Automated Malware Analysis IOC Report for

Details

Name:	00000004.00000002.466515101.000000000251B000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	251B000
Size:	2445312

Signature Hits	Behavior Group	Mitre Attack
Yara detected AntiVM3	Malware Analysis System Evasion
Tries to detect sandboxes and other dynamic analysis tools (process name or module or function)	Malware Analysis System Evasion	Security Software Discovery
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery

Details

Name:	00000004.00000002.466320044.00000000024B1000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	24B1000
Size:	430080

Signature Hits	Behavior Group	Mitre Attack
Yara detected AntiVM3	Malware Analysis System Evasion

Details

Name:	00000008.00000002.665284451.0000000000090000.00000040.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	90000
Size:	188416

Signature Hits	Behavior Group	Mitre Attack
Found malware configuration	AV Detection
Malicious sample detected (through community Yara rule)	System Summary
Yara detected FormBook	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality
Yara signature match	System Summary

Details

Name:	00000006.00000000.498261649.0000000008065000.00000040.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	8065000
Size:	110592

Signature Hits	Behavior Group	Mitre Attack
Malicious sample detected (through community Yara rule)	System Summary
Yara detected FormBook	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality
Yara signature match	System Summary

Details

Name:	00000005.00000002.506956230.0000000000250000.00000040.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	250000
Size:	188416

Signature Hits	Behavior Group	Mitre Attack
Malicious sample detected (through community Yara rule)	System Summary
Yara detected FormBook	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality
Yara signature match	System Summary

Details

Name:	00000005.00000002.507081132.0000000000400000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	400000
Size:	188416

Signature Hits	Behavior Group	Mitre Attack
Malicious sample detected (through community Yara rule)	System Summary
Yara detected FormBook	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality
Yara signature match	System Summary

Details

Name:	00000006.00000000.491984403.0000000008065000.00000040.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	8065000
Size:	110592

Signature Hits	Behavior Group	Mitre Attack
Malicious sample detected (through community Yara rule)	System Summary
Yara detected FormBook	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality
Yara signature match	System Summary

Details

Name:	00000008.00000002.665518307.0000000000280000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	280000
Size:	188416

Signature Hits	Behavior Group	Mitre Attack
Malicious sample detected (through community Yara rule)	System Summary
Yara detected FormBook	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality
Yara signature match	System Summary

Details

Name:	00000008.00000002.665436706.00000000001F0000.00000040.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	1F0000
Size:	188416

Signature Hits	Behavior Group	Mitre Attack
Malicious sample detected (through community Yara rule)	System Summary
Yara detected FormBook	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality
Yara signature match	System Summary

Details

Name:	00000005.00000002.507006682.0000000000300000.00000040.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	300000
Size:	188416

Signature Hits	Behavior Group	Mitre Attack
Malicious sample detected (through community Yara rule)	System Summary
Yara detected FormBook	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality
Yara signature match	System Summary

Details

Name:	00000004.00000002.467257018.00000000034B9000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	34B9000
Size:	3272704

Signature Hits	Behavior Group	Mitre Attack
Malicious sample detected (through community Yara rule)	System Summary
Yara detected FormBook	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality
Yara signature match	System Summary

Details

Name:	0000000C.00000002.665466101.000000007EFE0000.00000002.00020000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFE0000
Size:	20480

Details

Name:	00000006.00000000.535459635.0000000004D80000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D80000
Size:	8192

Details

Name:	00000006.00000000.466446484.0000000000020000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	20000
Size:	8192

Details

Name:	00000006.00000000.496612579.00000000045BF000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	45BF000
Size:	45056

Details

Name:	00000004.00000002.473344763.0000000006513000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6513000
Size:	4096

Details

Name:	00000004.00000002.479149467.0000000006861000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6861000
Size:	188416

Details

Name:	00000006.00000000.494126104.0000000002A30000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A30000
Size:	4096

Details

Name:	00000006.00000000.492219047.0000000008374000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8374000
Size:	118784

Details

Name:	00000006.00000000.492919861.000007FFFFFB0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFB0000
Size:	4096

Details

Name:	0000000C.00000002.665348017.0000000000306000.00000004.00000020.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	306000
Size:	16384

Details

Name:	00000004.00000002.470334168.0000000005090000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	5090000
Size:	4096

Details

Name:	00000006.00000000.466534028.00000000001D7000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	1D7000
Size:	36864

Details

Name:	00000006.00000000.483505133.00000000001D7000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	1D7000
Size:	36864

Details

Name:	00000004.00000002.465659114.0000000000D6E000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	D6E000
Size:	8192

Details

Name:	00000006.00000000.478744120.0000000003C90000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	3C90000
Size:	12288

Details

Name:	00000005.00000003.464048894.000000000032A000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	32A000
Size:	4096

Details

Name:	00000005.00000002.507071975.000000000039E000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	39E000
Size:	4096

Details

Name:	00000006.00000000.481975274.0000000007B4B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7B4B000
Size:	20480

Details

Name:	00000006.00000000.478563999.0000000003140000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	3140000
Size:	4096

Details

Name:	00000006.00000000.535946613.00000000074B4000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	74B4000
Size:	4096

Details

Name:	00000006.00000000.479459305.000000000456F000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	456F000
Size:	20480

Details

Name:	00000006.00000000.531799898.0000000002AA0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2AA0000
Size:	4096

Details

Name:	00000004.00000002.465035908.000000000062F000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	62F000
Size:	4096

Details

Name:	00000006.00000000.498687682.0000000008FAE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8FAE000
Size:	8192

Details

Name:	00000006.00000000.486793098.0000000002933000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2933000
Size:	20480

Details

Name:	00000006.00000000.483291639.0000000000010000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	10000
Size:	4096

Details

Name:	00000005.00000002.506948112.000000000024C000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	24C000
Size:	16384

Details

Name:	00000008.00000000.506346511.000000007EFC0000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFC0000
Size:	4096

Details

Name:	00000006.00000000.532406497.00000000030F0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	30F0000
Size:	8192

Details

Name:	00000004.00000003.461785903.0000000000F20000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	F20000
Size:	32768

Details

Name:	00000006.00000000.487484798.0000000002CC7000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	2CC7000
Size:	2043904

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000006.00000000.498044891.00000000074D3000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	74D3000
Size:	4096

Details

Name:	00000006.00000000.492708800.0000000009774000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	9774000
Size:	454656

Details

Name:	00000008.00000002.666125665.0000000002170000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	2170000
Size:	4112384

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000006.00000000.530367694.0000000000249000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	249000
Size:	8192

Details

Name:	00000005.00000002.507118957.00000000005A0000.00000004.00000020.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	5A0000
Size:	65536

Details

Name:	00000004.00000002.464369407.0000000000170000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	170000
Size:	4096

Details

Name:	00000004.00000002.483066712.000000000836E000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	836E000
Size:	8192

Details

Name:	00000004.00000002.483170652.000000007EFE0000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFE0000
Size:	20480

Details

Name:	00000005.00000002.508145129.0000000000B90000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	B90000
Size:	20480

Details

Name:	00000006.00000000.480868994.0000000004D20000.00000040.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	4D20000
Size:	4096

Details

Name:	00000006.00000000.485745638.0000000002110000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	2110000
Size:	28672

Details

Name:	00000006.00000000.478764036.0000000003CC0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	3CC0000
Size:	8192

Details

Name:	00000006.00000000.493332817.000000000031D000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	31D000
Size:	77824

Details

Name:	00000006.00000000.531758157.0000000002A50000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A50000
Size:	4096

Details

Name:	00000006.00000000.497461547.0000000004D70000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D70000
Size:	8192

Details

Name:	00000008.00000002.665810550.00000000007A6000.00000004.00000040.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	7A6000
Size:	12288

Details

Name:	00000004.00000002.479093876.000000000679C000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	679C000
Size:	151552

Details

Name:	00000006.00000000.493377954.000000000036F000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	36F000
Size:	4096

Details

Name:	00000008.00000002.666014129.0000000000BE0000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	BE0000
Size:	77824

Details

Name:	00000005.00000002.508355097.0000000000CA7000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	CA7000
Size:	4096

Details

Name:	00000006.00000000.486910152.00000000029F0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	29F0000
Size:	4096

Details

Name:	00000004.00000003.461565126.0000000000F50000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	F50000
Size:	65536

Details

Name:	00000006.00000000.493999799.00000000025C3000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	25C3000
Size:	233472

Details

Name:	00000006.00000000.533798568.000000000449C000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	449C000
Size:	303104

Details

Name:	00000006.00000000.479317253.00000000043C0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	43C0000
Size:	4096

Details

Name:	00000006.00000000.471417621.0000000002AA0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2AA0000
Size:	4096

Details

Name:	0000000C.00000002.665413460.0000000000564000.00000004.00000040.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	564000
Size:	16384

Details

Name:	00000006.00000000.494108213.0000000002A00000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A00000
Size:	4096

Details

Name:	00000006.00000000.486088533.0000000002130000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	2130000
Size:	28672

Details

Name:	00000006.00000000.496503576.0000000004593000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4593000
Size:	49152

Details

Name:	00000004.00000002.470155329.0000000004FAD000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	4FAD000
Size:	299008

Details

Name:	00000008.00000002.667481230.000000000382E000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	382E000
Size:	8192

Details

Name:	00000004.00000002.464387754.000000000017D000.00000040.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	17D000
Size:	4096

Details

Name:	00000006.00000000.466542730.00000000001E0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	1E0000
Size:	4096

Details

Name:	00000004.00000002.470078368.000000000460F000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	460F000
Size:	4096

Details

Name:	00000006.00000000.497857355.0000000006D40000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6D40000
Size:	4096

Details

Name:	00000008.00000002.667030080.0000000002971000.00000040.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	2971000
Size:	4096

Details

Name:	00000004.00000003.456240816.0000000005033000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5033000
Size:	20480

Details

Name:	00000004.00000002.479221116.000000000694B000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	694B000
Size:	4096

Details

Name:	00000006.00000000.483862890.000000000036F000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	36F000
Size:	4096

Details

Name:	00000006.00000000.482198616.0000000008392000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8392000
Size:	262144

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery

Details

Name:	00000006.00000000.466459647.0000000000040000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	40000
Size:	8192

Details

Name:	00000006.00000000.482895562.000007FFFFFD0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFD0000
Size:	12288

Details

Name:	00000005.00000001.463679540.0000000001000000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	image loaded
Regiontype:	unkown image
Protect:	page readonly
Base address:	1000000
Size:	4096

Details

Name:	00000006.00000000.481377626.0000000006E50000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	6E50000
Size:	4096

Details

Name:	00000006.00000000.493819566.0000000001FD0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	1FD0000
Size:	913408

Details

Name:	00000004.00000002.465805228.0000000001000000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1000000
Size:	4096

Details

Name:	00000006.00000000.493352560.000000000034E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	34E000
Size:	114688

Details

Name:	00000006.00000000.490494567.0000000004D50000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D50000
Size:	8192

Details

Name:	00000006.00000000.532512898.0000000003278000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3278000
Size:	126976

Details

Name:	00000006.00000000.493259044.0000000000255000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	255000
Size:	282624

Signature Hits	Behavior Group	Mitre Attack
May try to detect the Windows Explorer process (often used for injection)	HIPS / PFW / Operating System Protection Evasion	Process Injection Process Discovery
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery
URLs found in memory or binary data	Networking

Details

Name:	00000006.00000000.533470504.0000000004300000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4300000
Size:	4096

Details

Name:	00000004.00000003.461700748.0000000000D10000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	D10000
Size:	65536

Details

Name:	00000006.00000000.470423136.00000000020B6000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	20B6000
Size:	57344

Details

Name:	0000000C.00000002.665385170.000000000055F000.00000004.00000001.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	55F000
Size:	4096

Details

Name:	00000006.00000000.481647073.00000000074B0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	74B0000
Size:	4096

Details

Name:	00000004.00000003.455605574.0000000000A00000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	A00000
Size:	65536

Details

Name:	00000006.00000000.498085230.0000000007839000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7839000
Size:	28672

Details

Name:	00000006.00000000.497834197.0000000006C72000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6C72000
Size:	12288

Details

Name:	00000005.00000002.507221846.00000000007B4000.00000004.00000020.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	7B4000
Size:	16384

Details

Name:	00000008.00000003.607891212.0000000000230000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	230000
Size:	36864

Details

Name:	00000008.00000002.665540905.000000000030E000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	30E000
Size:	8192

Details

Name:	00000006.00000000.486388330.0000000002520000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2520000
Size:	4096

Details

Name:	00000004.00000003.461738093.0000000000C50000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	C50000
Size:	65536

Details

Name:	00000006.00000000.488394225.0000000003DF8000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3DF8000
Size:	360448

Details

Name:	00000006.00000000.479521551.00000000045CF000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	45CF000
Size:	241664

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery

Details

Name:	00000005.00000003.464180784.0000000000799000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	799000
Size:	4096

Details

Name:	00000006.00000000.483829970.000000000034E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	34E000
Size:	114688

Details

Name:	00000006.00000000.531697434.0000000002A10000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A10000
Size:	4096

Details

Name:	00000006.00000000.470458947.0000000002100000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	2100000
Size:	8192

Details

Name:	00000004.00000003.461651050.0000000000DA9000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	DA9000
Size:	28672

Details

Name:	00000004.00000002.483162853.000000007EFDF000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	7EFDF000
Size:	4096

Details

Name:	00000004.00000002.479193269.0000000006914000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6914000
Size:	176128

Details

Name:	00000006.00000000.535834659.0000000006E50000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	6E50000
Size:	4096

Details

Name:	00000005.00000002.508604010.0000000001002000.00000020.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page execute read
Base address:	1002000
Size:	684032

Details

Name:	00000006.00000000.466801636.000000000036F000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	36F000
Size:	4096

Details

Name:	00000006.00000000.490791799.00000000069E0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	69E0000
Size:	4096

Details

Name:	00000005.00000002.508023829.0000000000B27000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	B27000
Size:	4096

Details

Name:	00000004.00000002.479114369.00000000067E2000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	67E2000
Size:	163840

Details

Name:	00000004.00000002.465055723.0000000000800000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	800000
Size:	12288

Details

Name:	00000006.00000000.497814847.0000000006BBE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6BBE000
Size:	8192

Details

Name:	00000006.00000000.480734587.0000000004AF0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4AF0000
Size:	8192

Details

Name:	00000006.00000000.499220900.000007FFFFFC2000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFC2000
Size:	4096

Details

Name:	00000008.00000003.575329244.0000000000230000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	230000
Size:	36864

Details

Name:	00000006.00000000.494112900.0000000002A10000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A10000
Size:	4096

Details

Name:	00000006.00000000.530640869.0000000001B50000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	1B50000
Size:	4096

Details

Name:	00000004.00000002.478827350.00000000065B0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	65B0000
Size:	4096

Details

Name:	00000006.00000000.534100093.0000000004575000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4575000
Size:	16384

Details

Name:	00000006.00000000.488228134.0000000003D40000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3D40000
Size:	4096

Details

Name:	00000006.00000000.497973451.000000000729A000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	729A000
Size:	24576

Details

Name:	00000004.00000002.470140783.0000000004F90000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	4F90000
Size:	8192

Details

Name:	00000006.00000000.531252311.0000000002520000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2520000
Size:	4096

Details

Name:	00000005.00000002.508086796.0000000000B30000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	B30000
Size:	368640

Details

Name:	00000005.00000002.507251158.00000000007CA000.00000004.00000020.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	7CA000
Size:	73728

Signature Hits	Behavior Group	Mitre Attack
Binary contains paths to debug symbols	Compliance, System Summary

Details

Name:	00000006.00000000.494331856.0000000002CC7000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	2CC7000
Size:	2043904

Details

Name:	00000006.00000000.535979048.0000000007839000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7839000
Size:	28672

Details

Name:	00000004.00000003.460781766.0000000000C50000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	C50000
Size:	32768

Details

Name:	00000006.00000000.496072678.00000000043C0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	43C0000
Size:	4096

Details

Name:	00000005.00000002.508815310.000000007EFC2000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFC2000
Size:	4096

Details

Name:	00000006.00000000.491217645.00000000073BB000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	73BB000
Size:	20480

Details

Name:	00000006.00000000.485511332.00000000020B6000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	20B6000
Size:	57344

Details

Name:	00000006.00000000.470743789.000000000263C000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	263C000
Size:	36864

Details

Name:	00000006.00000000.479307017.00000000043A0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	43A0000
Size:	8192

Details

Name:	00000008.00000000.506705897.000000007EFD0000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFD0000
Size:	12288

Details

Name:	00000006.00000000.488103172.00000000032A9000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	32A9000
Size:	16384

Details

Name:	00000006.00000000.471252935.0000000002A00000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A00000
Size:	4096

Details

Name:	00000004.00000002.473164784.0000000006436000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6436000
Size:	16384

Details

Name:	00000006.00000000.498171119.0000000007D20000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	7D20000
Size:	24576

Details

Name:	00000006.00000000.490734836.0000000005360000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	5360000
Size:	12288

Details

Name:	00000006.00000000.478683131.00000000032A5000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	32A5000
Size:	4096

Details

Name:	00000006.00000000.530552343.00000000005B0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	5B0000
Size:	12288

Details

Name:	00000004.00000002.479043303.0000000006717000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6717000
Size:	135168

Details

Name:	00000008.00000003.508332193.00000000001E0000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1E0000
Size:	40960

Details

Name:	00000006.00000000.478676592.00000000032A0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	32A0000
Size:	8192

Details

Name:	00000006.00000000.535113436.0000000004AF0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4AF0000
Size:	8192

Details

Name:	0000000C.00000002.665247818.000000000019D000.00000004.00000001.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19D000
Size:	12288

Details

Name:	00000006.00000000.494712483.0000000003CA0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3CA0000
Size:	4096

Details

Name:	00000004.00000002.478913428.00000000065FF000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	65FF000
Size:	4096

Details

Name:	00000006.00000000.530438928.00000000002C7000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	2C7000
Size:	344064

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000005.00000003.463848053.0000000000250000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	250000
Size:	884736

Details

Name:	00000008.00000003.507351199.000000000057E000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	57E000
Size:	28672

Details

Name:	00000004.00000003.456277942.0000000004FFD000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4FFD000
Size:	81920

Details

Name:	00000008.00000003.508224005.0000000002667000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	2667000
Size:	4096

Details

Name:	00000006.00000000.498154199.0000000007BD0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	7BD0000
Size:	4096

Details

Name:	00000006.00000000.483572690.0000000000230000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	230000
Size:	20480

