Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
statement of acct WWP.exe
|
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Roaming\Txbgvtdzyo.exe
|
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\Roaming\Txbgvtdzyo.exe:Zone.Identifier
|
ASCII text, with CRLF line terminators
|
modified
|
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\statement of acct WWP.exe
|
"C:\Users\user\Desktop\statement of acct WWP.exe"
|
|
|
|
C:\Windows\Microsoft.NET\Framework\v4.0.30319\InstallUtil.exe
|
"C:\Windows\Microsoft.NET\Framework\v4.0.30319\InstallUtil.exe"
|
|
|
|
C:\Windows\SysWOW64\WerFault.exe
|
C:\Windows\SysWOW64\WerFault.exe -u -p 7348 -s 1148
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://github.com/mgravell/protobuf-net
|
unknown
|
||
|
https://github.com/mgravell/protobuf-neti
|
unknown
|
||
|
https://stackoverflow.com/q/14436606/23354
|
unknown
|
||
|
https://github.com/mgravell/protobuf-netJ
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
|
unknown
|
||
|
https://stackoverflow.com/q/11564914/23354;
|
unknown
|
||
|
https://stackoverflow.com/q/2152978/23354
|
unknown
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
|
Txbgvtdzyo
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
60E0000
|
trusted library section
|
page read and write
|
|
|
|
2EB1000
|
trusted library allocation
|
page read and write
|
|
|
|
3131000
|
trusted library allocation
|
page read and write
|
||
|
355B000
|
trusted library allocation
|
page read and write
|
||
|
3188000
|
trusted library allocation
|
page read and write
|
||
|
338F000
|
trusted library allocation
|
page read and write
|
||
|
338B000
|
trusted library allocation
|
page read and write
|
||
|
1230000
|
heap
|
page read and write
|
||
|
3137000
|
trusted library allocation
|
page read and write
|
||
|
323E000
|
trusted library allocation
|
page read and write
|
||
|
5F50000
|
trusted library allocation
|
page execute and read and write
|
||
|
135E000
|
stack
|
page read and write
|
||
|
316B000
|
trusted library allocation
|
page read and write
|
||
|
31C8000
|
trusted library allocation
|
page read and write
|
||
|
5F90000
|
trusted library allocation
|
page read and write
|
||
|
2C5B000
|
trusted library allocation
|
page read and write
|
||
|
3150000
|
trusted library allocation
|
page read and write
|
||
|
3272000
|
trusted library allocation
|
page read and write
|
||
|
330B000
|
trusted library allocation
|
page read and write
|
||
|
3343000
|
trusted library allocation
|
page read and write
|
||
|
6420000
|
trusted library allocation
|
page read and write
|
||
|
343B000
|
trusted library allocation
|
page read and write
|
||
|
3106000
|
trusted library allocation
|
page read and write
|
||
|
320E000
|
trusted library allocation
|
page read and write
|
||
|
62AE000
|
stack
|
page read and write
|
||
|
7CC000
|
stack
|
page read and write
|
||
|
33DC000
|
trusted library allocation
|
page read and write
|
||
|
3161000
|
trusted library allocation
|
page read and write
|
||
|
1390000
|
heap
|
page read and write
|
||
|
3579000
|
trusted library allocation
|
page read and write
|
||
|
34E6000
|
trusted library allocation
|
page read and write
|
||
|
3203000
|
trusted library allocation
|
page read and write
|
||
|
F7F000
|
heap
|
page read and write
|
||
|
332A000
|
trusted library allocation
|
page read and write
|
||
|
3482000
|
trusted library allocation
|
page read and write
|
||
|
310B000
|
trusted library allocation
|
page read and write
|
||
|
32BC000
|
trusted library allocation
|
page read and write
|
||
|
4FCE000
|
stack
|
page read and write
|
||
|
33A6000
|
trusted library allocation
|
page read and write
|
||
|
5EB5000
|
heap
|
page read and write
|
||
|
63EE000
|
stack
|
page read and write
|
||
|
3BC1000
|
trusted library allocation
|
page read and write
|
||
|
3439000
|
trusted library allocation
|
page read and write
|
||
|
FE0000
|
trusted library allocation
|
page read and write
|
||
|
