Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\7FzERy9xWc.exe
|
'C:\Users\user\Desktop\7FzERy9xWc.exe'
|
 |
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7FF5DE563000
|
unkown
|
page readonly
|
 |
|
|
7FF5D064C000
|
unkown
|
page readonly
|
|
|
|
28D5E7D0000
|
unkown
|
page readonly
|
|
|
|
7FF5D0756000
|
unkown
|
page readonly
|
|
|
|
28D5EAD0000
|
unkown
|
page readonly
|
|
|
|
28D5E868000
|
unkown
|
page read and write
|
|
|
|
CFD3BFA000
|
unkown
|
page read and write
|
|
|
|
19C000
|
stack
|
page read and write
|
|
|
|
28D5E802000
|
unkown
|
page read and write
|
|
|
|
28D5E86E000
|
unkown
|
page read and write
|
|
|
|
2D51CA66000
|
unkown
|
page read and write
|
|
|
|
7FF5D07D9000
|
unkown
|
page readonly
|
|
|
|
7FF5DE3C7000
|
unkown
|
page readonly
|
|
|
|
2D51CA3F000
|
unkown
|
page read and write
|
|
|
|
2D51CA68000
|
unkown
|
page read and write
|
|
|
|
2D51CA66000
|
unkown
|
page read and write
|
|
|
|
7FF595FE7000
|
unkown
|
page readonly
|
|
|
|
7FF5DE6F7000
|
unkown
|
page readonly
|
|
|
|
7FF5960B6000
|
unkown
|
page readonly
|
|
|
|
7FF59600A000
|
unkown
|
page readonly
|
|
|
|
7FF5960AC000
|
unkown
|
page readonly
|
|
|
|
58E000
|
unkown
|
page read and write
|
|
|
|
28D5E86D000
|
unkown
|
page read and write
|
|
|
|
1BDA9A00000
|
unkown
|
page readonly
|
|
|
|
7FF5D0715000
|
unkown
|
page readonly
|
|
|
|
7FF5DE420000
|
unkown
|
page readonly
|
|
|
|
7FF5DE68E000
|
unkown
|
page readonly
|
|
|
|
7FF595DA3000
|
unkown
|
page readonly
|
|
|
|
7FF5D05E3000
|
unkown
|
page readonly
|
|
|
|
F41DA7E000
|
unkown
|
page read and write
|
|
|
|
38207F5000
|
unkown
|
page read and write
|
|
|
|
CFD3CFF000
|
unkown
|
page read and write
|
|
|
|
28D5E868000
|
unkown
|
page read and write
|
|
|
|
430000
|
unkown image
|
page readonly
|
|
|
|
7FF5D055F000
|
unkown
|
page readonly
|
|
|
|
28D5E86E000
|
unkown
|
page read and write
|
|
|
|
7FF5D0774000
|
unkown
|
page readonly
|
|
|
|
7FF59612E000
|
unkown
|
page readonly
|
|
|
|
1BDA9800000
|
unkown
|
page read and write
|
|
|
|
2D51CA6A000
|
unkown
|
page read and write
|
|
|
|
1BDA9900000
|
unkown
|
page read and write
|
|
|
|
1BDAA200000
|
unkown
|
page readonly
|
|
|
|
1BDA9813000
|
unkown
|
page read and write
|
|
|
|
7FF5D071F000
|
unkown
|
page readonly
|
|
|
|
7FF5D05C8000
|
unkown
|
page readonly
|
|
|
|
F41DB79000
|
unkown
|
page read and write
|
|
|
|
7FF5DE611000
|
unkown
|
page readonly
|
|
|
|
7FF5DE6F0000
|
unkown
|
page readonly
|
|
|
|
401000
|
unkown image
|
page execute read
|
|
|
|
38208FB000
|
unkown
|
page read and write
|
|
|
|
2D51CA66000
|
unkown
|
page read and write
|
|
|
|
7FF5D02D0000
|
unkown
|
page readonly
|
|
|
|
7FF5D04FA000
|
unkown
|
page readonly
|
|
|
|
28D5E86D000
|
unkown
|
page read and write
|
|
|
|
1BDA97B0000
|
heap default
|
page read and write
|
|
|
|
28D60270000
|
unkown
|
page read and write
|
|
|
|
7FF595DA7000
|
unkown
|
page readonly
|
|
|
|
1BDA9851000
|
unkown
|
page read and write
|
|
|
|
2D51C850000
|
heap private
|
page read and write
|
|
|
|
7FF5DE6BD000
|
unkown
|
page readonly
|
|
|
|
7FF59606E000
|
unkown
|
page readonly
|
|
|
|
1BDA9AD0000
|
unkown
|
page readonly
|
|
|
|
7FF595E8A000
|
unkown
|
page readonly
|
|
|
|