Details

Name:	00000006.00000000.498854980.00000000097F2000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	97F2000
Size:	245760

Details

Name:	00000004.00000002.478900572.00000000065F5000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	65F5000
Size:	8192

Details

Name:	00000004.00000003.456264234.0000000005072000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5072000
Size:	8192

Details

Name:	00000005.00000002.507051837.000000000033F000.00000040.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	33F000
Size:	4096

Details

Name:	00000004.00000003.455627227.00000000009E0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	9E0000
Size:	65536

Details

Name:	00000004.00000002.478875446.00000000065E2000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	65E2000
Size:	16384

Details

Name:	00000004.00000003.461834642.0000000000D80000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	D80000
Size:	65536

Details

Name:	00000006.00000000.531141457.00000000020B6000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	20B6000
Size:	57344

Details

Name:	00000006.00000000.481504161.000000000729A000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	729A000
Size:	24576

Details

Name:	00000006.00000000.496086186.0000000004450000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4450000
Size:	167936

Details

Name:	00000006.00000000.478693380.00000000032A9000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	32A9000
Size:	16384

Details

Name:	00000006.00000000.493955734.000000000213B000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	213B000
Size:	4096

Details

Name:	00000004.00000002.470134447.0000000004BEE000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	4BEE000
Size:	8192

Details

Name:	00000006.00000000.486980566.0000000002A20000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A20000
Size:	4096

Details

Name:	00000005.00000002.507196366.00000000006D2000.00000040.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	6D2000
Size:	4096

Details

Name:	00000004.00000002.464376523.0000000000173000.00000040.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	173000
Size:	4096

Details

Name:	00000004.00000003.461644541.0000000000DA0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	DA0000
Size:	28672

Details

Name:	00000006.00000000.494169453.0000000002AA0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2AA0000
Size:	4096

Details

Name:	00000004.00000002.470588522.0000000005330000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	5330000
Size:	4096

Details

Name:	00000006.00000000.499153801.000007FFFFFB0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFB0000
Size:	4096

Details

Name:	00000008.00000002.667256217.0000000002BFF000.00000004.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	2BFF000
Size:	688128

Details

Name:	00000008.00000003.640525884.0000000000230000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	230000
Size:	36864

Details

Name:	00000006.00000000.482342098.0000000008DC0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8DC0000
Size:	4096

Details

Name:	00000006.00000000.493157288.0000000000020000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	20000
Size:	8192

Details

Name:	00000006.00000000.536018026.0000000007B40000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7B40000
Size:	4096

Details

Name:	00000006.00000000.492579587.0000000008DDE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8DDE000
Size:	28672

Details

Name:	00000007.00000002.501373871.000000007EFD0000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFD0000
Size:	12288

Details

Name:	00000005.00000002.508751922.0000000001470000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1470000
Size:	77824

Details

Name:	00000006.00000000.531474704.0000000002959000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2959000
Size:	61440

Details

Name:	00000004.00000003.461867608.0000000000D00000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	D00000
Size:	57344

Details

Name:	00000006.00000000.466977891.0000000001B83000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	1B83000
Size:	81920

Details

Name:	00000006.00000000.535909317.00000000073B9000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	73B9000
Size:	4096

Details

Name:	00000006.00000000.489435183.0000000004575000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4575000
Size:	16384

Details

Name:	00000006.00000000.491700844.0000000007B4B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7B4B000
Size:	20480

Details

Name:	00000006.00000000.483402836.00000000000E4000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	E4000
Size:	49152

Details

Name:	00000006.00000000.471282217.0000000002A10000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A10000
Size:	4096

Details

Name:	00000004.00000002.479788362.0000000006DE4000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6DE4000
Size:	131072

Details

Name:	00000004.00000002.472119419.0000000006340000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6340000
Size:	12288

Details

Name:	00000006.00000000.486273646.00000000024F0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	24F0000
Size:	8192

Details

Name:	00000008.00000002.665219970.0000000000020000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	20000
Size:	28672

Details

Name:	00000006.00000000.534606050.0000000004650000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4650000
Size:	4001792

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000006.00000000.492591505.0000000008FAE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8FAE000
Size:	8192

Details

Name:	00000006.00000000.490571900.0000000004DB1000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	4DB1000
Size:	45056

Details

Name:	00000004.00000002.471042944.000000000609E000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	609E000
Size:	4096

Details

Name:	00000006.00000000.478476080.000000000301E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	301E000
Size:	8192

Details

Name:	00000006.00000000.481169203.0000000005390000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	5390000
Size:	4096

Details

Name:	00000006.00000000.530236362.0000000000030000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	30000
Size:	12288

Details

Name:	00000006.00000000.494509418.00000000030A8000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	30A8000
Size:	32768

Details

Name:	00000006.00000000.488922842.0000000004150000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4150000
Size:	8192

Details

Name:	00000004.00000002.479017887.00000000066DB000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	66DB000
Size:	135168

Details

Name:	00000004.00000002.479383723.0000000006A53000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6A53000
Size:	8192

Details

Name:	00000007.00000000.501177926.000000007EFC0000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFC0000
Size:	4096

Details

Name:	00000006.00000000.486668170.0000000002750000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2750000
Size:	16384

Details

Name:	00000004.00000003.461967421.0000000000C50000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	C50000
Size:	4096

Details

Name:	00000006.00000000.489473179.0000000004593000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4593000
Size:	49152

Details

Name:	00000008.00000003.507318975.000000000058A000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	58A000
Size:	20480

Details

Name:	00000005.00000002.507972739.0000000000B20000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	B20000
Size:	12288

Details

Name:	00000006.00000000.493986511.0000000002540000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2540000
Size:	4096

Details

Name:	00000004.00000002.483124350.000000007EFB2000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFB2000
Size:	4096

Details

Name:	00000004.00000002.471432208.000000000610E000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	610E000
Size:	344064

Details

Name:	00000004.00000002.482972810.0000000007F4E000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	7F4E000
Size:	8192

Details

Name:	00000004.00000002.479832795.0000000006E27000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6E27000
Size:	4096

Details

Name:	00000006.00000000.487964004.00000000031FF000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	31FF000
Size:	4096

Details

Name:	00000006.00000000.494028601.0000000002646000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2646000
Size:	155648

Details

Name:	00000004.00000002.478937327.0000000006620000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6620000
Size:	118784

Details

Name:	00000006.00000000.498208119.0000000007FF0000.00000040.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	7FF0000
Size:	471040

Details

Name:	00000004.00000002.473275495.0000000006492000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6492000
Size:	12288

Details

Name:	00000006.00000000.498026825.00000000074B0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	74B0000
Size:	4096

Details

Name:	00000006.00000000.493965981.00000000024F0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	24F0000
Size:	8192

Details

Name:	00000008.00000002.665499379.0000000000220000.00000004.00000040.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	220000
Size:	4096

Details

Name:	00000005.00000003.464976309.0000000000890000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	890000
Size:	4096

Details

Name:	00000005.00000002.507996526.0000000000B24000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	B24000
Size:	8192

Details

Name:	0000000C.00000000.578272037.000007FFFFFB2000.00000002.00020000.sdmp
TargetID:	12
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFB2000
Size:	4096

Details

Name:	00000006.00000000.536322291.000000000834B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	834B000
Size:	8192

Details

Name:	00000005.00000003.465167345.0000000000997000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	997000
Size:	4096

Details

Name:	00000004.00000003.461941290.0000000000C50000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	C50000
Size:	45056

Details

Name:	00000004.00000002.473403490.000000000652B000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	652B000
Size:	4096

Details

Name:	00000006.00000000.466670293.00000000002C7000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	2C7000
Size:	344064

Details

Name:	00000008.00000003.508093639.0000000002570000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	2570000
Size:	876544

Details

Name:	00000006.00000000.535795614.0000000006C72000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6C72000
Size:	12288

Details

Name:	00000006.00000000.531659146.0000000002A00000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A00000
Size:	4096

Details

Name:	00000006.00000000.490923832.0000000006C77000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6C77000
Size:	36864

Details

Name:	00000004.00000003.455688375.0000000000630000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	630000
Size:	45056

Details

Name:	00000008.00000003.507182153.000000000070D000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	70D000
Size:	409600

Details

Name:	00000006.00000000.495875266.0000000004300000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4300000
Size:	4096

Details

Name:	00000004.00000002.482285372.00000000072CA000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	72CA000
Size:	1441792

Details

Name:	00000008.00000000.506314036.0000000000060000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	60000
Size:	8192

Details

Name:	00000006.00000000.530530458.000000000036F000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	36F000
Size:	4096

Details

Name:	00000006.00000000.533693430.0000000004450000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4450000
Size:	167936

Details

Name:	00000006.00000000.466564020.0000000000237000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	237000
Size:	16384

Details

Name:	00000006.00000000.491459790.00000000077BE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	77BE000
Size:	8192

Details

Name:	00000006.00000000.494729131.0000000003D40000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3D40000
Size:	4096

Details

Name:	00000006.00000000.531173974.0000000002110000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	2110000
Size:	28672

Details

Name:	00000004.00000002.479068249.0000000006758000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6758000
Size:	143360

Details

Name:	00000004.00000002.471577420.00000000061C0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	61C0000
Size:	4096

Details

Name:	00000005.00000002.508594600.0000000001000000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1000000
Size:	4096

Details

Name:	00000008.00000002.665509837.0000000000240000.00000004.00000040.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	240000
Size:	4096

Details

Name:	00000006.00000000.493408143.00000000005B0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	5B0000
Size:	12288

Details

Name:	00000006.00000000.493194194.00000000000F0000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	F0000
Size:	8192

Details

Name:	00000004.00000003.462034078.00000000009B0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	9B0000
Size:	61440

Details

Name:	00000006.00000000.490518070.0000000004D60000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D60000
Size:	8192

Details

Name:	0000000C.00000002.665504694.000007FFFFFD0000.00000002.00020000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFD0000
Size:	12288

Details

Name:	00000005.00000002.508719336.00000000012E0000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	12E0000
Size:	24576

Details

Name:	00000006.00000000.499048864.0000000009A95000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	9A95000
Size:	4096

Details

Name:	00000008.00000000.506059220.000000007EFB2000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFB2000
Size:	4096

Details

Name:	00000008.00000003.564460730.0000000000230000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	230000
Size:	36864

Details

Name:	00000006.00000000.488171481.0000000003CA0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3CA0000
Size:	4096

Details

Name:	00000006.00000000.492887037.0000000009A95000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	9A95000
Size:	4096

Details

Name:	00000006.00000000.531042812.0000000001FD0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	1FD0000
Size:	913408

Details

Name:	00000006.00000000.531192605.0000000002120000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	2120000
Size:	28672

Details

Name:	00000006.00000000.530503216.0000000000330000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	330000
Size:	4096

Details

Name:	00000006.00000000.479596844.0000000004650000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4650000
Size:	4001792

Details

Name:	00000004.00000002.479387931.0000000006A5B000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6A5B000
Size:	12288

Details

Name:	00000005.00000002.507111725.000000000059F000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	59F000
Size:	4096

Details

Name:	00000006.00000000.481211987.00000000069E9000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	69E9000
Size:	28672

Details

Name:	00000006.00000000.531230743.00000000021BF000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	21BF000
Size:	4096

Details

Name:	00000006.00000000.487853952.00000000030C0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	30C0000
Size:	4096

Details

Name:	00000006.00000000.493238601.0000000000237000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	237000
Size:	16384

Details

Name:	00000006.00000000.478706953.00000000032AE000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	32AE000
Size:	86016

Details

Name:	00000008.00000002.667542219.000000007EFB2000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFB2000
Size:	4096

Details

Name:	00000006.00000000.486016255.000000000212B000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	212B000
Size:	4096

Details

Name:	00000004.00000002.465390721.0000000000C30000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	C30000
Size:	45056

Details

Name:	00000006.00000000.494651032.00000000032A0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	32A0000
Size:	8192

Details

Name:	00000008.00000002.665914265.0000000000A50000.00000040.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	A50000
Size:	69632

Details

Name:	00000006.00000000.532456888.0000000003145000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	3145000
Size:	45056

Details

Name:	00000006.00000000.486591984.0000000002646000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2646000
Size:	155648

Details

Name:	0000000C.00000002.665235104.0000000000040000.00000002.00020000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	40000
Size:	4096

Details

Name:	0000000C.00000002.665487886.000007FFFFFC0000.00000002.00020000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFC0000
Size:	4096

Details

Name:	00000004.00000003.463955883.00000000004F4000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4F4000
Size:	16384

Details

Name:	00000008.00000002.667424259.00000000030EF000.00000004.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	30EF000
Size:	4096

Details

Name:	00000006.00000000.470522478.00000000021BF000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	21BF000
Size:	4096

Details

Name:	00000006.00000000.487983498.0000000003270000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3270000
Size:	28672

Details

Name:	00000004.00000002.465644531.0000000000C9D000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	C9D000
Size:	12288

Details

Name:	00000004.00000002.470236426.0000000004FFC000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	4FFC000
Size:	86016

Details

Name:	00000008.00000002.667609917.000000007EFD0000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFD0000
Size:	12288

Details

Name:	00000006.00000000.482167008.0000000008355000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8355000
Size:	57344

Details

Name:	00000006.00000000.496229748.00000000044E7000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	44E7000
Size:	540672

Details

Name:	00000006.00000000.532475795.00000000031FF000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	31FF000
Size:	4096

Details

Name:	00000006.00000000.493932764.000000000211B000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	211B000
Size:	4096

Details

Name:	00000006.00000000.478538307.00000000030E0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	30E0000
Size:	8192

Details

Name:	00000006.00000000.488080559.00000000032A5000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	32A5000
Size:	4096

Details

Name:	00000004.00000002.464630831.0000000000454000.00000004.00000020.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	454000
Size:	110592

Details

Name:	00000004.00000002.465663480.0000000000D70000.00000004.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	D70000
Size:	196608

Details

Name:	00000006.00000000.493433605.0000000000750000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	750000
Size:	364544

Signature Hits	Behavior Group	Mitre Attack
May try to detect the Windows Explorer process (often used for injection)	HIPS / PFW / Operating System Protection Evasion	Process Injection Process Discovery

Details

Name:	00000004.00000003.461496795.0000000000CA0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	CA0000
Size:	16384

Details

Name:	00000006.00000000.534293719.00000000045A1000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	45A1000
Size:	73728

Details

Name:	00000006.00000000.533868948.00000000044E7000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	44E7000
Size:	540672

Details

Name:	00000004.00000002.471630126.0000000006202000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6202000
Size:	122880

Details

Name:	00000006.00000000.489490929.00000000045A1000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	45A1000
Size:	73728

Details

Name:	00000004.00000002.471418061.000000000610A000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	610A000
Size:	12288

Details

Name:	00000006.00000000.497541703.0000000004DC0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4DC0000
Size:	4096

Details

Name:	00000004.00000002.472215064.000000000636F000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	636F000
Size:	12288

Details

Name:	00000006.00000000.494668563.00000000032A9000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	32A9000
Size:	16384

Details

Name:	00000006.00000000.497866528.0000000006D48000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6D48000
Size:	32768

Details

Name:	00000005.00000002.508577079.0000000000E6F000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	E6F000
Size:	4096

Details

Name:	00000004.00000002.465060860.0000000000810000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	810000
Size:	77824

Details

Name:	00000006.00000000.482869674.000007FFFFFB2000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFB2000
Size:	4096

Details

Name:	00000004.00000002.479865249.0000000006E60000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6E60000
Size:	4096

Details

Name:	00000006.00000000.488319220.0000000003D90000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3D90000
Size:	421888

Details

Name:	00000006.00000000.471061488.00000000029E0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	29E0000
Size:	4096

Details

Name:	00000008.00000002.667179279.00000000029F0000.00000040.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	29F0000
Size:	12288

Details

Name:	00000006.00000000.470487651.0000000002120000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	2120000
Size:	28672

Details

Name:	00000006.00000000.493344743.0000000000330000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	330000
Size:	4096

Details

Name:	00000004.00000003.456305222.0000000005056000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5056000
Size:	106496

Details

Name:	00000006.00000000.491720628.0000000007B50000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	7B50000
Size:	8192

Details

Name:	00000006.00000000.530669844.0000000001B83000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	1B83000
Size:	81920

Details

Name:	00000006.00000000.532767618.0000000003D50000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3D50000
Size:	8192

Details

Name:	00000004.00000002.464446769.0000000000197000.00000040.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	197000
Size:	4096

Details

Name:	00000006.00000000.466470277.00000000000D0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	D0000
Size:	28672

Details

Name:	00000006.00000000.497755650.0000000005410000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	5410000
Size:	4096

Details

Name:	00000006.00000000.498289078.00000000080A2000.00000040.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	80A2000
Size:	4096

Details

Name:	00000004.00000002.478907173.00000000065FB000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	65FB000
Size:	12288

Details

Name:	00000004.00000002.470801529.000000000603B000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	603B000
Size:	229376

Details

Name:	00000004.00000002.478692598.0000000006567000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6567000
Size:	12288

Details

Name:	00000004.00000002.465115409.0000000000B10000.00000004.00000040.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	B10000
Size:	4096

Details

Name:	00000004.00000002.482806741.00000000074BB000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	74BB000
Size:	16384

Details

Name:	00000008.00000003.507361071.0000000000589000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	589000
Size:	24576

Details

Name:	00000006.00000000.483720913.000000000029B000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	29B000
Size:	151552

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery

Details

Name:	00000006.00000000.492893082.0000000009AB3000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	9AB3000
Size:	24576

Details

Name:	00000006.00000000.470623854.00000000025C3000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	25C3000
Size:	233472

Details

Name:	00000006.00000000.490538872.0000000004D70000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D70000
Size:	8192

Details

Name:	00000008.00000002.665255164.0000000000050000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	50000
Size:	16384

Details

Name:	00000008.00000002.665651382.0000000000570000.00000004.00000020.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	570000
Size:	61440

Details

Name:	00000006.00000000.482076336.0000000007D20000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	7D20000
Size:	24576

Details

Name:	00000005.00000003.465207420.0000000000A00000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	A00000
Size:	20480

Details

Name:	00000006.00000000.534150021.000000000457A000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	457A000
Size:	81920

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery

Details

Name:	00000004.00000002.471032678.000000000608F000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	608F000
Size:	12288

Details

Name:	00000004.00000002.473333132.000000000650A000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	650A000
Size:	8192

Details

Name:	00000004.00000003.462279352.0000000000CA0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	CA0000
Size:	49152

Details

Name:	00000006.00000000.489534487.00000000045BF000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	45BF000
Size:	45056

