Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
SWIFT_ACK-89813.02.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Local\Temp\~DFA1C4850DA9C6EF9A.TMP
|
Composite Document File V2 Document, Cannot read section info
|
dropped
|
 |
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\SWIFT_ACK-89813.02.exe
|
"C:\Users\user\Desktop\SWIFT_ACK-89813.02.exe"
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\Software\VB and VBA Program Settings\subideal\Eyeliners
|
HARNISKKLDT
|
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
23F0000
|
unkown
|
page execute and read and write
|
|
|
|
400000
|
unkown image
|
page readonly
|
|
|
|
2011F51F000
|
unkown
|
page read and write
|
|
|
|
7DF5C9182000
|
unkown image
|
page readonly
|
|
|
|
16F9FBA0000
|
unkown image
|
page readonly
|
|
|
|
216F9FF000
|
stack
|
page read and write
|
|
|
|
7DF5B5AE2000
|
unkown image
|
page readonly
|
|
|
|
16F9FCFF000
|
unkown
|
page read and write
|
|
|
|
2011EC00000
|
heap default
|
page read and write
|
|
|
|
2011F557000
|
unkown
|
page read and write
|
|
|
|
7DF5E8990000
|
unkown image
|
page readonly
|
|
|
|
216FAFF000
|
stack
|
page read and write
|
|
|
|
7DF5E89B0000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAD2A000
|
unkown image
|
page readonly
|
|
|
|
A385578000
|
stack
|
page read and write
|
|
|
|
2011EF16000
|
unkown
|
page read and write
|
|
|
|
7FF5DAC67000
|
unkown image
|
page readonly
|
|
|
|
7FF5A76FE000
|
unkown image
|
page readonly
|
|
|
|
429000
|
unkown image
|
page read and write
|
|
|
|
7DF5C9190000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7D76000
|
unkown image
|
page readonly
|
|
|
|
3C9000
|
unkown
|
page read and write
|
|
|
|
7FF513C87000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB423000
|
unkown image
|
page readonly
|
|
|
|
16FA0260000
|
unkown image
|
page readonly
|
|
|
|
2011F5C3000
|
unkown
|
page read and write
|
|
|
|
2011F380000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB079000
|
unkown image
|
page readonly
|
|
|
|
2420000
|
heap private
|
page read and write
|
|
|
|
7FF5BB50A000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB21B000
|
unkown image
|
page readonly
|
|
|
|
16FA5580000
|
unkown
|
page read and write
|
|
|
|
7DF5ABDA0000
|
unkown image
|
page readonly
|
|
|
|
25F16FF000
|
stack
|
page read and write
|
|
|
|
2011F5AC000
|
unkown
|
page read and write
|
|
|
|
7DF5B5AE2000
|
unkown image
|
page readonly
|
|
|
|
7FF5DC6E1000
|
unkown image
|
page readonly
|
|
|
|
7DF52D682000
|
unkown image
|
page readonly
|
|
|
|
216F8FF000
|
stack
|
page read and write
|
|
|
|
2011F960000
|
unkown
|
page read and write
|
|
|
|
7FF59E047000
|
unkown image
|
page readonly
|
|
|
|
216FB7E000
|
stack
|
page read and write
|
|
|
|
16FA00D0000
|
unkown image
|
page readonly
|
|
|
|
16FA5242000
|
unkown
|
page read and write
|
|
|
|
7FF5BAE7B000
|
unkown image
|
page readonly
|
|
|
|
269D2600000
|
unkown image
|
page readonly
|
|
|
|
68A000
|
heap default
|
page read and write
|
|
|
|
7FF5134BD000
|
unkown image
|
page readonly
|
|
|
|
2011F5D1000
|
unkown
|
page read and write
|
|
|
|
1C328500000
|
unkown image
|
page readonly
|
|
|
|
1F38864B000
|
unkown
|
page read and write
|
|
|
|
7FF5BB322000
|
unkown image
|
page readonly
|
|
|
|
26EBA700000
|
unkown
|
page read and write
|
|
|
|
A3853F7000
|
stack
|
page read and write
|
|
|
|
7FF5DC63E000
|
unkown image
|
page readonly
|
|
|
|
7FF59E040000
|
unkown image
|
page readonly
|
|
|
|
E596C7B000
|
stack
|
page read and write
|
|
|
|
7DF521972000
|
unkown image
|
page readonly
|
|
|
|
2011F5C2000
|
unkown
|
page read and write
|
|
|
|
7FF5BB430000
|
unkown image
|
page readonly
|
|
|
|
CD7B17F000
|
stack
|
page read and write
|
|
|
|
16FA00E0000
|
unkown image
|
page readonly
|
|
|
|
560000
|
heap default
|
page read and write
|
|
|
|
7DF52D672000
|
unkown image
|
page readonly
|
|
|
|
7FF51F81F000
|
unkown image
|
page readonly
|
|
|
|
7FF51F930000
|
unkown image
|
page readonly
|
|
|
|
2011F529000
|
unkown
|
page read and write
|
|
|
|
401000
|
unkown image
|
page execute read
|
|
|
|
25F1679000
|
stack
|
page read and write
|
|
|
|
2011F589000
|
unkown
|
page read and write
|
|
|
|
7FF59E10A000
|
unkown image
|
page readonly
|
|
|
|
1F388570000
|
unkown image
|
page readonly
|
|
|
|
26EBA64C000
|
unkown
|
page read and write
|
|
|
|
216F97E000
|
stack
|
page read and write
|
|
|
|
7FF5A7E5A000
|
unkown image
|
page readonly
|
|
|
|
2011F55B000
|
unkown
|
page read and write
|
|
|
|
E59707E000
|
stack
|
page read and write
|
|
|
|
7FF5DA811000
|
unkown image
|
page readonly
|
|
|
|
2011F563000
|
unkown
|
page read and write
|
|
|
|
7FF5DC5E9000
|
unkown image
|
page readonly
|
|
|
|
16ACFD40000
|
heap default
|
page read and write
|
|
|
|
7FF5BB2C9000
|
unkown image
|
page readonly
|
|
|
|
269D2508000
|
unkown
|
page read and write
|
|
|
|
16ACFCD0000
|
unkown image
|
page readonly
|
|
|
|
2011EE70000
|
unkown
|
page read and write
|
|
|
|
7DF5ABD82000
|
unkown image
|
page readonly
|
|
|
|
CD7AF7E000
|
stack
|
page read and write
|
|
|
|
26EBA629000
|
unkown
|
page read and write
|
|
|
|
4C4E000
|
stack
|
page read and write
|
|
|
|
7FF59D95D000
|
unkown image
|
page readonly
|
|
|
|
26EBA4A0000
|
unkown image
|
page readonly
|
|
|
|
25F157F000
|
stack
|
page read and write
|
|
|
|
1C327D59000
|
heap private
|
page read and write
|
|
|
|
2011F5E0000
|
unkown
|
page read and write
|
|
|
|
1C327DDD000
|
unkown
|
page read and write
|
|
|
|
7FF5DAAFD000
|
unkown image
|
page readonly
|
|
|
|
1C327DD5000
|
unkown
|
page read and write
|
|
|
|
16FA0DA0000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB077000
|
unkown image
|
page readonly
|
|
|
|
52B5FA000
|
stack
|
page read and write
|
|
|
|
7FF5DC4EF000
|
unkown image
|
page readonly
|
|
|
|
1C328BD0000
|
unkown
|
page readonly
|
|
|
|
7FF5DC65D000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAD09000
|
unkown image
|
page readonly
|
|
|
|
