Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
http://track.coronavirusworldupdatesmail.com%20%2080%20/CI0/0100017956db7bff-06e72b01-71cb-4c2e-9a02-d565aedafc71-000000/KA2BdDHKj5FbxvuEAidUdYnccu4HbqMYoXyJLj0QGjw=192
|
URL
|
initial url
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{8485CC38-B213-11EB-90E6-ECF4BB82F7E0}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{8485CC3A-B213-11EB-90E6-ECF4BB82F7E0}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{8485CC3B-B213-11EB-90E6-ECF4BB82F7E0}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0MX4YUS9\httpErrorPagesScripts[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\NewErrorPageTemplate[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2K7JPOQS\dnserror[1]
|
HTML document, UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\6M6D1PMD\errorPageStrings[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\VAHFWDJC\down[1]
|
PNG image data, 15 x 15, 8-bit colormap, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF5FF2FCE000711FF6.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF98F65DA44743C878.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DFBCBACF52620734D6.TMP
|
data
|
modified
|
|
There are 2 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\internet explorer\iexplore.exe
|
'C:\Program Files\Internet Explorer\iexplore.exe' -Embedding
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:5272 CREDAT:17410 /prefetch:2
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://track.coronavirusworldupdatesmail.com%20%2080%20/CI0/0100017956db7bff-06e72b01-71cb-4c2e-9a02
|
unknown
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\internet explorer\iexplore.exe
|
{8485CC38-B213-11EB-90E6-ECF4BB82F7E0}
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
There are 9 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7FF54FECC000
|
unkown
|
page readonly
|
|
|
|
7FF587045000
|
unkown
|
page readonly
|
|
|
|
4BBEFFE000
|
unkown
|
page read and write
|
|
|
|
7FF5950B7000
|
unkown
|
page readonly
|
|
|
|
7FF595151000
|
unkown
|
page readonly
|
|
|
|
7FF54FC89000
|
unkown
|
page readonly
|
|
|
|
15633040000
|
unkown
|
page read and write
|
|
|
|
7FF58703B000
|
unkown
|
page readonly
|
|
|
|
2C293CF000
|
unkown
|
page read and write
|
|
|
|
1B1A2080000
|
unkown
|
page readonly
|
|
|
|
7FF57EA25000
|
unkown
|
page readonly
|
|
|
|
7FF586E41000
|
unkown
|
page readonly
|
|
|
|
1B19C677000
|
unkown
|
page read and write
|
|
|
|
7FF54FED5000
|
unkown
|
page readonly
|
|
|
|
1B19CE02000
|
unkown
|
page read and write
|
|
|
|
15634A20000
|
unkown
|
page readonly
|
|
|
|
7FF57E9F0000
|
unkown
|
page readonly
|
|
|
|
1B19C5D0000
|
unkown
|
page read and write
|
|
|
|
1B1A2000000
|
unkown
|
page readonly
|
|
|
|
7FF59517C000
|
unkown
|
page readonly
|
|
|
|
1B1A1EB8000
|
unkown
|
page read and write
|
|
|
|