Details

Name:	00000006.00000000.493199790.0000000000110000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	110000
Size:	4096

Details

Name:	00000006.00000000.493244061.000000000023D000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	23D000
Size:	8192

Details

Name:	00000004.00000002.473155609.000000000642F000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	642F000
Size:	8192

Details

Name:	00000004.00000002.472251829.0000000006375000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6375000
Size:	143360

Details

Name:	00000004.00000002.465622548.0000000000C42000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	C42000
Size:	45056

Details

Name:	00000006.00000000.536256672.00000000080A2000.00000040.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	80A2000
Size:	4096

Details

Name:	00000006.00000000.487869491.00000000030D0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	30D0000
Size:	8192

Details

Name:	00000006.00000000.484075786.0000000001B83000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	1B83000
Size:	81920

Details

Name:	00000006.00000000.483852650.000000000036B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	36B000
Size:	4096

Details

Name:	00000006.00000000.470463590.0000000002110000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	2110000
Size:	28672

Details

Name:	00000006.00000000.490899300.0000000006C72000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6C72000
Size:	12288

Details

Name:	00000008.00000002.666595776.0000000002700000.00000040.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	2700000
Size:	876544

Details

Name:	00000006.00000000.494145841.0000000002A60000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A60000
Size:	4096

Details

Name:	00000004.00000002.482840295.00000000074D3000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	74D3000
Size:	8192

Details

Name:	00000006.00000000.531839524.0000000002AE0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	2AE0000
Size:	1986560

Signature Hits	Behavior Group	Mitre Attack
Binary contains paths to development resources	System Summary
Found strings which match to known social media urls	Networking
URLs found in memory or binary data	Networking

Details

Name:	00000008.00000003.508210669.0000000002661000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	2661000
Size:	4096

Details

Name:	00000008.00000002.665419141.00000000001CC000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1CC000
Size:	16384

Details

Name:	00000006.00000000.493254001.0000000000249000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	249000
Size:	8192

Details

Name:	00000006.00000000.532703011.0000000003CC0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	3CC0000
Size:	8192

Details

Name:	00000006.00000000.491739026.0000000007BD0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	7BD0000
Size:	4096

Details

Name:	00000008.00000003.507282375.000000000057E000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	57E000
Size:	28672

Details

Name:	00000006.00000000.480977150.0000000004D80000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D80000
Size:	8192

Details

Name:	00000004.00000002.478672433.0000000006556000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6556000
Size:	8192

Details

Name:	00000006.00000000.531775660.0000000002A70000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A70000
Size:	4096

Details

Name:	00000006.00000000.530267016.00000000000E0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	E0000
Size:	4096

Details

Name:	00000006.00000000.493151313.0000000000010000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	10000
Size:	4096

Details

Name:	00000004.00000002.467240498.00000000034B1000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	34B1000
Size:	28672

Details

Name:	00000008.00000002.667098804.0000000002977000.00000040.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	2977000
Size:	4096

Details

Name:	00000004.00000002.471891489.00000000062E5000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	62E5000
Size:	16384

Details

Name:	00000008.00000003.586172744.0000000000230000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	230000
Size:	40960

Details

Name:	00000005.00000002.508153526.0000000000BA0000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	BA0000
Size:	4096

Details

Name:	00000004.00000002.479811431.0000000006E0A000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6E0A000
Size:	90112

Details

Name:	00000006.00000000.491619470.00000000079BB000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	79BB000
Size:	20480

Details

Name:	00000008.00000000.506303087.0000000000050000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	50000
Size:	16384

Details

Name:	00000006.00000000.530276835.00000000000E4000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	E4000
Size:	49152

Details

Name:	00000006.00000000.493924911.0000000002110000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	2110000
Size:	28672

Details

Name:	00000006.00000000.535918602.00000000073BB000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	73BB000
Size:	20480

Details

Name:	00000006.00000000.535497448.0000000004DB1000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	4DB1000
Size:	45056

Details

Name:	00000004.00000002.483110007.000000007EFB0000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFB0000
Size:	4096

Details

Name:	00000006.00000000.486557073.000000000263C000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	263C000
Size:	36864

Details

Name:	00000006.00000000.498661786.0000000008DC0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8DC0000
Size:	4096

Details

Name:	00000006.00000000.478782176.0000000003D40000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3D40000
Size:	4096

Details

Name:	00000004.00000002.473225950.000000000645F000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	645F000
Size:	110592

Details

Name:	00000004.00000002.479298333.00000000069C8000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	69C8000
Size:	4096

Details

Name:	00000006.00000000.490417462.0000000004C70000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	4C70000
Size:	36864

Details

Name:	00000006.00000000.530294417.0000000000110000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	110000
Size:	4096

Details

Name:	00000004.00000003.461676866.0000000000D70000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	D70000
Size:	65536

Details

Name:	00000006.00000000.478546700.00000000030F0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	30F0000
Size:	8192

Details

Name:	00000004.00000002.464498788.00000000001C0000.00000004.00000020.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	1C0000
Size:	20480

Details

Name:	00000004.00000002.479262160.000000000698E000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	698E000
Size:	4096

Details

Name:	00000004.00000002.482823120.00000000074C1000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	74C1000
Size:	40960

Details

Name:	00000006.00000000.490746952.0000000005390000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	5390000
Size:	4096

Details

Name:	00000006.00000000.479287032.0000000004160000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4160000
Size:	4096

Details

Name:	0000000C.00000002.665221160.0000000000030000.00000002.00020000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	30000
Size:	12288

Details

Name:	00000006.00000000.536041239.0000000007B50000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	7B50000
Size:	8192

Details

Name:	00000008.00000002.665606538.0000000000530000.00000004.00000020.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	530000
Size:	16384

Details

Name:	00000008.00000002.665242305.0000000000030000.00000004.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	30000
Size:	8192

Details

Name:	00000006.00000000.494070504.00000000027E0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	27E0000
Size:	4096

Details

Name:	00000006.00000000.491783658.0000000007D20000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	7D20000
Size:	24576

Details

Name:	00000004.00000003.461617843.0000000000F20000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	F20000
Size:	65536

Details

Name:	00000006.00000000.479506588.00000000045BF000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	45BF000
Size:	45056

Details

Name:	00000008.00000003.553607381.0000000000230000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	230000
Size:	36864

Details

Name:	00000004.00000002.464584322.0000000000420000.00000040.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	420000
Size:	57344

Details

Name:	00000006.00000000.530316083.00000000001D7000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	1D7000
Size:	36864

Details

Name:	00000006.00000000.492610899.00000000096F3000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	96F3000
Size:	237568

Details

Name:	00000006.00000000.488292927.0000000003D50000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3D50000
Size:	8192

Details

Name:	00000006.00000000.466522796.00000000001CE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	1CE000
Size:	12288

Details

Name:	00000006.00000000.492467313.000000000843B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	843B000
Size:	184320

Details

Name:	00000004.00000003.456108439.0000000006021000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6021000
Size:	200704

Details

Name:	00000006.00000000.486825547.0000000002959000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2959000
Size:	61440

Details

Name:	00000004.00000003.456369433.0000000004FFC000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4FFC000
Size:	4096

Details

Name:	00000005.00000000.463487362.0000000001002000.00000020.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page execute read
Base address:	1002000
Size:	684032

Details

Name:	00000006.00000000.470504343.0000000002130000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	2130000
Size:	28672

Details

Name:	00000006.00000000.487204206.0000000002AB0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2AB0000
Size:	4096

Details

Name:	00000006.00000000.499205109.000007FFFFFC0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFC0000
Size:	4096

Details

Name:	00000004.00000002.464830039.00000000004E4000.00000004.00000020.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	4E4000
Size:	73728

Details

Name:	00000006.00000000.482113989.00000000081AE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	81AE000
Size:	8192

Details

Name:	00000006.00000000.471412894.0000000002A90000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A90000
Size:	4096

Details

Name:	00000005.00000002.506889148.0000000000050000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	50000
Size:	16384

Details

Name:	00000006.00000000.482258337.0000000008400000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8400000
Size:	176128

Details

Name:	00000006.00000000.498797853.0000000009774000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	9774000
Size:	454656

Details

Name:	00000004.00000002.473371791.0000000006527000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6527000
Size:	4096

Details

Name:	00000008.00000003.507175102.000000000070A000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	70A000
Size:	4096

Details

Name:	00000006.00000000.492018872.00000000080A2000.00000040.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	80A2000
Size:	4096

Details

Name:	00000006.00000000.494535458.00000000030F0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	30F0000
Size:	8192

Details

Name:	00000006.00000000.482234844.00000000083D8000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	83D8000
Size:	147456

Details

Name:	00000005.00000003.465155094.0000000000980000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	980000
Size:	4096

Details

Name:	00000006.00000000.530337712.0000000000230000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	230000
Size:	20480

Details

Name:	00000006.00000000.491892028.0000000007FF0000.00000040.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	7FF0000
Size:	471040

Details

Name:	00000006.00000000.478806391.0000000003D50000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3D50000
Size:	8192

Details

Name:	00000005.00000000.463589831.000000007EFC2000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFC2000
Size:	4096

Details

Name:	00000005.00000002.506922568.000000000016C000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	16C000
Size:	16384

Details

Name:	00000006.00000000.470178932.0000000001FD0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	1FD0000
Size:	913408

Details

Name:	00000004.00000002.465092475.00000000009B0000.00000040.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	9B0000
Size:	4096

Details

Name:	00000006.00000000.531746586.0000000002A40000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A40000
Size:	4096

Details

Name:	00000006.00000000.494846885.0000000003DF8000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3DF8000
Size:	360448

Details

Name:	00000006.00000000.536005616.00000000079F0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	79F0000
Size:	4096

Details

Name:	00000006.00000000.497689423.0000000005270000.00000020.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute read
Base address:	5270000
Size:	65536

Details

Name:	00000005.00000002.508161519.0000000000BB0000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	BB0000
Size:	876544

Details

Name:	00000004.00000002.464435845.0000000000192000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	192000
Size:	4096

Details

Name:	00000006.00000000.479481574.0000000004593000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4593000
Size:	49152

Details

Name:	00000006.00000000.491532934.0000000007839000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7839000
Size:	28672

Details

Name:	00000006.00000000.481538225.00000000073B9000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	73B9000
Size:	4096

Details

Name:	00000006.00000000.497924617.00000000071F0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	71F0000
Size:	4096

Details

Name:	00000004.00000002.472778377.00000000063D4000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	63D4000
Size:	319488

Details

Name:	00000006.00000000.495828120.0000000004160000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4160000
Size:	4096

Details

Name:	00000006.00000000.479321305.0000000004450000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4450000
Size:	167936

Details

Name:	00000006.00000000.495926757.0000000004308000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4308000
Size:	32768

Details

Name:	00000004.00000002.472162594.0000000006347000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6347000
Size:	151552

Details

Name:	00000006.00000000.466641183.000000000029B000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	29B000
Size:	151552

Details

Name:	00000006.00000000.491200043.00000000073B9000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	73B9000
Size:	4096

Details

Name:	00000006.00000000.488197092.0000000003CC0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	3CC0000
Size:	8192

Details

Name:	00000004.00000002.479227269.000000000694E000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	694E000
Size:	8192

Details

Name:	00000006.00000000.470545191.0000000002500000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	2500000
Size:	8192

Details

Name:	00000004.00000002.471048572.00000000060A3000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	60A3000
Size:	167936

Details

Name:	00000004.00000002.473241057.000000000647C000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	647C000
Size:	4096

Details

Name:	00000006.00000000.530524993.000000000036B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	36B000
Size:	4096

Details

Name:	00000006.00000000.498542528.00000000083D8000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	83D8000
Size:	147456

Details

Name:	00000008.00000002.667212768.0000000002A06000.00000004.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	2A06000
Size:	4096

Details

Name:	00000006.00000000.493298996.00000000002C7000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	2C7000
Size:	344064

Details

Name:	00000006.00000000.530688122.0000000001BE0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	1BE0000
Size:	4112384

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000006.00000000.480880685.0000000004D30000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D30000
Size:	8192

Details

Name:	00000006.00000000.535820568.0000000006D48000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6D48000
Size:	32768

Details

Name:	00000006.00000000.492436086.0000000008400000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8400000
Size:	176128

Details

Name:	00000006.00000000.533638061.00000000043C0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	43C0000
Size:	4096

Details

Name:	00000005.00000002.508847609.000000007EFE0000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFE0000
Size:	20480

Details

Name:	00000006.00000000.497480810.0000000004D80000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D80000
Size:	8192

Details

Name:	00000006.00000000.498900689.0000000009830000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	9830000
Size:	262144

Details

Name:	00000004.00000002.479358351.0000000006A28000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6A28000
Size:	114688

Details

Name:	00000006.00000000.533366893.0000000004150000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4150000
Size:	8192

Details

Name:	00000006.00000000.531279303.0000000002550000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2550000
Size:	36864

Details

Name:	00000006.00000000.497906113.0000000007149000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7149000
Size:	28672

Details

Name:	00000007.00000000.501164931.000000007EFB0000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFB0000
Size:	4096

Details

Name:	00000006.00000000.532417412.0000000003130000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	3130000
Size:	4096

Details

Name:	00000006.00000000.535424243.0000000004D70000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D70000
Size:	8192

Details

Name:	00000005.00000000.463478286.0000000001000000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	1000000
Size:	4096

Details

Name:	00000006.00000000.531436244.0000000002750000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2750000
Size:	16384

Details

Name:	00000005.00000002.507950798.0000000000B10000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	B10000
Size:	4096

Details

Name:	00000004.00000003.463696293.0000000005E40000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5E40000
Size:	397312

Details

Name:	00000006.00000000.530331418.0000000000220000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	220000
Size:	8192

Details

Name:	00000006.00000000.466841587.00000000005B0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	5B0000
Size:	12288

Details

Name:	00000004.00000002.464995039.00000000005C0000.00000004.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	5C0000
Size:	8192

Details

Name:	00000006.00000000.471429666.0000000002AB0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2AB0000
Size:	4096

Details

Name:	00000008.00000002.665269678.0000000000060000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	60000
Size:	8192

Details

Name:	00000004.00000002.471514268.0000000006170000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6170000
Size:	4096

Details

Name:	00000006.00000000.482319008.0000000008720000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8720000
Size:	53248

Details

Name:	00000004.00000003.460827288.0000000000C30000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	C30000
Size:	20480

Details

Name:	00000004.00000002.479496063.0000000006B49000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6B49000
Size:	135168

Details

Name:	00000006.00000000.494738190.0000000003D4B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3D4B000
Size:	20480

Details

Name:	00000004.00000002.472094228.000000000633A000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	633A000
Size:	8192

Details

Name:	00000006.00000000.494720209.0000000003CC0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	3CC0000
Size:	8192

Details

Name:	00000004.00000003.460788775.0000000000C40000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	C40000
Size:	65536

Details

Name:	00000004.00000002.465654768.0000000000CC0000.00000040.00000040.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page execute and read and write
Base address:	CC0000
Size:	4096

Details

Name:	00000004.00000002.464427056.000000000018D000.00000040.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	18D000
Size:	4096

Details

Name:	00000006.00000000.499016131.0000000009A90000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	9A90000
Size:	8192

Details

Name:	00000006.00000000.532347398.000000000309E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	309E000
Size:	16384

Details

Name:	00000006.00000000.466580679.000000000023D000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	23D000
Size:	8192

Details

Name:	00000006.00000000.488060025.00000000032A0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	32A0000
Size:	8192

Details

Name:	00000006.00000000.530558956.00000000005C0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	5C0000
Size:	77824

Details

Name:	00000004.00000002.464492124.00000000001AB000.00000040.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	1AB000
Size:	4096

Details

Name:	00000004.00000002.464697066.000000000047C000.00000004.00000020.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	47C000
Size:	94208

Details

Name:	00000006.00000000.489291629.00000000044E7000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	44E7000
Size:	540672

Details

Name:	00000006.00000000.470880949.0000000002750000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2750000
Size:	16384

Details

Name:	00000006.00000000.493492907.0000000001B83000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	1B83000
Size:	81920

Details

Name:	00000006.00000000.471440173.0000000002AE0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	2AE0000
Size:	1986560

Details

Name:	00000004.00000002.483142998.000000007EFC2000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFC2000
Size:	4096

Details

Name:	00000006.00000000.498162829.0000000007CFE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7CFE000
Size:	8192

Details

Name:	00000004.00000003.461687743.0000000000D20000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	D20000
Size:	40960

Details

Name:	00000006.00000000.535803331.0000000006C77000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6C77000
Size:	36864

Details

Name:	00000006.00000000.535930735.000000000744D000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	744D000
Size:	12288

Details

Name:	00000006.00000000.490387650.0000000004B00000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4B00000
Size:	8192

Details

Name:	00000006.00000000.531404604.000000000263C000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	263C000
Size:	36864

Details

Name:	00000006.00000000.488000894.0000000003278000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3278000
Size:	126976

Details

Name:	00000006.00000000.532676812.0000000003CA0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3CA0000
Size:	4096

Details

Name:	00000006.00000000.530226646.0000000000020000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	20000
Size:	8192

Details

Name:	00000006.00000000.531792325.0000000002A90000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A90000
Size:	4096

Details

Name:	00000004.00000002.479340002.0000000006A0D000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6A0D000
Size:	8192

Details

Name:	00000006.00000000.488254431.0000000003D4B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3D4B000
Size:	20480

Details

Name:	00000004.00000003.461842815.0000000000D70000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	D70000
Size:	65536

Details

Name:	00000008.00000002.667118624.0000000002980000.00000040.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	2980000
Size:	368640

Details

Name:	00000006.00000000.481273041.0000000006C70000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6C70000
Size:	4096

Details

Name:	00000006.00000000.466482669.00000000000E4000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	E4000
Size:	49152

Details

Name:	00000006.00000000.493185125.00000000000E4000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	E4000
Size:	49152

Details

Name:	00000008.00000003.629652973.0000000000230000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	230000
Size:	36864

Details

Name:	00000008.00000002.665791865.000000000079F000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	79F000
Size:	4096

Details

Name:	00000006.00000000.479514098.00000000045CB000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	45CB000
Size:	12288

Details

Name:	00000004.00000002.473349148.0000000006516000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6516000
Size:	8192

Details

Name:	00000006.00000000.488961088.0000000004160000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4160000
Size:	4096

Details

Name:	00000006.00000000.490346413.0000000004AC0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4AC0000
Size:	4096

Details

Name:	00000006.00000000.492818967.0000000009830000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	9830000
Size:	262144

Details

Name:	00000006.00000000.492568278.0000000008DC0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8DC0000
Size:	4096