7FF5DC65A000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB296000
|
unkown image
|
page readonly
|
|
|
|
A00000
|
unkown image
|
page readonly
|
|
|
|
7FF5DC6E1000
|
unkown image
|
page readonly
|
|
|
|
2011EEE9000
|
unkown
|
page read and write
|
|
|
|
16FA55B0000
|
unkown
|
page read and write
|
|
|
|
7DF5ABD92000
|
unkown image
|
page readonly
|
|
|
|
7DF5E89A0000
|
unkown image
|
page readonly
|
|
|
|
2011EE4D000
|
unkown
|
page read and write
|
|
|
|
26EBA681000
|
unkown
|
page read and write
|
|
|
|
7DF5B5AF0000
|
unkown image
|
page readonly
|
|
|
|
7FFC2000
|
unkown image
|
page readonly
|
|
|
|
7FF513CE2000
|
unkown image
|
page readonly
|
|
|
|
16F9FC71000
|
unkown
|
page read and write
|
|
|
|
7DF521982000
|
unkown image
|
page readonly
|
|
|
|
D5F2D7F000
|
stack
|
page read and write
|
|
|
|
16ACFD56000
|
heap default
|
page read and write
|
|
|
|
7FF51FA11000
|
unkown image
|
page readonly
|
|
|
|
7FF513915000
|
unkown image
|
page readonly
|
|
|
|
2280000
|
unkown image
|
page readonly
|
|
|
|
7FF5A760D000
|
unkown image
|
page readonly
|
|
|
|
7FF513A54000
|
unkown image
|
page readonly
|
|
|
|
D5F2C7B000
|
unkown
|
page read and write
|
|
|
|
7FF5139E2000
|
unkown image
|
page readonly
|
|
|
|
2011EEED000
|
unkown
|
page read and write
|
|
|
|
7FF5DC5ED000
|
unkown image
|
page readonly
|
|
|
|
22D5000
|
heap private
|
page read and write
|
|
|
|
7FF5BB3D2000
|
unkown image
|
page readonly
|
|
|
|
2011F5D1000
|
unkown
|
page read and write
|
|
|
|
2011F5BF000
|
unkown
|
page read and write
|
|
|
|
7FF5DAAE1000
|
unkown image
|
page readonly
|
|
|
|
16ACFCF0000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7E49000
|
unkown image
|
page readonly
|
|
|
|
269D2471000
|
unkown
|
page read and write
|
|
|
|
16F9FCA3000
|
unkown
|
page read and write
|
|
|
|
16F9FB80000
|
unkown image
|
page read and write
|
|
|
|
42B000
|
unkown image
|
page readonly
|
|
|
|
7FF59E115000
|
unkown image
|
page readonly
|
|
|
|
7DF4E8210000
|
unkown image
|
page readonly
|
|
|
|
CD7AC7B000
|
stack
|
page read and write
|
|
|
|
2011F565000
|
unkown
|
page read and write
|
|
|
|
2011F5C3000
|
unkown
|
page read and write
|
|
|
|
7FF51F96E000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB463000
|
unkown image
|
page readonly
|
|
|
|
1C328BE0000
|
unkown
|
page read and write
|
|
|
|
7FF5DAB00000
|
unkown image
|
page readonly
|
|
|
|
2011EF08000
|
unkown
|
page read and write
|
|
|
|
7FF5BB0E7000
|
unkown image
|
page readonly
|
|
|
|
7DF5E8990000
|
unkown image
|
page readonly
|
|
|
|
7FF513C8D000
|
unkown image
|
page readonly
|
|
|
|
216F67E000
|
stack
|
page read and write
|
|
|
|
16FA55B0000
|
unkown
|
page read and write
|
|
|
|
7FF51F895000
|
unkown image
|
page readonly
|
|
|
|
16FA03C1000
|
unkown
|
page read and write
|
|
|
|
7FF513ACC000
|
unkown image
|
page readonly
|
|
|
|
CD7AB7F000
|
stack
|
page read and write
|
|
|
|
2011F55B000
|
unkown
|
page read and write
|
|
|
|
216F87B000
|
stack
|
page read and write
|
|
|
|
7DF5C9172000
|
unkown image
|
page readonly
|
|
|
|
1C327DA0000
|
heap default
|
page read and write
|
|
|
|
7DF5C9172000
|
unkown image
|
page readonly
|
|
|
|
1F3885D0000
|
unkown
|
page read and write
|
|
|
|
2011F970000
|
unkown image
|
page read and write
|
|
|
|
16ACFD67000
|
unkown
|
page read and write
|
|
|
|
25F14FF000
|
stack
|
page read and write
|
|
|
|
7FF5DC466000
|
unkown image
|
page readonly
|
|
|
|
7FF5DC4CB000
|
unkown image
|
page readonly
|
|
|
|
7DF5B5AD2000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAD02000
|
unkown image
|
page readonly
|
|
|
|
7FF5DC600000
|
unkown image
|
page readonly
|
|
|
|
2011FA02000
|
unkown
|
page read and write
|
|
|
|
16FA5500000
|
unkown
|
page read and write
|
|
|
|
26EBA65A000
|
unkown
|
page read and write
|
|
|
|
7DF5EA340000
|
unkown image
|
page readonly
|
|
|
|
16FA5190000
|
unkown
|
page read and write
|
|
|
|
7FF5DC633000
|
unkown image
|
page readonly
|
|
|
|
16FA5150000
|
unkown
|
page read and write
|
|
|
|
7FF5A7DCE000
|
unkown image
|
page readonly
|
|
|
|
2011F59F000
|
unkown
|
page read and write
|
|
|
|
7DF5EA350000
|
unkown image
|
page readonly
|
|
|
|
7DF52D690000
|
unkown image
|
page readonly
|
|
|
|
269D2500000
|
unkown
|
page read and write
|
|
|
|
2011EEB5000
|
unkown
|
page read and write
|
|
|
|
7FF5A7E42000
|
unkown image
|
page readonly
|
|
|
|
16FA5570000
|
unkown
|
page read and write
|
|
|
|
7FF5BB45B000
|
unkown image
|
page readonly
|
|
|
|
26EBA4C0000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAC8E000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB48A000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB3C1000
|
unkown image
|
page readonly
|
|
|
|
A384B8F000
|
stack
|
page read and write
|
|
|
|
2011F5B0000
|
unkown
|
page read and write
|
|
|
|
E596A7B000
|
unkown
|
page read and write
|
|
|
|
16F9FC77000
|
unkown
|
page read and write
|
|
|
|
7FF513A75000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7CDC000
|
unkown image
|
page readonly
|
|
|
|
2011FB00000
|
unkown
|
page read and write
|
|
|
|
16FA5130000
|
unkown
|
page read and write
|
|
|
|
26EBA4A0000
|
unkown image
|
page readonly
|
|
|
|
2011EE4B000
|
unkown
|
page read and write
|
|
|
|
7FF51F933000
|
unkown image
|
page readonly
|
|
|
|
26EBA713000
|
unkown
|
page read and write
|
|
|
|
16ACFD7F000
|
unkown
|
page read and write
|
|
|
|
269D243C000
|
unkown
|
page read and write
|
|
|
|
D90000
|
unkown image
|
page readonly
|
|
|
|
19C000
|
unkown
|
page read and write
|
|
|
|
7FF51F987000
|
unkown image
|
page readonly
|
|
|
|
16ACFD7F000
|
unkown
|
page read and write
|
|
|
|
7FF59E0F9000
|
unkown image
|
page readonly
|
|
|
|
16F9FBF0000
|
heap default
|
page read and write
|
|
|
|
7FF59E07E000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB407000
|
unkown image
|
page readonly
|
|
|
|
7FF5DC535000
|
unkown image
|
page readonly
|
|
|
|
7FF51F0BA000
|
unkown image
|
page readonly
|
|
|
|
216F57A000
|
stack
|
