Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
http___192.3.141.164_mal_win32.exe
|
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\CLR_v4.0_32\UsageLogs\http___192.3.141.164_mal_win32.exe.log
|
ASCII text, with CRLF line terminators
|
dropped
|
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\http___192.3.141.164_mal_win32.exe
|
'C:\Users\user\Desktop\http___192.3.141.164_mal_win32.exe'
|
|
|
|
C:\Users\user\Desktop\http___192.3.141.164_mal_win32.exe
|
C:\Users\user\Desktop\http___192.3.141.164_mal_win32.exe
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
www.dragonpalcenk.com/k8n/
|
|
||
|
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
|
unknown
|
 |
|
|
https://stackpath.bootstrapcdn.com/bootstrap/4.5.0/css/bootstrap.min.css
|
unknown
|
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
192.3.141.164
|
unknown
|
United States
|
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
3539000
|
unkown
|
page read and write
|
|
|
|
3671000
|
unkown
|
page read and write
|
|
|
|
400000
|
unkown
|
page execute and read and write
|
|
|
|
256F000
|
unkown
|
page read and write
|
|
|
|
400000
|
unkown
|
page execute and read and write
|
|
|
|
BA2000
|
unkown image
|
page readonly
|
|
|
|
50B0000
|
unkown
|
page read and write
|
|
|
|
25C82DD0000
|
unkown
|
page readonly
|
|
|
|
995000
|
unkown
|
page read and write
|
|
|
|
5C0000
|
unkown
|
page readonly
|
|
|
|
AED000
|
unkown
|
page read and write
|
|
|
|
AD40000
|
unkown
|
page read and write
|
|
|
|
25C82F08000
|
unkown
|
page read and write
|
|
|
|
786000
|
unkown
|
page execute and read and write
|
|
|
|
977000
|
unkown
|
page read and write
|
|
|
|
7FF5D47AA000
|
unkown
|
page readonly
|
|
|
|
7FF5D4844000
|
unkown
|
page readonly
|
|
|
|
7CE0000
|
unkown
|
page read and write
|
|
|
|
45C0000
|
unkown
|
page read and write
|
|
|
|
4530000
|
unkown
|
page read and write
|
|
|
|
92F000
|
heap default
|
page read and write
|
|
|
|
997000
|
unkown
|
page read and write
|
|
|
|
25C82E55000
|
unkown
|
page read and write
|
|
|
|
4550000
|
unkown
|
page read and write
|
|
|
|
961000
|
unkown
|
page read and write
|
|
|
|
979000
|
unkown
|
page read and write
|
|
|
|
7FF5D3FAC000
|
unkown
|
page readonly
|
|
|
|
76D000
|
unkown
|
page execute and read and write
|
|
|
|
970000
|
unkown
|
page read and write
|
|
|
|
A7C000
|
unkown
|
page read and write
|
|
|
|
25C83602000
|
unkown
|
page read and write
|
|
|
|
50B0000
|
unkown
|
page read and write
|
|
|
|
25C82E4A000
|
unkown
|
page read and write
|
|
|
|
78A000
|
unkown
|
page execute and read and write
|
|
|
|
997000
|
unkown
|
page read and write
|
|
|
|
50C0000
|
unkown
|
page read and write
|
|
|
|
4E4C000
|
unkown
|
page read and write
|
|
|
|
AF2E000
|
unkown
|
page read and write
|
|
|
|
997000
|
unkown
|
page read and write
|
|
|
|
4530000
|
unkown
|
page read and write
|
|
|
|
C62000
|
unkown image
|
page readonly
|
|
|
|
C76000
|
unkown image
|
page readonly
|
|
|
|
8D0000
|
unkown
|
page read and write
|
|
|
|
570E000
|
unkown
|
page read and write
|
|
|
|
7FF5D44D7000
|
unkown
|
page readonly
|
|
|
|
95F000
|
unkown
|
page read and write
|
|
|
|
AD70000
|
unkown
|
page read and write
|
|
|
|
770000