Details

Name:	00000004.00000002.465727723.0000000000E00000.00000004.00000040.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	E00000
Size:	8192

Details

Name:	00000005.00000002.508825189.000000007EFD0000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFD0000
Size:	12288

Details

Name:	00000004.00000002.471522860.0000000006182000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6182000
Size:	172032

Details

Name:	00000006.00000000.535954177.00000000074D3000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	74D3000
Size:	4096

Details

Name:	00000006.00000000.494522109.00000000030D0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	30D0000
Size:	8192

Details

Name:	00000006.00000000.494163833.0000000002A90000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A90000
Size:	4096

Details

Name:	00000006.00000000.485934136.0000000002120000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	2120000
Size:	28672

Details

Name:	00000006.00000000.483891329.0000000000430000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	430000
Size:	24576

Details

Name:	00000006.00000000.481038553.0000000004DC0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4DC0000
Size:	4096

Details

Name:	00000004.00000003.455616186.00000000009F0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	9F0000
Size:	65536

Details

Name:	00000008.00000002.666066718.0000000000D70000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	D70000
Size:	364544

Details

Name:	00000006.00000000.471388358.0000000002A60000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A60000
Size:	4096

Details

Name:	00000004.00000003.455651240.00000000009C0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	9C0000
Size:	65536

Details

Name:	00000006.00000000.535184618.0000000004C70000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	4C70000
Size:	36864

Details

Name:	00000006.00000000.493503966.0000000001BE0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	1BE0000
Size:	4112384

Details

Name:	00000006.00000000.497807198.0000000006A60000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	6A60000
Size:	8192

Details

Name:	00000008.00000000.506074586.000000007EFD0000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFD0000
Size:	12288

Details

Name:	00000004.00000003.461804479.0000000000DB0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	DB0000
Size:	65536

Details

Name:	00000006.00000000.481006412.0000000004DB1000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	4DB1000
Size:	45056

Details

Name:	00000006.00000000.494589405.0000000003270000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3270000
Size:	28672

Details

Name:	00000006.00000000.489552765.00000000045CB000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	45CB000
Size:	12288

Details

Name:	00000006.00000000.483443767.0000000000140000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	140000
Size:	8192

Details

Name:	00000006.00000000.466601655.0000000000255000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	255000
Size:	282624

Details

Name:	00000006.00000000.478461133.0000000002F50000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2F50000
Size:	8192

Details

Name:	00000004.00000002.479012951.00000000066CC000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	66CC000
Size:	4096

Details

Name:	00000006.00000000.466849113.00000000005C0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	5C0000
Size:	77824

Details

Name:	00000004.00000002.470343794.0000000005250000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	5250000
Size:	897024

Details

Name:	00000004.00000002.479270268.0000000006998000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6998000
Size:	16384

Details

Name:	0000000C.00000002.665309811.00000000002FD000.00000004.00000020.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	2FD000
Size:	32768

Details

Name:	00000006.00000000.483593307.0000000000237000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	237000
Size:	16384

Details

Name:	00000006.00000000.533499808.0000000004308000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4308000
Size:	32768

Details

Name:	00000006.00000000.535733630.000000000556F000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	556F000
Size:	4096

Details

Name:	0000000C.00000002.665285628.00000000002C0000.00000004.00000020.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	2C0000
Size:	16384

Details

Name:	00000006.00000000.470534825.00000000024F0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	24F0000
Size:	8192

Details

Name:	00000004.00000000.454430872.000000007EFC0000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFC0000
Size:	4096

Details

Name:	00000008.00000003.508230429.0000000002670000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	2670000
Size:	368640

Details

Name:	00000008.00000002.665981239.0000000000BCE000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	BCE000
Size:	8192

Details

Name:	00000006.00000000.531628068.00000000029E0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	29E0000
Size:	4096

Details

Name:	00000006.00000000.531601059.00000000029D0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	29D0000
Size:	4096

Details

Name:	00000006.00000000.482877024.000007FFFFFC0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFC0000
Size:	4096

Details

Name:	00000006.00000000.493415034.00000000005C0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	5C0000
Size:	77824

Details

Name:	00000006.00000000.479282934.0000000004150000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4150000
Size:	8192

Details

Name:	00000006.00000000.478519745.00000000030C0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	30C0000
Size:	4096

Details

Name:	00000008.00000002.666701313.00000000027E0000.00000040.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	27E0000
Size:	4096

Details

Name:	00000006.00000000.490554783.0000000004D80000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D80000
Size:	8192

Details

Name:	00000004.00000002.478816184.00000000065A4000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	65A4000
Size:	8192

Details

Name:	00000006.00000000.498076266.000000000782F000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	782F000
Size:	8192

Details

Name:	00000006.00000000.494076719.0000000002933000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2933000
Size:	20480

Details

Name:	00000004.00000002.479243406.0000000006964000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6964000
Size:	118784

Details

Name:	00000004.00000002.478677790.000000000655A000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	655A000
Size:	4096

Details

Name:	00000004.00000002.465610468.0000000000C40000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	C40000
Size:	4096

Details

Name:	00000006.00000000.496573649.00000000045B4000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	45B4000
Size:	36864

Details

Name:	00000006.00000000.478819289.0000000003D90000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3D90000
Size:	421888

Details

Name:	00000006.00000000.482817359.0000000009AB3000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	9AB3000
Size:	24576

Details

Name:	00000005.00000000.463562483.00000000010AA000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	10AA000
Size:	4096

Details

Name:	00000006.00000000.483745242.00000000002C7000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	2C7000
Size:	344064

Details

Name:	00000008.00000002.667017805.0000000002960000.00000040.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	2960000
Size:	4096

Details

Name:	00000007.00000000.501171427.000000007EFB2000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFB2000
Size:	4096

Details

Name:	00000006.00000000.497792804.00000000069E9000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	69E9000
Size:	28672

Details

Name:	00000007.00000000.501183722.000000007EFC2000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFC2000
Size:	4096

Details

Name:	00000008.00000000.506064565.000000007EFC0000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFC0000
Size:	4096

Details

Name:	00000006.00000000.536117002.0000000007E1E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7E1E000
Size:	8192

Details

Name:	00000006.00000000.494097676.00000000029E0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	29E0000
Size:	4096

Details

Name:	00000006.00000000.497332109.0000000004B00000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4B00000
Size:	8192

Details

Name:	00000006.00000000.536055753.0000000007BD0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	7BD0000
Size:	4096

Details

Name:	00000004.00000002.470296865.0000000005056000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	5056000
Size:	106496

Details

Name:	00000004.00000002.471902873.00000000062EA000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	62EA000
Size:	126976

Details

Name:	00000005.00000002.506915521.0000000000060000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	60000
Size:	4096

Details

Name:	00000004.00000002.464889261.0000000000540000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	540000
Size:	8192

Details

Name:	00000006.00000000.480858038.0000000004C7A000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	4C7A000
Size:	4096

Details

Name:	00000006.00000000.533423721.0000000004200000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4200000
Size:	8192

Details

Name:	00000006.00000000.492526534.0000000008720000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8720000
Size:	53248

Details

Name:	00000006.00000000.493398561.0000000000430000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	430000
Size:	24576

Details

Name:	00000006.00000000.497842456.0000000006C77000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6C77000
Size:	36864

Details

Name:	00000004.00000002.482797518.00000000074B6000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	74B6000
Size:	8192

Details

Name:	00000004.00000002.465120274.0000000000B50000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	B50000
Size:	913408

Details

Name:	00000004.00000000.454433831.000000007EFC2000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFC2000
Size:	4096

Details

Name:	00000006.00000000.532569602.00000000032A0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	32A0000
Size:	8192

Details

Name:	00000004.00000002.466298890.00000000010AA000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	10AA000
Size:	4096

Details

Name:	00000006.00000000.487016865.0000000002A40000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A40000
Size:	4096

Details

Name:	00000006.00000000.489025817.0000000004308000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4308000
Size:	32768

Details

Name:	00000006.00000000.491861237.0000000007EE9000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7EE9000
Size:	28672

Details

Name:	00000004.00000003.460832291.0000000000A00000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	A00000
Size:	65536

Details

Name:	00000004.00000003.456300289.0000000005042000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5042000
Size:	12288

Details

Name:	00000005.00000002.507308179.0000000000A30000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	A30000
Size:	876544

Details

Name:	00000006.00000000.470760977.0000000002646000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2646000
Size:	155648

Details

Name:	00000004.00000002.464684592.000000000047A000.00000004.00000020.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	47A000
Size:	4096

Details

Name:	00000006.00000000.482379662.00000000096F3000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	96F3000
Size:	237568

Details

Name:	00000006.00000000.494065333.0000000002760000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	2760000
Size:	4096

Details

Name:	00000006.00000000.494174627.0000000002AB0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2AB0000
Size:	4096

Details

Name:	00000006.00000000.491309121.00000000074B0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	74B0000
Size:	4096

Details

Name:	00000006.00000000.470497964.000000000212B000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	212B000
Size:	4096

Details

Name:	00000006.00000000.470937808.00000000028E0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	28E0000
Size:	16384

Details

Name:	00000004.00000002.479828107.0000000006E20000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6E20000
Size:	4096

Details

Name:	00000006.00000000.493384381.0000000000371000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	371000
Size:	61440

Details

Name:	00000004.00000002.478958537.000000000664A000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	664A000
Size:	8192

Details

Name:	00000004.00000002.482157537.00000000071FE000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	71FE000
Size:	815104

Details

Name:	00000006.00000000.487159239.0000000002A90000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A90000
Size:	4096

Details

Name:	0000000C.00000000.578279300.000007FFFFFC0000.00000002.00020000.sdmp
TargetID:	12
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFC0000
Size:	4096

Details

Name:	00000006.00000000.470588860.0000000002550000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2550000
Size:	36864

Details

Name:	00000004.00000002.472208788.000000000636D000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	636D000
Size:	4096

Details

Name:	00000004.00000002.470626549.00000000054D0000.00000004.00000040.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	54D0000
Size:	4096

Details

Name:	00000006.00000000.535128326.0000000004B00000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4B00000
Size:	8192

Details

Name:	00000006.00000000.466497373.00000000000F0000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	F0000
Size:	8192

Details

Name:	00000006.00000000.491092223.00000000071F0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	71F0000
Size:	4096

Details

Name:	00000006.00000000.470558130.0000000002520000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2520000
Size:	4096

Details

Name:	00000006.00000000.530308858.00000000001CE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	1CE000
Size:	12288

Details

Name:	00000008.00000002.665599996.000000000050F000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	50F000
Size:	4096

Details

Name:	00000004.00000002.465030496.00000000005E0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	5E0000
Size:	4096

Details

Name:	00000004.00000002.465723769.0000000000DC0000.00000040.00000040.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page execute and read and write
Base address:	DC0000
Size:	4096

Details

Name:	00000004.00000002.479873688.0000000006E71000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6E71000
Size:	413696

Details

Name:	00000004.00000003.455593418.0000000000C30000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	C30000
Size:	36864

Details

Name:	00000004.00000002.464452188.000000000019A000.00000040.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	19A000
Size:	8192

Details

Name:	00000006.00000000.487029753.0000000002A50000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A50000
Size:	4096

Details

Name:	00000006.00000000.535711682.0000000005410000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	5410000
Size:	4096

Details

Name:	00000004.00000002.479344447.0000000006A12000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6A12000
Size:	4096

Details

Name:	00000004.00000002.464322602.0000000000050000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	50000
Size:	16384

Details

Name:	00000006.00000000.535553227.0000000004E60000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4E60000
Size:	4096

Details

Name:	00000006.00000000.479465638.0000000004575000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4575000
Size:	16384

Details

Name:	00000006.00000000.470928966.00000000027E0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	27E0000
Size:	4096

Details

Name:	00000004.00000003.455662107.00000000009B0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	9B0000
Size:	65536

Details

Name:	00000004.00000003.460844497.0000000000A00000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	A00000
Size:	28672

Details

Name:	00000004.00000002.478664857.0000000006551000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6551000
Size:	8192

Details

Name:	00000006.00000000.533603182.00000000043B0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	43B0000
Size:	8192

Details

Name:	00000006.00000000.491063025.0000000007149000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7149000
Size:	28672

Details

Name:	00000004.00000002.483047142.00000000080FE000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	80FE000
Size:	8192

Details

Name:	00000006.00000000.530361099.0000000000243000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	243000
Size:	8192

Details

Name:	00000006.00000000.489158319.000000000447A000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	447A000
Size:	126976

Details

Name:	00000004.00000002.464361662.0000000000160000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	160000
Size:	8192

Details

Name:	00000006.00000000.531237552.00000000024F0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	24F0000
Size:	8192

Details

Name:	00000006.00000000.494180076.0000000002AE0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	2AE0000
Size:	1986560

Details

Name:	00000008.00000002.666740019.00000000027F4000.00000040.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	27F4000
Size:	8192

Details

Name:	00000006.00000000.483395993.00000000000E0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	E0000
Size:	4096

Details

Name:	00000004.00000003.455710891.00000000005D0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5D0000
Size:	65536

Details

Name:	00000006.00000000.535517641.0000000004DC0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4DC0000
Size:	4096

Details

Name:	00000004.00000003.456269641.0000000005086000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5086000
Size:	40960

Details

Name:	00000008.00000003.508203282.0000000002650000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	2650000
Size:	4096

Details

Name:	00000006.00000000.531201500.000000000212B000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	212B000
Size:	4096

Details

Name:	00000004.00000003.461709438.0000000000D00000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	D00000
Size:	28672

Details

Name:	00000006.00000000.498595764.000000000843B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	843B000
Size:	184320

Details

Name:	00000006.00000000.486954715.0000000002A10000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A10000
Size:	4096

Details

Name:	00000008.00000002.667527971.000000007EFB0000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFB0000
Size:	4096

Details

Name:	0000000C.00000002.665261324.00000000001A0000.00000004.00000001.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1A0000
Size:	4096

Details

Name:	00000006.00000000.479299099.0000000004308000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4308000
Size:	32768

Details

Name:	00000006.00000000.531184151.000000000211B000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	211B000
Size:	4096

Details

Name:	00000005.00000002.507062801.0000000000341000.00000040.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	341000
Size:	12288

Details

Name:	00000004.00000003.461859044.0000000000D13000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	D13000
Size:	53248

Details

Name:	00000006.00000000.482136089.0000000008320000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8320000
Size:	163840

Details

Name:	00000004.00000002.465004153.00000000005D0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	5D0000
Size:	65536

Details

Name:	00000006.00000000.497386939.0000000004D30000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D30000
Size:	8192

Details

Name:	00000006.00000000.497739974.0000000005390000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	5390000
Size:	4096

Details

Name:	00000006.00000000.536151097.0000000007FF0000.00000040.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	7FF0000
Size:	471040

Details

Name:	00000008.00000002.665843467.0000000000940000.00000040.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	940000
Size:	69632

Details

Name:	00000006.00000000.497822980.0000000006C70000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6C70000
Size:	4096

Details

Name:	00000006.00000000.494083172.0000000002959000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2959000
Size:	61440

Details

Name:	00000006.00000000.530287556.00000000000F0000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	F0000
Size:	8192

Details

Name:	00000004.00000003.461607695.0000000000F30000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	F30000
Size:	65536

Details

Name:	00000004.00000003.461794453.0000000000F10000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	F10000
Size:	65536

Details

Name:	00000004.00000002.464863910.0000000000530000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	530000
Size:	65536

Details

Name:	00000006.00000000.498097075.00000000079BB000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	79BB000
Size:	20480

Details

Name:	00000006.00000000.483804523.000000000031D000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	31D000
Size:	77824

Details

Name:	00000004.00000003.460654834.00000000009D0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	9D0000
Size:	65536

Details

Name:	00000006.00000000.535788679.0000000006C70000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6C70000
Size:	4096

Details

Name:	00000006.00000000.490949955.0000000006D40000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6D40000
Size:	4096

Details

Name:	00000004.00000002.479372155.0000000006A49000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6A49000
Size:	4096

Details

Name:	00000006.00000000.494045699.0000000002740000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	2740000
Size:	8192

Details

Name:	00000008.00000002.667060415.0000000002974000.00000040.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	2974000
Size:	4096

Details

Name:	00000006.00000000.478503916.00000000030A8000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	30A8000
Size:	32768

Details

Name:	00000004.00000002.464908459.00000000005B0000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	5B0000
Size:	28672

Details

Name:	00000006.00000000.491682984.0000000007B40000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7B40000
Size:	4096

Details

Name:	00000005.00000002.506931858.00000000001F0000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	1F0000
Size:	69632

Details

Name:	00000006.00000000.490332247.0000000004AAD000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4AAD000
Size:	12288

Details

Name:	0000000C.00000002.665494134.000007FFFFFC2000.00000002.00020000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFC2000
Size:	4096

Details

Name:	00000004.00000003.461695262.0000000000D2F000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	D2F000
Size:	4096

Details

Name:	00000006.00000000.470583914.0000000002540000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2540000
Size:	4096

Details

Name:	00000006.00000000.535164530.0000000004B9D000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4B9D000
Size:	12288

Details

Name:	00000006.00000000.486686272.0000000002760000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	2760000
Size:	4096

Details

Name:	00000006.00000000.491108261.00000000071F7000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	71F7000
Size:	36864

Details

Name:	00000007.00000002.501331277.000000007EFC0000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFC0000
Size:	4096

Details

Name:	00000006.00000000.481051646.0000000004DD0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	4DD0000
Size:	8192

Details

Name:	00000005.00000002.508836312.000000007EFDF000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	7EFDF000
Size:	4096

Details

Name:	00000006.00000000.485857266.000000000211B000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	211B000
Size:	4096

Details

Name:	00000006.00000000.482158105.000000000834B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	834B000
Size:	8192

Details

Name:	00000006.00000000.479290834.0000000004200000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4200000
Size:	8192

Details

Name:	00000005.00000002.508386735.0000000000CB0000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	CB0000
Size:	368640

Details

Name:	00000004.00000002.472233176.0000000006373000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6373000
Size:	4096

Details

Name:	00000004.00000002.464897979.000000000058E000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	58E000
Size:	8192

Details

Name:	00000006.00000000.497600118.0000000004E5E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4E5E000
Size:	8192

Details

Name:	00000004.00000002.470337786.00000000050AD000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	50AD000
Size:	16384

Details

Name:	00000004.00000000.454427849.000000007EFB2000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFB2000
Size:	4096

Details

Name:	00000006.00000000.481255588.0000000006BBE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6BBE000
Size:	8192

Details

Name:	00000006.00000000.481435198.00000000071F7000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	71F7000
Size:	36864