3244000
|
trusted library allocation
|
page read and write
|
||
|
31E1000
|
trusted library allocation
|
page read and write
|
||
|
333B000
|
trusted library allocation
|
page read and write
|
||
|
ECA000
|
heap
|
page read and write
|
||
|
12FB000
|
trusted library allocation
|
page execute and read and write
|
||
|
FAE000
|
stack
|
page read and write
|
||
|
310F000
|
trusted library allocation
|
page read and write
|
||
|
321D000
|
trusted library allocation
|
page read and write
|
||
|
32A3000
|
trusted library allocation
|
page read and write
|
||
|
31C0000
|
trusted library allocation
|
page read and write
|
||
|
32B0000
|
trusted library allocation
|
page read and write
|
||
|
3568000
|
trusted library allocation
|
page read and write
|
||
|
31A3000
|
trusted library allocation
|
page read and write
|
||
|
34F3000
|
trusted library allocation
|
page read and write
|
||
|
30D2000
|
trusted library allocation
|
page read and write
|
||
|
351B000
|
trusted library allocation
|
page read and write
|
||
|
357B000
|
trusted library allocation
|
page read and write
|
||
|
3422000
|
trusted library allocation
|
page read and write
|
||
|
3295000
|
trusted library allocation
|
page read and write
|
||
|
DE4000
|
trusted library allocation
|
page read and write
|
||
|
EFE000
|
heap
|
page read and write
|
||
|
329B000
|
trusted library allocation
|
page read and write
|
||
|
3251000
|
trusted library allocation
|
page read and write
|
||
|
311C000
|
trusted library allocation
|
page read and write
|
||
|
34C3000
|
trusted library allocation
|
page read and write
|
||
|
3352000
|
trusted library allocation
|
page read and write
|
||
|
351F000
|
trusted library allocation
|
page read and write
|
||
|
63AF000
|
stack
|
page read and write
|
||
|
3240000
|
trusted library allocation
|
page read and write
|
||
|
335E000
|
trusted library allocation
|
page read and write
|
||
|
1000000
|
heap
|
page read and write
|
||
|
54B0000
|
trusted library allocation
|
page read and write
|
||
|
353C000
|
trusted library allocation
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
33E0000
|
trusted library allocation
|
page read and write
|
||
|
34CB000
|
trusted library allocation
|
page read and write
|
||
|
3484000
|
trusted library allocation
|
page read and write
|
||
|
6430000
|
trusted library allocation
|
page read and write
|
||
|
336D000
|
trusted library allocation
|
page read and write
|
||
|
2C80000
|
trusted library allocation
|
page read and write
|
||
|
3345000
|
trusted library allocation
|
page read and write
|
||
|
E0A000
|
trusted library allocation
|
page execute and read and write
|
||
|
E17000
|
trusted library allocation
|
page execute and read and write
|
||
|
12F7000
|
trusted library allocation
|
page execute and read and write
|
||
|
52F0000
|
trusted library allocation
|
page read and write
|
||
|
3123000
|
trusted library allocation
|
page read and write
|
||
|
353E000
|
trusted library allocation
|
page read and write
|
||
|
3225000
|
trusted library allocation
|
page read and write
|
||
|
30CC000
|
trusted library allocation
|
page read and write
|
||
|
33F5000
|
trusted library allocation
|
page read and write
|
||
|
346B000
|
trusted library allocation
|
page read and write
|
||
|
5340000
|
heap
|
page read and write
|
||
|
654E000
|
stack
|
page read and write
|
||
|
3221000
|
trusted library allocation
|
page read and write
|
||
|
314C000
|
trusted library allocation
|
page read and write
|
||
|
31E3000
|
trusted library allocation
|
page read and write
|
||
|
3544000
|
trusted library allocation
|
page read and write
|
||
|
343F000
|
trusted library allocation
|
page read and write
|
||
|
3475000
|
trusted library allocation
|
page read and write
|
||
|
3182000
|
trusted library allocation
|
page read and write
|
||
|
323C000
|
trusted library allocation
|
page read and write
|
||
|
3540000
|
trusted library allocation
|
page read and write
|
||
|
2D86000
|