|
unkown
|
page read and write
|
|
|
|
7FF5D46C4000
|
unkown
|
page readonly
|
|
|
|
981000
|
unkown
|
page read and write
|
|
|
|
4A90000
|
unkown
|
page read and write
|
|
|
|
4540000
|
unkown
|
page read and write
|
|
|
|
71C517E000
|
unkown
|
page read and write
|
|
|
|
4AD0000
|
unkown
|
page read and write
|
|
|
|
1104000
|
unkown
|
page read and write
|
|
|
|
984000
|
unkown
|
page read and write
|
|
|
|
4A50000
|
unkown
|
page read and write
|
|
|
|
582E000
|
unkown
|
page read and write
|
|
|
|
969000
|
unkown
|
page read and write
|
|
|
|
71C4EFB000
|
unkown
|
page read and write
|
|
|
|
3531000
|
unkown
|
page read and write
|
|
|
|
1A2000
|
unkown image
|
page readonly
|
|
|
|
4D70000
|
unkown
|
page read and write
|
|
|
|
C7E000
|
unkown image
|
page readonly
|
|
|
|
5080000
|
unkown
|
page read and write
|
|
|
|
7FF5D4777000
|
unkown
|
page readonly
|
|
|
|
25C82DE0000
|
unkown
|
page readonly
|
|
|
|
5080000
|
unkown
|
page read and write
|
|
|
|
2510000
|
unkown
|
page read and write
|
|
|
|
98E000
|
unkown
|
page read and write
|
|
|
|
4A50000
|
unkown
|
page read and write
|
|
|
|
4A60000
|
unkown
|
page read and write
|
|
|
|
25C82DF0000
|
unkown
|
page read and write
|
|
|
|
720000
|
unkown
|
page readonly
|
|
|
|
4A50000
|
unkown
|
page read and write
|
|
|
|
965000
|
unkown
|
page read and write
|
|
|
|
4A50000
|
unkown
|
page read and write
|
|
|
|
2510000
|
unkown
|
page read and write
|
|
|
|
23C000
|
unkown
|
page read and write
|
|
|
|
239000
|
unkown
|
page read and write
|
|
|
|
AF5000
|
unkown
|
page read and write
|
|
|
|
4530000
|
unkown
|
page read and write
|
|
|
|
C76000
|
unkown image
|
page readonly
|
|
|
|
1214000
|
unkown
|
page read and write
|
|
|
|
5080000
|
unkown
|
page read and write
|
|
|
|
4530000
|
unkown
|
page read and write
|
|
|
|
4A83000
|
heap private
|
page read and write
|
|
|
|
24F0000
|
unkown
|
page read and write
|
|
|
|
12F0000
|
unkown
|
page read and write
|
|
|
|
174B000
|
unkown
|
page execute and read and write
|
|
|
|
4530000
|
unkown
|
page read and write
|
|
|
|
71C4DF5000
|
unkown
|
page read and write
|
|
|
|
4B20000
|
unkown
|
page read and write
|
|
|
|
24F0000
|
unkown
|
page read and write
|
|
|
|
7FF5D474A000
|
unkown
|
page readonly
|
|
|
|
4A20000
|
unkown
|
page read and write
|
|
|
|
4A50000
|
unkown
|
page read and write
|
|
|
|
4D50000
|
unkown
|
page read and write
|
|
|
|
988000
|
unkown
|
page read and write
|
|
|
|
25C83B40000
|
unkown
|
page readonly
|
|
|
|
AA0000
|
unkown
|
page read and write
|
|
|
|
110F000
|
unkown
|
page read and write
|
|
|
|
AD50000
|
unkown
|
page read and write
|
|
|
|
5030000
|
unkown
|
page read and write
|
|
|
|
7FF5D474C000
|
unkown
|
page readonly
|
|
|
|
245000
|
unkown
|
page read and write
|
|
|
|
C66000
|
unkown image
|
page readonly
|
|
|
|
45BE000
|
unkown
|
page read and write
|
|
|
|
4B00000
|
unkown
|
page read and write
|
|
|
|
B01000
|
unkown
|
page read and write
|
|
|
|
5930000
|
unkown
|
page read and write
|
|
|
|
5080000
|
unkown
|
page read and write
|
|
|
|
25C82E4D000
|
unkown
|
page read and write
|
|
|
|
E2000
|
unkown image
|
page readonly
|
|
|
|
22A000
|
unkown
|
page read and write
|
|
|
|