Details

Name:	00000006.00000000.482069145.0000000007CFE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7CFE000
Size:	8192

Details

Name:	00000006.00000000.481562014.000000000744D000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	744D000
Size:	12288

Details

Name:	00000006.00000000.532863214.0000000003DF8000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3DF8000
Size:	360448

Details

Name:	00000004.00000000.454353605.0000000001002000.00000020.00020000.sdmp
TargetID:	4
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page execute read
Base address:	1002000
Size:	684032

Details

Name:	00000006.00000000.496477539.000000000457A000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	457A000
Size:	81920

Details

Name:	00000006.00000000.531767884.0000000002A60000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A60000
Size:	4096

Details

Name:	00000006.00000000.493172593.00000000000D0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	D0000
Size:	28672

Details

Name:	00000005.00000002.506991612.00000000002A0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2A0000
Size:	4096

Details

Name:	0000000C.00000002.665481376.000007FFFFFB2000.00000002.00020000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFB2000
Size:	4096

Details

Name:	00000006.00000000.493960971.00000000021BF000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	21BF000
Size:	4096

Details

Name:	00000006.00000000.486445315.0000000002540000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2540000
Size:	4096

Details

Name:	00000006.00000000.482333903.0000000008BBE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8BBE000
Size:	8192

Details

Name:	00000008.00000002.665705996.0000000000630000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	630000
Size:	688128

Details

Name:	00000006.00000000.493222943.00000000001E0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	1E0000
Size:	4096

Details

Name:	00000006.00000000.496418311.000000000456F000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	456F000
Size:	20480

Details

Name:	00000006.00000000.490588874.0000000004DC0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4DC0000
Size:	4096

Details

Name:	00000004.00000002.464462951.00000000001A2000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1A2000
Size:	4096

Details

Name:	00000006.00000000.481158750.0000000005360000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	5360000
Size:	12288

Details

Name:	00000006.00000000.536268145.00000000081AE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	81AE000
Size:	8192

Details

Name:	00000006.00000000.489686376.000000000460B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	460B000
Size:	282624

Details

Name:	00000004.00000002.479376084.0000000006A4B000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6A4B000
Size:	4096

Details

Name:	00000004.00000003.456362758.0000000004FF8000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4FF8000
Size:	4096

Details

Name:	00000006.00000000.535857604.00000000071F0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	71F0000
Size:	4096

Details

Name:	00000006.00000000.466557930.0000000000230000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	230000
Size:	20480

Details

Name:	00000006.00000000.487001682.0000000002A30000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A30000
Size:	4096

Details

Name:	00000006.00000000.494151232.0000000002A70000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A70000
Size:	4096

Details

Name:	00000006.00000000.478558034.0000000003130000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	3130000
Size:	4096

Details

Name:	00000006.00000000.490802646.00000000069E9000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	69E9000
Size:	28672

Details

Name:	00000006.00000000.490606075.0000000004DD0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	4DD0000
Size:	8192

Details

Name:	00000004.00000003.455697665.00000000005E0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5E0000
Size:	65536

Details

Name:	00000005.00000002.507030936.0000000000330000.00000040.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	330000
Size:	57344

Details

Name:	00000006.00000000.489449142.000000000457A000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	457A000
Size:	81920

Details

Name:	00000004.00000002.471599713.00000000061D2000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	61D2000
Size:	167936

Details

Name:	00000008.00000002.665904171.0000000000A41000.00000040.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	A41000
Size:	12288

Details

Name:	00000006.00000000.530255424.00000000000D0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	D0000
Size:	28672

Details

Name:	00000006.00000000.492150265.0000000008355000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8355000
Size:	57344

Details

Name:	00000004.00000002.479303364.00000000069D3000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	69D3000
Size:	8192

Details

Name:	00000008.00000002.665553416.0000000000330000.00000004.00000040.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	330000
Size:	8192

Details

Name:	00000006.00000000.481862568.00000000079BB000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	79BB000
Size:	20480

Details

Name:	0000000C.00000002.665447393.0000000000B3F000.00000004.00000001.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	B3F000
Size:	4096

Details

Name:	00000006.00000000.470514811.000000000213B000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	213B000
Size:	4096

Details

Name:	00000004.00000002.483135816.000000007EFC0000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFC0000
Size:	4096

Details

Name:	00000006.00000000.531371667.00000000025C3000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	25C3000
Size:	233472

Details

Name:	00000004.00000003.461893171.0000000000C50000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	C50000
Size:	65536

Details

Name:	00000006.00000000.494544269.0000000003130000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	3130000
Size:	4096

Details

Name:	00000006.00000000.530354387.000000000023D000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	23D000
Size:	8192

Details

Name:	00000006.00000000.531430246.0000000002740000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	2740000
Size:	8192

Details

Name:	00000004.00000003.456323732.0000000005072000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5072000
Size:	8192

Details

Name:	00000007.00000002.501311749.000000007EFB2000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFB2000
Size:	4096

Details

Name:	00000006.00000000.486718785.00000000027E0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	27E0000
Size:	4096

Details

Name:	00000006.00000000.479489061.00000000045A1000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	45A1000
Size:	73728

Details

Name:	00000005.00000000.463578956.000000007EFB2000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFB2000
Size:	4096

Details

Name:	00000006.00000000.480638000.0000000004AAD000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4AAD000
Size:	12288

Details

Name:	00000004.00000002.465097407.0000000000A00000.00000004.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	A00000
Size:	65536

Details

Name:	00000006.00000000.492930802.000007FFFFFC0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFC0000
Size:	4096

Details

Name:	00000008.00000002.665631042.0000000000554000.00000004.00000020.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	554000
Size:	24576

Details

Name:	00000006.00000000.531259604.0000000002533000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2533000
Size:	36864

Details

Name:	00000006.00000000.466748836.000000000031D000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	31D000
Size:	77824

Details

Name:	00000006.00000000.482859173.000007FFFFFB0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFB0000
Size:	4096

Details

Name:	00000006.00000000.494132279.0000000002A40000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A40000
Size:	4096

Details

Name:	00000006.00000000.489050050.00000000043A0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	43A0000
Size:	8192

Details

Name:	00000004.00000002.471508145.000000000616E000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	616E000
Size:	4096

Details

Name:	00000006.00000000.466586570.0000000000243000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	243000
Size:	8192

Details

Name:	00000006.00000000.482544390.00000000097F2000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	97F2000
Size:	245760

Details

Name:	00000006.00000000.535883144.000000000728E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	728E000
Size:	12288

Details

Name:	00000004.00000002.470267400.0000000005017000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	5017000
Size:	86016

Details

Name:	00000004.00000003.455727414.00000000005C0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5C0000
Size:	65536

Details

Name:	00000006.00000000.498197233.0000000007EE9000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7EE9000
Size:	28672

Details

Name:	00000004.00000002.483006974.000000000805F000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	805F000
Size:	4096

Details

Name:	00000005.00000003.464063634.000000000032D000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	32D000
Size:	409600

Details

Name:	00000006.00000000.473407531.0000000002EC1000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2EC1000
Size:	12288

Details

Name:	00000006.00000000.470565486.0000000002533000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2533000
Size:	36864

Details

Name:	00000008.00000003.507328917.0000000000580000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	580000
Size:	40960

Details

Name:	00000006.00000000.481963730.0000000007B40000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7B40000
Size:	4096

Details

Name:	00000006.00000000.531460784.0000000002933000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2933000
Size:	20480

Details

Name:	00000006.00000000.530218069.0000000000010000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	10000
Size:	4096

Details

Name:	00000006.00000000.489201284.000000000449C000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	449C000
Size:	303104

Details

Name:	00000006.00000000.493204815.0000000000140000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	140000
Size:	8192

Details

Name:	00000008.00000003.508267551.00000000026D0000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	26D0000
Size:	20480

Details

Name:	00000008.00000002.665962290.0000000000B8E000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	B8E000
Size:	8192

Details

Name:	00000006.00000000.493283714.000000000029B000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	29B000
Size:	151552

Details

Name:	00000008.00000002.665564956.0000000000340000.00000004.00000020.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	340000
Size:	61440

Details

Name:	00000006.00000000.535781741.0000000006BBE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6BBE000
Size:	8192

Details

Name:	00000006.00000000.497435804.0000000004D50000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D50000
Size:	8192

Details

Name:	00000008.00000002.665623348.0000000000537000.00000004.00000020.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	537000
Size:	4096

Details

Name:	00000006.00000000.490372408.0000000004AF0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4AF0000
Size:	8192

Details

Name:	00000005.00000003.465164017.0000000000994000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	994000
Size:	4096

Details

Name:	00000005.00000002.508702273.00000000010AA000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	10AA000
Size:	4096

Details

Name:	00000006.00000000.493215707.00000000001D7000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	1D7000
Size:	36864

Details

Name:	00000004.00000002.478806473.00000000065A1000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	65A1000
Size:	4096

Details

Name:	00000006.00000000.491807002.0000000007E1E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7E1E000
Size:	8192

Details

Name:	00000008.00000002.665801103.00000000007A0000.00000004.00000040.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	7A0000
Size:	12288

Details

Name:	00000004.00000002.478918980.0000000006602000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6602000
Size:	122880

Details

Name:	00000008.00000000.506069604.000000007EFC2000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFC2000
Size:	4096

Details

Name:	00000006.00000000.466477817.00000000000E0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	E0000
Size:	4096

Details

Name:	00000006.00000000.492042179.0000000008248000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8248000
Size:	32768

Details

Name:	00000006.00000000.490975177.0000000006D48000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6D48000
Size:	32768

Details

Name:	00000006.00000000.486637658.0000000002740000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	2740000
Size:	8192

Details

Name:	0000000C.00000002.665428958.000000000070E000.00000004.00000001.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	70E000
Size:	8192

Details

Name:	00000004.00000002.478802132.000000000659E000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	659E000
Size:	4096

Details

Name:	00000006.00000000.533744628.000000000447A000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	447A000
Size:	126976

Details

Name:	00000008.00000002.666576609.00000000026F0000.00000040.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	26F0000
Size:	4096

Details

Name:	00000005.00000002.507132012.0000000000620000.00000040.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	620000
Size:	471040

Details

Name:	00000006.00000000.471313204.0000000002A30000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A30000
Size:	4096

Details

Name:	00000006.00000000.482361276.0000000008FAE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8FAE000
Size:	8192

Details

Name:	00000004.00000002.479840025.0000000006E35000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6E35000
Size:	131072

Details

Name:	00000006.00000000.481702130.00000000074D3000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	74D3000
Size:	4096

Details

Name:	00000006.00000000.536349246.0000000008374000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8374000
Size:	118784

Details

Name:	00000004.00000002.464295619.0000000000010000.00000004.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	10000
Size:	4096

Details

Name:	00000008.00000003.618774559.0000000000230000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	230000
Size:	36864

Details

Name:	00000006.00000000.498185191.0000000007E1E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7E1E000
Size:	8192

Details

Name:	00000006.00000000.491242006.000000000744D000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	744D000
Size:	12288

Details

Name:	00000005.00000002.506867229.0000000000010000.00000004.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	10000
Size:	4096

Details

Name:	00000004.00000003.461730223.0000000000CA0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	CA0000
Size:	65536

Details

Name:	00000004.00000002.478717807.0000000006575000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6575000
Size:	131072

Details

Name:	00000006.00000000.470953710.0000000002933000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2933000
Size:	20480

Details

Name:	00000006.00000000.497890060.0000000006E50000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	6E50000
Size:	4096

Details

Name:	00000005.00000002.507275432.00000000007DD000.00000004.00000020.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	7DD000
Size:	20480

Details

Name:	00000006.00000000.536294794.0000000008320000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8320000
Size:	163840

Details

Name:	00000006.00000000.535650223.0000000005360000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	5360000
Size:	12288

Details

Name:	00000004.00000002.482581111.000000000742C000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	742C000
Size:	540672

Details

Name:	00000006.00000000.530584706.0000000000750000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	750000
Size:	364544

Details

Name:	00000006.00000000.480763333.0000000004B9D000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4B9D000
Size:	12288

Details

Name:	00000006.00000000.480713279.0000000004AC0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4AC0000
Size:	4096

Details

Name:	00000004.00000002.471797565.000000000628E000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	628E000
Size:	225280

Details

Name:	00000006.00000000.481415696.00000000071F0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	71F0000
Size:	4096

Details

Name:	00000006.00000000.490694722.0000000005270000.00000020.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute read
Base address:	5270000
Size:	65536

Details

Name:	00000004.00000003.461665320.0000000000D80000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	D80000
Size:	65536

Details

Name:	00000004.00000002.464331274.0000000000060000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	60000
Size:	4096

Details

Name:	00000004.00000002.479307429.00000000069DB000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	69DB000
Size:	12288

Details

Name:	00000005.00000002.508343256.0000000000CA4000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	CA4000
Size:	4096

Details

Name:	00000006.00000000.493370738.000000000036B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	36B000
Size:	4096

Details

Name:	00000006.00000000.530247289.0000000000040000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	40000
Size:	8192

Details

Name:	00000005.00000002.508780701.000000007EFB0000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFB0000
Size:	4096

Details

Name:	00000004.00000002.464571046.0000000000419000.00000004.00000040.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	419000
Size:	24576

Details

Name:	00000004.00000002.483154121.000000007EFD0000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFD0000
Size:	12288

Details

Name:	00000006.00000000.489424021.000000000456F000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	456F000
Size:	20480

Details

Name:	00000006.00000000.492779410.00000000097F2000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	97F2000
Size:	245760

Details

Name:	00000005.00000003.465171660.00000000009A0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	9A0000
Size:	368640

Details

Name:	00000006.00000000.482806518.0000000009A95000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	9A95000
Size:	4096

Details

Name:	00000006.00000000.535937736.00000000074B0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	74B0000
Size:	4096

Details

Name:	00000006.00000000.493487238.0000000001B65000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	1B65000
Size:	4096

Details

Name:	00000006.00000000.492075935.0000000008320000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8320000
Size:	163840

Details

Name:	00000008.00000003.507341420.000000000058F000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	58F000
Size:	20480

Details

Name:	00000006.00000000.497724660.0000000005360000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	5360000
Size:	12288

Details

Name:	00000004.00000002.479537151.0000000006BC5000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6BC5000
Size:	94208

Details

Name:	00000006.00000000.535966678.000000000782F000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	782F000
Size:	8192

Details

Name:	00000006.00000000.479397169.00000000044E7000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	44E7000
Size:	540672

Details

Name:	00000004.00000003.460805227.0000000000A00000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	A00000
Size:	65536

Details

Name:	00000006.00000000.491485126.000000000782F000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	782F000
Size:	8192

Details

Name:	00000006.00000000.479471519.000000000457A000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	457A000
Size:	81920

Details

Name:	00000006.00000000.531413310.0000000002646000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2646000
Size:	155648

Details

Name:	00000004.00000002.470291181.0000000005042000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	5042000
Size:	12288

Details

Name:	00000006.00000000.493979861.0000000002533000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2533000
Size:	36864

Details

Name:	00000006.00000000.486479739.0000000002550000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2550000
Size:	36864

Details

Name:	00000006.00000000.498488802.0000000008392000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8392000
Size:	262144

Details

Name:	00000006.00000000.534352908.00000000045B4000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	45B4000
Size:	36864

Details

Name:	00000005.00000002.508558637.0000000000D10000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	D10000
Size:	20480

Details

Name:	00000004.00000002.470680139.0000000005F2E000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	5F2E000
Size:	8192

Details

Name:	00000004.00000003.460797070.0000000000C30000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	C30000
Size:	65536

Details

Name:	0000000C.00000002.665475422.000007FFFFFB0000.00000002.00020000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFB0000
Size:	4096

Details

Name:	00000006.00000000.493476399.0000000001B50000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	1B50000
Size:	4096

Details

Name:	00000006.00000000.483415513.00000000000F0000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	F0000
Size:	8192

Details

Name:	00000006.00000000.490645896.0000000004E60000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4E60000
Size:	4096

Details

Name:	00000004.00000002.470225933.0000000004FF8000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	4FF8000
Size:	4096

Details

Name:	00000006.00000000.486419800.0000000002533000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2533000
Size:	36864

Details

Name:	0000000C.00000000.578264653.000007FFFFFB0000.00000002.00020000.sdmp
TargetID:	12
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFB0000
Size:	4096

Details

Name:	00000006.00000000.494156034.0000000002A80000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A80000
Size:	4096

Details

Name:	00000006.00000000.492405939.00000000083D8000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	83D8000
Size:	147456

Details

Name:	00000006.00000000.498134214.0000000007B4B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7B4B000
Size:	20480

Details

Name:	00000004.00000002.464515905.0000000000348000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	348000
Size:	32768

Details

Name:	00000006.00000000.499185056.000007FFFFFB2000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFB2000
Size:	4096

Details

Name:	00000006.00000000.536079381.0000000007CFE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7CFE000
Size:	8192

Details

Name:	00000006.00000000.498448932.0000000008374000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8374000
Size:	118784

Details

Name:	0000000C.00000002.665360089.000000000030B000.00000004.00000020.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	30B000
Size:	16384

Details

Name:	00000004.00000002.473425796.000000000652E000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	652E000
Size:	139264

Details

Name:	00000008.00000000.506629885.0000000000A3F000.00000040.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	A3F000
Size:	4096

Details

Name:	00000004.00000003.455747931.0000000000590000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	590000
Size:	61440

Details

Name:	00000004.00000002.464670608.0000000000470000.00000004.00000020.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	470000
Size:	12288

Details

Name:	00000004.00000002.470087169.00000000049FE000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	49FE000
Size:	8192

Details

Name:	00000005.00000002.506999941.00000000002FE000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2FE000
Size:	8192

Details

Name:	00000006.00000000.494118190.0000000002A20000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A20000
Size:	4096

Details

Name:	00000006.00000000.494092739.00000000029D0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	29D0000
Size:	4096

Details

Name:	00000006.00000000.497344843.0000000004B9D000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4B9D000
Size:	12288

Details

Name:	00000004.00000002.479215742.0000000006943000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6943000
Size:	4096

Details

Name:	00000004.00000003.462470072.00000000009B0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	9B0000
Size:	65536

Details

Name:	00000006.00000000.478610222.0000000003270000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3270000
Size:	28672

Details

Name:	00000008.00000000.506677365.000000007EFC0000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFC0000
Size:	4096

Details

Name:	00000008.00000002.665678810.0000000000584000.00000004.00000020.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	584000
Size:	4096

Details

Name:	00000004.00000002.471780089.000000000627A000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	627A000
Size:	8192