trusted library allocation
|
page read and write
|
||
|
3274000
|
trusted library allocation
|
page read and write
|
||
|
325B000
|
trusted library allocation
|
page read and write
|
||
|
4506000
|
trusted library allocation
|
page read and write
|
||
|
4FAE000
|
stack
|
page read and write
|
||
|
33D8000
|
trusted library allocation
|
page read and write
|
||
|
31F8000
|
trusted library allocation
|
page read and write
|
||
|
31DB000
|
trusted library allocation
|
page read and write
|
||
|
3227000
|
trusted library allocation
|
page read and write
|
||
|
3523000
|
trusted library allocation
|
page read and write
|
||
|
322E000
|
trusted library allocation
|
page read and write
|
||
|
316D000
|
trusted library allocation
|
page read and write
|
||
|
288E000
|
stack
|
page read and write
|
||
|
3393000
|
trusted library allocation
|
page read and write
|
||
|
3297000
|
trusted library allocation
|
page read and write
|
||
|
DF0000
|
trusted library allocation
|
page read and write
|
||
|
34DE000
|
trusted library allocation
|
page read and write
|
||
|
3133000
|
trusted library allocation
|
page read and write
|
||
|
330D000
|
trusted library allocation
|
page read and write
|
||
|
EF7000
|
stack
|
page read and write
|
||
|
338D000
|
trusted library allocation
|
page read and write
|
||
|
60CE000
|
stack
|
page read and write
|
||
|
3375000
|
trusted library allocation
|
page read and write
|
||
|
3246000
|
trusted library allocation
|
page read and write
|
||
|
3EAC000
|
trusted library allocation
|
page read and write
|
||
|
3165000
|
trusted library allocation
|
page read and write
|
||
|
3441000
|
trusted library allocation
|
page read and write
|
||
|
1370000
|
trusted library allocation
|
page read and write
|
||
|
5360000
|
trusted library allocation
|
page read and write
|
||
|
3201000
|
trusted library allocation
|
page read and write
|
||
|
32CD000
|
trusted library allocation
|
page read and write
|
||
|
60D0000
|
trusted library allocation
|
page execute and read and write
|
||
|
32E8000
|
trusted library allocation
|
page read and write
|
||
|
2D72000
|
trusted library allocation
|
page read and write
|
||
|
32F5000
|
trusted library allocation
|
page read and write
|
||
|
5450000
|
trusted library allocation
|
page read and write
|
||
|
351D000
|
trusted library allocation
|
page read and write
|
||
|
317E000
|
trusted library allocation
|
page read and write
|
||
|
12D0000
|
trusted library allocation
|
page read and write
|
||
|
3398000
|
trusted library allocation
|
page read and write
|
||
|
5300000
|
trusted library allocation
|
page read and write
|
||
|
33F3000
|
trusted library allocation
|
page read and write
|
||
|
982000
|
unkown
|
page readonly
|
||
|
311E000
|
trusted library allocation
|
page read and write
|
||
|
400000
|
remote allocation
|
page execute and read and write
|
||
|
3444000
|
trusted library allocation
|
page read and write
|
||
|
31B3000
|
trusted library allocation
|
page read and write
|
||
|
5E54000
|
heap
|
page read and write
|
||
|
356E000
|
trusted library allocation
|
page read and write
|
||
|
3167000
|
trusted library allocation
|
page read and write
|
||
|
3197000
|
trusted library allocation
|
page read and write
|
||
|
350D000
|
trusted library allocation
|
page read and write
|
||
|
2D6B000
|
trusted library allocation
|
page read and write
|
||
|
3365000
|
trusted library allocation
|
page read and write
|
||
|
3577000
|
trusted library allocation
|
page read and write
|
||
|
5FD0000
|
trusted library section
|
page read and write
|
||
|
32EC000
|
trusted library allocation
|
page read and write
|
||
|
3557000
|
trusted library allocation
|
page read and write
|
||
|
3210000
|
trusted library allocation
|
page read and write
|
||
|
31FF000
|
trusted library allocation
|
page read and write
|
||
|
2BF9000
|
trusted library allocation
|
page read and write
|
||
|
3570000
|
trusted library allocation
|
page read and write
|
||
|
5460000
|
heap
|
