
page read and write
|
||
|
7FFD8B3ED000
|
unkown
|
page read and write
|
||
|
1B560000
|
trusted library allocation
|
page read and write
|
||
|
F8587FD000
|
stack
|
page read and write
|
||
|
1B69A000
|
stack
|
page read and write
|
||
|
1B1E7000
|
heap
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
1B75B000
|
stack
|
page read and write
|
||
|
7FFD3469B000
|
trusted library allocation
|
page execute and read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
20B919E0000
|
trusted library allocation
|
page read and write
|
||
|
20BAA007000
|
heap
|
page read and write
|
||
|
7FFD34716000
|
trusted library allocation
|
page read and write
|
||
|
2280BEF8000
|
heap
|
page read and write
|
||
|
1B560000
|
trusted library allocation
|
page read and write
|
||
|
1B4A0000
|
trusted library allocation
|
page read and write
|
||
|
1BB60000
|
trusted library allocation
|
page read and write
|
||
|
1B553000
|
trusted library allocation
|
page read and write
|
||
|
1BF60000
|
trusted library allocation
|
page read and write
|
||
|
1B575000
|
trusted library allocation
|
page read and write
|
||
|
2680000
|
trusted library allocation
|
page read and write
|
||
|
1B760000
|
trusted library allocation
|
page read and write
|
||
|
1B3C3000
|
trusted library allocation
|
page read and write
|
||
|
20BA1E9E000
|
trusted library allocation
|
page read and write
|
||
|
20BAA2B7000
|
heap
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
20BAA000000
|
heap
|
page read and write
|
||
|
1B770000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
26C1000
|
trusted library allocation
|
page read and write
|
||
|
7FFD3468D000
|
trusted library allocation
|
page execute and read and write
|
||
|
29BF000
|
trusted library allocation
|
page read and write
|
||
|
1B560000
|
trusted library allocation
|
page read and write
|
||
|
20B91A80000
|
heap
|
page read and write
|
||
|
7FFD3467D000
|
trusted library allocation
|
page execute and read and write
|
||
|
1BE23000
|
trusted library allocation
|
page read and write
|
||
|
1BE20000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34AF0000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
20BA1BB1000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B660000
|
trusted library allocation
|
page read and write
|
||
|
1BDD0000
|
trusted library allocation
|
page read and write
|
||
|
1BE20000
|
trusted library allocation
|
page read and write
|
||
|
2683000
|
trusted library allocation
|
page read and write
|
||
|
7FF70C008000
|
unkown
|
page read and write
|
||
|
1B920000
|
trusted library allocation
|
page read and write
|
||
|
1BFB4000
|
trusted library allocation
|
page read and write
|
||
|
2280BF01000
|
heap
|
page read and write
|
||
|
1C049000
|
trusted library allocation
|
page read and write
|
||
|
1BE20000
|
trusted library allocation
|
page read and write
|
||
|
70C000
|
heap
|
page read and write
|
||
|
1BE60000
|
trusted library allocation
|
page read and write
|
||
|
F858473000
|
stack
|
page read and write
|
||
|
9C0000
|
heap
|
page read and write
|
||
|
12BB000
|
heap
|
page read and write
|
||
|
F8585FE000
|
stack
|
page read and write
|
||
|
7DF49C5A0000
|
trusted library allocation
|
page execute and read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34842000
|
trusted library allocation
|
page read and write
|
||
|
20B919C0000
|
trusted library allocation
|
page read and write
|
||
|
1B410000
|
trusted library allocation
|
page read and write
|
||
|
1B3F0000
|
trusted library allocation
|
page read and write
|
||
|
1BE70000
|
trusted library allocation
|
page read and write
|
||
|
1BF80000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
20B92B5E000
|
trusted library allocation
|
page read and write
|
||
|
7FFD348E0000
|
trusted library allocation
|
page read and write
|
||
|
1B240000
|
trusted library allocation
|
page read and write
|
||
|
1BE60000
|
trusted library allocation
|
page read and write
|
||
|
F858B3E000
|
stack
|
page read and write
|
||
|
7FFD34672000
|
trusted library allocation
|
page read and write
|
||
|
1BEF0000
|
trusted library allocation
|
page read and write
|
||
|
20B93760000
|
trusted library allocation
|
page read and write
|
||
|
1B009000
|
heap
|
page read and write
|
||
|