7FF57E832000
|
unkown
|
page readonly
|
|
|
|
15633060000
|
unkown
|
page readonly
|
|
|
|
7FF54FFA6000
|
unkown
|
page readonly
|
|
|
|
7FF57EAB6000
|
unkown
|
page readonly
|
|
|
|
1B19CE15000
|
unkown
|
page read and write
|
|
|
|
7FF587069000
|
unkown
|
page readonly
|
|
|
|
7FF586FB0000
|
unkown
|
page readonly
|
|
|
|
1B1A1EB0000
|
unkown
|
page read and write
|
|
|
|
1B19C6FF000
|
unkown
|
page read and write
|
|
|
|
7FF586D29000
|
unkown
|
page readonly
|
|
|
|
1B19D710000
|
unkown
|
page readonly
|
|
|
|
7FF54FD2A000
|
unkown
|
page readonly
|
|
|
|
1B1A1CD0000
|
unkown
|
page write copy
|
|
|
|
1B1A1E2F000
|
unkown
|
page read and write
|
|
|
|
1B1A1A60000
|
unkown
|
page read and write
|
|
|
|
1E99F3F0000
|
unkown
|
page readonly
|
|
|
|
1563307B000
|
heap default
|
page read and write
|
|
|
|
7FF595196000
|
unkown
|
page readonly
|
|
|
|
4BBF17F000
|
unkown
|
page read and write
|
|
|
|
7FF58696F000
|
unkown
|
page readonly
|
|
|
|
7FF54F7FB000
|
unkown
|
page readonly
|
|
|
|
7FF54FFC3000
|
unkown
|
page readonly
|
|
|
|
1B19C694000
|
unkown
|
page read and write
|
|
|
|
1E99F42A000
|
unkown
|
page read and write
|
|
|
|
1B19C67C000
|
unkown
|
page read and write
|
|
|
|
1B19C629000
|
unkown
|
page read and write
|
|
|
|
156330A9000
|
heap default
|
page read and write
|
|
|
|
1B1A1CF7000
|
unkown
|
page readonly
|
|
|
|
1B1A1D20000
|
unkown
|
page read and write
|
|
|
|
7FF586C99000
|
unkown
|
page readonly
|
|
|
|
1E99F413000
|
unkown
|
page read and write
|
|
|
|
2B618390000
|
unkown
|
page read and write
|
|
|
|
7FF586CA4000
|
unkown
|
page readonly
|
|
|
|
7FF595130000
|
unkown
|
page readonly
|
|
|
|
2B618413000
|
unkown
|
page read and write
|
|
|
|
15633600000
|
unkown
|
page readonly
|
|
|
|
7FF586E92000
|
unkown
|
page readonly
|
|
|
|
7FF54FEF1000
|
unkown
|
page readonly
|
|
|
|
7FF57E9C0000
|
unkown
|
page readonly
|
|
|
|
2B618380000
|
unkown
|
page readonly
|
|
|
|
7FF57E9B5000
|
unkown
|
page readonly
|
|
|
|
7FF5870AC000
|
unkown
|
page readonly
|
|
|
|
1B19D6E0000
|
unkown
|
page readonly
|
|
|
|
2C2934E000
|
unkown
|
page read and write
|
|
|
|
1B19C702000
|
unkown
|
page read and write
|
|
|
|
1B19C613000
|
unkown
|
page read and write
|
|
|
|
1B19CF59000
|
unkown
|
page read and write
|
|
|
|
1E99F451000
|
unkown
|
page read and write
|
|
|
|
7FF57E9A4000
|
unkown
|
page readonly
|
|
|
|
7FF595134000
|
unkown
|
page readonly
|
|
|
|
7FF57EA49000
|
unkown
|
page readonly
|
|
|
|
1B19C600000
|
unkown
|
page read and write
|
|
|
|
7FF587020000
|
unkown
|
page readonly
|
|
|
|
7FF57E7AA000
|
unkown
|
page readonly
|
|
|
|
7FF5950B3000
|
unkown
|
page readonly
|
|
|
|
1E99F502000
|
unkown
|
page read and write
|
|
|
|
7FF57EA56000
|
unkown
|
page readonly
|
|
|
|
4BBF0FF000
|
unkown
|
page read and write
|
|
|
|
1B1A1D50000
|
unkown
|
page read and write
|
|
|
|