1BDA983C000
|
unkown
|
page read and write
|
|
|
|
28D5E868000
|
unkown
|
page read and write
|
|
|
|
26C000
|
unkown
|
page read and write
|
|
|
|
382067E000
|
unkown
|
page read and write
|
|
|
|
7FF5DE6CC000
|
unkown
|
page readonly
|
|
|
|
7FF5DE759000
|
unkown
|
page readonly
|
|
|
|
2D51CA29000
|
unkown
|
page read and write
|
|
|
|
F41DC7F000
|
unkown
|
page read and write
|
|
|
|
7FF595FF1000
|
unkown
|
page readonly
|
|
|
|
7FF5D05AA000
|
unkown
|
page readonly
|
|
|
|
3820A77000
|
unkown
|
page read and write
|
|
|
|
7FF5D0746000
|
unkown
|
page readonly
|
|
|
|
2D51CA68000
|
unkown
|
page read and write
|
|
|
|
7FF5D07D1000
|
unkown
|
page readonly
|
|
|
|
7FF5DE3B4000
|
unkown
|
page readonly
|
|
|
|
A70000
|
unkown
|
page readonly
|
|
|
|
7FF5960D7000
|
unkown
|
page readonly
|
|
|
|
7FF5D0777000
|
unkown
|
page readonly
|
|
|
|
1BDA9881000
|
unkown
|
page read and write
|
|
|
|
2D51CA68000
|
unkown
|
page read and write
|
|
|
|
54E000
|
unkown
|
page read and write
|
|
|
|
A6F000
|
stack
|
page read and write
|
|
|
|
7FF5DDEF5000
|
unkown
|
page readonly
|
|
|
|
7FF5D06E2000
|
unkown
|
page readonly
|
|
|
|
7FF5DE666000
|
unkown
|
page readonly
|
|
|
|
28D5E710000
|
heap private
|
page read and write
|
|
|
|
7FF596139000
|
unkown
|
page readonly
|
|
|
|
7FF5960D4000
|
unkown
|
page readonly
|
|
|
|
CFD3C7E000
|
unkown
|
page read and write
|
|
|
|
F41D70B000
|
unkown
|
page read and write
|
|
|
|
2320000
|
heap private
|
page read and write
|
|
|
|
270000
|
unkown
|
page read and write
|
|
|
|
2D51C8B0000
|
heap default
|
page read and write
|
|
|
|
1BDA9829000
|
unkown
|
page read and write
|
|
|
|
28D5E829000
|
unkown
|
page read and write
|
|
|
|
7FF595DF5000
|
unkown
|
page readonly
|
|
|
|
7FF5DE4AA000
|
unkown
|
page readonly
|
|
|
|
7FF5DE69F000
|
unkown
|
page readonly
|
|
|
|
28D5E83F000
|
unkown
|
page read and write
|
|
|
|
2D51E3A0000
|
unkown
|
page read and write
|
|
|
|
7FF596131000
|
unkown
|
page readonly
|
|
|
|
7FF5958D5000
|
unkown
|
page readonly
|
|
|
|
2D51CA68000
|
unkown
|
page read and write
|
|
|
|
7FF596048000
|
unkown
|
page readonly
|
|
|
|
1BDAA002000
|
unkown
|
page read and write
|
|
|
|
7FF5D05ED000
|
unkown
|
page readonly
|
|
|
|
430000
|
unkown image
|
page readonly
|
|
|
|
CFD3AFF000
|
unkown
|
page read and write
|
|
|
|
1BDA9913000
|
unkown
|
page read and write
|
|
|
|
400000
|
unkown image
|
page readonly
|
|
|
|
7FF5D07D9000
|
unkown
|
page readonly
|
|
|
|
7FF5D02E0000
|
unkown
|
page readonly
|
|
|
|
28D5E902000
|
unkown
|
page read and write
|
|
|
|
CFD3A7E000
|
unkown
|
page read and write
|
|
|
|
2D51CA68000
|
unkown
|
page read and write
|
|
|
|
28D5E86E000
|
unkown
|
page read and write
|
|
|
|
77A000
|
heap default
|
page read and write
|
|
|
|
28D5E833000
|
unkown
|
page read and write
|
|
|
|
2D51CA66000
|
unkown
|
page read and write
|
|
|
|
7FF5DDEF9000
|
unkown
|
page readonly
|
|
|
|
2D51CA66000
|
unkown
|
page read and write
|
|
|
|
7FF5DE6D6000
|
unkown
|
page readonly
|
|
|
|
1BDA97D0000
|
unkown
|
page readonly
|
|
|
|
7FF59609D000
|
unkown
|
page readonly
|
|
|
|
F41DCFF000
|
unkown
|
page read and write
|
|
|
|
7FF5DE6C6000
|
unkown
|
page readonly
|
|
|
|
5CE000
|
unkown
|