Details

Name:	00000004.00000002.471991469.0000000006311000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6311000
Size:	12288

Details

Name:	00000005.00000002.507289532.000000000093F000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	93F000
Size:	4096

Details

Name:	00000008.00000000.506038791.0000000000050000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	50000
Size:	16384

Details

Name:	00000004.00000003.456251069.0000000005056000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5056000
Size:	106496

Details

Name:	00000006.00000000.478598334.00000000031FF000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	31FF000
Size:	4096

Details

Name:	00000004.00000001.454508581.0000000001000000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	image loaded
Regiontype:	unkown image
Protect:	page readonly
Base address:	1000000
Size:	4096

Details

Name:	00000006.00000000.486515937.00000000025C3000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	25C3000
Size:	233472

Details

Name:	00000004.00000002.470322746.0000000005086000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	5086000
Size:	40960

Details

Name:	00000004.00000002.479038691.0000000006708000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6708000
Size:	8192

Details

Name:	00000006.00000000.531550224.00000000029A1000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	29A1000
Size:	77824

Details

Name:	00000005.00000002.507212845.0000000000797000.00000004.00000020.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	797000
Size:	4096

Details

Name:	00000008.00000002.667558153.000000007EFC0000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFC0000
Size:	4096

Details

Name:	00000006.00000000.493918993.0000000002100000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	2100000
Size:	8192

Details

Name:	00000004.00000002.471684773.000000000622B000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	622B000
Size:	8192

Details

Name:	00000006.00000000.484117537.0000000001BE0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	1BE0000
Size:	4112384

Details

Name:	00000004.00000002.465753179.0000000000F9C000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	F9C000
Size:	16384

Details

Name:	00000006.00000000.498065220.00000000077BE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	77BE000
Size:	8192

Details

Name:	00000006.00000000.483482696.00000000001CE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	1CE000
Size:	12288

Details

Name:	00000004.00000002.473354637.0000000006521000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6521000
Size:	8192

Details

Name:	00000004.00000002.465044800.0000000000680000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	680000
Size:	24576

Details

Name:	00000006.00000000.487053578.0000000002A60000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A60000
Size:	4096

Details

Name:	00000004.00000002.471380769.00000000060F1000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	60F1000
Size:	98304

Details

Name:	00000007.00000002.501298911.000000007EFB0000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFB0000
Size:	4096

Details

Name:	00000006.00000000.483950115.0000000000750000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	750000
Size:	364544

Details

Name:	00000008.00000002.665580007.00000000003C0000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	3C0000
Size:	4096

Details

Name:	00000006.00000000.536374645.0000000008392000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8392000
Size:	262144

Details

Name:	00000006.00000000.480741744.0000000004B00000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4B00000
Size:	8192

Details

Name:	00000006.00000000.492901055.000000007EFE0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFE0000
Size:	20480

Details

Name:	00000006.00000000.471395531.0000000002A70000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A70000
Size:	4096

Details

Name:	00000004.00000002.472017718.0000000006318000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6318000
Size:	8192

Details

Name:	00000006.00000000.478571298.0000000003145000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	3145000
Size:	45056

Details

Name:	00000006.00000000.535083385.0000000004AAD000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4AAD000
Size:	12288

Details

Name:	00000004.00000003.455682399.00000000009AA000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	9AA000
Size:	24576

Details

Name:	00000006.00000000.493938093.0000000002120000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	2120000
Size:	28672

Details

Name:	00000004.00000002.479354076.0000000006A1D000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6A1D000
Size:	8192

Details

Name:	00000006.00000000.490872666.0000000006C70000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6C70000
Size:	4096

Details

Name:	00000004.00000002.473285645.0000000006497000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6497000
Size:	466944

Details

Name:	00000004.00000002.470648952.00000000054DB000.00000004.00000040.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	54DB000
Size:	102400

Details

Name:	00000006.00000000.471032283.0000000002959000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2959000
Size:	61440

Details

Name:	00000006.00000000.492925459.000007FFFFFB2000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFB2000
Size:	4096

Details

Name:	00000005.00000002.507204154.0000000000790000.00000004.00000020.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	790000
Size:	16384

Details

Name:	00000004.00000002.478789278.000000000659C000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	659C000
Size:	4096

Details

Name:	00000006.00000000.535896736.000000000729A000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	729A000
Size:	24576

Details

Name:	00000004.00000003.460671006.0000000000630000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	630000
Size:	61440

Details

Name:	00000004.00000003.456329482.0000000005086000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5086000
Size:	40960

Details

Name:	00000006.00000000.498339659.0000000008248000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8248000
Size:	32768

Details

Name:	00000006.00000000.492846710.0000000009873000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	9873000
Size:	237568

Details

Name:	00000006.00000000.494758861.0000000003D90000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3D90000
Size:	421888

Details

Name:	00000008.00000003.507055329.0000000000630000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	630000
Size:	884736

Details

Name:	00000006.00000000.531732306.0000000002A30000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A30000
Size:	4096

Details

Name:	00000004.00000002.479941071.0000000006EDF000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6EDF000
Size:	3211264

Details

Name:	00000008.00000002.666841261.0000000002870000.00000040.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	2870000
Size:	4096

Details

Name:	00000006.00000000.494058304.0000000002750000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2750000
Size:	16384

Details

Name:	00000006.00000000.532973112.0000000003E50000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	3E50000
Size:	3133440

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000006.00000000.466795515.000000000036B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	36B000
Size:	4096

Details

Name:	00000004.00000003.455639856.00000000009D0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	9D0000
Size:	65536

Details

Name:	00000006.00000000.532381109.00000000030D0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	30D0000
Size:	8192

Details

Name:	00000006.00000000.531583000.00000000029C7000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	29C7000
Size:	4096

Details

Name:	00000004.00000002.478823341.00000000065AE000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	65AE000
Size:	4096

Details

Name:	00000006.00000000.481335265.0000000006D40000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6D40000
Size:	4096

Details

Name:	00000004.00000003.456338220.0000000004FD4000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4FD4000
Size:	139264

Details

Name:	00000004.00000002.479455276.0000000006AFC000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6AFC000
Size:	303104

Details

Name:	00000004.00000002.470285108.0000000005033000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	5033000
Size:	20480

Details

Name:	00000004.00000003.461657676.0000000000D90000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	D90000
Size:	32768

Details

Name:	00000006.00000000.485666926.0000000002100000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	2100000
Size:	8192

Details

Name:	00000006.00000000.490433436.0000000004C7A000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	4C7A000
Size:	4096

Details

Name:	00000006.00000000.466591727.0000000000249000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	249000
Size:	8192

Details

Name:	00000004.00000002.473339010.000000000650E000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	650E000
Size:	16384

Details

Name:	00000006.00000000.493167573.0000000000040000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	40000
Size:	8192

Details

Name:	00000006.00000000.492935415.000007FFFFFC2000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFC2000
Size:	4096

Details

Name:	00000004.00000002.471947807.000000000630A000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	630A000
Size:	4096

Details

Name:	00000008.00000000.506616446.0000000000A30000.00000040.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	A30000
Size:	57344

Details

Name:	00000004.00000002.465811746.0000000001002000.00000020.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page execute read
Base address:	1002000
Size:	684032

Details

Name:	00000006.00000000.488128237.00000000032AE000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	32AE000
Size:	86016

Details

Name:	00000007.00000002.501356966.000000007EFC2000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFC2000
Size:	4096

Details

Name:	00000008.00000002.665670514.0000000000580000.00000004.00000020.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	580000
Size:	4096

Details

Name:	00000005.00000002.507236281.00000000007B9000.00000004.00000020.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	7B9000
Size:	65536

Details

Name:	00000006.00000000.491414051.00000000074D3000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	74D3000
Size:	4096

Details

Name:	00000006.00000000.481545570.00000000073BB000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	73BB000
Size:	20480

Details

Name:	00000006.00000000.496770415.000000000460B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	460B000
Size:	282624

Details

Name:	00000006.00000000.481288789.0000000006C72000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6C72000
Size:	12288

Details

Name:	00000006.00000000.478946167.0000000003E50000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	3E50000
Size:	3133440

Details

Name:	00000004.00000002.478703172.000000000656E000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	656E000
Size:	4096

Details

Name:	0000000C.00000002.665278141.00000000001D6000.00000004.00000001.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1D6000
Size:	8192

Details

Name:	00000006.00000000.489067953.00000000043B0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	43B0000
Size:	8192

Details

Name:	00000004.00000003.456231159.0000000005019000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5019000
Size:	77824

Details

Name:	00000008.00000002.667635509.000000007EFDF000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	7EFDF000
Size:	4096

Details

Name:	00000008.00000002.665689020.0000000000589000.00000004.00000020.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	589000
Size:	24576

Details

Name:	00000004.00000002.465738894.0000000000F0E000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	F0E000
Size:	8192

Details

Name:	00000008.00000002.665998045.0000000000BD0000.00000004.00000040.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	BD0000
Size:	12288

Details

Name:	00000006.00000000.531502600.0000000002970000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2970000
Size:	172032

Details

Name:	00000004.00000002.478989093.0000000006690000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6690000
Size:	4096

Details

Name:	00000006.00000000.496521603.00000000045A1000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	45A1000
Size:	73728

Details

Name:	00000004.00000002.478684739.000000000655D000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	655D000
Size:	8192

Details

Name:	00000006.00000000.498146615.0000000007B50000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	7B50000
Size:	8192

Details

Name:	00000004.00000002.479109793.00000000067CE000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	67CE000
Size:	4096

Details

Name:	00000006.00000000.471407011.0000000002A80000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A80000
Size:	4096

Details

Name:	00000006.00000000.470437422.00000000020DA000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	20DA000
Size:	40960

Details

Name:	00000006.00000000.535607399.0000000005270000.00000020.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute read
Base address:	5270000
Size:	65536

Details

Name:	00000008.00000000.506338424.000000007EFB2000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFB2000
Size:	4096

Details

Name:	00000004.00000002.479239359.0000000006962000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6962000
Size:	4096

Details

Name:	00000006.00000000.487217584.0000000002AE0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	2AE0000
Size:	1986560

Details

Name:	00000006.00000000.481202110.00000000069E0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	69E0000
Size:	4096

Details

Name:	00000006.00000000.532753053.0000000003D4B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3D4B000
Size:	20480

Details

Name:	00000004.00000003.464072646.0000000000640000.00000040.00000040.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	heap private
Protect:	page execute and read and write
Base address:	640000
Size:	4096

Details

Name:	00000004.00000002.465765043.0000000000FA0000.00000040.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	FA0000
Size:	65536

Details

Name:	00000006.00000000.532115223.0000000002CC7000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	2CC7000
Size:	2043904

Details

Name:	00000006.00000000.494517044.00000000030C0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	30C0000
Size:	4096

Details

Name:	00000006.00000000.535542041.0000000004E5E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4E5E000
Size:	8192

Details

Name:	00000006.00000000.532360168.00000000030A8000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	30A8000
Size:	32768

Details

Name:	00000006.00000000.535991649.00000000079BB000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	79BB000
Size:	20480

Details

Name:	00000004.00000002.464394530.0000000000180000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	180000
Size:	53248

Details

Name:	00000006.00000000.479295349.0000000004300000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4300000
Size:	4096

Details

Name:	00000004.00000002.464477103.00000000001A5000.00000040.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	1A5000
Size:	4096

Details

Name:	00000006.00000000.483370658.00000000000D0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	D0000
Size:	28672

Details

Name:	00000008.00000002.666814054.0000000002860000.00000040.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	2860000
Size:	20480

Details

Name:	00000006.00000000.494702979.0000000003C90000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	3C90000
Size:	12288

Details

Name:	00000006.00000000.498114364.0000000007B40000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7B40000
Size:	4096

Details

Name:	00000006.00000000.493227502.0000000000220000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	220000
Size:	8192

Details

Name:	00000008.00000003.508069881.0000000002560000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	2560000
Size:	4096

Details

Name:	00000004.00000002.464336174.00000000000DB000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	DB000
Size:	20480

Details

Name:	00000004.00000002.479279516.00000000069A6000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	69A6000
Size:	122880

Details

Name:	00000004.00000002.473391539.0000000006529000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6529000
Size:	4096

Details

Name:	00000005.00000002.507296853.0000000000A20000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	A20000
Size:	4096

Details

Name:	00000004.00000003.461721913.0000000000CB0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	CB0000
Size:	65536

Details

Name:	00000008.00000002.666774306.0000000002800000.00000040.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	2800000
Size:	368640

Details

Name:	00000006.00000000.494139724.0000000002A50000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A50000
Size:	4096

Details

Name:	00000006.00000000.495853794.0000000004200000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4200000
Size:	8192

Details

Name:	00000006.00000000.487805084.0000000002F50000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2F50000
Size:	8192

Details

Name:	00000006.00000000.485608321.00000000020DA000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	20DA000
Size:	40960

Details

Name:	00000006.00000000.535814084.0000000006D40000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6D40000
Size:	4096

Details

Name:	00000006.00000000.530325110.00000000001E0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	1E0000
Size:	4096

Details

Name:	00000006.00000000.489515566.00000000045B4000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	45B4000
Size:	36864

Details

Name:	00000006.00000000.481123796.0000000005270000.00000020.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute read
Base address:	5270000
Size:	65536

Details

Name:	00000006.00000000.531815597.0000000002AB0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2AB0000
Size:	4096

Details

Name:	00000004.00000002.479332418.0000000006A07000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6A07000
Size:	4096

Details

Name:	00000006.00000000.487893370.00000000030F0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	30F0000
Size:	8192

Details

Name:	00000004.00000002.478964447.0000000006659000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6659000
Size:	172032

Details

Name:	00000006.00000000.485108669.0000000001FD0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	1FD0000
Size:	913408

Details

Name:	00000004.00000002.464381661.0000000000174000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	174000
Size:	4096

Details

Name:	00000006.00000000.530346770.0000000000237000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	237000
Size:	20480

Details

Name:	00000006.00000000.498316836.00000000081AE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	81AE000
Size:	8192

Details

Name:	00000006.00000000.498036863.00000000074B4000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	74B4000
Size:	4096

Details

Name:	00000004.00000002.472627581.00000000063AD000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	63AD000
Size:	139264

Details

Name:	00000006.00000000.484065258.0000000001B65000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	1B65000
Size:	4096

Details

Name:	00000004.00000003.460647458.00000000009E0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	9E0000
Size:	36864

Details

Name:	00000006.00000000.496154581.000000000449C000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	449C000
Size:	303104

Details

Name:	00000006.00000000.531450475.00000000027E0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	27E0000
Size:	4096

Details

Name:	00000006.00000000.535318414.0000000004D40000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D40000
Size:	8192

Details

Name:	00000006.00000000.481298906.0000000006C77000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6C77000
Size:	36864

Details

Name:	00000006.00000000.482093417.0000000007EE9000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7EE9000
Size:	28672

Details

Name:	00000006.00000000.498947208.0000000009873000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	9873000
Size:	237568

Details

Name:	00000006.00000000.471375689.0000000002A50000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A50000
Size:	4096

Details

Name:	00000006.00000000.490400808.0000000004B9D000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4B9D000
Size:	12288

Details

Name:	00000006.00000000.494490803.0000000002EC1000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2EC1000
Size:	12288

Details

Name:	00000006.00000000.493970684.0000000002500000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	2500000
Size:	8192

Details

Name:	00000006.00000000.536027619.0000000007B4B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7B4B000
Size:	20480

Details

Name:	00000006.00000000.488995677.0000000004200000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4200000
Size:	8192

Details

Name:	00000004.00000002.482940788.0000000007E4E000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	7E4E000
Size:	8192

Details

Name:	00000006.00000000.493162307.0000000000030000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	30000
Size:	12288

Details

Name:	00000004.00000002.473148176.0000000006424000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6424000
Size:	12288

Details

Name:	00000004.00000003.461716411.0000000000D0B000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	D0B000
Size:	20480

Details

Name:	00000006.00000000.487910446.0000000003130000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	3130000
Size:	4096

Details

Name:	00000006.00000000.480900513.0000000004D50000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D50000
Size:	8192

Details

Name:	00000006.00000000.498569423.0000000008400000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8400000
Size:	176128

Details

Name:	00000004.00000002.482859593.00000000074D7000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	74D7000
Size:	40960

Details

Name:	00000004.00000003.455517786.0000000000590000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	590000
Size:	4096

Details

Name:	00000004.00000003.461598726.0000000000F40000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	F40000
Size:	65536

Details

Name:	00000006.00000000.530301886.0000000000140000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	140000
Size:	8192

Details

Name:	00000006.00000000.498019217.000000000744D000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	744D000
Size:	12288

Details

Name:	00000004.00000002.473248215.000000000647E000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	647E000
Size:	12288

Details

Name:	00000006.00000000.535745972.00000000069E0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	69E0000
Size:	4096

Details

Name:	00000006.00000000.481148459.000000000532E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	532E000
Size:	8192

Details

Name:	00000006.00000000.493944604.000000000212B000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	212B000
Size:	4096

Details

Name:	00000004.00000002.479708226.0000000006D36000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6D36000
Size:	610304

Details

Name:	00000004.00000002.471660070.0000000006220000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6220000
Size:	4096

Details

Name:	00000006.00000000.480776628.0000000004C70000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	4C70000
Size:	36864

Details

Name:	00000006.00000000.493885466.00000000020B6000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	20B6000
Size:	57344

Details

Name:	00000006.00000000.536129253.0000000007EE9000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7EE9000
Size:	28672

Details

Name:	00000005.00000002.508710045.00000000012DF000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	12DF000
Size:	4096

Details

Name:	00000005.00000002.506977860.0000000000280000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	280000
Size:	69632

Details

Name:	00000006.00000000.535844056.0000000007149000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7149000
Size:	28672

Details

Name:	00000006.00000000.534455623.00000000045CB000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	45CB000
Size:	12288

Details

Name:	00000006.00000000.496454288.0000000004575000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4575000
Size:	16384

Details

Name:	00000004.00000003.461851105.0000000000D20000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	D20000
Size:	61440

Details

Name:	00000006.00000000.483903721.00000000005B0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	5B0000
Size:	12288

Details

Name:	00000004.00000003.461635157.0000000000DB0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	DB0000
Size:	65536

Details

Name:	00000006.00000000.498407370.000000000834B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	834B000
Size:	8192

Details

Name:	00000004.00000002.473267731.0000000006490000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6490000
Size:	4096

Details

Name:	00000008.00000000.506328169.000000007EFB0000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFB0000
Size:	4096

Details

Name:	00000006.00000000.466503444.0000000000110000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	110000
Size:	4096