5010000
|
unkown
|
page read and write
|
|
|
|
242000
|
unkown
|
page read and write
|
|
|
|
B10000
|
unkown
|
page read and write
|
|
|
|
71C4CFE000
|
unkown
|
page read and write
|
|
|
|
71C507F000
|
unkown
|
page read and write
|
|
|
|
25C82E3C000
|
unkown
|
page read and write
|
|
|
|
981000
|
unkown
|
page read and write
|
|
|
|
997000
|
unkown
|
page read and write
|
|
|
|
25C830D0000
|
unkown
|
page readonly
|
|
|
|
4D40000
|
unkown
|
page read and write
|
|
|
|
4A80000
|
heap private
|
page read and write
|
|
|
|
7FF5D47CE000
|
unkown
|
page readonly
|
|
|
|
4DA0000
|
heap private
|
page execute and read and write
|
|
|
|
25C82E8E000
|
unkown
|
page read and write
|
|
|
|
6DE000
|
unkown
|
page read and write
|
|
|
|
7FF5D47D6000
|
unkown
|
page readonly
|
|
|
|
B04000
|
unkown
|
page read and write
|
|
|
|
4A6F000
|
unkown
|
page read and write
|
|
|
|
7FF5D4326000
|
unkown
|
page readonly
|
|
|
|
7FF5D4765000
|
unkown
|
page readonly
|
|
|
|
18DB000
|
unkown
|
page execute and read and write
|
|
|
|
2562000
|
unkown
|
page read and write
|
|
|
|
4560000
|
unkown
|
page read and write
|
|
|
|
AD30000
|
unkown
|
page read and write
|
|
|
|
45C0000
|
unkown
|
page read and write
|
|
|
|
99A000
|
unkown
|
page read and write
|
|
|
|
12F1000
|
unkown
|
page read and write
|
|
|
|
4A51000
|
unkown
|
page read and write
|
|
|
|
A2E000
|
unkown
|
page read and write
|
|
|
|
2500000
|
unkown
|
page read and write
|
|
|
|
D1D000
|
unkown
|
page read and write
|
|
|
|
4AB0000
|
unkown
|
page read and write
|
|
|
|
7FF5D47DD000
|
unkown
|
page readonly
|
|
|
|
7FF5D46CC000
|
unkown
|
page readonly
|
|
|
|
4A50000
|
unkown
|
page read and write
|
|
|
|
5080000
|
unkown
|
page read and write
|
|
|
|
2531000
|
unkown
|
page read and write
|
|
|
|
4FD0000
|
unkown
|
page read and write
|
|
|
|
45C0000
|
unkown
|
page read and write
|
|
|
|
4AC0000
|
unkown
|
page read and write
|
|
|
|
25C82D60000
|
heap private
|
page read and write
|
|
|
|
4FE0000
|
unkown
|
page read and write
|
|
|
|
4530000
|
unkown
|
page read and write
|
|
|
|
B30000
|
unkown
|
page read and write
|
|
|
|
7FF5D4852000
|
unkown
|
page readonly
|
|
|
|
4A20000
|
unkown
|
page read and write
|
|
|
|
1A2000
|
unkown image
|
page readonly
|
|
|
|
4550000
|
unkown
|
page read and write
|
|
|
|
AD60000
|
unkown
|
page read and write
|
|
|
|
7FF5D47D9000
|
unkown
|
page readonly
|
|
|
|
24F0000
|
unkown
|
page read and write
|
|
|
|
797000
|
unkown
|
page execute and read and write
|
|
|
|
71C4FF7000
|
unkown
|
page read and write
|
|
|
|
4D70000
|
unkown
|
page read and write
|
|
|
|
71E000
|
unkown
|
page read and write
|
|
|
|
24F0000
|
unkown
|
page read and write
|
|
|
|
960000
|
unkown
|
page read and write
|
|
|
|
1109000
|
unkown
|
page read and write
|
|
|
|
4530000
|
unkown
|
page read and write
|
|
|
|
4A10000
|
unkown
|
page read and write
|
|
|
|
98E000
|
unkown
|
page read and write
|
|
|
|
E0000
|
unkown image
|
page readonly
|
|
|
|
24F0000
|
unkown
|
page read and write
|
|
|
|
7FF5D4760000
|
unkown
|
page readonly
|
|
|
|
592E000
|
unkown
|
page read and write
|
|
|
|
4A50000
|
unkown
|
page read and write
|
|
|
|
96C000
|
unkown
|
page read and write
|
|
|
|
