Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Alvise Maria CV 1.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Local\Temp\exhilaratingly
|
data
|
dropped
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\Alvise Maria CV 1.exe
|
"C:\Users\user\Desktop\Alvise Maria CV 1.exe"
|
|
|
|
C:\Windows\Microsoft.NET\Framework\v4.0.30319\RegSvcs.exe
|
"C:\Users\user\Desktop\Alvise Maria CV 1.exe"
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://reallyfreegeoip.org
|
unknown
|
||
|
https://reallyfreegeoip.org/xml/173.254.250.82
|
188.114.97.3
|
||
|
http://checkip.dyndns.org
|
unknown
|
||
|
http://checkip.dyndns.org/
|
158.101.44.242
|
||
|
http://checkip.dyndns.com
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
|
unknown
|
||
|
https://reallyfreegeoip.org/xml/173.254.250.82$
|
unknown
|
||
|
http://checkip.dyndns.org/q
|
unknown
|
||
|
http://reallyfreegeoip.org
|
unknown
|
||
|
https://reallyfreegeoip.org/xml/
|
unknown
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
reallyfreegeoip.org
|
188.114.97.3
|
|
|
|
checkip.dyndns.org
|
unknown
|
|
|
|
checkip.dyndns.com
|
158.101.44.242
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
188.114.97.3
|
reallyfreegeoip.org
|
European Union
|
|
|
|
158.101.44.242
|
checkip.dyndns.com
|
United States
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing
|
EnableConsoleTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\RegSvcs_RASAPI32
|
EnableFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\RegSvcs_RASAPI32
|
EnableAutoFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\RegSvcs_RASAPI32
|
EnableConsoleTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\RegSvcs_RASAPI32
|
FileTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\RegSvcs_RASAPI32
|
ConsoleTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\RegSvcs_RASAPI32
|
MaxFileSize
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\RegSvcs_RASAPI32
|
FileDirectory
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\RegSvcs_RASMANCS
|
EnableFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\RegSvcs_RASMANCS
|
EnableAutoFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\RegSvcs_RASMANCS
|
EnableConsoleTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\RegSvcs_RASMANCS
|
FileTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\RegSvcs_RASMANCS
|
ConsoleTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\RegSvcs_RASMANCS
|
MaxFileSize
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\RegSvcs_RASMANCS
|
FileDirectory
|
There are 5 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
5870000
|
trusted library section
|
page read and write
|
|
|
|
3379000
|
trusted library allocation
|
page read and write
|
|
|
|
2FA4000
|
heap
|
page read and write
|
|
|
|
3547000
|
trusted library allocation
|
page read and write
|
|
|
|
3160000
|
trusted library section
|
page read and write
|
|
|
|
4311000
|
trusted library allocation
|
page read and write
|
|
|
|
129E000
|
heap
|
page read and write
|
||
|
14C3000
|
heap
|
page read and write
|
||
|
E52000
|
unkown
|
page readonly
|
||
|
336B000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
162E000
|
stack
|
page read and write
|
||
|
35CE000
|
trusted library allocation
|
page read and write
|
||
|
2F4A000
|
trusted library allocation
|
page execute and read and write
|
||
|
5CDF000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
59A0000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
2F33000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3337000
|
trusted library allocation
|
page read and write
|
||
|
11C5000
|
heap
|
page read and write
|
||
|
D91000
|
unkown
|
page execute read
|
||
|
3CDE000
|
direct allocation
|
page read and write
|
||
|
3324000
|
trusted library allocation
|
page read and write
|
||
|
1102000
|
heap
|
page read and write
|
||
|
59CA000
|
trusted library allocation
|
page read and write
|
||
|
5B70000
|
heap
|
page read and write
|
||
|
3424000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
2F23000
|
trusted library allocation
|
page execute and read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
140E000
|
stack
|
page read and write
|
||
|
2EF0000
|
trusted library section
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
59C4000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3CDE000
|
direct allocation
|
page read and write
|
||
|
3C69000
|
direct allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3349000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
1B2E000
|
stack
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3CDE000
|
direct allocation
|
page read and write
|
||
|
3C6D000
|
direct allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
9FF000
|
stack
|
page read and write
|
||
|
2F30000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
D91000
|
unkown
|
page execute read
|
||
|
3345000
|
trusted library allocation
|
page read and write
|
||
|
5CFB000
|
heap
|
page read and write
|
||
|
439F000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
6DD0000
|
trusted library allocation
|