Details

Name:	00000006.00000000.488042717.0000000003298000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3298000
Size:	32768

Details

Name:	00000006.00000000.487814809.000000000301E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	301E000
Size:	8192

Details

Name:	00000004.00000002.464539124.0000000000400000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	400000
Size:	65536

Details

Name:	00000008.00000002.667666833.000000007EFE0000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFE0000
Size:	20480

Details

Name:	00000006.00000000.481793853.000000000782F000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	782F000
Size:	8192

Details

Name:	00000006.00000000.493179625.00000000000E0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	E0000
Size:	4096

Details

Name:	00000004.00000002.471965309.000000000630C000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	630C000
Size:	8192

Details

Name:	00000006.00000000.490482863.0000000004D40000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D40000
Size:	8192

Details

Name:	00000006.00000000.486148240.000000000213B000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	213B000
Size:	4096

Details

Name:	00000006.00000000.536475398.0000000008400000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8400000
Size:	73728

Details

Name:	00000004.00000003.456294449.0000000005034000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5034000
Size:	16384

Details

Name:	00000006.00000000.534533697.000000000460B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	460B000
Size:	282624

Details

Name:	00000004.00000002.465784326.0000000000FC0000.00000004.00000040.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	FC0000
Size:	40960

Details

Name:	0000000C.00000000.578285922.000007FFFFFC2000.00000002.00020000.sdmp
TargetID:	12
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFC2000
Size:	4096

Details

Name:	00000004.00000002.464484126.00000000001A7000.00000040.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	1A7000
Size:	4096

Details

Name:	00000006.00000000.531717914.0000000002A20000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A20000
Size:	4096

Details

Name:	00000004.00000003.461504930.0000000000C50000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	C50000
Size:	65536

Details

Name:	00000006.00000000.490470788.0000000004D30000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D30000
Size:	8192

Details

Name:	00000006.00000000.498105837.00000000079F0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	79F0000
Size:	4096

Details

Name:	00000006.00000000.498714588.00000000096F3000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	96F3000
Size:	237568

Details

Name:	00000004.00000002.469177295.00000000044B0000.00000004.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	44B0000
Size:	393216

Details

Name:	00000006.00000000.497319953.0000000004AF0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4AF0000
Size:	8192

Details

Name:	00000006.00000000.489012723.0000000004300000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4300000
Size:	4096

Details

Name:	00000008.00000003.652215777.0000000000230000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	230000
Size:	36864

Details

Name:	00000006.00000000.487881294.00000000030E0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	30E0000
Size:	8192

Details

Name:	00000006.00000000.487193449.0000000002AA0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2AA0000
Size:	4096

Details

Name:	00000004.00000002.471560558.00000000061BE000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	61BE000
Size:	4096

Details

Name:	00000006.00000000.486879655.00000000029E0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	29E0000
Size:	4096

Details

Name:	00000006.00000000.466515938.0000000000140000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	140000
Size:	8192

Details

Name:	00000006.00000000.492031519.00000000081AE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	81AE000
Size:	8192

Details

Name:	00000004.00000002.479275543.00000000069A4000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	69A4000
Size:	4096

Details

Name:	00000004.00000002.470608139.0000000005409000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	5409000
Size:	8192

Details

Name:	00000006.00000000.497446929.0000000004D60000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D60000
Size:	8192

Details

Name:	00000006.00000000.497988631.00000000073B9000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	73B9000
Size:	4096

Details

Name:	00000008.00000000.506637786.0000000000A41000.00000040.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	A41000
Size:	12288

Details

Name:	00000006.00000000.470479552.000000000211B000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	211B000
Size:	4096

Details

Name:	00000006.00000000.497506880.0000000004DB1000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	4DB1000
Size:	45056

Details

Name:	00000006.00000000.466954605.0000000001B60000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	1B60000
Size:	8192

Details

Name:	00000006.00000000.470858263.0000000002740000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	2740000
Size:	8192

Details

Name:	00000006.00000000.533395317.0000000004160000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4160000
Size:	4096

Details

Name:	00000006.00000000.535755157.00000000069E9000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	69E9000
Size:	28672

Details

Name:	00000006.00000000.496649625.00000000045CB000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	45CB000
Size:	12288

Details

Name:	00000006.00000000.494102745.00000000029F0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	29F0000
Size:	4096

Details

Name:	00000008.00000002.666726521.00000000027F0000.00000040.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	27F0000
Size:	12288

Details

Name:	00000006.00000000.490724380.000000000532E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	532E000
Size:	8192

Details

Name:	00000006.00000000.530510348.000000000034E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	34E000
Size:	114688

Details

Name:	00000006.00000000.531155298.00000000020DA000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	20DA000
Size:	40960

Details

Name:	00000006.00000000.486757442.00000000028E0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	28E0000
Size:	16384

Details

Name:	00000006.00000000.531270450.0000000002540000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2540000
Size:	4096

Details

Name:	00000006.00000000.532324818.000000000301E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	301E000
Size:	8192

Details

Name:	00000006.00000000.490778685.000000000556F000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	556F000
Size:	4096

Details

Name:	00000004.00000003.455672724.00000000009A0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	9A0000
Size:	36864

Details

Name:	00000004.00000002.470722607.0000000006020000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6020000
Size:	106496

Details

Name:	00000006.00000000.536331660.0000000008355000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8355000
Size:	57344

Details

Name:	00000006.00000000.532790005.0000000003D90000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3D90000
Size:	421888

Details

Name:	0000000C.00000002.665201797.0000000000010000.00000004.00020000.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	10000
Size:	4096

Details

Name:	00000006.00000000.491754788.0000000007CFE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7CFE000
Size:	8192

Details

Name:	00000006.00000000.536099425.0000000007D20000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	7D20000
Size:	24576

Details

Name:	00000008.00000003.597068056.0000000000230000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	230000
Size:	40960

Details

Name:	00000006.00000000.534485393.00000000045CF000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	45CF000
Size:	241664

Details

Name:	00000008.00000000.506354489.000000007EFC2000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFC2000
Size:	4096

Details

Name:	00000006.00000000.497403762.0000000004D40000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D40000
Size:	8192

Details

Name:	00000006.00000000.535689552.0000000005390000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	5390000
Size:	4096

Details

Name:	00000006.00000000.481066645.0000000004E5E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4E5E000
Size:	8192

Details

Name:	00000006.00000000.494626858.0000000003298000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3298000
Size:	32768

Details

Name:	00000006.00000000.532547727.0000000003298000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3298000
Size:	32768

Details

Name:	00000004.00000003.461884613.0000000000CA0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	CA0000
Size:	65536

Details

Name:	00000004.00000002.478889979.00000000065E9000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	65E9000
Size:	16384

Details

Name:	00000006.00000000.487939907.0000000003145000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	3145000
Size:	45056

Details

Name:	00000006.00000000.486860071.00000000029D0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	29D0000
Size:	4096

Details

Name:	00000006.00000000.532312325.0000000002EC1000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2EC1000
Size:	12288

Details

Name:	00000006.00000000.472194198.0000000002CC7000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	2CC7000
Size:	2043904

Details

Name:	00000006.00000000.498623586.0000000008720000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8720000
Size:	53248

Details

Name:	00000004.00000002.470105295.0000000004A50000.00000004.00000040.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	4A50000
Size:	4096

Details

Name:	00000008.00000000.506666847.000000007EFB2000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFB2000
Size:	4096

Details

Name:	00000004.00000000.454436819.000000007EFD0000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFD0000
Size:	12288

Details

Name:	00000006.00000000.498756463.0000000009730000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	9730000
Size:	262144

Details

Name:	00000008.00000000.506695041.000000007EFC2000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFC2000
Size:	4096

Details

Name:	00000006.00000000.470919930.0000000002760000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	2760000
Size:	4096

Details

Name:	00000006.00000000.489795344.0000000004650000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4650000
Size:	4001792

Details

Name:	00000005.00000003.465271018.0000000000020000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20000
Size:	40960

Details

Name:	00000006.00000000.491658132.00000000079F0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	79F0000
Size:	4096

Details

Name:	00000006.00000000.478531945.00000000030D0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	30D0000
Size:	8192

Details

Name:	00000006.00000000.493210005.00000000001CE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	1CE000
Size:	12288

Details

Name:	00000006.00000000.483643313.0000000000249000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	249000
Size:	8192

Details

Name:	00000006.00000000.497309715.0000000004AC0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4AC0000
Size:	4096

Details

Name:	00000005.00000002.508731688.0000000001460000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1460000
Size:	12288

Details

Name:	00000006.00000000.493481854.0000000001B60000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	1B60000
Size:	8192

Details

Name:	00000006.00000000.482123157.0000000008248000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8248000
Size:	32768

Details

Name:	00000006.00000000.497294908.0000000004AAD000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4AAD000
Size:	12288

Details

Name:	00000006.00000000.492364390.0000000008392000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8392000
Size:	262144

Details

Name:	00000006.00000000.493910184.00000000020DA000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	20DA000
Size:	40960

Details

Name:	00000004.00000002.479089585.0000000006788000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6788000
Size:	4096

Details

Name:	00000006.00000000.483423579.0000000000110000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	110000
Size:	4096

Details

Name:	00000006.00000000.497958731.000000000728E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	728E000
Size:	12288

Details

Name:	00000004.00000002.465795372.0000000000FCC000.00000004.00000040.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	FCC000
Size:	16384

Details

Name:	00000006.00000000.535632439.000000000532E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	532E000
Size:	8192

Details

Name:	00000005.00000002.508804873.000000007EFC0000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFC0000
Size:	4096

Details

Name:	00000006.00000000.496898605.0000000004650000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4650000
Size:	4001792

Details

Name:	00000006.00000000.532665000.0000000003C90000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	3C90000
Size:	12288

Details

Name:	00000005.00000000.463594700.000000007EFD0000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFD0000
Size:	12288

Details

Name:	00000006.00000000.494602294.0000000003278000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3278000
Size:	126976

Details

Name:	00000006.00000000.471054458.00000000029D0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	29D0000
Size:	4096

Details

Name:	00000006.00000000.532603894.00000000032A9000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	32A9000
Size:	16384

Details

Name:	00000006.00000000.490763306.0000000005410000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	5410000
Size:	4096

Details

Name:	00000006.00000000.532433394.0000000003140000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	3140000
Size:	4096

Details

Name:	00000008.00000003.507297001.0000000000589000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	589000
Size:	24576

Details

Name:	00000006.00000000.494497516.000000000301E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	301E000
Size:	8192

Details

Name:	00000006.00000000.480892596.0000000004D40000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D40000
Size:	8192

Details

Name:	00000006.00000000.478488445.000000000309E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	309E000
Size:	16384

Details

Name:	00000006.00000000.483656929.0000000000255000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	255000
Size:	282624

Details

Name:	00000008.00000002.665819880.00000000007B0000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7B0000
Size:	24576

Details

Name:	00000008.00000002.665588930.00000000003DD000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	3DD000
Size:	4096

Details

Name:	00000004.00000002.479171901.00000000068BB000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	68BB000
Size:	184320

Details

Name:	00000004.00000002.470318515.0000000005072000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	5072000
Size:	8192

Details

Name:	00000006.00000000.497781174.00000000069E0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	69E0000
Size:	4096

Details

Name:	00000006.00000000.535403736.0000000004D60000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D60000
Size:	8192

Details

Name:	00000004.00000002.465111395.0000000000B0F000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	B0F000
Size:	4096

Details

Name:	00000006.00000000.479363463.000000000449C000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	449C000
Size:	303104

Details

Name:	00000006.00000000.466434833.0000000000010000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	10000
Size:	4096

Details

Name:	00000008.00000000.506053655.000000007EFB0000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFB0000
Size:	4096

Details

Name:	00000006.00000000.481078970.0000000004E60000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4E60000
Size:	4096

Details

Name:	00000006.00000000.494748542.0000000003D50000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3D50000
Size:	8192

Details

Name:	00000004.00000002.465107198.0000000000B0E000.00000104.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write \| page guard
Base address:	B0E000
Size:	4096

Details

Name:	00000004.00000002.478870378.00000000065DF000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	65DF000
Size:	4096

Details

Name:	00000006.00000000.530535675.0000000000371000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	371000
Size:	61440

Details

Name:	00000006.00000000.471301991.0000000002A20000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A20000
Size:	4096

Details

Name:	00000008.00000003.663081181.0000000000230000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	230000
Size:	36864

Details

Name:	00000006.00000000.482180883.0000000008374000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8374000
Size:	118784

Details

Name:	00000006.00000000.482594691.0000000009830000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	9830000
Size:	262144

Details

Name:	00000006.00000000.479344910.000000000447A000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	447A000
Size:	126976

Details

Name:	00000008.00000002.666752265.00000000027F7000.00000040.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	27F7000
Size:	4096

Details

Name:	00000006.00000000.483633540.0000000000243000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	243000
Size:	8192

Details

Name:	00000008.00000002.665941490.0000000000B2E000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	B2E000
Size:	8192

Details

Name:	00000006.00000000.532620912.00000000032AE000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	32AE000
Size:	86016

Details

Name:	00000004.00000002.479257356.0000000006985000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6985000
Size:	8192

Details

Name:	00000006.00000000.493991301.0000000002550000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2550000
Size:	36864

Details

Name:	00000008.00000002.667583074.000000007EFC2000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFC2000
Size:	4096

Details

Name:	00000005.00000003.465160002.0000000000991000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	991000
Size:	4096

Details

Name:	00000008.00000002.667163359.00000000029E0000.00000040.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	29E0000
Size:	20480

Details

Name:	00000006.00000000.490838531.0000000006BBE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6BBE000
Size:	8192

Details

Name:	00000004.00000002.472009241.0000000006315000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6315000
Size:	4096

Details

Name:	00000004.00000002.470686823.0000000005FDE000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	5FDE000
Size:	8192

Details

Name:	00000008.00000002.665645200.000000000056A000.00000004.00000020.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	56A000
Size:	4096

Details

Name:	00000006.00000000.494503321.000000000309E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	309E000
Size:	16384

Details

Name:	00000006.00000000.491168185.000000000729A000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	729A000
Size:	24576

Details

Name:	00000004.00000002.472364935.00000000063A6000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	63A6000
Size:	12288

Details

Name:	00000006.00000000.480964650.0000000004D70000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D70000
Size:	8192

Details

Name:	00000007.00000000.501190366.000000007EFD0000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFD0000
Size:	12288

Details

Name:	00000006.00000000.536279777.0000000008248000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8248000
Size:	32768

Details

Name:	00000006.00000000.487828979.000000000309E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	309E000
Size:	16384

Details

Name:	00000004.00000002.479380051.0000000006A51000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6A51000
Size:	4096

Details

Name:	00000004.00000002.483084881.000000000850E000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	850E000
Size:	8192

Details

Name:	00000006.00000000.497764389.000000000556F000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	556F000
Size:	4096

Details

Name:	00000006.00000000.498364839.0000000008320000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8320000
Size:	163840

Details

Name:	00000006.00000000.530410562.000000000029B000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	29B000
Size:	151552

Details

Name:	00000006.00000000.483550685.0000000000220000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	220000
Size:	8192

Details

Name:	00000004.00000002.479515183.0000000006B85000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6B85000
Size:	151552

Details

Name:	00000004.00000002.482982307.000000000805E000.00000104.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write \| page guard
Base address:	805E000
Size:	4096

Details

Name:	00000004.00000000.454424756.000000007EFB0000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFB0000
Size:	4096

Details

Name:	00000006.00000000.486343316.0000000002500000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	2500000
Size:	8192

Details

Name:	00000006.00000000.471333721.0000000002A40000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A40000
Size:	4096

Details

Name:	00000004.00000002.478838811.00000000065B7000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	65B7000
Size:	8192

Details

Name:	00000005.00000002.508791601.000000007EFB2000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFB2000
Size:	4096

Details

Name:	00000008.00000002.666871941.0000000002880000.00000040.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	2880000
Size:	876544

Details

Name:	00000006.00000000.499083532.0000000009AB3000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	9AB3000
Size:	24576

Details

Name:	00000004.00000002.471359565.00000000060DE000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	60DE000
Size:	8192

Details

Name:	00000006.00000000.536428971.00000000083D8000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	83D8000
Size:	147456

Details

Name:	00000006.00000000.493249120.0000000000243000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	243000
Size:	8192

Details

Name:	00000006.00000000.535526005.0000000004DD0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	4DD0000
Size:	8192

Details

Name:	00000006.00000000.532490258.0000000003270000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3270000
Size:	28672

Details

Name:	00000008.00000000.506045952.0000000000060000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	60000
Size:	8192

Details

Name:	00000004.00000002.471856720.00000000062C9000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	62C9000
Size:	8192

Details

Name:	00000006.00000000.497567328.0000000004DD0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	4DD0000
Size:	8192

Details

Name:	00000006.00000000.482016958.0000000007B50000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	7B50000
Size:	8192

Details

Name:	00000006.00000000.492940434.000007FFFFFD0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFD0000
Size:	12288

Details

Name:	00000006.00000000.532391320.00000000030E0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	30E0000
Size:	8192

Details

Name:	00000006.00000000.535257973.0000000004D20000.00000040.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	4D20000
Size:	4096

Details

Name:	00000006.00000000.483529431.00000000001E0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	1E0000
Size:	4096

Details

Name:	00000006.00000000.471235369.00000000029F0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	29F0000
Size:	4096

Details

Name:	00000006.00000000.532589148.00000000032A5000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	32A5000
Size:	4096

Details

Name:	00000006.00000000.494927292.0000000003E50000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	3E50000
Size:	3133440

Details

Name:	00000006.00000000.492880942.0000000009A90000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	9A90000
Size:	8192

Details

Name:	00000006.00000000.531165706.0000000002100000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	2100000
Size:	8192

Details

Name:	00000006.00000000.478624613.0000000003278000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3278000
Size:	126976

Details

Name:	00000006.00000000.497374697.0000000004D20000.00000040.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	4D20000
Size:	4096

Details

Name:	00000006.00000000.534212098.0000000004593000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4593000
Size:	49152

Details

Name:	00000004.00000002.478831843.00000000065B5000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	65B5000
Size:	4096

Details

Name:	00000005.00000000.463572132.000000007EFB0000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFB0000
Size:	4096

Details

Name:	00000006.00000000.482795888.0000000009A90000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	9A90000
Size:	8192

Details

Name:	00000004.00000003.461824658.0000000000D90000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	D90000
Size:	65536

Details

Name:	00000006.00000000.466961334.0000000001B65000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	1B65000
Size:	4096

Details

Name:	00000004.00000003.461875062.0000000000CB0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	CB0000
Size:	65536