page read and write
|
||
|
3324000
|
trusted library allocation
|
page read and write
|
||
|
31FA000
|
trusted library allocation
|
page read and write
|
||
|
33DE000
|
trusted library allocation
|
page read and write
|
||
|
5FB0000
|
trusted library allocation
|
page execute and read and write
|
||
|
34DC000
|
trusted library allocation
|
page read and write
|
||
|
298F000
|
stack
|
page read and write
|
||
|
5FA0000
|
trusted library allocation
|
page read and write
|
||
|
6790000
|
trusted library section
|
page read and write
|
||
|
E60000
|
trusted library allocation
|
page read and write
|
||
|
E70000
|
heap
|
page read and write
|
||
|
3320000
|
trusted library allocation
|
page read and write
|
||
|
51DE000
|
stack
|
page read and write
|
||
|
325F000
|
trusted library allocation
|
page read and write
|
||
|
31F6000
|
trusted library allocation
|
page read and write
|
||
|
34C7000
|
trusted library allocation
|
page read and write
|
||
|
551E000
|
stack
|
page read and write
|
||
|
313B000
|
trusted library allocation
|
page read and write
|
||
|
3169000
|
trusted library allocation
|
page read and write
|
||
|
F4E000
|
stack
|
page read and write
|
||
|
C90000
|
heap
|
page read and write
|
||
|
32B8000
|
trusted library allocation
|
page read and write
|
||
|
32F7000
|
trusted library allocation
|
page read and write
|
||
|
3337000
|
trusted library allocation
|
page read and write
|
||
|
33E2000
|
trusted library allocation
|
page read and write
|
||
|
3299000
|
trusted library allocation
|
page read and write
|
||
|
5EAA000
|
heap
|
page read and write
|
||
|
149E000
|
stack
|
page read and write
|
||
|
6070000
|
trusted library allocation
|
page execute and read and write
|
||
|
3574000
|
trusted library allocation
|
page read and write
|
||
|
F65000
|
heap
|
page read and write
|
||
|
3469000
|
trusted library allocation
|
page read and write
|
||
|
3135000
|
trusted library allocation
|
page read and write
|
||
|
5720000
|
trusted library section
|
page read and write
|
||
|
1220000
|
heap
|
page read and write
|
||
|
3551000
|
trusted library allocation
|
page read and write
|
||
|
329D000
|
trusted library allocation
|
page read and write
|
||
|
3356000
|
trusted library allocation
|
page read and write
|
||
|
3328000
|
trusted library allocation
|
page read and write
|
||
|
2BC1000
|
trusted library allocation
|
page read and write
|
||
|
3213000
|
trusted library allocation
|
page read and write
|
||
|
34E0000
|
trusted library allocation
|
page read and write
|
||
|
30D0000
|
trusted library allocation
|
page read and write
|
||
|
30F0000
|
trusted library allocation
|
page read and write
|
||
|
F60000
|
heap
|
page read and write
|
||
|
E07000
|
trusted library allocation
|
page execute and read and write
|
||
|
33C9000
|
trusted library allocation
|
page read and write
|
||
|
3259000
|
trusted library allocation
|
page read and write
|
||
|
E40000
|
trusted library allocation
|
page execute and read and write
|
||
|
67E0000
|
trusted library allocation
|
page execute and read and write
|
||
|
1035000
|
heap
|
page read and write
|
||
|
2C7C000
|
stack
|
page read and write
|
||
|
1380000
|
trusted library allocation
|
page read and write
|
||
|
322B000
|
trusted library allocation
|
page read and write
|
||
|
34AA000
|
trusted library allocation
|
page read and write
|
||
|
5F80000
|
trusted library allocation
|
page read and write
|
||
|
3171000
|
trusted library allocation
|
page read and write
|
||
|
2CA0000
|
trusted library allocation
|
page read and write
|
||
|
31AF000
|
trusted library allocation
|
page read and write
|
||
|
4183000
|
trusted library allocation
|
page read and write
|
||
|
33E4000
|
trusted library allocation
|
page read and write
|
||
|
32B2000
|
trusted library allocation
|
page read and write
|
||
|
5EC3000
|
heap
|
page read and write
|
||
|
30DA000
|
trusted library allocation
|
page read and write
|
||
|
33A8000
|
trusted library allocation