558000
|
unkown
|
page read and write
|
|
|
|
71C4C7E000
|
unkown
|
page read and write
|
|
|
|
4FA8000
|
unkown
|
page read and write
|
|
|
|
C50000
|
unkown
|
page readonly
|
|
|
|
233000
|
unkown
|
page read and write
|
|
|
|
4D90000
|
unkown
|
page read and write
|
|
|
|
4590000
|
unkown
|
page read and write
|
|
|
|
4B10000
|
unkown
|
page read and write
|
|
|
|
4A30000
|
unkown
|
page read and write
|
|
|
|
E0000
|
unkown image
|
page readonly
|
|
|
|
50B0000
|
unkown
|
page read and write
|
|
|
|
7B0000
|
heap default
|
page read and write
|
|
|
|
764000
|
unkown
|
page read and write
|
|
|
|
4AA0000
|
unkown
|
page read and write
|
|
|
|
981000
|
unkown
|
page read and write
|
|
|
|
7FF5D476B000
|
unkown
|
page readonly
|
|
|
|
2500000
|
unkown
|
page readonly
|
|
|
|
24F0000
|
unkown
|
page read and write
|
|
|
|
7FF5D47B4000
|
unkown
|
page readonly
|
|
|
|
7FF5D4062000
|
unkown
|
page readonly
|
|
|
|
7FF5D465B000
|
unkown
|
page readonly
|
|
|
|
2500000
|
unkown
|
page read and write
|
|
|
|
7FF5D4641000
|
unkown
|
page readonly
|
|
|
|
4A50000
|
unkown
|
page read and write
|
|
|
|
977000
|
unkown
|
page read and write
|
|
|
|
1100000
|
heap default
|
page read and write
|
|
|
|
5760000
|
unkown
|
page read and write
|
|
|
|
4F90000
|
unkown
|
page read and write
|
|
|
|
E2000
|
unkown image
|
page readonly
|
|
|
|
1A0000
|
unkown image
|
page readonly
|
|
|
|
981000
|
unkown
|
page read and write
|
|
|
|
4A34000
|
unkown
|
page read and write
|
|
|
|
C4E000
|
unkown
|
page read and write
|
|
|
|
4AE0000
|
unkown
|
page read and write
|
|
|
|
1210000
|
heap default
|
page read and write
|
|
|
|
25C82E13000
|
unkown
|
page read and write
|
|
|
|
95B000
|
unkown
|
page read and write
|
|
|
|
4D51000
|
unkown
|
page read and write
|
|
|
|
985000
|
unkown
|
page read and write
|
|
|
|
98E000
|
unkown
|
page read and write
|
|
|
|
50B0000
|
unkown
|
page read and write
|
|
|
|
981000
|
unkown
|
page read and write
|
|
|
|
1630000
|
unkown
|
page execute and read and write
|
|
|
|
97B000
|
unkown
|
page read and write
|
|
|
|
5090000
|
unkown
|
page execute and read and write
|
|
|
|
961000
|
unkown
|
page read and write
|
|
|
|
4C70000
|
unkown
|
page readonly
|
|
|
|
967000
|
unkown
|
page read and write
|
|
|
|
7FF5D46AD000
|
unkown
|
page readonly
|
|
|
|
4A50000
|
unkown
|
page read and write
|
|
|
|
4FDD000
|
unkown
|
page read and write
|
|
|
|
4A30000
|
unkown
|
page read and write
|
|
|
|
4D80000
|
unkown
|
page read and write
|
|
|
|
7FF5D475A000
|
unkown
|
page readonly
|
|
|
|
97B000
|
unkown
|
page read and write
|
|
|
|
7B5000
|
heap default
|
page read and write
|
|
|
|
7F2B0000
|
unkown
|
page execute and read and write
|
|
|
|
110E000
|
unkown
|
page read and write
|
|
|
|
4F50000
|
unkown
|
page read and write
|
|
|
|
4FB0000
|
unkown
|
page read and write
|
|
|
|
98E000
|
unkown
|
page read and write
|
|
|
|
968000
|
unkown
|
page read and write
|
|
|
|
AF30000
|
unkown
|
page read and write
|
|
|
|
2500000
|
unkown
|
page read and write
|
|
|
|
C76000
|
unkown image
|
page readonly
|
|
|
|
25C82DC0000
|
heap default
|
page read and write
|
|
|
|
4D50000
|
unkown
|
page read and write
|
|
|
|
4AAF000
|
unkown
|