page read and write
|
|
|
|
2011F589000
|
unkown
|
page read and write
|
|
|
|
7FF5DC4AD000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7E54000
|
unkown image
|
page readonly
|
|
|
|
16FA0360000
|
unkown image
|
page read and write
|
|
|
|
1A0000
|
unkown image
|
page readonly
|
|
|
|
7FF51F891000
|
unkown image
|
page readonly
|
|
|
|
2011F51D000
|
unkown
|
page read and write
|
|
|
|
269D2456000
|
unkown
|
page read and write
|
|
|
|
7FF5DA9B5000
|
unkown image
|
page readonly
|
|
|
|
16FA5180000
|
unkown
|
page read and write
|
|
|
|
16ACFCD0000
|
unkown image
|
page readonly
|
|
|
|
22D8000
|
heap private
|
page read and write
|
|
|
|
7FF5DC6CA000
|
unkown image
|
page readonly
|
|
|
|
2011EF13000
|
unkown
|
page read and write
|
|
|
|
16FA5520000
|
unkown
|
page read and write
|
|
|
|
16ACFCB0000
|
unkown image
|
page read and write
|
|
|
|
2011F5B9000
|
unkown
|
page read and write
|
|
|
|
16F9FC00000
|
unkown
|
page read and write
|
|
|
|
1C327D55000
|
heap private
|
page read and write
|
|
|
|
7FF59E121000
|
unkown image
|
page readonly
|
|
|
|
D80000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAD31000
|
unkown image
|
page readonly
|
|
|
|
21C0000
|
unkown
|
page read and write
|
|
|
|
2011EE4C000
|
unkown
|
page read and write
|
|
|
|
2011F5B1000
|
unkown
|
page read and write
|
|
|
|
7FF5BB261000
|
unkown image
|
page readonly
|
|
|
|
7FF5DC365000
|
unkown image
|
page readonly
|
|
|
|
7FF5A759F000
|
unkown image
|
page readonly
|
|
|
|
16FA52AF000
|
unkown
|
page read and write
|
|
|
|
7FF5DC54C000
|
unkown image
|
page readonly
|
|
|
|
E59717E000
|
stack
|
page read and write
|
|
|
|
7FF5DC1C1000
|
unkown image
|
page readonly
|
|
|
|
1F0000
|
unkown
|
page read and write
|
|
|
|
2011F960000
|
unkown
|
page read and write
|
|
|
|
1F388681000
|
unkown
|
page read and write
|
|
|
|
7FF513C1F000
|
unkown image
|
page readonly
|
|
|
|
D5F2F79000
|
stack
|
page read and write
|
|
|
|
7FF5A7C87000
|
unkown image
|
page readonly
|
|
|
|
7DF4A9C50000
|
unkown image
|
page readonly
|
|
|
|
7DF5B5AD0000
|
unkown image
|
page readonly
|
|
|
|
7DF5EA360000
|
unkown image
|
page readonly
|
|
|
|
16FA03F0000
|
unkown
|
page read and write
|
|
|
|
7FF5A7DBB000
|
unkown image
|
page readonly
|
|
|
|
6A2000
|
heap default
|
page read and write
|
|
|
|
7FF5A76F9000
|
unkown image
|
page readonly
|
|
|
|
7DF521980000
|
unkown image
|
page readonly
|
|
|
|
22E0000
|
unkown
|
page read and write
|
|
|
|
7FF513C23000
|
unkown image
|
page readonly
|
|
|
|
7DF5ABD80000
|
unkown image
|
page readonly
|
|
|
|
310C000
|
unkown image
|
page read and write
|
|
|
|
7FF5BB327000
|
unkown image
|
page readonly
|
|
|
|
7FF5DC1C7000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB511000
|
unkown image
|
page readonly
|
|
|
|
550000
|
unkown
|
page read and write
|
|
|
|
16FA52E1000
|
unkown
|
page read and write
|
|
|
|
CD7AAFF000
|
stack
|
page read and write
|
|
|
|
7FF5DAB8B000
|
unkown image
|
page readonly
|
|
|
|
16FA5300000
|
unkown
|
page read and write
|
|
|
|
16F9FBC0000
|
unkown image
|
page readonly
|
|
|
|
16FA529D000
|
unkown
|
page read and write
|
|
|
|
2011F580000
|
unkown
|
page read and write
|
|
|
|
7FF513AB2000
|
unkown image
|
page readonly
|
|
|
|
7FF51F9FA000
|
unkown image
|
page readonly
|
|
|
|
16FA5400000
|
unkown
|
page read and write
|
|
|
|
540000
|
unkown image
|
page readonly
|
|
|
|
7FF593D81000
|
unkown image
|
page readonly
|
|
|
|
269D2413000
|
unkown
|
page read and write
|
|
|
|
269D2429000
|
unkown
|
page read and write
|
|
|
|
1C327CC0000
|
unkown image
|
page readonly
|
|
|
|
2011F5D2000
|
unkown
|
page read and write
|
|
|
|
16F9FC79000
|
unkown
|
page read and write
|
|
|
|
2011F597000
|
unkown
|
page read and write
|
|
|
|
7FF51FA01000
|
unkown image
|
page readonly
|
|
|
|
7FF5BABB4000
|
unkown image
|
page readonly
|
|
|
|
7DF5C9180000
|
unkown image
|
page readonly
|
|
|
|
7DF52D682000
|
unkown image
|
page readonly
|
|
|
|
A3851FF000
|
stack
|
page read and write
|
|
|
|
7FF5A7D83000
|
unkown image
|
page readonly
|
|
|
|
269D23A0000
|
unkown
|
page read and write
|
|
|
|
2011F587000
|
unkown
|
page read and write
|
|
|
|
1F388530000
|
unkown image
|
page read and write
|
|
|
|
16FA52E6000
|
unkown
|
page read and write
|
|
|
|
7FF51F87C000
|
unkown image
|
page readonly
|
|
|
|
1C327C70000
|
unkown image
|
page read and write
|
|
|
|
7FF513A61000
|
unkown image
|
page readonly
|
|
|
|
2011ECE0000
|
unkown image
|
page readonly
|
|
|
|
7FF51FA0A000
|
unkown image
|
page readonly
|
|
|
|
269D2502000
|
unkown
|
page read and write
|
|
|
|
216FA7E000
|
stack
|
page read and write
|
|
|
|
7FF5BB391000
|
unkown image
|
page readonly
|
|
|
|
2260000
|
heap private
|
page read and write
|
|
|
|
7FF5DC5EF000
|
unkown image
|
page readonly
|
|
|
|
7FF513C3E000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7DED000
|
unkown image
|
page readonly
|
|
|
|
269D2513000
|
unkown
|
page read and write
|
|
|
|
269D2230000
|
unkown image
|
page read and write
|
|
|
|
7FF59E02F000
|
unkown image
|
page readonly
|
|
|
|
7DF521990000
|
unkown image
|
page readonly
|
|
|
|
25F177F000
|
stack
|
page read and write
|
|
|
|
7DF52D670000
|
unkown image
|
page readonly
|
|
|
|
1F388550000
|
unkown image
|
page readonly
|
|
|
|
1F388629000
|
unkown
|
page read and write
|
|
|
|
7FF5DAAB6000
|
unkown image
|
page readonly
|
|
|
|
7FFB2000
|
unkown image
|
page readonly
|
|
|
|
2011F59F000
|
unkown
|
page read and write
|
|
|
|
216F47C000
|
stack
|
page read and write
|
|
|
|
2011EF02000
|
unkown
|
page read and write
|
|
|
|
7FF5BB41D000
|
unkown image
|
page readonly
|
|
|
|
401000
|
unkown image
|
page execute read
|
|
|
|
7DF5EA342000
|
unkown image
|
page readonly
|
|
|
|
7FF59E02D000
|
unkown image
|
page readonly
|
|
|
|
7FEB0000
|
unkown image
|
page readonly
|
|
|
|
CD7AD7B000
|
stack
|
page read and write
|
|
|
|
2D00000
|
unkown image
|
page read and write
|
|
|
|
7FF51F695000
|
unkown image