7FF57EAD3000
|
unkown
|
page readonly
|
|
|
|
1E99FB40000
|
unkown
|
page read and write
|
|
|
|
1B19D700000
|
unkown
|
page readonly
|
|
|
|
4BBEF7F000
|
unkown
|
page read and write
|
|
|
|
7FF586F21000
|
unkown
|
page readonly
|
|
|
|
4BBEAFA000
|
unkown
|
page read and write
|
|
|
|
1E99F43C000
|
unkown
|
page read and write
|
|
|
|
4BBEBFB000
|
unkown
|
page read and write
|
|
|
|
1B19C68D000
|
unkown
|
page read and write
|
|
|
|
7FF586DFF000
|
unkown
|
page readonly
|
|
|
|
1E99F3E0000
|
heap default
|
page read and write
|
|
|
|
7FF595206000
|
unkown
|
page readonly
|
|
|
|
1B19CDF0000
|
unkown
|
page read and write
|
|
|
|
1B19CF02000
|
unkown
|
page read and write
|
|
|
|
1E99F513000
|
unkown
|
page read and write
|
|
|
|
7FF5868AB000
|
unkown
|
page readonly
|
|
|
|
2B6182A0000
|
unkown
|
page readonly
|
|
|
|
1B1A1EAE000
|
unkown
|
page read and write
|
|
|
|
1B1A1C30000
|
unkown
|
page read and write
|
|
|
|
7FF595213000
|
unkown
|
page readonly
|
|
|
|
7FF57EA01000
|
unkown
|
page readonly
|
|
|
|
1B1A1C24000
|
unkown
|
page read and write
|
|
|
|
15634C00000
|
heap private
|
page read and write
|
|
|
|
1E99F400000
|
unkown
|
page read and write
|
|
|
|
7FF57E9DC000
|
unkown
|
page readonly
|
|
|
|
7FF57EA09000
|
unkown
|
page readonly
|
|
|
|
15633260000
|
heap private
|
page read and write
|
|
|
|
15633020000
|
unkown
|
page read and write
|
|
|
|
FDB147B000
|
unkown
|
page read and write
|
|
|
|
7FF57EABC000
|
unkown
|
page readonly
|
|
|
|
1B19C68F000
|
unkown
|
page read and write
|
|
|
|
1B1A1E3D000
|
unkown
|
page read and write
|
|
|
|
7FF5951FC000
|
unkown
|
page readonly
|
|
|
|
1B1A1C21000
|
unkown
|
page read and write
|
|
|
|
7FF5951A4000
|
unkown
|
page readonly
|
|
|
|
1B1A1D60000
|
unkown
|
page read and write
|
|
|
|
FDB127E000
|
unkown
|
page read and write
|
|
|
|
7FF57EA4C000
|
unkown
|
page readonly
|
|
|
|
1B1A1E62000
|
unkown
|
page read and write
|
|
|
|
1B1A1D07000
|
unkown
|
page write copy
|
|
|
|
7FF57E9E8000
|
unkown
|
page readonly
|
|
|
|
7FF54FEBC000
|
unkown
|
page readonly
|
|
|
|
1B19D101000
|
unkown
|
page read and write
|
|
|
|
7FF594F29000
|
unkown
|
page readonly
|
|
|
|
7FF586933000
|
unkown
|
page readonly
|
|
|
|
7FF586D23000
|
unkown
|
page readonly
|
|
|
|
4BBF57F000
|
unkown
|
page read and write
|
|
|
|
15633170000
|
unkown
|
page readonly
|
|
|
|
15632EF0000
|
unkown
|
page readonly
|
|
|
|
4BBF47C000
|
unkown
|
page read and write
|
|
|
|
2B618290000
|
heap default
|
page read and write
|
|
|
|
1B1A1E00000
|
unkown
|
page read and write
|
|
|
|
1B1A1EAB000
|
unkown
|
page read and write
|
|
|
|
7FF54FF41000
|
unkown
|
page readonly
|
|
|
|
7FF58702B000
|
unkown
|
page readonly
|
|
|
|
1B19C672000
|
unkown
|
page read and write
|
|
|
|
7FF5870A9000
|
unkown
|
page readonly
|
|
|
|
1B1A1AB0000
|
unkown
|
page readonly
|
|
|
|
7FF586929000
|