page execute and read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3639000
|
trusted library allocation
|
page read and write
|
||
|
5C84000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
32D5000
|
heap
|
page read and write
|
||
|
58D0000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
6DB0000
|
trusted library allocation
|
page execute and read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3704000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
2F67000
|
trusted library allocation
|
page execute and read and write
|
||
|
2F20000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3C6D000
|
direct allocation
|
page read and write
|
||
|
3300000
|
heap
|
page read and write
|
||
|
35AB000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
AD0000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
2F62000
|
trusted library allocation
|
page read and write
|
||
|
352A000
|
trusted library allocation
|
page read and write
|
||
|
10FC000
|
heap
|
page read and write
|
||
|
31C0000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
58F0000
|
trusted library allocation
|
page execute and read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
1438000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
BF0000
|
heap
|
page read and write
|
||
|
3602000
|
trusted library allocation
|
page read and write
|
||
|
335E000
|
trusted library allocation
|
page read and write
|
||
|
6070000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
38AF000
|
heap
|
page read and write
|
||
|
370F000
|
heap
|
page read and write
|
||
|
34BE000
|
trusted library allocation
|
page read and write
|
||
|
672F000
|
stack
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
39A0000
|
direct allocation
|
page read and write
|
||
|
3CDE000
|
direct allocation
|
page read and write
|
||
|
3090000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
343E000
|
trusted library allocation
|
page read and write
|
||
|
584A000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
35B6000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
35C0000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
172E000
|
stack
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
E5C000
|
unkown
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3608000
|
trusted library allocation
|
page read and write
|
||
|
CA0000
|
direct allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
331C000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
400000
|
system
|
page execute and read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
333B000
|
trusted library allocation
|
page read and write
|
||
|
C60000
|
heap
|
page read and write
|
||
|
1181000
|
heap
|
page read and write
|
||
|
2F50000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
6CAE000
|
stack
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
6A6D000
|
stack
|
page read and write
|
||
|
2F80000
|
heap
|
page read and write
|
||
|
3331000
|
trusted library allocation
|
page read and write
|
||
|
5C74000
|
heap
|
page read and write
|
||
|
35B0000
|
trusted library allocation
|
page read and write
|
||
|
3801000
|
heap
|
page read and write
|
||
|
343C000
|
trusted library allocation
|
page read and write
|
||
|
3360000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
1460000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
5960000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
C94000
|
heap
|
page read and write
|
||
|
3AC3000
|
direct allocation
|
page read and write
|
||
|
F30000
|
heap
|
page read and write
|
||
|
426000
|
system
|
page execute and read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
35FC000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
D00000
|
heap
|
page read and write
|
||
|
A80000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3B40000
|
direct allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
2F53000
|
heap
|
page read and write
|
||
|
3C6D000
|
direct allocation
|
page read and write
|
||
|
111D000
|
heap
|
page read and write
|
||
|
5CB2000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
34E0000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
12F7000
|
stack
|
page read and write
|
||
|
337D000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3AC3000
|
direct allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
34CA000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
2F6B000
|
trusted library allocation
|
page execute and read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
31B0000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
5ACE000
|
stack
|
page read and write
|
||
|
43DA000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3481000
|
trusted library allocation
|
page read and write
|
||
|
5FAF000
|
stack
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
6AAE000
|
stack
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
E5C000
|
unkown
|
page write copy
|
||
|
39A0000
|
direct allocation
|
page read and write
|
||
|
5836000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
6DE0000
|
trusted library allocation
|
page read and write
|
||