Details

Name:	00000006.00000000.534006289.000000000456F000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	456F000
Size:	20480

Details

Name:	00000006.00000000.480936792.0000000004D60000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D60000
Size:	8192

Details

Name:	00000006.00000000.483344610.0000000000040000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	40000
Size:	8192

Details

Name:	00000004.00000002.478883219.00000000065E7000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	65E7000
Size:	4096

Details

Name:	00000008.00000000.506363211.000000007EFD0000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFD0000
Size:	12288

Details

Name:	00000006.00000000.478664241.0000000003298000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3298000
Size:	32768

Details

Name:	00000004.00000002.478712477.0000000006570000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6570000
Size:	8192

Details

Name:	00000004.00000003.456288977.0000000005017000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5017000
Size:	8192

Details

Name:	00000004.00000003.461815266.0000000000DA0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	DA0000
Size:	65536

Details

Name:	00000006.00000000.473802824.0000000002F20000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2F20000
Size:	172032

Details

Name:	00000006.00000000.491368476.00000000074B4000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	74B4000
Size:	4096

Details

Name:	00000004.00000002.470633925.00000000054D4000.00000004.00000040.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	54D4000
Size:	8192

Details

Name:	00000005.00000002.508585380.0000000000F10000.00000004.00000040.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	F10000
Size:	8192

Details

Name:	00000006.00000000.498674333.0000000008DDE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8DDE000
Size:	28672

Details

Name:	00000006.00000000.494021224.000000000263C000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	263C000
Size:	36864

Details

Name:	00000004.00000002.479349394.0000000006A15000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6A15000
Size:	8192

Details

Name:	00000006.00000000.487103357.0000000002A80000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A80000
Size:	4096

Details

Name:	00000006.00000000.535100493.0000000004AC0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4AC0000
Size:	4096

Details

Name:	00000006.00000000.486928856.0000000002A00000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A00000
Size:	4096

Details

Name:	00000004.00000002.470123394.0000000004A72000.00000004.00000040.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	4A72000
Size:	12288

Details

Name:	00000006.00000000.482832689.000000007EFE0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFE0000
Size:	20480

Details

Name:	00000005.00000000.463585081.000000007EFC0000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFC0000
Size:	4096

Details

Name:	00000006.00000000.482447592.0000000009774000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	9774000
Size:	454656

Details

Name:	00000006.00000000.535868063.00000000071F7000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	71F7000
Size:	36864

Details

Name:	00000004.00000002.478847164.00000000065BC000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	65BC000
Size:	131072

Details

Name:	00000005.00000003.464985748.00000000008A0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	8A0000
Size:	876544

Details

Name:	0000000C.00000000.578293431.000007FFFFFD0000.00000002.00020000.sdmp
TargetID:	12
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFD0000
Size:	12288

Details

Name:	00000006.00000000.532723898.0000000003D40000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3D40000
Size:	4096

Details

Name:	00000006.00000000.483315509.0000000000020000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	20000
Size:	8192

Details

Name:	00000006.00000000.481243400.0000000006A60000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	6A60000
Size:	8192

Details

Name:	00000006.00000000.488479537.0000000003E50000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	3E50000
Size:	3133440

Details

Name:	00000004.00000000.454419654.00000000010AA000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	10AA000
Size:	4096

Details

Name:	00000006.00000000.535290302.0000000004D30000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D30000
Size:	8192

Details

Name:	00000006.00000000.489564782.00000000045CF000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	45CF000
Size:	241664

Details

Name:	00000006.00000000.493232509.0000000000230000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	230000
Size:	20480

Details

Name:	00000004.00000002.479266068.0000000006990000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6990000
Size:	8192

Details

Name:	00000005.00000003.464201016.000000000079E000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	79E000
Size:	8192

Details

Name:	00000008.00000002.665834379.0000000000930000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	930000
Size:	12288

Details

Name:	00000006.00000000.531221898.000000000213B000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	213B000
Size:	4096

Details

Name:	00000004.00000002.478777791.0000000006598000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6598000
Size:	8192

Details

Name:	00000008.00000000.506598263.0000000000050000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	50000
Size:	16384

Details

Name:	00000006.00000000.492661666.0000000009730000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	9730000
Size:	262144

Details

Name:	00000004.00000002.472358091.00000000063A0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	63A0000
Size:	8192

Details

Name:	00000004.00000002.464622346.0000000000437000.00000004.00000020.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	437000
Size:	8192

Details

Name:	00000004.00000002.472038721.0000000006321000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6321000
Size:	98304

Details

Name:	00000006.00000000.530657320.0000000001B65000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	1B65000
Size:	4096

Details

Name:	00000004.00000002.470114670.0000000004A54000.00000004.00000040.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	4A54000
Size:	4096

Details

Name:	00000006.00000000.494581190.00000000031FF000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	31FF000
Size:	4096

Details

Name:	00000004.00000002.464531560.0000000000358000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	358000
Size:	4096

Details

Name:	00000004.00000003.461265182.0000000000C40000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	C40000
Size:	8192

Details

Name:	00000006.00000000.481354200.0000000006D48000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	6D48000
Size:	32768

Details

Name:	00000006.00000000.482032680.0000000007BD0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	7BD0000
Size:	4096

Details

Name:	00000006.00000000.479558776.000000000460B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	460B000
Size:	282624

Details

Name:	00000006.00000000.479500596.00000000045B4000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	45B4000
Size:	36864

Details

Name:	00000006.00000000.466452843.0000000000030000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	30000
Size:	12288

Details

Name:	00000004.00000002.464730383.0000000000496000.00000004.00000020.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	496000
Size:	307200

Details

Name:	00000006.00000000.494658804.00000000032A5000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	32A5000
Size:	4096

Details

Name:	00000006.00000000.494678809.00000000032AE000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	32AE000
Size:	86016

Details

Name:	00000006.00000000.478896018.0000000003DF8000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3DF8000
Size:	360448

Details

Name:	00000006.00000000.489098463.00000000043C0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	43C0000
Size:	4096

Details

Name:	00000006.00000000.481810574.0000000007839000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7839000
Size:	28672

Details

Name:	00000004.00000002.479064133.0000000006745000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6745000
Size:	4096

Details

Name:	00000006.00000000.496057713.00000000043B0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	43B0000
Size:	8192

Details

Name:	00000006.00000000.478793533.0000000003D4B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3D4B000
Size:	20480

Details

Name:	00000006.00000000.496124657.000000000447A000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	447A000
Size:	126976

Details

Name:	00000004.00000003.462356048.0000000000C50000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	C50000
Size:	65536

Details

Name:	00000004.00000002.472665873.00000000063D0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	63D0000
Size:	8192

Details

Name:	00000006.00000000.497937418.00000000071F7000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	71F7000
Size:	36864

Details

Name:	00000006.00000000.484047199.0000000001B50000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	1B50000
Size:	4096

Details

Name:	00000006.00000000.495768595.0000000004150000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4150000
Size:	8192

Details

Name:	00000006.00000000.488155546.0000000003C90000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	3C90000
Size:	12288

Details

Name:	00000006.00000000.496664772.00000000045CF000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	45CF000
Size:	241664

Details

Name:	00000006.00000000.497366585.0000000004C7A000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	4C7A000
Size:	4096

Details

Name:	00000004.00000002.471719281.000000000623F000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	623F000
Size:	167936

Details

Name:	00000006.00000000.533556805.00000000043A0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	43A0000
Size:	8192

Details

Name:	00000004.00000003.456246207.0000000005042000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5042000
Size:	12288

Details

Name:	00000006.00000000.532372765.00000000030C0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	30C0000
Size:	4096

Details

Name:	00000006.00000000.487843356.00000000030A8000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	30A8000
Size:	32768

Details

Name:	00000006.00000000.497353643.0000000004C70000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	4C70000
Size:	36864

Details

Name:	00000006.00000000.487726567.0000000002EC1000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2EC1000
Size:	12288

Details

Name:	00000006.00000000.487751866.0000000002F20000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2F20000
Size:	172032

Details

Name:	00000004.00000002.473257709.0000000006489000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6489000
Size:	12288

Details

Name:	00000006.00000000.534395972.00000000045BF000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	45BF000
Size:	45056

Details

Name:	00000006.00000000.482411320.0000000009730000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	9730000
Size:	262144

Details

Name:	00000005.00000002.508328132.0000000000CA1000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	CA1000
Size:	4096

Details

Name:	00000006.00000000.466876598.0000000000750000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	750000
Size:	364544

Details

Name:	00000006.00000000.531210539.0000000002130000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	2130000
Size:	28672

Details

Name:	00000006.00000000.483819422.0000000000330000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	330000
Size:	4096

Details

Name:	00000006.00000000.478756471.0000000003CA0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	3CA0000
Size:	4096

Details

Name:	00000004.00000002.479233241.0000000006955000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6955000
Size:	16384

Details

Name:	00000006.00000000.498647139.0000000008BBE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8BBE000
Size:	8192

Details

Name:	00000004.00000003.463902313.00000000053B1000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	53B1000
Size:	368640

Details

Name:	00000006.00000000.497710436.000000000532E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	532E000
Size:	8192

Details

Name:	00000006.00000000.466806666.0000000000371000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	371000
Size:	61440

Details

Name:	00000006.00000000.487074757.0000000002A70000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A70000
Size:	4096

Details

Name:	00000006.00000000.535225077.0000000004C7A000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	4C7A000
Size:	4096

Details

Name:	00000006.00000000.497629542.0000000004E60000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4E60000
Size:	4096

Details

Name:	00000004.00000002.470602780.00000000053B0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	53B0000
Size:	4096

Details

Name:	00000006.00000000.490447426.0000000004D20000.00000040.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	4D20000
Size:	4096

Details

Name:	00000006.00000000.530647382.0000000001B60000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	1B60000
Size:	8192

Details

Name:	00000006.00000000.496038830.00000000043A0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	43A0000
Size:	8192

Details

Name:	00000006.00000000.531785467.0000000002A80000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2A80000
Size:	4096

Details

Name:	00000004.00000002.464558120.0000000000410000.00000004.00000040.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	410000
Size:	24576

Details

Name:	00000006.00000000.482349883.0000000008DDE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8DDE000
Size:	28672

Details

Name:	00000006.00000000.531649051.00000000029F0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	29F0000
Size:	4096

Details

Name:	00000006.00000000.530374415.0000000000255000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	255000
Size:	282624

Details

Name:	00000004.00000003.455736104.00000000005B0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5B0000
Size:	61440

Details

Name:	00000004.00000002.479336317.0000000006A0A000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6A0A000
Size:	4096

Details

Name:	00000006.00000000.530487736.000000000031D000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	31D000
Size:	77824

Details

Name:	00000006.00000000.494563447.0000000003145000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	3145000
Size:	45056

Details

Name:	00000006.00000000.492553116.0000000008BBE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8BBE000
Size:	8192

Details

Name:	00000006.00000000.481776703.00000000077BE000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	77BE000
Size:	8192

Details

Name:	00000006.00000000.481396213.0000000007149000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7149000
Size:	28672

Details

Name:	00000006.00000000.491012491.0000000006E50000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	6E50000
Size:	4096

Details

Name:	00000006.00000000.482286815.000000000843B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	843B000
Size:	184320

Details

Name:	00000004.00000003.460663258.00000000009B0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	9B0000
Size:	65536

Details

Name:	00000004.00000002.479312844.00000000069E7000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	69E7000
Size:	126976

Details

Name:	00000006.00000000.481930235.00000000079F0000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	79F0000
Size:	4096

Details

Name:	00000008.00000002.665384150.00000000000FD000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	FD000
Size:	12288

Details

Name:	00000006.00000000.535768354.0000000006A60000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	6A60000
Size:	8192

Details

Name:	00000006.00000000.481178815.0000000005410000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	5410000
Size:	4096

Details

Name:	00000006.00000000.483329002.0000000000030000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	30000
Size:	12288

Details

Name:	00000005.00000002.508568462.0000000000D20000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	D20000
Size:	12288

Details

Name:	00000004.00000002.464303979.0000000000020000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	20000
Size:	4096

Details

Name:	00000006.00000000.483869951.0000000000371000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	371000
Size:	61440

Details

Name:	00000006.00000000.481189328.000000000556F000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	556F000
Size:	4096

Details

Name:	0000000C.00000002.665374569.000000000046F000.00000004.00000001.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	46F000
Size:	4096

Details

Name:	00000006.00000000.489118736.0000000004450000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4450000
Size:	167936

Details

Name:	00000004.00000000.454349048.0000000001000000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	1000000
Size:	4096

Details

Name:	00000005.00000002.508301546.0000000000C90000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	C90000
Size:	4096

Details

Name:	00000004.00000003.461625197.0000000000F10000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	F10000
Size:	65536

Details

Name:	00000006.00000000.494554249.0000000003140000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	3140000
Size:	4096

Details

Name:	00000004.00000002.472147619.0000000006344000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6344000
Size:	4096

Details

Name:	00000006.00000000.493975320.0000000002520000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	2520000
Size:	4096

Details

Name:	00000006.00000000.490824023.0000000006A60000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	6A60000
Size:	8192

Details

Name:	00000006.00000000.466547787.0000000000220000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	220000
Size:	8192

Details

Name:	00000004.00000002.473178494.000000000643C000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	643C000
Size:	139264

Details

Name:	00000008.00000002.665407056.0000000000180000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	180000
Size:	4096

Details

Name:	00000006.00000000.466773942.000000000034E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	34E000
Size:	114688

Details

Name:	00000006.00000000.479312075.00000000043B0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	43B0000
Size:	8192

Details

Name:	00000004.00000002.472622133.00000000063AA000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	63AA000
Size:	4096

Details

Name:	00000008.00000003.507269047.000000000058F000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	58F000
Size:	20480

Details

Name:	00000004.00000002.482881975.00000000074E2000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	74E2000
Size:	139264

Details

Name:	00000008.00000003.508217513.0000000002664000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	2664000
Size:	4096

Details

Name:	0000000C.00000002.665299342.00000000002C7000.00000004.00000020.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	2C7000
Size:	4096

Details

Name:	00000008.00000000.506607554.0000000000060000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	60000
Size:	8192

Details

Name:	00000004.00000002.478763303.0000000006596000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6596000
Size:	4096

Details

Name:	00000004.00000002.470945551.0000000006077000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6077000
Size:	32768

Details

Name:	00000006.00000000.483915805.00000000005C0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	5C0000
Size:	77824

Details

Name:	00000006.00000000.491134802.000000000728E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	728E000
Size:	12288

Details

Name:	00000006.00000000.498428287.0000000008355000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	8355000
Size:	57344

Details

Name:	00000006.00000000.483615217.000000000023D000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap default
Protect:	page read and write
Base address:	23D000
Size:	8192

Details

Name:	00000006.00000000.499123388.000000007EFE0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFE0000
Size:	20480

Details

Name:	00000006.00000000.482085211.0000000007E1E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	7E1E000
Size:	8192

Details

Name:	00000005.00000003.464190259.000000000079F000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	79F000
Size:	45056

Details

Name:	00000008.00000002.665860825.0000000000A30000.00000040.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	A30000
Size:	57344

Details

Name:	00000006.00000000.535360989.0000000004D50000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	4D50000
Size:	8192

Details

Name:	00000006.00000000.498001411.00000000073BB000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	73BB000
Size:	20480

Details

Name:	00000006.00000000.482888096.000007FFFFFC2000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFC2000
Size:	4096

Details

Name:	00000006.00000000.487924427.0000000003140000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	3140000
Size:	4096

Details

Name:	00000004.00000002.479131464.0000000006829000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6829000
Size:	184320

Details

Name:	00000006.00000000.467011328.0000000001BE0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	1BE0000
Size:	4112384

Details

Name:	00000006.00000000.490631091.0000000004E5E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	4E5E000
Size:	8192

Details

Name:	00000006.00000000.486215193.00000000021BF000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	21BF000
Size:	4096

Details

Name:	00000006.00000000.531443323.0000000002760000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	2760000
Size:	4096

Details

Name:	00000004.00000002.470641869.00000000054D8000.00000004.00000040.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	54D8000
Size:	8192

Details

Name:	00000006.00000000.530545501.0000000000430000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	430000
Size:	24576

Details

Name:	00000006.00000000.484053367.0000000001B60000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	1B60000
Size:	8192

Details

Name:	00000006.00000000.493949522.0000000002130000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page read and write
Base address:	2130000
Size:	28672

Details

Name:	00000006.00000000.499235861.000007FFFFFD0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFFFFD0000
Size:	12288

Details

Name:	00000006.00000000.531244210.0000000002500000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	2500000
Size:	8192

Details

Name:	00000004.00000002.479392713.0000000006A66000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6A66000
Size:	524288

Details

Name:	00000008.00000000.506649858.000000007EFB0000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7EFB0000
Size:	4096

Details

Name:	00000006.00000000.466763616.0000000000330000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	330000
Size:	4096

Details

Name:	00000006.00000000.466826501.0000000000430000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	430000
Size:	24576

Details

Name:	00000008.00000002.665200548.0000000000010000.00000004.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	10000
Size:	4096

Details

Name:	00000006.00000000.492118616.000000000834B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	834B000
Size:	8192

Details

Name:	00000006.00000000.494528285.00000000030E0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	30E0000
Size:	8192

Details

Name:	00000006.00000000.466949185.0000000001B50000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	1B50000
Size:	4096

Details

Name:	00000004.00000002.471865883.00000000062CC000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	62CC000
Size:	86016

Details

Name:	00000004.00000002.464610899.0000000000430000.00000004.00000020.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	430000
Size:	16384

Details

Name:	00000004.00000002.479561885.0000000006BEA000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6BEA000
Size:	1355776

Details

Name:	00000004.00000002.478993615.000000000669E000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	669E000
Size:	135168

Details

Name:	00000006.00000000.481664611.00000000074B4000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	heap private
Protect:	page read and write
Base address:	74B4000
Size:	4096

Details

Name:	00000008.00000002.665769054.000000000074F000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	74F000
Size:	4096

Details

Name:	00000008.00000002.665893125.0000000000A3F000.00000040.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page execute and read and write
Base address:	A3F000
Size:	4096

Details

Name:	0000000C.00000002.665401084.0000000000560000.00000004.00000040.sdmp
TargetID:	12
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	560000
Size:	4096

Details

Name:	00000006.00000000.481496137.000000000728E000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	728E000
Size:	12288

Details

Name:	00000006.00000000.482739816.0000000009873000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	9873000
Size:	237568

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

IOC Report

Files

Processes

URLs

Domains

IPs

Registry

Memdumps