Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\qWfJQYqN3A.exe
|
"C:\Users\user\Desktop\qWfJQYqN3A.exe"
|
 |
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
A61000
|
unkown
|
page execute and read and write
|
|
|
|
1700000
|
direct allocation
|
page read and write
|
|
|
|
A60000
|
unkown
|
page readonly
|
||
|
1210000
|
heap
|
page read and write
|
||
|
13E5000
|
heap
|
page read and write
|
||
|
15FE000
|
stack
|
page read and write
|
||
|
1250000
|
heap
|
page read and write
|
||
|
13C0000
|
heap
|
page read and write
|
||
|
1959000
|
direct allocation
|
page execute and read and write
|
||
|
181C000
|
heap
|
page read and write
|
||
|
13CE000
|
heap
|
page read and write
|
||
|
A60000
|
unkown
|
page readonly
|
||
|
1B01000
|
direct allocation
|
page execute and read and write
|
||
|
13DA000
|
heap
|
page read and write
|
||
|
13D6000
|
heap
|
page read and write
|
||
|
1254000
|
heap
|
page read and write
|
||
|
1260000
|
heap
|
page read and write
|
||
|
13D4000
|
heap
|
page read and write
|
||
|
195D000
|
direct allocation
|
page execute and read and write
|
||
|
1B72000
|
direct allocation
|
page execute and read and write
|
||
|
1750000
|
direct allocation
|
page read and write
|
||
|
1297000
|
heap
|
page read and write
|
||
|
1750000
|
direct allocation
|
page read and write
|
||
|
13DA000
|
heap
|
page read and write
|
||
|
1261000
|
heap
|
page read and write
|
||
|
DDD000
|
stack
|
page read and write
|
||
|
13E5000
|
heap
|
page read and write
|
||
|
13DB000
|
heap
|
page read and write
|
||
|
13DF000
|
heap
|
page read and write
|
||
|
13DF000
|
heap
|
page read and write
|
||
|
13CA000
|
heap
|
page read and write
|
||
|
16FF000
|
stack
|
page read and write
|
||
|
15BF000
|
stack
|
page read and write
|
||
|
13DF000
|
heap
|
page read and write
|
||
|
10FD000
|
stack
|
page read and write
|
||
|
167E000
|
heap
|
page read and write
|
||
|
1830000
|
direct allocation
|
page execute and read and write
|
||
|
1750000
|
direct allocation
|
page read and write
|
||
|
139E000
|
stack
|
page read and write
|
||
|
1254000
|
heap
|
page read and write
|
||
|
1AFD000
|
direct allocation
|
page execute and read and write
|
||
|
13DF000
|
heap
|
page read and write
|
||
|
17A7000
|
heap
|
page read and write
|
||
|
13DF000
|
heap
|
page read and write
|
||
|
A61000
|
unkown
|
page execute read
|
||
|
1360000
|
direct allocation
|
page read and write
|
||
|
1750000
|
direct allocation
|
page read and write
|
||
|
15E8000
|
heap
|
page read and write
|
||
|
19CE000
|
direct allocation
|
page execute and read and write
|
||
|
14C5000
|
heap
|
page read and write
|
||
|
1261000
|
heap
|
page read and write
|
||
|
1800000
|
heap
|
page read and write
|
||
|
13DF000
|
heap
|
page read and write
|
||
|
1750000
|
direct allocation
|
page read and write
|
||
|
17AB000
|
heap
|
page read and write
|
||
|
1750000
|
direct allocation
|
page read and write
|
||
|
13D4000
|
heap
|
page read and write
|
||
|
1130000
|
heap
|
page read and write
|
There are 48 hidden memdumps, click here to show them.