|
page readonly
|
|
|
|
7FF5DACAA000
|
unkown image
|
page readonly
|
|
|
|
7DF5ABD92000
|
unkown image
|
page readonly
|
|
|
|
269D2484000
|
unkown
|
page read and write
|
|
|
|
7FF513B7C000
|
unkown image
|
page readonly
|
|
|
|
2011F595000
|
unkown
|
page read and write
|
|
|
|
26EBA670000
|
unkown
|
page read and write
|
|
|
|
30000
|
unkown image
|
page read and write
|
|
|
|
7FF5DC6D1000
|
unkown image
|
page readonly
|
|
|
|
16F9FBD0000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB254000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB3F3000
|
unkown image
|
page readonly
|
|
|
|
2011F595000
|
unkown
|
page read and write
|
|
|
|
CD7B07C000
|
stack
|
page read and write
|
|
|
|
7FF5BB3EA000
|
unkown image
|
page readonly
|
|
|
|
42B000
|
unkown image
|
page readonly
|
|
|
|
26EBA63C000
|
unkown
|
page read and write
|
|
|
|
7FF513C19000
|
unkown image
|
page readonly
|
|
|
|
216EF6B000
|
unkown
|
page read and write
|
|
|
|
2011F5B0000
|
unkown
|
page read and write
|
|
|
|
1C327D80000
|
unkown
|
page read and write
|
|
|
|
2011EEE1000
|
unkown
|
page read and write
|
|
|
|
7FF51F9F4000
|
unkown image
|
page readonly
|
|
|
|
2011FB02000
|
unkown
|
page read and write
|
|
|
|
7FF5DC4B0000
|
unkown image
|
page readonly
|
|
|
|
A384EFB000
|
stack
|
page read and write
|
|
|
|
7FF5BB447000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB3FE000
|
unkown image
|
page readonly
|
|
|
|
26EBA656000
|
unkown
|
page read and write
|
|
|
|
2011EBB0000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB3EE000
|
unkown image
|
page readonly
|
|
|
|
2011F55B000
|
unkown
|
page read and write
|
|
|
|
16FA5160000
|
unkown
|
page read and write
|
|
|
|
7FF5A7DC2000
|
unkown image
|
page readonly
|
|
|
|
2011FB02000
|
unkown
|
page read and write
|
|
|
|
7FFC2000
|
unkown image
|
page readonly
|
|
|
|
7FF51F98A000
|
unkown image
|
page readonly
|
|
|
|
7DF5E89A2000
|
unkown image
|
page readonly
|
|
|
|
7DF5ABDA0000
|
unkown image
|
page readonly
|
|
|
|
7FF5DC491000
|
unkown image
|
page readonly
|
|
|
|
7DF5ABD82000
|
unkown image
|
page readonly
|
|
|
|
1F388652000
|
unkown
|
page read and write
|
|
|
|
427000
|
unkown image
|
page read and write
|
|
|
|
26EBAE02000
|
unkown
|
page read and write
|
|
|
|
1C327D20000
|
unkown image
|
page readonly
|
|
|
|
7FF513BFE000
|
unkown image
|
page readonly
|
|
|
|
7FF51F7E0000
|
unkown image
|
page readonly
|
|
|
|
269D2380000
|
unkown image
|
page readonly
|
|
|
|
7FF5DC565000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7E6A000
|
unkown image
|
page readonly
|
|
|
|
7FF59E09A000
|
unkown image
|
page readonly
|
|
|
|
7DF521980000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7D86000
|
unkown image
|
page readonly
|
|
|
|
7FF513BEE000
|
unkown image
|
page readonly
|
|
|
|
16FA5150000
|
unkown
|
page read and write
|
|
|
|
7DF52D680000
|
unkown image
|
page readonly
|
|
|
|
2011F5A1000
|
unkown
|
page read and write
|
|
|
|
2011EDD0000
|
unkown
|
page read and write
|
|
|
|
16FA5524000
|
unkown
|
page read and write
|
|
|
|
1F388713000
|
unkown
|
page read and write
|
|
|
|
16ACFF10000
|
unkown
|
page read and write
|
|
|
|
7FF51F95B000
|
unkown image
|
page readonly
|
|
|
|
16FA5521000
|
unkown
|
page read and write
|
|
|
|
26EBA4F0000
|
heap default
|
page read and write
|
|
|
|
2011F402000
|
unkown
|
page read and write
|
|
|
|
7FF5BB2FB000
|
unkown image
|
page readonly
|
|
|
|
7DF52D672000
|
unkown image
|
page readonly
|
|
|
|
7DF4E6860000
|
unkown image
|
page readonly
|
|
|
|
216FE7F000
|
stack
|
page read and write
|
|
|
|
7FF5BB2C5000
|
unkown image
|
page readonly
|
|
|
|
16FA0400000
|
unkown
|
page read and write
|
|
|
|
1F388AD0000
|
unkown image
|
page readonly
|
|
|
|
7FF513B91000
|
unkown image
|
page readonly
|
|
|
|
2011F59F000
|
unkown
|
page read and write
|
|
|
|
16ACFF40000
|
unkown image
|
page readonly
|
|
|
|
2011FA00000
|
unkown
|
page read and write
|
|
|
|
2011F551000
|
unkown
|
page read and write
|
|
|
|
269D2479000
|
unkown
|
page read and write
|
|
|
|
3CD000
|
unkown
|
page read and write
|
|
|
|
7FF5BAE8C000
|
unkown image
|
page readonly
|
|
|
|
2011F59D000
|
unkown
|
page read and write
|
|
|
|
7FF5DAD14000
|
unkown image
|
page readonly
|
|
|
|
16FA5194000
|
unkown
|
page read and write
|
|
|
|
2011FA02000
|
unkown
|
page read and write
|
|
|
|
7FF513A1B000
|
unkown image
|
page readonly
|
|
|
|
D5F337E000
|
stack
|
page read and write
|
|
|
|
16FA5508000
|
unkown
|
page read and write
|
|
|
|
16F9FC13000
|
unkown
|
page read and write
|
|
|
|
7FF5BB3BF000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB26F000
|
unkown image
|
page readonly
|
|
|
|
7FF513C30000
|
unkown image
|
page readonly
|
|
|
|
7FF51358D000
|
unkown image
|
page readonly
|
|
|
|
269D2250000
|
unkown image
|
page readonly
|
|
|
|
16F9FBA0000
|
unkown image
|
page readonly
|
|
|
|
269D2800000
|
unkown image
|
page readonly
|
|
|
|
7DF5B5AE0000
|
unkown image
|
page readonly
|
|
|
|
7FF51F963000
|
unkown image
|
page readonly
|
|
|
|
16FA0518000
|
unkown
|
page read and write
|
|
|
|
16FA5560000
|
unkown
|
page read and write
|
|
|
|
7DF5C9190000
|
unkown image
|
page readonly
|
|
|
|
7FF513D0A000
|
unkown image
|
page readonly
|
|
|
|
269D2250000
|
unkown image
|
page readonly
|
|
|
|
2011F595000
|
unkown
|
page read and write
|
|
|
|
16F9FD02000
|
unkown
|
page read and write
|
|
|
|
7FF5DABB5000
|
unkown image
|
page readonly
|
|
|
|
1C327DF6000
|
heap default
|
page read and write
|
|
|
|
1C328970000
|
unkown
|
page read and write
|
|
|
|
2011F200000
|
unkown image
|
page readonly
|
|
|
|
7DF52D690000
|
unkown image
|
page readonly
|
|
|
|
1F388550000
|
unkown image
|
page readonly
|
|
|
|
1F388700000
|
unkown
|
page read and write
|
|
|
|
2011F595000
|
unkown
|
page read and write
|
|
|
|
26EBA64E000
|
unkown
|
page read and write
|
|
|
|
16AD0015000
|
heap private
|
page read and write
|
|
|
|
1C327CE0000
|
unkown
|
page read and write
|
|
|
|
