Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\MSI629D.exe
|
"C:\Users\user\Desktop\MSI629D.exe"
|
 |
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
FDC000
|
unkown
|
page readonly
|
||
|
900000
|
heap
|
page read and write
|
||
|
FD0000
|
unkown
|
page readonly
|
||
|
A2A000
|
heap
|
page read and write
|
||
|
5AC000
|
stack
|
page read and write
|
||
|
FD1000
|
unkown
|
page execute read
|
||
|
A2D000
|
heap
|
page read and write
|
||
|
FE2000
|
unkown
|
page read and write
|
||
|
FE2000
|
unkown
|
page write copy
|
||
|
4AC000
|
stack
|
page read and write
|
||
|
FE4000
|
unkown
|
page readonly
|
||
|
FD1000
|
unkown
|
page execute read
|
||
|
FE4000
|
unkown
|
page readonly
|
||
|
FDC000
|
unkown
|
page readonly
|
||
|
A20000
|
heap
|
page read and write
|
||
|
910000
|
heap
|
page read and write
|
||
|
FD0000
|
unkown
|
page readonly
|
||
|
440000
|
heap
|
page read and write
|
There are 8 hidden memdumps, click here to show them.