unkown
|
page readonly
|
|
|
|
1B19C5E0000
|
unkown
|
page read and write
|
|
|
|
7FF57EAC5000
|
unkown
|
page readonly
|
|
|
|
7FF58703F000
|
unkown
|
page readonly
|
|
|
|
8EF134D000
|
unkown
|
page read and write
|
|
|
|
1B1A1AE0000
|
unkown
|
page read and write
|
|
|
|
7FF586E2F000
|
unkown
|
page readonly
|
|
|
|
7FF59518C000
|
unkown
|
page readonly
|
|
|
|
1B19D6D0000
|
unkown
|
page readonly
|
|
|
|
7FF586FF4000
|
unkown
|
page readonly
|
|
|
|
7FF54FF15000
|
unkown
|
page readonly
|
|
|
|
7FF587048000
|
unkown
|
page readonly
|
|
|
|
8EF16FF000
|
unkown
|
page read and write
|
|
|
|
15635020000
|
heap private
|
page read and write
|
|
|
|
8EF12CB000
|
unkown
|
page read and write
|
|
|
|
7FF54FB2B000
|
unkown
|
page readonly
|
|
|
|
1B19CF18000
|
unkown
|
page read and write
|
|
|
|
2C2967D000
|
unkown
|
page read and write
|
|
|
|
1B1A1D04000
|
unkown
|
page write copy
|
|
|
|
7FF586CC6000
|
unkown
|
page readonly
|
|
|
|
7FF586C88000
|
unkown
|
page readonly
|
|
|
|
1B19C6BD000
|
unkown
|
page read and write
|
|
|
|
1B19CF00000
|
unkown
|
page read and write
|
|
|
|
7FF54FE73000
|
unkown
|
page readonly
|
|
|
|
7FF586FA5000
|
unkown
|
page readonly
|
|
|
|
4BBE87E000
|
unkown
|
page read and write
|
|
|
|
FDB0F2C000
|
unkown
|
page read and write
|
|
|
|
1B1A1C0E000
|
unkown
|
page read and write
|
|
|
|
7FF595128000
|
unkown
|
page readonly
|
|
|
|
2B61847B000
|
unkown
|
page read and write
|
|
|
|
7FF594DFA000
|
unkown
|
page readonly
|
|
|
|
1B1A2060000
|
unkown
|
page readonly
|
|
|
|
2B618230000
|
heap private
|
page read and write
|
|
|
|
1B1A1CD0000
|
unkown
|
page read and write
|
|
|
|
FDB177F000
|
unkown
|
page read and write
|
|
|
|
1B1A1B00000
|
unkown
|
page read and write
|
|
|
|
7FF57E8E5000
|
unkown
|
page readonly
|
|
|
|
7FF57E94C000
|
unkown
|
page readonly
|
|
|
|
1B1A1E16000
|
unkown
|
page read and write
|
|
|
|
7FF57E635000
|
unkown
|
page readonly
|
|
|
|
2B618C02000
|
unkown
|
page read and write
|
|
|
|
1B19CDF3000
|
unkown
|
page read and write
|
|
|
|
1B19CF59000
|
unkown
|
page read and write
|
|
|
|
7FF54FEB0000
|
unkown
|
page readonly
|
|
|
|
7FF595149000
|
unkown
|
page readonly
|
|
|
|
7FF586E65000
|
unkown
|
page readonly
|
|
|
|
7FF54FF3C000
|
unkown
|
page readonly
|
|
|
|
7FF59511F000
|
unkown
|
page readonly
|
|
|
|
1B1A1C44000
|
unkown
|
page read and write
|
|
|
|
7FF586EFD000
|
unkown
|
page readonly
|
|
|
|
7FF57EA42000
|
unkown
|
page readonly
|
|
|
|
1E9A0140000
|
unkown
|
page readonly
|
|
|
|
1E99F380000
|
heap private
|
page read and write
|
|
|
|
7FF54FED8000
|
unkown
|
page readonly
|
|
|
|
15633265000
|
heap private
|
page read and write
|
|
|
|
7FF54FFB5000
|
unkown
|
page readonly
|
|
|
|
7FF57E9DF000
|
unkown
|
page readonly
|
|
|
|
FDB157B000
|
unkown
|
page read and write
|
|
|
|
1E99FE00000
|
unkown
|
page readonly
|
|
|
|