|
1243000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3539000
|
trusted library allocation
|
page read and write
|
||
|
336F000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
58C0000
|
heap
|
page execute and read and write
|
||
|
34D2000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
2F2D000
|
trusted library allocation
|
page execute and read and write
|
||
|
3375000
|
trusted library allocation
|
page read and write
|
||
|
43FF000
|
trusted library allocation
|
page read and write
|
||
|
3130000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
5830000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
583B000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
121A000
|
heap
|
page read and write
|
||
|
31D0000
|
heap
|
page execute and read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
6E30000
|
trusted library allocation
|
page read and write
|
||
|
34CE000
|
trusted library allocation
|
page read and write
|
||
|
E2C000
|
unkown
|
page readonly
|
||
|
A1D000
|
stack
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
E64000
|
unkown
|
page readonly
|
||
|
C90000
|
heap
|
page read and write
|
||
|
2F24000
|
trusted library allocation
|
page read and write
|
||
|
54AE000
|
stack
|
page read and write
|
||
|
43B000
|
system
|
page execute and read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
332C000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
11F1000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
1124000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
30DE000
|
stack
|
page read and write
|
||
|
346C000
|
trusted library allocation
|
page read and write
|
||
|
3B40000
|
direct allocation
|
page read and write
|
||
|
43F6000
|
trusted library allocation
|
page read and write
|
||
|
F3A000
|
stack
|
page read and write
|
||
|
3700000
|
heap
|
page execute and read and write
|
||
|
ACE000
|
stack
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3317000
|
trusted library allocation
|
page read and write
|
||
|
34EE000
|
trusted library allocation
|
page read and write
|
||
|
3341000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
34BA000
|
trusted library allocation
|
page read and write
|
||
|
6E11000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
6DF0000
|
trusted library allocation
|
page execute and read and write
|
||
|
3456000
|
trusted library allocation
|
page read and write
|
||
|
34B6000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
2F40000
|
trusted library allocation
|
page read and write
|
||
|
37AD000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
129D000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
111A000
|
heap
|
page read and write
|
||
|
582E000
|
stack
|
page read and write
|
||
|
3CDE000
|
direct allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
FA5000
|
heap
|
page read and write
|
||
|
341F000
|
trusted library allocation
|
page read and write
|
||
|
E52000
|
unkown
|
page readonly
|
||
|
440B000
|
trusted library allocation
|
page read and write
|
||
|
3C69000
|
direct allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
6E20000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3C6D000
|
direct allocation
|
page read and write
|
||
|
3364000
|
trusted library allocation
|
page read and write
|
||
|
3526000
|
trusted library allocation
|
page read and write
|
||
|
3B40000
|
direct allocation
|
page read and write
|
||
|
2F10000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
35F5000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
6EB0000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
2F65000
|
trusted library allocation
|
page execute and read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
FA0000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3AC3000
|
direct allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3328000
|
trusted library allocation
|
page read and write
|
||
|
6C6E000
|
stack
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
E64000
|
unkown
|
page readonly
|
||
|
3C6D000
|
direct allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
2F42000
|
trusted library allocation
|
page read and write
|
||
|
6F10000
|
trusted library allocation
|
page execute and read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
585D000
|
trusted library allocation
|
page read and write
|
||
|
3AC3000
|
direct allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
5C70000
|
heap
|
page read and write
|
||
|
3347000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
34C2000
|
trusted library allocation
|
page read and write
|
||
|
3B40000
|
direct allocation
|
page read and write
|
||
|
E60000
|
unkown
|
page write copy
|
||
|
129E000
|
heap
|
page read and write
|
||
|
5856000
|
trusted library allocation
|
page read and write
|
||
|
3427000
|
trusted library allocation
|
page read and write
|
||
|
2F3D000
|
trusted library allocation
|
page execute and read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
35D2000
|
trusted library allocation
|
page read and write
|
||
|
34FC000
|
trusted library allocation
|