7FF5BB4E9000
|
unkown image
|
page readonly
|
|
|
|
7FF51F9E2000
|
unkown image
|
page readonly
|
|
|
|
7FF59E104000
|
unkown image
|
page readonly
|
|
|
|
7DF5B5AD2000
|
unkown image
|
page readonly
|
|
|
|
2011F000000
|
unkown image
|
page readonly
|
|
|
|
7FF5DC6B2000
|
unkown image
|
page readonly
|
|
|
|
7DF521972000
|
unkown image
|
page readonly
|
|
|
|
25F15FC000
|
stack
|
page read and write
|
|
|
|
16FA0500000
|
unkown
|
page read and write
|
|
|
|
16FA0C70000
|
unkown
|
page read and write
|
|
|
|
2011EE89000
|
unkown
|
page read and write
|
|
|
|
52B6FE000
|
stack
|
page read and write
|
|
|
|
1C328C40000
|
unkown
|
page read and write
|
|
|
|
1C328BC0000
|
unkown
|
page read and write
|
|
|
|
7FF5BB4F4000
|
unkown image
|
page readonly
|
|
|
|
52B679000
|
stack
|
page read and write
|
|
|
|
2011F5BF000
|
unkown
|
page read and write
|
|
|
|
269D244E000
|
unkown
|
page read and write
|
|
|
|
22B0000
|
unkown
|
page read and write
|
|
|
|
7FF5DC6DA000
|
unkown image
|
page readonly
|
|
|
|
269D2C02000
|
unkown
|
page read and write
|
|
|
|
7FF5DAC3F000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB2C1000
|
unkown image
|
page readonly
|
|
|
|
7FF513BBF000
|
unkown image
|
page readonly
|
|
|
|
2011F59F000
|
unkown
|
page read and write
|
|
|
|
2450000
|
unkown
|
page read and write
|
|
|
|
7FF5134C7000
|
unkown image
|
page readonly
|
|
|
|
269D22A0000
|
heap default
|
page read and write
|
|
|
|
7FF513C5B000
|
unkown image
|
page readonly
|
|
|
|
7DF52D680000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAC7B000
|
unkown image
|
page readonly
|
|
|
|
16FA03E3000
|
unkown
|
page read and write
|
|
|
|
7FF5BB419000
|
unkown image
|
page readonly
|
|
|
|
2011F5A6000
|
unkown
|
page read and write
|
|
|
|
2011EEC7000
|
unkown
|
page read and write
|
|
|
|
7FF5DAB3F000
|
unkown image
|
page readonly
|
|
|
|
16AD0020000
|
unkown image
|
page readonly
|
|
|
|
16AD03A0000
|
unkown image
|
page readonly
|
|
|
|
2011F580000
|
unkown
|
page read and write
|
|
|
|
1C327DDD000
|
unkown
|
page read and write
|
|
|
|
269D2451000
|
unkown
|
page read and write
|
|
|
|
16FA03E0000
|
unkown
|
page read and write
|
|
|
|
16FA0559000
|
unkown
|
page read and write
|
|
|
|
7FF5139F4000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7597000
|
unkown image
|
page readonly
|
|
|
|
4D4F000
|
stack
|
page read and write
|
|
|
|
7FF513879000
|
unkown image
|
page readonly
|
|
|
|
16FA522E000
|
unkown
|
page read and write
|
|
|
|
7FF5BB1E2000
|
unkown image
|
page readonly
|
|
|
|
26EBA800000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAC57000
|
unkown image
|
page readonly
|
|
|
|
2011EE13000
|
unkown
|
page read and write
|
|
|
|
7FFD0000
|
unkown image
|
page readonly
|
|
|
|
7DF5ABD90000
|
unkown image
|
page readonly
|
|
|
|
16FA0559000
|
unkown
|
page read and write
|
|
|
|
7FF513A06000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAC83000
|
unkown image
|
page readonly
|
|
|
|
7FF513D11000
|
unkown image
|
page readonly
|
|
|
|
7FF51F865000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB43E000
|
unkown image
|
page readonly
|
|
|
|
7FF513A24000
|
unkown image
|
page readonly
|
|
|
|
7FF513863000
|
unkown image
|
page readonly
|
|
|
|
7FF59E06B000
|
unkown image
|
page readonly
|
|
|
|
7FF5DC561000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7E71000
|
unkown image
|
page readonly
|
|
|
|
2011FA6A000
|
unkown
|
page read and write
|
|
|
|
7DF4C7040000
|
unkown image
|
page readonly
|
|
|
|
7FF51F919000
|
unkown image
|
page readonly
|
|
|
|
7FF59E121000
|
unkown image
|
page readonly
|
|
|
|
26EBA4D0000
|
unkown image
|
page readonly
|
|
|
|
2B90000
|
unkown
|
page read and write
|
|
|
|
2011F500000
|
unkown
|
page read and write
|
|
|
|
7DF5EA350000
|
unkown image
|
page readonly
|
|
|
|
7FF59E11A000
|
unkown image
|
page readonly
|
|
|
|
680000
|
heap default
|
page read and write
|
|
|
|
1C328910000
|
unkown
|
page read and write
|
|
|
|
16AD0220000
|
unkown image
|
page readonly
|
|
|
|
52B779000
|
stack
|
page read and write
|
|
|
|
7DF5C9182000
|
unkown image
|
page readonly
|
|
|
|
16FA5590000
|
unkown
|
page read and write
|
|
|
|
16FA0518000
|
unkown
|
page read and write
|
|
|
|
7FF51F4F1000
|
unkown image
|
page readonly
|
|
|
|
7DF5E89A0000
|
unkown image
|
page readonly
|
|
|
|
A3850F7000
|
stack
|
page read and write
|
|
|
|
16FA0D50000
|
unkown image
|
page readonly
|
|
|
|
7DF5E89A2000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB437000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB501000
|
unkown image
|
page readonly
|
|
|
|
26EBA5F0000
|
unkown
|
page read and write
|
|
|
|
7FFB0000
|
unkown image
|
page readonly
|
|
|
|
1C327D90000
|
heap default
|
page read and write
|
|
|
|
26EBAB80000
|
unkown image
|
page readonly
|
|
|
|
7DF5C9180000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAD21000
|
unkown image
|
page readonly
|
|
|
|
7DF5EA360000
|
unkown image
|
page readonly
|
|
|
|
16F9FC91000
|
unkown
|
page read and write
|
|
|
|
7FF513C8A000
|
unkown image
|
page readonly
|
|
|
|
7FF513D01000
|
unkown image
|
page readonly
|
|
|
|
1C327D00000
|
unkown
|
page read and write
|
|
|
|
1F388600000
|
unkown
|
page read and write
|
|
|
|
7FF59DBBB000
|
unkown image
|
page readonly
|
|
|
|
2011F5C2000
|
unkown
|
page read and write
|
|
|
|
7FF5BB195000
|
unkown image
|
page readonly
|
|
|
|
7FF513AC3000
|
unkown image
|
page readonly
|
|
|
|
26EBA613000
|
unkown
|
page read and write
|
|
|
|
7FF5A7C82000
|
unkown image
|
page readonly
|
|
|
|
26EBAA00000
|
unkown image
|
page readonly
|
|
|
|
7FF5DC62B000
|
unkown image
|
page readonly
|
|
|
|
2011F55F000
|
unkown
|
page read and write
|
|
|
|
2011F5BB000
|
unkown
|
page read and write
|
|
|
|
7FF5DACA7000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB46E000
|
unkown image
|
page readonly
|
|
|
|
2011F55B000
|
unkown
|
page read and write
|
|
|
|
1F388702000
|
unkown
|
page read and write
|
|
|
|