|
page read and write
|
||
|
402000
|
remote allocation
|
page execute and read and write
|
||
|
1027000
|
heap
|
page read and write
|
||
|
3EB1000
|
trusted library allocation
|
page read and write
|
||
|
3257000
|
trusted library allocation
|
page read and write
|
||
|
3454000
|
trusted library allocation
|
page read and write
|
||
|
31C6000
|
trusted library allocation
|
page read and write
|
||
|
5520000
|
heap
|
page read and write
|
||
|
12E2000
|
trusted library allocation
|
page read and write
|
||
|
5360000
|
remote allocation
|
page read and write
|
||
|
2A9D000
|
stack
|
page read and write
|
||
|
4FF2000
|
heap
|
page read and write
|
||
|
33C3000
|
trusted library allocation
|
page read and write
|
||
|
589E000
|
stack
|
page read and write
|
||
|
605E000
|
stack
|
page read and write
|
||
|
318A000
|
trusted library allocation
|
page read and write
|
||
|
12E6000
|
trusted library allocation
|
page execute and read and write
|
||
|
3158000
|
trusted library allocation
|
page read and write
|
||
|
3D38000
|
trusted library allocation
|
page read and write
|
||
|
31CE000
|
trusted library allocation
|
page read and write
|
||
|
3100000
|
trusted library allocation
|
page read and write
|
||
|
3553000
|
trusted library allocation
|
page read and write
|
||
|
3391000
|
trusted library allocation
|
page read and write
|
||
|
4143000
|
trusted library allocation
|
page read and write
|
||
|
31DD000
|
trusted library allocation
|
page read and write
|
||
|
DE3000
|
trusted library allocation
|
page execute and read and write
|
||
|
2C98000
|
trusted library allocation
|
page read and write
|
||
|
32E6000
|
trusted library allocation
|
page read and write
|
||
|
34EF000
|
trusted library allocation
|
page read and write
|
||
|
69F0000
|
trusted library allocation
|
page read and write
|
||
|
30EB000
|
trusted library allocation
|
page read and write
|
||
|
29BD000
|
heap
|
page read and write
|
||
|
571F000
|
stack
|
page read and write
|
||
|
3354000
|
trusted library allocation
|
page read and write
|
||
|
2BB0000
|
heap
|
page execute and read and write
|
||
|
29B6000
|
heap
|
page read and write
|
||
|
AF8000
|
stack
|
page read and write
|
||
|
3326000
|
trusted library allocation
|
page read and write
|
||
|
3278000
|
trusted library allocation
|
page read and write
|
||
|
FE3000
|
trusted library allocation
|
page execute and read and write
|
||
|
3322000
|
trusted library allocation
|
page read and write
|
||
|
336F000
|
trusted library allocation
|
page read and write
|
||
|
31DF000
|
trusted library allocation
|
page read and write
|
||
|
33DA000
|
trusted library allocation
|
page read and write
|
||
|
3255000
|
trusted library allocation
|
page read and write
|
||
|
12CF000
|
stack
|
page read and write
|
||
|
3270000
|
trusted library allocation
|
page read and write
|
||
|
3309000
|
trusted library allocation
|
page read and write
|
||
|
F12000
|
heap
|
page read and write
|
||
|
34B2000
|
trusted library allocation
|
page read and write
|
||
|
12E0000
|
trusted library allocation
|
page read and write
|
||
|
3358000
|
trusted library allocation
|
page read and write
|
||
|
3555000
|
trusted library allocation
|
page read and write
|
||
|
1008000
|
heap
|
page read and write
|
||
|
F71000
|
heap
|
page read and write
|
||
|
5E92000
|
heap
|
page read and write
|
||
|
2CB0000
|
heap
|
page read and write
|
||
|
3488000
|
trusted library allocation
|
page read and write
|
||
|
3435000
|
trusted library allocation
|
page read and write
|
||
|
31C2000
|
trusted library allocation
|
page read and write
|
||
|
32E4000
|
trusted library allocation
|
page read and write
|
||
|
4F40000
|
trusted library section
|
page read and write
|
||
|
3529000
|
trusted library allocation
|
page read and write
|
||
|
100E000
|
heap
|
page read and write
|
||
|
3FD1000
|
trusted library allocation
|
page read and write
|
||
|
5370000
|
heap
|
page execute and read and write
|
||
|
54D0000