page read and write
|
|
|
|
4A70000
|
unkown
|
page execute and read and write
|
|
|
|
24F0000
|
unkown
|
page read and write
|
|
|
|
1A0000
|
unkown image
|
page readonly
|
|
|
|
981000
|
unkown
|
page read and write
|
|
|
|
1BE000
|
unkown image
|
page readonly
|
|
|
|
4D50000
|
heap private
|
page read and write
|
|
|
|
8FB000
|
heap default
|
page read and write
|
|
|
|
24F0000
|
unkown
|
page read and write
|
|
|
|
4530000
|
unkown
|
page read and write
|
|
|
|
1A6000
|
unkown image
|
page readonly
|
|
|
|
4530000
|
unkown
|
page read and write
|
|
|
|
963000
|
unkown
|
page read and write
|
|
|
|
C62000
|
unkown image
|
page readonly
|
|
|
|
4D90000
|
unkown
|
page read and write
|
|
|
|
4A50000
|
unkown
|
page read and write
|
|
|
|
E0000
|
unkown image
|
page readonly
|
|
|
|
7A92000
|
unkown
|
page read and write
|
|
|
|
560E000
|
unkown
|
page read and write
|
|
|
|
95D000
|
unkown
|
page read and write
|
|
|
|
D80000
|
unkown
|
page read and write
|
|
|
|
50B0000
|
unkown
|
page read and write
|
|
|
|
236000
|
unkown
|
page read and write
|
|
|
|
97E000
|
unkown
|
page read and write
|
|
|
|
981000
|
unkown
|
page read and write
|
|
|
|
4F51000
|
unkown
|
page read and write
|
|
|
|
7FF5D4603000
|
unkown
|
page readonly
|
|
|
|
45C0000
|
unkown
|
page read and write
|
|
|
|
25C82F02000
|
unkown
|
page read and write
|
|
|
|
25C83000000
|
unkown
|
page readonly
|
|
|
|
B20000
|
unkown
|
page read and write
|
|
|
|
4A30000
|
unkown
|
page read and write
|
|
|
|
50C0000
|
unkown
|
page read and write
|
|
|
|
4A50000
|
unkown
|
page read and write
|
|
|
|
5020000
|
unkown
|
page read and write
|
|
|
|
95F000
|
unkown
|
page read and write
|
|
|
|
4A60000
|
unkown
|
page read and write
|
|
|
|
10FE000
|
unkown
|
page read and write
|
|
|
|
981000
|
unkown
|
page read and write
|
|
|
|
4FC0000
|
unkown
|
page read and write
|
|
|
|
77D000
|
unkown
|
page execute and read and write
|
|
|
|
50C0000
|
unkown
|
page read and write
|
|
|
|
1BE000
|
unkown image
|
page readonly
|
|
|
|
4A50000
|
unkown
|
page read and write
|
|
|
|
4FA0000
|
unkown
|
page read and write
|
|
|
|
18DF000
|
unkown
|
page execute and read and write
|
|
|
|
7FF5D4851000
|
unkown
|
page readonly
|
|
|
|
23F000
|
unkown
|
page read and write
|
|
|
|
7FF5D45B1000
|
unkown
|
page readonly
|
|
|
|
AD0000
|
unkown
|
page read and write
|
|
|
|
4538000
|
unkown
|
page read and write
|
|
|
|
50B3000
|
unkown
|
page read and write
|
|
|
|
988000
|
unkown
|
page read and write
|
|
|
|
4D90000
|
unkown
|
page read and write
|
|
|
|
79B000
|
unkown
|
page execute and read and write
|
|
|
|
B1F000
|
unkown
|
page read and write
|
|
|
|
4530000
|
unkown
|
page read and write
|
|
|
|
4B20000
|
unkown
|
page read and write
|
|
|
|
BA0000
|
unkown image
|
page readonly
|
|
|
|
BA0000
|
unkown image
|
page readonly
|
|
|
|
4D70000
|
unkown
|
page read and write
|
|
|
|
7FF5D47A4000
|
unkown
|
page readonly
|
|
|
|
4A50000
|
unkown
|
page read and write
|
|
|
|
5000000
|
unkown
|
page read and write
|
|
|
|
99A000
|
unkown
|
page read and write
|
|
|
|
4AA0000
|
unkown
|
page read and write
|
|
|
|
46CC000
|
unkown
|
page read and write
|
|
|
|
2566000
|
unkown
|
page read and write