7FF59E09D000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB275000
|
unkown image
|
page readonly
|
|
|
|
7FF5DACAD000
|
unkown image
|
page readonly
|
|
|
|
A38547F000
|
stack
|
page read and write
|
|
|
|
7FF5BB433000
|
unkown image
|
page readonly
|
|
|
|
2011EEFC000
|
unkown
|
page read and write
|
|
|
|
22A0000
|
unkown image
|
page readonly
|
|
|
|
16FA0D70000
|
unkown image
|
page readonly
|
|
|
|
16FA5180000
|
unkown
|
page read and write
|
|
|
|
16F9FD13000
|
unkown
|
page read and write
|
|
|
|
1C327F60000
|
unkown
|
page read and write
|
|
|
|
7DF5EA342000
|
unkown image
|
page readonly
|
|
|
|
7FF51F7FB000
|
unkown image
|
page readonly
|
|
|
|
A3852F8000
|
stack
|
page read and write
|
|
|
|
7FF51F937000
|
unkown image
|
page readonly
|
|
|
|
21D0000
|
unkown image
|
page read and write
|
|
|
|
7FF513AC5000
|
unkown image
|
page readonly
|
|
|
|
2011F58B000
|
unkown
|
page read and write
|
|
|
|
16ACFF30000
|
unkown image
|
page readonly
|
|
|
|
7FF5139D7000
|
unkown image
|
page readonly
|
|
|
|
7FF59E111000
|
unkown image
|
page readonly
|
|
|
|
31C0000
|
unkown
|
page read and write
|
|
|
|
7FF51368C000
|
unkown image
|
page readonly
|
|
|
|
A384B0F000
|
stack
|
page read and write
|
|
|
|
269D2400000
|
unkown
|
page read and write
|
|
|
|
7DF5C9170000
|
unkown image
|
page readonly
|
|
|
|
26EBA5D0000
|
unkown image
|
page readonly
|
|
|
|
16F9FED0000
|
unkown image
|
page readonly
|
|
|
|
16FA52EA000
|
unkown
|
page read and write
|
|
|
|
2011EEAB000
|
unkown
|
page read and write
|
|
|
|
1C327DEF000
|
heap default
|
page read and write
|
|
|
|
7DF5E8992000
|
unkown image
|
page readonly
|
|
|
|
26EBA600000
|
unkown
|
page read and write
|
|
|
|
7FF59E073000
|
unkown image
|
page readonly
|
|
|
|
1F388602000
|
unkown
|
page read and write
|
|
|
|
7FF5BB365000
|
unkown image
|
page readonly
|
|
|
|
7FF513B84000
|
unkown image
|
page readonly
|
|
|
|
2440000
|
heap private
|
page read and write
|
|
|
|
7FF5DC53B000
|
unkown image
|
page readonly
|
|
|
|
1F388613000
|
unkown
|
page read and write
|
|
|
|
16FA5221000
|
unkown
|
page read and write
|
|
|
|
7FF51F91F000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7D93000
|
unkown image
|
page readonly
|
|
|
|
1C327C90000
|
unkown image
|
page readonly
|
|
|
|
2011F59F000
|
unkown
|
page read and write
|
|
|
|
1F388C50000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7D7F000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7C0A000
|
unkown image
|
page readonly
|
|
|
|
7DF521970000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB36B000
|
unkown image
|
page readonly
|
|
|
|
216FC7A000
|
stack
|
page read and write
|
|
|
|
26EBA708000
|
unkown
|
page read and write
|
|
|
|
7DF5E8992000
|
unkown image
|
page readonly
|
|
|
|
7FF513A56000
|
unkown image
|
page readonly
|
|
|
|
2011F580000
|
unkown
|
page read and write
|
|
|
|
16FA550E000
|
unkown
|
page read and write
|
|
|
|
7FF5BB2E0000
|
unkown image
|
page readonly
|
|
|
|
7FF513A2A000
|
unkown image
|
page readonly
|
|
|
|
7DF521982000
|
unkown image
|
page readonly
|
|
|
|
16F9FC3D000
|
unkown
|
page read and write
|
|
|
|
7FFB2000
|
unkown image
|
page readonly
|
|
|
|
16FA0502000
|
unkown
|
page read and write
|
|
|
|
2011F59D000
|
unkown
|
page read and write
|
|
|
|
216F77B000
|
stack
|
page read and write
|
|
|
|
7FF5138E0000
|
unkown image
|
page readonly
|
|
|
|
52B7FD000
|
stack
|
page read and write
|
|
|
|
1C327DDD000
|
unkown
|
page read and write
|
|
|
|
7FF513C47000
|
unkown image
|
page readonly
|
|
|
|
269D2453000
|
unkown
|
page read and write
|
|
|
|
7FF51358F000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB31F000
|
unkown image
|
page readonly
|
|
|
|
7FF5DC5F3000
|
unkown image
|
page readonly
|
|
|
|
16ACFD51000
|
unkown
|
page read and write
|
|
|
|
7FF5DAC53000
|
unkown image
|
page readonly
|
|
|
|
7FF51390F000
|
unkown image
|
page readonly
|
|
|
|
7FF513C33000
|
unkown image
|
page readonly
|
|
|
|
16FA5140000
|
unkown
|
page read and write
|
|
|
|
7FF5BB487000
|
unkown image
|
page readonly
|
|
|
|
2424000
|
heap private
|
page read and write
|
|
|
|
7FFC0000
|
unkown image
|
page readonly
|
|
|
|
269D2449000
|
unkown
|
page read and write
|
|
|
|
7DF5EA340000
|
unkown image
|
page readonly
|
|
|
|
16FA52EE000
|
unkown
|
page read and write
|
|
|
|
7FF5DC60E000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB37C000
|
unkown image
|
page readonly
|
|
|
|
7DF521990000
|
unkown image
|
page readonly
|
|
|
|
D5F3077000
|
stack
|
page read and write
|
|
|
|
2011F55D000
|
unkown
|
page read and write
|
|
|
|
2011FB63000
|
unkown
|
page read and write
|
|
|
|
16FA10F0000
|
unkown
|
page read and write
|
|
|
|
7FF5DC617000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAD1A000
|
unkown image
|
page readonly
|
|
|
|
2011F59B000
|
unkown
|
page read and write
|
|
|
|
2011EE4F000
|
unkown
|
page read and write
|
|
|
|
1F3885A0000
|
heap default
|
page read and write
|
|
|
|
16F9FC8F000
|
unkown
|
page read and write
|
|
|
|
400000
|
unkown image
|
page readonly
|
|
|
|
7FF51F98D000
|
unkown image
|
page readonly
|
|
|
|
7FF513BDE000
|
unkown image
|
page readonly
|
|
|
|
2011FA6A000
|
unkown
|
page read and write
|
|
|
|
7FF5A7617000
|
unkown image
|
page readonly
|
|
|
|
16FA0D60000
|
unkown image
|
page readonly
|
|
|
|
26EBA480000
|
unkown image
|
page read and write
|
|
|
|
2011F581000
|
unkown
|
page read and write
|
|
|
|
7FF51F0B4000
|
unkown image
|
page readonly
|
|
|
|
E596AFF000
|
stack
|
page read and write
|
|
|
|
16FA5160000
|
unkown
|
page read and write
|
|
|
|
7FF513C07000
|
unkown image
|
page readonly
|
|
|
|
7FF5DC6B9000
|
unkown image
|
page readonly
|
|
|
|
7DF5B5AD0000
|
unkown image
|
page readonly
|
|
|
|
7DF41F840000
|
unkown image
|
page readonly
|
|
|
|
1C328170000
|
unkown image
|
page readonly
|
|
|
|
16ACFD10000
|
unkown
|
page read and write
|
|
|
|
16FA55B0000
|
unkown
|
page read and write
|
|
|
|
2011EBB0000
|
unkown image