1B540000
|
trusted library allocation
|
page read and write
|
||
|
1B760000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1BD9D000
|
stack
|
page read and write
|
||
|
2680000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
2280BF83000
|
heap
|
page read and write
|
||
|
1BC9C000
|
stack
|
page read and write
|
||
|
1B557000
|
trusted library allocation
|
page read and write
|
||
|
1B040000
|
trusted library allocation
|
page read and write
|
||
|
1B700000
|
trusted library allocation
|
page read and write
|
||
|
1B4B0000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34940000
|
trusted library allocation
|
page read and write
|
||
|
1BB80000
|
trusted library allocation
|
page read and write
|
||
|
1BB60000
|
trusted library allocation
|
page read and write
|
||
|
1B790000
|
trusted library allocation
|
page read and write
|
||
|
7FFD8B361000
|
unkown
|
page execute read
|
||
|
1BC90000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34662000
|
trusted library allocation
|
page read and write
|
||
|
1BC80000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B3D0000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B760000
|
trusted library allocation
|
page read and write
|
||
|
1AF80000
|
trusted library allocation
|
page read and write
|
||
|
7FFD348A0000
|
trusted library allocation
|
page read and write
|
||
|
7FFD349C0000
|
trusted library allocation
|
page read and write
|
||
|
7FFD3471C000
|
trusted library allocation
|
page execute and read and write
|
||
|
1B750000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2697000
|
trusted library allocation
|
page read and write
|
||
|
1B7C0000
|
trusted library allocation
|
page read and write
|
||
|
F8584FE000
|
stack
|
page read and write
|
||
|
20BAA3CC000
|
heap
|
page read and write
|
||
|
1B4AB000
|
trusted library allocation
|
page read and write
|
||
|
12715000
|
trusted library allocation
|
page read and write
|
||
|
1BF60000
|
trusted library allocation
|
page read and write
|
||
|
1280000
|
heap
|
page read and write
|
||
|
1BE80000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
remote allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B552000
|
trusted library allocation
|
page read and write
|
||
|
20BA1C20000
|
trusted library allocation
|
page read and write
|
||
|
1C000000
|
trusted library allocation
|
page read and write
|
||
|
1B020000
|
trusted library allocation
|
page read and write
|
||
|
1BBD0000
|
trusted library allocation
|
page read and write
|
||
|
1BF30000
|
trusted library allocation
|
page read and write
|
||
|
1B510000
|
trusted library allocation
|
page read and write
|
||
|
1BA30000
|
trusted library allocation
|
page read and write
|
||
|
1B43B000
|
stack
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B010000
|
trusted library allocation
|
page read and write
|
||
|
1BF70000
|
trusted library allocation
|
page read and write
|
||
|
2535000
|
heap
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B860000
|
trusted library allocation
|
page read and write
|
||
|
1B570000
|
trusted library allocation
|
page read and write
|
||
|
20B93616000
|
trusted library allocation
|
page read and write
|
||
|
25BE000
|
stack
|
page read and write
|
||
|
2660000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34674000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1BCB0000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B780000
|
trusted library allocation
|
page read and write
|
||
|
1B553000
|
trusted library allocation
|
page read and write
|
||
|
6DC000
|
heap
|
page read and write
|
||
|
7FFD34A80000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34800000
|
trusted library allocation
|
page read and write
|
||
|
1B760000
|
trusted library allocation
|
page read and write
|
||
|
1B570000
|
trusted library allocation
|
page read and write
|
||
|
20BAA3F9000
|
heap
|
page read and write
|
||
|
1BB23000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B560000
|
trusted library allocation
|
page read and write
|
||
|
1B553000
|
trusted library allocation
|
page read and write
|
||
|
1C080000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34AD0000
|
trusted library allocation
|
page read and write
|
||
|
1B560000
|
trusted library allocation