7FF54FECF000
|
unkown
|
page readonly
|
|
|
|
1B1A1C08000
|
unkown
|
page read and write
|
|
|
|
7FF54FFC3000
|
unkown
|
page readonly
|
|
|
|
1E99F402000
|
unkown
|
page read and write
|
|
|
|
7FF595141000
|
unkown
|
page readonly
|
|
|
|
7FF587054000
|
unkown
|
page readonly
|
|
|
|
1B19CF18000
|
unkown
|
page read and write
|
|
|
|
7FF595189000
|
unkown
|
page readonly
|
|
|
|
7FF586E1D000
|
unkown
|
page readonly
|
|
|
|
2B61846A000
|
unkown
|
page read and write
|
|
|
|
1B1A1DA0000
|
unkown
|
page readonly
|
|
|
|
7FF54FEE0000
|
unkown
|
page readonly
|
|
|
|
7FF54FF2B000
|
unkown
|
page readonly
|
|
|
|
7FF587133000
|
unkown
|
page readonly
|
|
|
|
7FF587061000
|
unkown
|
page readonly
|
|
|
|
1B19C69F000
|
unkown
|
page read and write
|
|
|
|
1B1A1DE0000
|
unkown
|
page readonly
|
|
|
|
1E99FC02000
|
unkown
|
page read and write
|
|
|
|
1B1A1D40000
|
unkown
|
page read and write
|
|
|
|
7FF54FF39000
|
unkown
|
page readonly
|
|
|
|
7FF57E7BC000
|
unkown
|
page readonly
|
|
|
|
7FF586EE5000
|
unkown
|
page readonly
|
|
|
|
7FF586E24000
|
unkown
|
page readonly
|
|
|
|
7FF54FB8D000
|
unkown
|
page readonly
|
|
|
|
1B1A1DF0000
|
unkown
|
page read and write
|
|
|
|
7FF587071000
|
unkown
|
page readonly
|
|
|
|
4BBF07E000
|
unkown
|
page read and write
|
|
|
|
7FF595165000
|
unkown
|
page readonly
|
|
|
|
7FF587133000
|
unkown
|
page readonly
|
|
|
|
7FF58711C000
|
unkown
|
page readonly
|
|
|
|
7FF5870B6000
|
unkown
|
page readonly
|
|
|
|
1B19D6F0000
|
unkown
|
page readonly
|
|
|
|
15632F50000
|
unkown
|
page readonly
|
|
|
|
7FF54FE60000
|
unkown
|
page readonly
|
|
|
|
7FF5868A1000
|
unkown
|
page readonly
|
|
|
|
1E99F6D0000
|
unkown
|
page readonly
|
|
|
|
15634A30000
|
unkown
|
page readonly
|
|
|
|
2B618370000
|
unkown
|
page readonly
|
|
|
|
7FF586D02000
|
unkown
|
page readonly
|
|
|
|
1B19D6C0000
|
unkown
|
page readonly
|
|
|
|
7FF586EDB000
|
unkown
|
page readonly
|
|
|
|
15633230000
|
unkown
|
page readonly
|
|
|
|
7FF5870C4000
|
unkown
|
page readonly
|
|
|
|
2B618428000
|
unkown
|
page read and write
|
|
|
|
7FF586DF9000
|
unkown
|
page readonly
|
|
|
|
1B1A1C20000
|
unkown
|
page read and write
|
|
|
|
7FF586F40000
|
unkown
|
page readonly
|
|
|
|
1B19C5A0000
|
heap default
|
page read and write
|
|
|
|
1B1A1E4A000
|
unkown
|
page read and write
|
|
|
|
1B1A1EB5000
|
unkown
|
page read and write
|
|
|
|
7FF58696D000
|
unkown
|
page readonly
|
|
|
|
4BBF1FE000
|
unkown
|
page read and write
|
|
|
|
1B1A1D10000
|
unkown
|
page read and write
|
|
|
|
1B1A1E9F000
|
unkown
|
page read and write
|
|
|
|
7FF57E963000
|
unkown
|
page readonly
|
|
|
|
7FF587050000
|
unkown
|
page readonly
|
|
|
|
1B19DA60000
|
unkown
|
page read and write
|
|
|
|
1B19CF13000
|
unkown
|
page read and write
|
|
|
|
1B19CC60000
|
unkown
|
page readonly
|
|
|
|
7FF57E631000
|
unkown
|
page readonly
|
|
|
|