|
page readonly
|
|
|
|
CD7AE77000
|
stack
|
page read and write
|
|
|
|
7DF4B39A0000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAB9C000
|
unkown image
|
page readonly
|
|
|
|
2011F59F000
|
unkown
|
page read and write
|
|
|
|
16FA524F000
|
unkown
|
page read and write
|
|
|
|
7FF51350A000
|
unkown image
|
page readonly
|
|
|
|
7FF513C1D000
|
unkown image
|
page readonly
|
|
|
|
1C327CB0000
|
unkown image
|
page readonly
|
|
|
|
26EBA490000
|
heap private
|
page read and write
|
|
|
|
16F9FCA1000
|
unkown
|
page read and write
|
|
|
|
1C328980000
|
unkown
|
page read and write
|
|
|
|
7FF513A6F000
|
unkown image
|
page readonly
|
|
|
|
7FF5138BF000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB395000
|
unkown image
|
page readonly
|
|
|
|
2011F960000
|
unkown
|
page read and write
|
|
|
|
269D244B000
|
unkown
|
page read and write
|
|
|
|
16FA0350000
|
unkown
|
page read and write
|
|
|
|
2011EE59000
|
unkown
|
page read and write
|
|
|
|
7FF5DC657000
|
unkown image
|
page readonly
|
|
|
|
269D2454000
|
unkown
|
page read and write
|
|
|
|
2011EE55000
|
unkown
|
page read and write
|
|
|
|
7FF5BAD4D000
|
unkown image
|
page readonly
|
|
|
|
2C10000
|
unkown image
|
page readonly
|
|
|
|
16FA5302000
|
unkown
|
page read and write
|
|
|
|
7FF513B95000
|
unkown image
|
page readonly
|
|
|
|
16FA52A3000
|
unkown
|
page read and write
|
|
|
|
1C327C80000
|
unkown
|
page read and write
|
|
|
|
1F388540000
|
heap private
|
page read and write
|
|
|
|
7FF5DA3DA000
|
unkown image
|
page readonly
|
|
|
|
7FF5DC607000
|
unkown image
|
page readonly
|
|
|
|
2011F55A000
|
unkown
|
page read and write
|
|
|
|
16FA0D80000
|
unkown image
|
page readonly
|
|
|
|
7FF51F86B000
|
unkown image
|
page readonly
|
|
|
|
7DF42B540000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB4FA000
|
unkown image
|
page readonly
|
|
|
|
7DF521970000
|
unkown image
|
page readonly
|
|
|
|
7FF513ADD000
|
unkown image
|
page readonly
|
|
|
|
7FF5DA3D4000
|
unkown image
|
page readonly
|
|
|
|
7FF513A20000
|
unkown image
|
page readonly
|
|
|
|
16ACFD7F000
|
unkown
|
page read and write
|
|
|
|
216F377000
|
stack
|
page read and write
|
|
|
|
1C327C90000
|
unkown image
|
page readonly
|
|
|
|
7FF51F947000
|
unkown image
|
page readonly
|
|
|
|
7FF5DC603000
|
unkown image
|
page readonly
|
|
|
|
1F38864F000
|
unkown
|
page read and write
|
|
|
|
7FF5DA817000
|
unkown image
|
page readonly
|
|
|
|
7FF513CF4000
|
unkown image
|
page readonly
|
|
|
|
7FF513C37000
|
unkown image
|
page readonly
|
|
|
|
1F3888D0000
|
unkown image
|
page readonly
|
|
|
|
1F38864D000
|
unkown
|
page read and write
|
|
|
|
7FF59E04E000
|
unkown image
|
page readonly
|
|
|
|
16FA0415000
|
unkown
|
page read and write
|
|
|
|
7FF513BF3000
|
unkown image
|
page readonly
|
|
|
|
16FA0402000
|
unkown
|
page read and write
|
|
|
|
7FF51352A000
|
unkown image
|
page readonly
|
|
|
|
2011F55B000
|
unkown
|
page read and write
|
|
|
|
7DF5E89B0000
|
unkown image
|
page readonly
|
|
|
|
2011F5D1000
|
unkown
|
page read and write
|
|
|
|
7FF5BB48D000
|
unkown image
|
page readonly
|
|
|
|
7FF593D81000
|
unkown image
|
page readonly
|
|
|
|
7FF5A75A1000
|
unkown image
|
page readonly
|
|
|
|
2011EE00000
|
unkown
|
page read and write
|
|
|
|
2011FA02000
|
unkown
|
page read and write
|
|
|
|
7FF5DAC5E000
|
unkown image
|
page readonly
|
|
|
|
7FF5DC6C4000
|
unkown image
|
page readonly
|
|
|
|
2011F576000
|
unkown
|
page read and write
|
|
|
|
16F9FC96000
|
unkown
|
page read and write
|
|
|
|
7FF5DAB85000
|
unkown image
|
page readonly
|
|
|
|
7FF51387E000
|
unkown image
|
page readonly
|
|
|
|
7DF5C9170000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7D90000
|
unkown image
|
page readonly
|
|
|
|
2CF0000
|
heap private
|
page read and write
|
|
|
|
7FF513A32000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB510000
|
unkown image
|
page readonly
|
|
|
|
16FA0D90000
|
unkown image
|
page readonly
|
|
|
|
7FF513C6E000
|
unkown image
|
page readonly
|
|
|
|
26EBA650000
|
unkown
|
page read and write
|
|
|
|
26EBA68B000
|
unkown
|
page read and write
|
|
|
|
7FF59E033000
|
unkown image
|
page readonly
|
|
|
|
1C328BF0000
|
unkown
|
page read and write
|
|
|
|
2011F570000
|
unkown
|
page read and write
|
|
|
|
7FF51F923000
|
unkown image
|
page readonly
|
|
|
|
2011F58C000
|
unkown
|
page read and write
|
|
|
|
7FFC0000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7E71000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAC39000
|
unkown image
|
page readonly
|
|
|
|
1F388E02000
|
unkown
|
page read and write
|
|
|
|
16AD0010000
|
heap private
|
page read and write
|
|
|
|
7FF5BB2DD000
|
unkown image
|
page readonly
|
|
|
|
1C3284F0000
|
unkown image
|
page readonly
|
|
|
|
7FF51F907000
|
unkown image
|
page readonly
|
|
|
|
16FA0270000
|
unkown image
|
page readonly
|
|
|
|
7FF5BABBA000
|
unkown image
|
page readonly
|
|
|
|
2011F563000
|
unkown
|
page read and write
|
|
|
|
2011F5BB000
|
unkown
|
page read and write
|
|
|
|
1F38863C000
|
unkown
|
page read and write
|
|
|
|
2011F5A7000
|
unkown
|
page read and write
|
|
|
|
2290000
|
unkown
|
page read and write
|
|
|
|
16ACFD66000
|
unkown
|
page read and write
|
|
|
|
7FF5BB41F000
|
unkown image
|
page readonly
|
|
|
|
269D2980000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAB1B000
|
unkown image
|
page readonly
|
|
|
|
7FF5A75A6000
|
unkown image
|
page readonly
|
|
|
|
16F9FB90000
|
heap private
|
page read and write
|
|
|
|
E596F7D000
|
stack
|
page read and write
|
|
|
|
7FF513AFB000
|
unkown image
|
page readonly
|
|
|
|
22D0000
|
heap private
|
page read and write
|
|
|
|
7FF513877000
|
unkown image
|
page readonly
|
|
|
|
2011EEC0000
|
unkown
|
page read and write
|
|
|
|
1F3885B0000
|
unkown image
|
page readonly
|
|
|
|
7DF5EA352000
|
unkown image
|
page readonly
|
|
|
|
2011EE3C000
|
unkown
|
page read and write
|
|
|
|
A384FF9000
|
stack
|
page read and write
|
|
|
|
1F38868B000
|
unkown
|