page read and write
|
|
|
|
2D51CC00000
|
unkown
|
page readonly
|
|
|
|
F41DAF9000
|
unkown
|
page read and write
|
|
|
|
7FF5D0770000
|
unkown
|
page readonly
|
|
|
|
7FF5D059E000
|
unkown
|
page readonly
|
|
|
|
7FF5DE6DC000
|
unkown
|
page readonly
|
|
|
|
28D5E868000
|
unkown
|
page read and write
|
|
|
|
2D51CB02000
|
unkown
|
page read and write
|
|
|
|
7FF5D0611000
|
unkown
|
page readonly
|
|
|
|
7FF5DE751000
|
unkown
|
page readonly
|
|
|
|
28D60370000
|
unkown
|
page readonly
|
|
|
|
1BDA9750000
|
heap private
|
page read and write
|
|
|
|
7FF5DE6E7000
|
unkown
|
page readonly
|
|
|
|
2D51C9E0000
|
unkown
|
page readonly
|
|
|
|
9D000
|
unkown
|
page read and write
|
|
|
|
28D5E86D000
|
unkown
|
page read and write
|
|
|
|
7FF5DE62A000
|
unkown
|
page readonly
|
|
|
|
28D5E800000
|
unkown
|
page read and write
|
|
|
|
7FF595D94000
|
unkown
|
page readonly
|
|
|
|
1BDA97E0000
|
unkown
|
page read and write
|
|
|
|
7FF5DE67A000
|
unkown
|
page readonly
|
|
|
|
7FF5DE66A000
|
unkown
|
page readonly
|
|
|
|
2D51CA6C000
|
unkown
|
page read and write
|
|
|
|
7FF5DE662000
|
unkown
|
page readonly
|
|
|
|
96F000
|
stack
|
page read and write
|
|
|
|
1BDA984B000
|
unkown
|
page read and write
|
|
|
|
2D51CA68000
|
unkown
|
page read and write
|
|
|
|
1BDA988E000
|
unkown
|
page read and write
|
|
|
|
7FF596089000
|
unkown
|
page readonly
|
|
|
|
7FF5D074C000
|
unkown
|
page readonly
|
|
|
|
7FF5DE668000
|
unkown
|
page readonly
|
|
|
|
28D5E868000
|
unkown
|
page read and write
|
|
|
|
7FF59600C000
|
unkown
|
page readonly
|
|
|
|
7FF5DE695000
|
unkown
|
page readonly
|
|
|
|
28D5E86C000
|
unkown
|
page read and write
|
|
|
|
7FF5D0765000
|
unkown
|
page readonly
|
|
|
|
1BDA9870000
|
unkown
|
page read and write
|
|
|
|
7FF5D06FA000
|
unkown
|
page readonly
|
|
|
|
2D51CA02000
|
unkown
|
page read and write
|
|
|
|
28D5E780000
|
unkown
|
page write copy
|
|
|
|
7FF5958D9000
|
unkown
|
page readonly
|
|
|
|
7FF5960BC000
|
unkown
|
page readonly
|
|
|
|
7FF5D06E8000
|
unkown
|
page readonly
|
|
|
|
6E0000
|
unkown
|
page readonly
|
|
|
|
1BDA9908000
|
unkown
|
page read and write
|
|
|
|
7FF5960A6000
|
unkown
|
page readonly
|
|
|
|
28D5E913000
|
unkown
|
page read and write
|
|
|
|
7FF596139000
|
unkown
|
page readonly
|
|
|
|
2D51CA13000
|
unkown
|
page read and write
|
|
|
|
2D51CA6A000
|
unkown
|
page read and write
|
|
|
|
7FF5DE6F4000
|
unkown
|
page readonly
|
|
|
|
28D5E868000
|
unkown
|
page read and write
|
|
|
|
770000
|
heap default
|
page read and write
|
|
|
|
42D000
|
unkown image
|
page write copy
|
|
|
|
2D51CA6A000
|
unkown
|
page read and write
|
|
|
|
7FF595F47000
|
unkown
|
page readonly
|
|
|
|
7FF595F43000
|
unkown
|
page readonly
|
|
|
|
7FF595EA0000
|
unkown
|
page readonly
|
|
|
|
1BDA9856000
|
unkown
|
page read and write
|
|
|
|
7FF5D06E6000
|
unkown
|
page readonly
|
|
|
|
2D51CA00000
|
unkown
|
page read and write
|
|
|
|
2D51CA66000
|
unkown
|
page read and write
|
|
|
|
2D51CA6A000
|
unkown
|
page read and write
|
|
|
|
7FF5DE62C000
|
unkown
|
page readonly
|
|
|
|
7FF5D070E000
|
unkown
|
page readonly
|
|
|
|
7FF5960D0000
|
unkown
|
page readonly
|
|
|
|
42D000
|
unkown image
|
page read and write
|
|
|
|