page read and write
|
||
|
6DAF000
|
stack
|
page read and write
|
||
|
3701000
|
heap
|
page read and write
|
||
|
3701000
|
heap
|
page read and write
|
||
|
3AC3000
|
direct allocation
|
page read and write
|
||
|
347D000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3CDE000
|
direct allocation
|
page read and write
|
||
|
6DC0000
|
trusted library allocation
|
page execute and read and write
|
||
|
332E000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
6C2E000
|
stack
|
page read and write
|
||
|
2ED0000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
63A000
|
stack
|
page read and write
|
||
|
311E000
|
stack
|
page read and write
|
||
|
1111000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3369000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
149D000
|
heap
|
page read and write
|
||
|
E2C000
|
unkown
|
page readonly
|
||
|
3479000
|
trusted library allocation
|
page read and write
|
||
|
39A0000
|
direct allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
59C6000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3B40000
|
direct allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
2F46000
|
trusted library allocation
|
page execute and read and write
|
||
|
342C000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
5851000
|
trusted library allocation
|
page read and write
|
||
|
334D000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3311000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3354000
|
trusted library allocation
|
page read and write
|
||
|
6E18000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3377000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
32DA000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
2F60000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
595D000
|
stack
|
page read and write
|
||
|
1200000
|
heap
|
page read and write
|
||
|
39A0000
|
direct allocation
|
page read and write
|
||
|
3322000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3140000
|
trusted library allocation
|
page read and write
|
||
|
D90000
|
unkown
|
page readonly
|
||
|
129E000
|
heap
|
page read and write
|
||
|
1430000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
35C9000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
F38000
|
heap
|
page read and write
|
||
|
1115000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
FFE000
|
stack
|
page read and write
|
||
|
333F000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3120000
|
trusted library allocation
|
page execute and read and write
|
||
|
A3F000
|
stack
|
page read and write
|
||
|
6EC0000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3C6D000
|
direct allocation
|
page read and write
|
||
|
172F000
|
stack
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
1410000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3362000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
31E0000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
335A000
|
trusted library allocation
|
page read and write
|
||
|
332A000
|
trusted library allocation
|
page read and write
|
||
|
FB0000
|
heap
|
page read and write
|
||
|
3366000
|
trusted library allocation
|
page read and write
|
||
|
39A0000
|
direct allocation
|
page read and write
|
||
|
3C69000
|
direct allocation
|
page read and write
|
||
|
A0E000
|
stack
|
page read and write
|
||
|
3371000
|
trusted library allocation
|
page read and write
|
||
|
583E000
|
trusted library allocation
|
page read and write
|
||
|
3AC3000
|
direct allocation
|
page read and write
|
||
|
34C6000
|
trusted library allocation
|
page read and write
|
||
|
584E000
|
trusted library allocation
|
page read and write
|
||
|
6BEE000
|
stack
|
page read and write
|
||
|
39A0000
|
direct allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3C69000
|
direct allocation
|
page read and write
|
||
|
3326000
|
trusted library allocation
|
page read and write
|
||
|
334B000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
A2F000
|
stack
|
page read and write
|
||
|
5FEE000
|
stack
|
page read and write
|
||
|
6E00000
|
trusted library allocation
|
page read and write
|
||
|
3C69000
|
direct allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
BED000
|
stack
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
6AEE000
|
stack
|
page read and write
|
||
|
34F7000
|
heap
|
page read and write
|
||
|
1177000
|
heap
|
page read and write
|
||
|
6DE8000
|
trusted library allocation
|
page read and write
|
||
|
D90000
|
unkown
|
page readonly
|
||
|
3B40000
|
direct allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
146D000
|
heap
|
page read and write
|
||
|
3C69000
|
direct allocation
|
page read and write
|
||
|
3475000
|
trusted library allocation
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
3343000
|
trusted library allocation
|
page read and write
|
||
|
31A0000
|
trusted library allocation
|
page read and write
|
||
|
129E000
|
heap
|
page read and write
|
||
|
3745000
|
heap
|
page read and write
|
||
|
32EE000
|
stack
|
page read and write
|
There are 482 hidden memdumps, click here to show them.