page read and write
|
|
|
|
7FF51F93E000
|
unkown image
|
page readonly
|
|
|
|
7FF513BD2000
|
unkown image
|
page readonly
|
|
|
|
2011F5B1000
|
unkown
|
page read and write
|
|
|
|
7FF51F7DD000
|
unkown image
|
page readonly
|
|
|
|
26EBA702000
|
unkown
|
page read and write
|
|
|
|
269D2240000
|
heap private
|
page read and write
|
|
|
|
7FF5DAC43000
|
unkown image
|
page readonly
|
|
|
|
7FF59E036000
|
unkown image
|
page readonly
|
|
|
|
2011EBD0000
|
unkown image
|
page readonly
|
|
|
|
7FF59E0F2000
|
unkown image
|
page readonly
|
|
|
|
7FF513CE9000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7DEA000
|
unkown image
|
page readonly
|
|
|
|
7FF5BAFF1000
|
unkown image
|
page readonly
|
|
|
|
E596B7F000
|
stack
|
page read and write
|
|
|
|
A384A8B000
|
unkown
|
page read and write
|
|
|
|
26EBA602000
|
unkown
|
page read and write
|
|
|
|
7FF5BB0E4000
|
unkown image
|
page readonly
|
|
|
|
16FA5254000
|
unkown
|
page read and write
|
|
|
|
7FF513CFA000
|
unkown image
|
page readonly
|
|
|
|
2269000
|
heap private
|
page read and write
|
|
|
|
1C328370000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAC50000
|
unkown image
|
page readonly
|
|
|
|
25F147A000
|
unkown
|
page read and write
|
|
|
|
7FF5DABB1000
|
unkown image
|
page readonly
|
|
|
|
16ACFD6E000
|
unkown
|
page read and write
|
|
|
|
4E8F000
|
stack
|
page read and write
|
|
|
|
7FF5A7E65000
|
unkown image
|
page readonly
|
|
|
|
1F388670000
|
unkown
|
page read and write
|
|
|
|
40000
|
unkown image
|
page readonly
|
|
|
|
7FF51F796000
|
unkown image
|
page readonly
|
|
|
|
7DF52D670000
|
unkown image
|
page readonly
|
|
|
|
26EBA653000
|
unkown
|
page read and write
|
|
|
|
7FF5BB256000
|
unkown image
|
page readonly
|
|
|
|
269D2280000
|
unkown image
|
page readonly
|
|
|
|
7FF5DC5D7000
|
unkown image
|
page readonly
|
|
|
|
7FFD0000
|
unkown image
|
page readonly
|
|
|
|
2011F3B0000
|
unkown image
|
page write copy
|
|
|
|
7DF5B5AF0000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7D7D000
|
unkown image
|
page readonly
|
|
|
|
2011FA02000
|
unkown
|
page read and write
|
|
|
|
7FF5BB1D7000
|
unkown image
|
page readonly
|
|
|
|
7DF5ABD90000
|
unkown image
|
page readonly
|
|
|
|
7FF513BE1000
|
unkown image
|
page readonly
|
|
|
|
2011F59F000
|
unkown
|
page read and write
|
|
|
|
7FF51F91D000
|
unkown image
|
page readonly
|
|
|
|
16ACFD6E000
|
unkown
|
page read and write
|
|
|
|
1F388708000
|
unkown
|
page read and write
|
|
|
|
7FF5DAC3D000
|
unkown image
|
page readonly
|
|
|
|
2011F557000
|
unkown
|
page read and write
|
|
|
|
2011EB90000
|
unkown image
|
page read and write
|
|
|
|
16F9FC29000
|
unkown
|
page read and write
|
|
|
|
7FFB0000
|
unkown image
|
page readonly
|
|
|
|
7DF5B5AE0000
|
unkown image
|
page readonly
|
|
|
|
16FA5261000
|
unkown
|
page read and write
|
|
|
|
E596D7B000
|
stack
|
page read and write
|
|
|
|
7FF513A96000
|
unkown image
|
page readonly
|
|
|
|
7FF513BEA000
|
unkown image
|
page readonly
|
|
|
|
40000
|
unkown image
|
page readonly
|
|
|
|
2011EEAA000
|
unkown
|
page read and write
|
|
|
|
4D8E000
|
stack
|
page read and write
|
|
|
|
7FF51F7C1000
|
unkown image
|
page readonly
|
|
|
|
2011EBE0000
|
unkown image
|
page readonly
|
|
|
|
7FF5A7E61000
|
unkown image
|
page readonly
|
|
|
|
7FF513AC9000
|
unkown image
|
page readonly
|
|
|
|
1C327D98000
|
heap default
|
page read and write
|
|
|
|
2011F554000
|
unkown
|
page read and write
|
|
|
|
7FF513C62000
|
unkown image
|
page readonly
|
|
|
|
26EBA651000
|
unkown
|
page read and write
|
|
|
|
1F388580000
|
unkown image
|
page readonly
|
|
|
|
16FA0B90000
|
unkown image
|
page read and write
|
|
|
|
7FF5BAFF7000
|
unkown image
|
page readonly
|
|
|
|
7FF5DAC27000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB4E2000
|
unkown image
|
page readonly
|
|
|
|
7FF5BAE77000
|
unkown image
|
page readonly
|
|
|
|
16FA5200000
|
unkown
|
page read and write
|
|
|
|
2011F5A1000
|
unkown
|
page read and write
|
|
|
|
2011F582000
|
unkown
|
page read and write
|
|
|
|
1C327D50000
|
heap private
|
page read and write
|
|
|
|
98000
|
unkown
|
page read and write
|
|
|
|
D5F2CFF000
|
stack
|
page read and write
|
|
|
|
7DF5EA352000
|
unkown image
|
page readonly
|
|
|
|
2011EDF0000
|
unkown image
|
page readonly
|
|
|
|
D5F327D000
|
stack
|
page read and write
|
|
|
|
2011EEEC000
|
unkown
|
page read and write
|
|
|
|
7FF5BAFAB000
|
unkown image
|
page readonly
|
|
|
|
7FF51F9E9000
|
unkown image
|
page readonly
|
|
|
|
2011FA02000
|
unkown
|
page read and write
|
|
|
|
E596E77000
|
stack
|
page read and write
|
|
|
|
7FF59E043000
|
unkown image
|
page readonly
|
|
|
|
2011F5B9000
|
unkown
|
page read and write
|
|
|
|
7FF5DAD31000
|
unkown image
|
page readonly
|
|
|
|
16F9FC5A000
|
unkown
|
page read and write
|
|
|
|
400000
|
unkown image
|
page readonly
|
|
|
|
7FF51F4F7000
|
unkown image
|
page readonly
|
|
|
|
1F388650000
|
unkown
|
page read and write
|
|
|
|
16ACFD6E000
|
unkown
|
page read and write
|
|
|
|
52B47B000
|
unkown
|
page read and write
|
|
|
|
16FA0513000
|
unkown
|
page read and write
|
|
|
|
CD7AA7B000
|
unkown
|
page read and write
|
|
|
|
7FF51FA11000
|
unkown image
|
page readonly
|
|
|
|
16F9FC7B000
|
unkown
|
page read and write
|
|
|
|
D5F317F000
|
stack
|
page read and write
|
|
|
|
16FA0B60000
|
unkown
|
page read and write
|
|
|
|
7DF5ABD80000
|
unkown image
|
page readonly
|
|
|
|
2011EBA0000
|
heap private
|
page read and write
|
|
|
|
C00000
|
unkown image
|
page readonly
|
|
|
|
7FF513D0E000
|
unkown image
|
page readonly
|
|
|
|
670000
|
unkown
|
page execute read
|
|
|
|
269D2270000
|
unkown image
|
page readonly
|
|
|
|
16FA5212000
|
unkown
|
page read and write
|
|
|
|
2011EE29000
|
unkown
|
page read and write
|
|
|
|
2250000
|
unkown image
|
page readonly
|
|
|
|
2011FA02000
|
unkown
|
page read and write
|
|
|
|
2011F5A2000
|
unkown
|
page read and write
|
|
There are 895 hidden memdumps, click here to show them.