1B19C5B0000
|
unkown
|
page readonly
|
|
|
|
7FF594E03000
|
unkown
|
page readonly
|
|
|
|
2B61847C000
|
unkown
|
page read and write
|
|
|
|
1B19C6A1000
|
unkown
|
page read and write
|
|
|
|
7FF586E5F000
|
unkown
|
page readonly
|
|
|
|
7FF54FB18000
|
unkown
|
page readonly
|
|
|
|
7FF54FB29000
|
unkown
|
page readonly
|
|
|
|
2B618E00000
|
unkown
|
page readonly
|
|
|
|
7FF57EA3B000
|
unkown
|
page readonly
|
|
|
|
1B1A1A70000
|
unkown
|
page read and write
|
|
|
|
7FF586C9B000
|
unkown
|
page readonly
|
|
|
|
1B1A1C00000
|
unkown
|
page read and write
|
|
|
|
7FF595213000
|
unkown
|
page readonly
|
|
|
|
1B1A1D60000
|
unkown
|
page read and write
|
|
|
|
7FF5870A2000
|
unkown
|
page readonly
|
|
|
|
FDB0FAE000
|
unkown
|
page read and write
|
|
|
|
2C2977E000
|
unkown
|
page read and write
|
|
|
|
2B618502000
|
unkown
|
page read and write
|
|
|
|
2B618402000
|
unkown
|
page read and write
|
|
|
|
7FF54FFAC000
|
unkown
|
page readonly
|
|
|
|
15634AC0000
|
heap private
|
page read and write
|
|
|
|
1B1A1E21000
|
unkown
|
page read and write
|
|
|
|
1B19C713000
|
unkown
|
page read and write
|
|
|
|
15634E9F000
|
heap private
|
page read and write
|
|
|
|
1B1A1C40000
|
unkown
|
page read and write
|
|
|
|
1B1A1C00000
|
unkown
|
page read and write
|
|
|
|
4BBE8FE000
|
unkown
|
page read and write
|
|
|
|
1B19D720000
|
unkown
|
page readonly
|
|
|
|
7FF57E69D000
|
unkown
|
page readonly
|
|
|
|
1B19C658000
|
unkown
|
page read and write
|
|
|
|
FDB167E000
|
unkown
|
page read and write
|
|
|
|
1B1A1D60000
|
unkown
|
page readonly
|
|
|
|
4BBE58B000
|
unkown
|
page read and write
|
|
|
|
7FF587004000
|
unkown
|
page readonly
|
|
|
|
2B61843E000
|
unkown
|
page read and write
|
|
|
|
7FF587125000
|
unkown
|
page readonly
|
|
|
|
7FF57E865000
|
unkown
|
page readonly
|
|
|
|
15633070000
|
heap default
|
page read and write
|
|
|
|
1B1A1C30000
|
unkown
|
page read and write
|
|
|
|
2B618500000
|
unkown
|
page read and write
|
|
|
|
1B1A1AF0000
|
unkown
|
page read and write
|
|
|
|
1B19C540000
|
heap private
|
page read and write
|
|
|
|
1B19D500000
|
unkown
|
page read and write
|
|
|
|
1B1A1D60000
|
unkown
|
page read and write
|
|
|
|
7FF587015000
|
unkown
|
page readonly
|
|
|
|
7FF58700C000
|
unkown
|
page readonly
|
|
|
|
1B1A1EB5000
|
unkown
|
page read and write
|
|
|
|
7FF57E9F4000
|
unkown
|
page readonly
|
|
|
|
1E99FA60000
|
unkown
|
page readonly
|
|
|
|
7FF54FEE4000
|
unkown
|
page readonly
|
|
|
|
7FF586ECB000
|
unkown
|
page readonly
|
|
|
|
7FF586FE1000
|
unkown
|
page readonly
|
|
|
|
4BBECFF000
|
unkown
|
page read and write
|
|
|
|
7FF594E13000
|
unkown
|
page readonly
|
|
|
|
1B19CE00000
|
unkown
|
page read and write
|
|
|
|
7FF54FD8D000
|
unkown
|
page readonly
|
|
|
|
7FF58709B000
|
unkown
|
page readonly
|
|
|
|
7FF57E23F000
|
unkown
|
page readonly
|
|
|
|
7FF59510B000
|