|
heap
|
page read and write
|
||
|
333F000
|
trusted library allocation
|
page read and write
|
||
|
329F000
|
trusted library allocation
|
page read and write
|
||
|
2C16000
|
trusted library allocation
|
page read and write
|
||
|
5FC0000
|
trusted library allocation
|
page execute and read and write
|
||
|
2C0F000
|
trusted library allocation
|
page read and write
|
||
|
3437000
|
trusted library allocation
|
page read and write
|
||
|
1360000
|
trusted library allocation
|
page execute and read and write
|
||
|
34B4000
|
trusted library allocation
|
page read and write
|
||
|
3120000
|
trusted library allocation
|
page read and write
|
||
|
3456000
|
trusted library allocation
|
page read and write
|
||
|
3420000
|
trusted library allocation
|
page read and write
|
||
|
3377000
|
trusted library allocation
|
page read and write
|
||
|
2D60000
|
trusted library allocation
|
page read and write
|
||
|
2C90000
|
trusted library allocation
|
page read and write
|
||
|
3184000
|
trusted library allocation
|
page read and write
|
||
|
EBE000
|
heap
|
page read and write
|
||
|
3341000
|
trusted library allocation
|
page read and write
|
||
|
328B000
|
trusted library allocation
|
page read and write
|
||
|
31A9000
|
trusted library allocation
|
page read and write
|
||
|
353A000
|
trusted library allocation
|
page read and write
|
||
|
3248000
|
trusted library allocation
|
page read and write
|
||
|
E98000
|
heap
|
page read and write
|
||
|
12F0000
|
trusted library allocation
|
page read and write
|
||
|
333D000
|
trusted library allocation
|
page read and write
|
||
|
34AC000
|
trusted library allocation
|
page read and write
|
||
|
FE4000
|
trusted library allocation
|
page read and write
|
||
|
2D7E000
|
trusted library allocation
|
page read and write
|
||
|
5523000
|
heap
|
page read and write
|
||
|
3156000
|
trusted library allocation
|
page read and write
|
||
|
599E000
|
stack
|
page read and write
|
||
|
327C000
|
trusted library allocation
|
page read and write
|
||
|
658E000
|
stack
|
page read and write
|
||
|
335C000
|
trusted library allocation
|
page read and write
|
||
|
6400000
|
trusted library allocation
|
page execute and read and write
|
||
|
326E000
|
trusted library allocation
|
page read and write
|
||
|
7F1E0000
|
trusted library allocation
|
page execute and read and write
|
||
|
34E2000
|
trusted library allocation
|
page read and write
|
||
|
2D8D000
|
trusted library allocation
|
page read and write
|
||
|
32D1000
|
trusted library allocation
|
page read and write
|
||
|
3229000
|
trusted library allocation
|
page read and write
|
||
|
CA0000
|
heap
|
page read and write
|
||
|
E90000
|
heap
|
page read and write
|
||
|
313D000
|
trusted library allocation
|
page read and write
|
||
|
3471000
|
trusted library allocation
|
page read and write
|
||
|
2B9E000
|
stack
|
page read and write
|
||
|
3111000
|
trusted library allocation
|
page read and write
|
||
|
44EE000
|
trusted library allocation
|
page read and write
|
||
|
1042000
|
heap
|
page read and write
|
||
|
34B7000
|
trusted library allocation
|
page read and write
|
||
|
3194000
|
trusted library allocation
|
page read and write
|
||
|
3253000
|
trusted library allocation
|
page read and write
|
||
|
2EAE000
|
stack
|
page read and write
|
||
|
6080000
|
trusted library allocation
|
page execute and read and write
|
||
|
2D64000
|
trusted library allocation
|
page read and write
|
||
|
3261000
|
trusted library allocation
|
page read and write
|
||
|
E1B000
|
trusted library allocation
|
page execute and read and write
|
||
|
30E9000
|
trusted library allocation
|
page read and write
|
||
|
4FD0000
|
heap
|
page execute and read and write
|
||
|
E6C000
|
trusted library allocation
|
page read and write
|
||
|
33AC000
|
trusted library allocation
|
page read and write
|
||
|
3559000
|
trusted library allocation
|
page read and write
|
||
|
3360000
|
trusted library allocation
|
page read and write
|