|
|
|
|
71C49DB000
|
unkown
|
page read and write
|
|
|
|
A30000
|
heap private
|
page read and write
|
|
|
|
AB0000
|
unkown
|
page read and write
|
|
|
|
ADB000
|
unkown
|
page read and write
|
|
|
|
792000
|
unkown
|
page read and write
|
|
|
|
4D30000
|
unkown
|
page read and write
|
|
|
|
AF31000
|
unkown
|
page read and write
|
|
|
|
4D90000
|
unkown
|
page read and write
|
|
|
|
50A0000
|
unkown
|
page read and write
|
|
|
|
7FF5D46B3000
|
unkown
|
page readonly
|
|
|
|
8BF000
|
unkown
|
page read and write
|
|
|
|
50B0000
|
unkown
|
page read and write
|
|
|
|
4538000
|
unkown
|
page read and write
|
|
|
|
BA2000
|
unkown image
|
page readonly
|
|
|
|
2500000
|
unkown
|
page read and write
|
|
|
|
4A50000
|
unkown
|
page read and write
|
|
|
|
4AF0000
|
unkown
|
page read and write
|
|
|
|
8F0000
|
heap default
|
page read and write
|
|
|
|
984000
|
unkown
|
page read and write
|
|
|
|
5080000
|
unkown
|
page read and write
|
|
|
|
363D000
|
unkown
|
page read and write
|
|
|
|
AD35000
|
unkown
|
page read and write
|
|
|
|
7FF5D478C000
|
unkown
|
page readonly
|
|
|
|
4570000
|
unkown
|
page execute and read and write
|
|
|
|
4F60000
|
unkown
|
page read and write
|
|
|
|
5080000
|
unkown
|
page read and write
|
|
|
|
4A50000
|
unkown
|
page read and write
|
|
|
|
4A30000
|
unkown
|
page read and write
|
|
|
|
7FF5D47C8000
|
unkown
|
page readonly
|
|
|
|
4A60000
|
unkown
|
page read and write
|
|
|
|
4ACC000
|
unkown
|
page read and write
|
|
|
|
1220000
|
unkown
|
page readonly
|
|
|
|
690000
|
unkown
|
page read and write
|
|
|
|
982000
|
unkown
|
page read and write
|
|
|
|
25C82F13000
|
unkown
|
page read and write
|
|
|
|
96C000
|
unkown
|
page read and write
|
|
|
|
4530000
|
unkown
|
page read and write
|
|
|
|
1A6000
|
unkown image
|
page readonly
|
|
|
|
C62000
|
unkown image
|
page readonly
|
|
|
|
25C83800000
|
unkown
|
page readonly
|
|
|
|
174F000
|
unkown
|
page execute and read and write
|
|
|
|
71C527F000
|
unkown
|
page read and write
|
|
|
|
4A20000
|
unkown
|
page read and write
|
|
|
|
4A60000
|
unkown
|
page read and write
|
|
|
|
AF0000
|
unkown
|
page read and write
|
|
|
|
96F000
|
unkown
|
page read and write
|
|
|
|
50B0000
|
unkown
|
page read and write
|
|
|
|
4F83000
|
unkown
|
page read and write
|
|
|
|
46D0000
|
unkown
|
page readonly
|
|
|
|
AE7000
|
unkown
|
page read and write
|
|
|
|
1B6000
|
unkown image
|
page readonly
|
|
|
|
25C82E50000
|
unkown
|
page read and write
|
|
|
|
456D000
|
unkown
|
page read and write
|
|
|
|
997000
|
unkown
|
page read and write
|
|
|
|
997000
|
unkown
|
page read and write
|
|
|
|
AE2D000
|
unkown
|
page read and write
|
|
|
|
7FF5D484A000
|
unkown
|
page readonly
|
|
|
|
4580000
|
unkown
|
page read and write
|
|
|
|
4A50000
|
unkown
|
page execute and read and write
|
|
|
|
56D0000
|
unkown
|
page read and write
|
|
|
|
2560000
|
unkown
|
page read and write
|
|
|
|
AFC000
|
unkown
|
page read and write
|
|
|
|
AC0000
|
heap private
|
page read and write
|
|
|
|
2500000
|
unkown
|
page read and write
|
|
|
|
94D000
|
unkown
|
page read and write
|
|
|
|
4530000
|
unkown
|
page read and write
|
|
|
|
4F50000
|
unkown
|
page read and write
|
|
|
|
4A90000