|
page read and write
|
||
|
1B460000
|
trusted library allocation
|
page read and write
|
||
|
20BAA190000
|
heap
|
page read and write
|
||
|
1B4A0000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
7FFD349B4000
|
trusted library allocation
|
page read and write
|
||
|
2687000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
990000
|
heap
|
page readonly
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34673000
|
trusted library allocation
|
page execute and read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34690000
|
trusted library allocation
|
page read and write
|
||
|
7FF70C009000
|
unkown
|
page write copy
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
1AF90000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1BFF0000
|
trusted library allocation
|
page read and write
|
||
|
2680000
|
trusted library allocation
|
page read and write
|
||
|
1B9C0000
|
trusted library allocation
|
page read and write
|
||
|
127B000
|
stack
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34756000
|
trusted library allocation
|
page execute and read and write
|
||
|
1AFF0000
|
trusted library allocation
|
page read and write
|
||
|
7FFD8B3EC000
|
unkown
|
page readonly
|
||
|
7FFD8B360000
|
unkown
|
page readonly
|
||
|
7FFD34726000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34830000
|
trusted library allocation
|
page execute and read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
1B200000
|
trusted library allocation
|
page read and write
|
||
|
2640000
|
trusted library allocation
|
page read and write
|
||
|
1B5B0000
|
trusted library allocation
|
page read and write
|
||
|
7FF70BF40000
|
unkown
|
page readonly
|
||
|
1B250000
|
trusted library allocation
|
page read and write
|
||
|
1B4D0000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
1BDE0000
|
trusted library allocation
|
page read and write
|
||
|
1B3C0000
|
trusted library allocation
|
page read and write
|
||
|
1490000
|
heap
|
page read and write
|
||
|
1B460000
|
trusted library allocation
|
page read and write
|
||
|
1AEF0000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
1B870000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
2520000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34910000
|
trusted library allocation
|
page read and write
|
||
|
2683000
|
trusted library allocation
|
page read and write
|
||
|
1B150000
|
trusted library allocation
|
page read and write
|
||
|
1BF15000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B670000
|
trusted library allocation
|
page read and write
|
||
|
1B1E4000
|
heap
|
page read and write
|
||
|
1B760000
|
trusted library allocation
|
page read and write
|
||
|
1B220000
|
trusted library allocation
|
page read and write
|
||
|
1C060000
|
trusted library allocation
|
page read and write
|
||
|
1BBB0000
|
trusted library allocation
|
page read and write
|
||
|
1B940000
|
trusted library allocation
|
page read and write
|
||
|
1B200000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
1BE30000
|
trusted library allocation
|
page read and write
|
||
|
1BB80000
|
trusted library allocation
|
page read and write
|
||
|
20BAA167000
|
heap
|
page execute and read and write
|
||
|
29BC000
|
trusted library allocation
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1BE70000
|
trusted library allocation
|
page read and write
|
||
|
1BF50000
|
trusted library allocation
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34A50000
|
trusted library allocation
|
page read and write
|
||
|
7FFD3469D000
|
trusted library allocation
|
page execute and read and write
|
||
|
1B090000
|
heap
|
page read and write
|
||
|
1B563000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34810000
|
trusted library allocation
|
page read and write
|
||
|
7FFD34790000
|
trusted library allocation
|
page execute and read and write
|
||
|
2280BF14000
|
heap
|
page read and write
|
||
|
F858ABE000
|
stack
|
page read and write
|
||
|
2690000
|
trusted library allocation
|
page read and write
|
||
|
1B550000
|
trusted library allocation
|
page read and write
|
||
|
20BAA27F000
|
heap
|
page read and write
|
||
|
2693000
|
trusted library allocation
|
page read and write
|
There are 1015 hidden memdumps, click here to show them.