||
|
FD0000
|
trusted library allocation
|
page read and write
|
||
|
12F2000
|
trusted library allocation
|
page read and write
|
||
|
3521000
|
trusted library allocation
|
page read and write
|
||
|
B8A000
|
stack
|
page read and write
|
||
|
3486000
|
trusted library allocation
|
page read and write
|
||
|
33C1000
|
trusted library allocation
|
page read and write
|
||
|
3428000
|
trusted library allocation
|
page read and write
|
||
|
E50000
|
trusted library allocation
|
page read and write
|
||
|
332D000
|
trusted library allocation
|
page read and write
|
||
|
316F000
|
trusted library allocation
|
page read and write
|
||
|
33AE000
|
trusted library allocation
|
page read and write
|
||
|
5350000
|
trusted library allocation
|
page execute and read and write
|
||
|
330F000
|
trusted library allocation
|
page read and write
|
||
|
2D6E000
|
trusted library allocation
|
page read and write
|
||
|
335A000
|
trusted library allocation
|
page read and write
|
||
|
31AB000
|
trusted library allocation
|
page read and write
|
||
|
3180000
|
trusted library allocation
|
page read and write
|
||
|
30E7000
|
trusted library allocation
|
page read and write
|
||
|
DF4000
|
trusted library allocation
|
page read and write
|
||
|
31A5000
|
trusted library allocation
|
page read and write
|
||
|
4F3E000
|
stack
|
page read and write
|
||
|
31CC000
|
trusted library allocation
|
page read and write
|
||
|
FED000
|
trusted library allocation
|
page execute and read and write
|
||
|
3467000
|
trusted library allocation
|
page read and write
|
||
|
30FE000
|
trusted library allocation
|
page read and write
|
||
|
4FE0000
|
heap
|
page read and write
|
||
|
4FE7000
|
heap
|
page read and write
|
||
|
31E5000
|
trusted library allocation
|
page read and write
|
||
|
341C000
|
trusted library allocation
|
page read and write
|
||
|
3139000
|
trusted library allocation
|
page read and write
|
||
|
29B0000
|
heap
|
page read and write
|
||
|
3572000
|
trusted library allocation
|
page read and write
|
||
|
1310000
|
trusted library allocation
|
page read and write
|
||
|
DD0000
|
trusted library allocation
|
page read and write
|
||
|
327A000
|
trusted library allocation
|
page read and write
|
||
|
32BE000
|
trusted library allocation
|
page read and write
|
||
|
318C000
|
trusted library allocation
|
page read and write
|
||
|
3163000
|
trusted library allocation
|
page read and write
|
||
|
3223000
|
trusted library allocation
|
page read and write
|
||
|
34E8000
|
trusted library allocation
|
page read and write
|
||
|
30BB000
|
trusted library allocation
|
page read and write
|
||
|
32A1000
|
trusted library allocation
|
page read and write
|
||
|
DED000
|
trusted library allocation
|
page execute and read and write
|
||
|
AF6000
|
unkown
|
page readonly
|
||
|
3424000
|
trusted library allocation
|
page read and write
|
||
|
2BFB000
|
trusted library allocation
|
page read and write
|
||
|
31D7000
|
trusted library allocation
|
page read and write
|
||
|
B30000
|
heap
|
page read and write
|
||
|
2DA0000
|
heap
|
page execute and read and write
|
||
|
5380000
|
trusted library allocation
|
page execute and read and write
|
||
|
E5F000
|
trusted library allocation
|
page read and write
|
||
|
F00000
|
heap
|
page read and write
|
||
|
5F70000
|
trusted library allocation
|
page read and write
|
||
|
ED8000
|
heap
|
page read and write
|
||
|
31C4000
|
trusted library allocation
|
page read and write
|
||
|
32EE000
|
trusted library allocation
|
page read and write
|
||
|
668E000
|
stack
|
page read and write
|
||
|
31FC000
|
trusted library allocation
|
page read and write
|
||
|
341E000
|
trusted library allocation
|
page read and write
|
||
|
312D000
|
trusted library allocation
|
page read and write
|
||
|
325D000
|
trusted library allocation
|
page read and write
|
||
|
32F9000
|
trusted library allocation
|
page read and write
|
||
|
33AA000
|
trusted library allocation
|
page read and write
|