|
unkown
|
page readonly
|
|
|
|
4A90000
|
unkown
|
page read and write
|
|
|
|
25C82E70000
|
unkown
|
page read and write
|
|
|
|
C66000
|
unkown image
|
page readonly
|
|
|
|
2510000
|
unkown
|
page read and write
|
|
|
|
4A50000
|
unkown
|
page read and write
|
|
|
|
2520000
|
heap private
|
page execute and read and write
|
|
|
|
1B6000
|
unkown image
|
page readonly
|
|
|
|
C66000
|
unkown image
|
page readonly
|
|
|
|
750000
|
unkown
|
page read and write
|
|
|
|
50B0000
|
unkown
|
page read and write
|
|
|
|
7FF5D4320000
|
unkown
|
page readonly
|
|
|
|
226000
|
unkown
|
page read and write
|
|
|
|
4540000
|
unkown
|
page read and write
|
|
|
|
C60000
|
unkown image
|
page readonly
|
|
|
|
BA0000
|
unkown image
|
page readonly
|
|
|
|
110F000
|
unkown
|
page read and write
|
|
|
|
763000
|
unkown
|
page execute and read and write
|
|
|
|
C7E000
|
unkown image
|
page readonly
|
|
|
|
B40000
|
heap private
|
page read and write
|
|
|
|
4A40000
|
unkown
|
page read and write
|
|
|
|
4A60000
|
unkown
|
page read and write
|
|
|
|
7FF5D4335000
|
unkown
|
page readonly
|
|
|
|
95D000
|
unkown
|
page read and write
|
|
|
|
4FF0000
|
unkown
|
page read and write
|
|
|
|
25C82F00000
|
unkown
|
page read and write
|
|
|
|
92C000
|
heap default
|
page read and write
|
|
|
|
A80000
|
unkown
|
page read and write
|
|
|
|
4F4E000
|
unkown
|
page read and write
|
|
|
|
4B09000
|
unkown
|
page read and write
|
|
|
|
50C0000
|
unkown
|
page read and write
|
|
|
|
E11000
|
unkown
|
page read and write
|
|
|
|
7FF5D475E000
|
unkown
|
page readonly
|
|
|
|
4A50000
|
unkown
|
page read and write
|
|
|
|
98E000
|
unkown
|
page read and write
|
|
|
|
24EE000
|
unkown
|
page read and write
|
|
|
|
C60000
|
unkown image
|
page readonly
|
|
|
|
4A50000
|
unkown
|
page read and write
|
|
|
|
5080000
|
unkown
|
page read and write
|
|
|
|
4D30000
|
unkown
|
page read and write
|
|
|
|
4A20000
|
unkown
|
page read and write
|
|
|
|
25C82E29000
|
unkown
|
page read and write
|
|
|
|
4D60000
|
heap private
|
page read and write
|
|
|
|
4530000
|
unkown
|
page read and write
|
|
|
|
97E000
|
heap default
|
page read and write
|
|
|
|
7FF5D4797000
|
unkown
|
page readonly
|
|
|
|
4AB0000
|
unkown
|
page read and write
|
|
|
|
7FF5D478F000
|
unkown
|
page readonly
|
|
|
|
4A50000
|
unkown
|
page read and write
|
|
|
|
BA0000
|
unkown image
|
page readonly
|
|
|
|
4F70000
|
unkown
|
page read and write
|
|
|
|
25C82E00000
|
unkown
|
page read and write
|
|
|
|
A90000
|
unkown
|
page execute and read and write
|
|
|
|
7FF5D465E000
|
unkown
|
page readonly
|
|
|
|
50B0000
|
unkown
|
page read and write
|
|
|
|
975000
|
unkown
|
page read and write
|
|
|
|
45B000
|
unkown
|
page read and write
|
|
|
|
BA2000
|
unkown image
|
page readonly
|
|
|
|
C60000
|
unkown image
|
page readonly
|
|
|
|
7FF5D47BF000
|
unkown
|
page readonly
|
|
|
|
C7E000
|
unkown image
|
page readonly
|
|
|
|
95C000
|
unkown
|
page read and write
|
|
|
|
4A50000
|
unkown
|
page read and write
|
|
|
|
98E000
|
unkown
|
page read and write
|
|
|
|
25C82E87000
|
unkown
|
page read and write
|
|
|
|
AD4000
|
unkown
|
page read and write
|
|
There are 440 hidden memdumps, click here to show them.