unkown
|
page readonly
|
|
|
|
1B19C5C0000
|
unkown
|
page readonly
|
|
|
|
8EF17FD000
|
unkown
|
page read and write
|
|
|
|
7FF57E9E5000
|
unkown
|
page readonly
|
|
|
|
7FF57E8EA000
|
unkown
|
page readonly
|
|
|
|
2C297FC000
|
unkown
|
page read and write
|
|
|
|
4BBE9F7000
|
unkown
|
page read and write
|
|
|
|
15634DA0000
|
heap private
|
page read and write
|
|
|
|
2C292CC000
|
unkown
|
page read and write
|
|
|
|
1B19C8D0000
|
unkown
|
page readonly
|
|
|
|
2B618600000
|
unkown
|
page readonly
|
|
|
|
7FF54FF32000
|
unkown
|
page readonly
|
|
|
|
1B19CDD1000
|
unkown
|
page read and write
|
|
|
|
4BBEDFA000
|
unkown
|
page read and write
|
|
|
|
7FF54FE71000
|
unkown
|
page readonly
|
|
|
|
1B1A1DB0000
|
unkown
|
page readonly
|
|
|
|
7FF57EA11000
|
unkown
|
page readonly
|
|
|
|
7FF54FB92000
|
unkown
|
page readonly
|
|
|
|
7FF587010000
|
unkown
|
page readonly
|
|
|
|
7FF57E9C9000
|
unkown
|
page readonly
|
|
|
|
7FF54FEA5000
|
unkown
|
page readonly
|
|
|
|
7FF54FF46000
|
unkown
|
page readonly
|
|
|
|
2B618400000
|
unkown
|
page read and write
|
|
|
|
1B1A1EBA000
|
unkown
|
page read and write
|
|
|
|
1B1A1D60000
|
unkown
|
page read and write
|
|
|
|
4BBF37A000
|
unkown
|
page read and write
|
|
|
|
2B618457000
|
unkown
|
page read and write
|
|
|
|
7FF57E9CB000
|
unkown
|
page readonly
|
|
|
|
1B19C800000
|
unkown
|
page readonly
|
|
|
|
7FF595126000
|
unkown
|
page readonly
|
|
|
|
1E99FB30000
|
unkown
|
page readonly
|
|
|
|
8EF13CE000
|
unkown
|
page read and write
|
|
|
|
15634A40000
|
unkown
|
page readonly
|
|
|
|
7FF57EA64000
|
unkown
|
page readonly
|
|
|
|
1B1A1CD4000
|
unkown
|
page readonly
|
|
|
|
1B19C656000
|
unkown
|
page read and write
|
|
|
|
1B19D5E0000
|
unkown
|
page read and write
|
|
|
|
4BBEEFB000
|
unkown
|
page read and write
|
|
|
|
1B1A1CF4000
|
unkown
|
page readonly
|
|
|
|
7FF586EE0000
|
unkown
|
page readonly
|
|
|
|
7FF586E3E000
|
unkown
|
page readonly
|
|
|
|
7FF587000000
|
unkown
|
page readonly
|
|
|
|
7FF586FAC000
|
unkown
|
page readonly
|
|
|
|
1B19C6B0000
|
unkown
|
page read and write
|
|
|
|
7FF5951F6000
|
unkown
|
page readonly
|
|
|
|
7FF587085000
|
unkown
|
page readonly
|
|
|
|
1E99F600000
|
unkown
|
page readonly
|
|
|
|
7FF5950BD000
|
unkown
|
page readonly
|
|
|
|
1B1A1D30000
|
unkown
|
page read and write
|
|
|
|
7FF595182000
|
unkown
|
page readonly
|
|
|
|
2B618513000
|
unkown
|
page read and write
|
|
|
|
4BBF27E000
|
unkown
|
page read and write
|
|
|
|
15633270000
|
unkown
|
page readonly
|
|
|
|
2B618990000
|
unkown
|
page readonly
|
|
|
|
1B19C63F000
|
unkown
|
page read and write
|
|
|
|
7FF57E89D000
|
unkown
|
page readonly
|
|
|
|
7FF57EAD3000
|
unkown
|
page readonly
|
|
|
|
1B1A1E84000
|
unkown
|
page read and write
|
|
|
|
7FF587116000
|
unkown
|
page readonly
|
|
There are 364 hidden memdumps, click here to show them.