||
|
3104000
|
trusted library allocation
|
page read and write
|
||
|
5E60000
|
heap
|
page read and write
|
||
|
32D4000
|
trusted library allocation
|
page read and write
|
||
|
59A0000
|
heap
|
page read and write
|
||
|
3426000
|
trusted library allocation
|
page read and write
|
||
|
6440000
|
trusted library allocation
|
page read and write
|
||
|
3154000
|
trusted library allocation
|
page read and write
|
||
|
34C9000
|
trusted library allocation
|
page read and write
|
||
|
3395000
|
trusted library allocation
|
page read and write
|
||
|
346D000
|
trusted library allocation
|
page read and write
|
||
|
31F2000
|
trusted library allocation
|
page read and write
|
||
|
F76000
|
heap
|
page read and write
|
||
|
30ED000
|
trusted library allocation
|
page read and write
|
||
|
30E5000
|
trusted library allocation
|
page read and write
|
||
|
320C000
|
trusted library allocation
|
page read and write
|
||
|
3373000
|
trusted library allocation
|
page read and write
|
||
|
3312000
|
trusted library allocation
|
page read and write
|
||
|
31D9000
|
trusted library allocation
|
page read and write
|
||
|
2CC8000
|
trusted library allocation
|
page read and write
|
||
|
67F0000
|
heap
|
page read and write
|
||
|
34CE000
|
trusted library allocation
|
page read and write
|
||
|
BF0000
|
heap
|
page read and write
|
||
|
51E0000
|
trusted library section
|
page read and write
|
||
|
3347000
|
trusted library allocation
|
page read and write
|
||
|
12EA000
|
trusted library allocation
|
page execute and read and write
|
||
|
3276000
|
trusted library allocation
|
page read and write
|
||
|
3108000
|
trusted library allocation
|
page read and write
|
||
|
32BA000
|
trusted library allocation
|
page read and write
|
||
|
6690000
|
heap
|
page read and write
|
||
|
3525000
|
trusted library allocation
|
page read and write
|
||
|
3473000
|
trusted library allocation
|
page read and write
|
||
|
12DD000
|
trusted library allocation
|
page execute and read and write
|
||
|
5890000
|
trusted library allocation
|
page read and write
|
||
|
354F000
|
trusted library allocation
|
page read and write
|
||
|
34F1000
|
trusted library allocation
|
page read and write
|
||
|
31AD000
|
trusted library allocation
|
page read and write
|
||
|
30D6000
|
trusted library allocation
|
page read and write
|
||
|
DF8000
|
trusted library allocation
|
page read and write
|
||
|
30D4000
|
trusted library allocation
|
page read and write
|
||
|
343D000
|
trusted library allocation
|
page read and write
|
||
|
356A000
|
trusted library allocation
|
page read and write
|
||
|
346F000
|
trusted library allocation
|
page read and write
|
||
|
31A7000
|
trusted library allocation
|
page read and write
|
||
|
31B1000
|
trusted library allocation
|
page read and write
|
||
|
2D81000
|
trusted library allocation
|
page read and write
|
||
|
348A000
|
trusted library allocation
|
page read and write
|
||
|
980000
|
unkown
|
page readonly
|
||
|
32CF000
|
trusted library allocation
|
page read and write
|
||
|
3458000
|
trusted library allocation
|
page read and write
|
||
|
5002000
|
heap
|
page read and write
|
||
|
FF0000
|
heap
|
page read and write
|
||
|
3527000
|
trusted library allocation
|
page read and write
|
||
|
2990000
|
heap
|
page read and write
|
||
|
3186000
|
trusted library allocation
|
page read and write
|
||
|
349F000
|
trusted library allocation
|
page read and write
|
||
|
314E000
|
trusted library allocation
|
page read and write
|
||
|
3371000
|
trusted library allocation
|
page read and write
|
||
|
6434000
|
trusted library allocation
|
page read and write
|
||
|
5EAC000
|
heap
|
page read and write
|
||
|
2CA5000
|
trusted library allocation
|
page read and write
|
||
|
310D000
|
trusted library allocation
|
page read and write
|
||
|
52BE000
|
stack
|
page read and write
|
||
|
2D06000
|
trusted library allocation
|
page read and write
|
There are 477 hidden memdumps, click here to show them.