7FF5D0729000
|
unkown
|
page readonly
|
|
|
|
2D51CA68000
|
unkown
|
page read and write
|
|
|
|
2D51CA66000
|
unkown
|
page read and write
|
|
|
|
28D5E868000
|
unkown
|
page read and write
|
|
|
|
7FF595FEA000
|
unkown
|
page readonly
|
|
|
|
7FF5D02CA000
|
unkown
|
page readonly
|
|
|
|
7FF596046000
|
unkown
|
page readonly
|
|
|
|
7FF5DE6A9000
|
unkown
|
page readonly
|
|
|
|
38206FE000
|
unkown
|
page read and write
|
|
|
|
2D51CB13000
|
unkown
|
page read and write
|
|
|
|
400000
|
unkown image
|
page readonly
|
|
|
|
5D0000
|
heap default
|
page read and write
|
|
|
|
2D51CB00000
|
unkown
|
page read and write
|
|
|
|
7FF5DE60A000
|
unkown
|
page readonly
|
|
|
|
7FF5DE759000
|
unkown
|
page readonly
|
|
|
|
401000
|
unkown image
|
page execute read
|
|
|
|
2D51C8C0000
|
unkown
|
page readonly
|
|
|
|
7FF5D06D2000
|
unkown
|
page readonly
|
|
|
|
2D51CA6C000
|
unkown
|
page read and write
|
|
|
|
7FF59607F000
|
unkown
|
page readonly
|
|
|
|
1F0000
|
unkown
|
page read and write
|
|
|
|
440000
|
unkown
|
page readonly
|
|
|
|
2D51CA68000
|
unkown
|
page read and write
|
|
|
|
1BDA984F000
|
unkown
|
page read and write
|
|
|
|
7FF596042000
|
unkown
|
page readonly
|
|
|
|
CFD3B79000
|
unkown
|
page read and write
|
|
|
|
CFD37FB000
|
unkown
|
page read and write
|
|
|
|
28D5E900000
|
unkown
|
page read and write
|
|
|
|
7FF5DE415000
|
unkown
|
page readonly
|
|
|
|
2D51E4A0000
|
unkown
|
page readonly
|
|
|
|
7FF5DE4C0000
|
unkown
|
page readonly
|
|
|
|
7FF5D07CE000
|
unkown
|
page readonly
|
|
|
|
3820B7F000
|
unkown
|
page read and write
|
|
|
|
7FF5D075C000
|
unkown
|
page readonly
|
|
|
|
28D5E863000
|
unkown
|
page read and write
|
|
|
|
28D5E813000
|
unkown
|
page read and write
|
|
|
|
1BDAA540000
|
unkown
|
page readonly
|
|
|
|
F41DBFF000
|
unkown
|
page read and write
|
|
|
|
3820C7F000
|
unkown
|
page read and write
|
|
|
|
400000
|
unkown image
|
page readonly
|
|
|
|
2270000
|
heap private
|
page read and write
|
|
|
|
382097E000
|
unkown
|
page read and write
|
|
|
|
7FF595F28000
|
unkown
|
page readonly
|
|
|
|
F41D78F000
|
unkown
|
page read and write
|
|
|
|
1BDA9902000
|
unkown
|
page read and write
|
|
|
|
7FF5D073D000
|
unkown
|
page readonly
|
|
|
|
7FF59605A000
|
unkown
|
page readonly
|
|
|
|
7FF5DE548000
|
unkown
|
page readonly
|
|
|
|
7FF5DE567000
|
unkown
|
page readonly
|
|
|
|
7FF5D0617000
|
unkown
|
page readonly
|
|
|
|
7FF5DE607000
|
unkown
|
page readonly
|
|
|
|
28D5E868000
|
unkown
|
page read and write
|
|
|
|
7FF5D06D0000
|
unkown
|
page readonly
|
|
|
|
7FF5DE3C3000
|
unkown
|
page readonly
|
|
|
|
1BDA97C0000
|
unkown
|
page readonly
|
|
|
|
6DF000
|
stack
|
page read and write
|
|
|
|
28D5E770000
|
heap default
|
page read and write
|
|
|
|
2D51CA68000
|
unkown
|
page read and write
|
|
|
|
28D5EA00000
|
unkown
|
page readonly
|
|
|
|
7FF59604A000
|
unkown
|
page readonly
|
|
|
|
2D51C990000
|
unkown
|
page write copy
|
|
|
|
38203DB000
|
unkown
|
page read and write
|
|
|
|
7FF5DE74E000
|
unkown
|
page readonly
|
|
|
|
7FF596075000
|
unkown
|
page readonly
|
|
|
|
7FF5960C7000
|
unkown
|
page readonly
|
|
|
|
7FF595E00000
|
unkown
|
page readonly
|
|
There are 252 hidden memdumps, click here to show them.