Automated Malware Analysis IOC Report for

Details

Name:	00000009.00000002.39558929344.000000001E3C1000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E3C1000
Size:	638976

Signature Hits	Behavior Group	Mitre Attack
Yara detected AgentTesla	Stealing of Sensitive Information, Remote Access Functionality
Yara detected Credential Stealer	Stealing of Sensitive Information
URLs found in memory or binary data	Networking

Details

Name:	00000009.00000000.34699479595.0000000001300000.00000040.00000001.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	1300000
Size:	102400

Signature Hits	Behavior Group	Mitre Attack
Found malware configuration	AV Detection
Yara detected GuLoader	Data Obfuscation

Details

Name:	00000009.00000003.35815928823.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000001.00000002.34926488473.00000000021E9000.00000004.00000040.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	21E9000
Size:	24576

Details

Name:	00000009.00000003.34912621910.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	20480

Details

Name:	00000009.00000003.35809088755.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	12288

Details

Name:	00000009.00000003.34910917722.00000000206A7000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A7000
Size:	16384

Details

Name:	0000000D.00000002.37894595353.00007FF56D4E3000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D4E3000
Size:	16384

Details

Name:	00000009.00000000.34698724605.000000007FC12000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC12000
Size:	4096

Details

Name:	00000009.00000003.35002340229.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35796307701.0000000001480000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1480000
Size:	65536

Details

Name:	00000009.00000003.35814783849.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35835079496.0000000020661000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20661000
Size:	61440

Details

Name:	00000009.00000002.39549440175.00000000017C0000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	17C0000
Size:	4096

Details

Name:	00000009.00000003.34905257629.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.34981750248.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35854918384.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34982250018.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39566984821.00000000206B6000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	206B6000
Size:	4096

Details

Name:	00000009.00000000.34696353757.000000007FC12000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC12000
Size:	4096

Details

Name:	00000009.00000003.35836052836.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39567983535.0000000020760000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	20760000
Size:	65536

Details

Name:	00000009.00000003.34988403721.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34982758162.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35860642030.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35827642602.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	57344

Details

Name:	00000009.00000003.35002721287.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34980689015.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39550253968.000000000195E000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	195E000
Size:	8192

Details

Name:	00000009.00000003.35864324547.00000000012A0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	12A0000
Size:	53248

Details

Name:	00000009.00000003.34983801924.0000000001210000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1210000
Size:	16384

Details

Name:	00000009.00000003.35817351817.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000001.00000002.34926030934.00000000006AE000.00000004.00000010.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6AE000
Size:	8192

Details

Name:	00000009.00000002.39557904551.000000001E1D0000.00000004.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	1E1D0000
Size:	4096

Details

Name:	00000009.00000003.35793391530.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000002.39560581278.000000001E4DE000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E4DE000
Size:	4096

Details

Name:	00000009.00000003.35812611076.0000000001800000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1800000
Size:	36864

Details

Name:	00000009.00000003.35822798958.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	16384

Details

Name:	00000009.00000003.35811685229.00000000017E0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17E0000
Size:	65536

Details

Name:	00000009.00000003.35807469506.00000000017C0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17C0000
Size:	65536

Details

Name:	00000009.00000003.34910067380.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.35808162834.00000000017C0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17C0000
Size:	16384

Details

Name:	00000009.00000003.34984540220.0000000001210000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1210000
Size:	12288

Details

Name:	00000009.00000002.39567192640.00000000206CE000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	206CE000
Size:	4096

Details

Name:	00000009.00000003.35003711658.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000002.39558232568.000000001E210000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E210000
Size:	4096

Details

Name:	00000009.00000003.34914333970.0000000020750000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20750000
Size:	16384

Details

Name:	00000009.00000003.35799148549.0000000001480000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1480000
Size:	8192

Details

Name:	00000009.00000003.35836093216.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000000.34697995736.000000007FC22000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC22000
Size:	4096

Details

Name:	00000009.00000003.35818931329.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35822988448.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	16384

Details

Name:	00000009.00000002.39569523331.0000000021B6D000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	21B6D000
Size:	12288

Details

Name:	00000009.00000003.34914785757.0000000020750000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20750000
Size:	16384

Details

Name:	00000001.00000002.34924412755.0000000000020000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	20000
Size:	4096

Details

Name:	00000009.00000003.35003180825.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35004795804.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34978952173.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000002.37893744721.00007DF579252000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF579252000
Size:	4096

Details

Name:	00000009.00000003.35838783480.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000001.00000002.34925541604.0000000000422000.00000004.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	422000
Size:	8192

Details

Name:	00000009.00000003.35814295596.0000000001A30000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A30000
Size:	65536

Details

Name:	00000009.00000003.34898456517.0000000001598000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1598000
Size:	266240

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000009.00000003.34908435546.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	45056

Details

Name:	00000009.00000003.35852483259.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39567674282.000000002071E000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2071E000
Size:	8192

Details

Name:	00000009.00000003.35813814443.0000000001800000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1800000
Size:	65536

Details

Name:	00000009.00000003.34908362403.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	20480

Details

Name:	00000009.00000003.35833623952.00000000207B0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	207B0000
Size:	20480

Details

Name:	00000009.00000003.34982961534.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000E.00000002.39548679161.00007FF5D3762000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D3762000
Size:	20480

Details

Name:	00000009.00000002.39549397505.00000000016D0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	16D0000
Size:	4096

Signature Hits	Behavior Group	Mitre Attack
Tries to detect sandboxes and other dynamic analysis tools (process name or module or function)	Malware Analysis System Evasion	Security Software Discovery
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery
URLs found in memory or binary data	Networking

Details

Name:	00000001.00000002.34924460741.0000000000030000.00000004.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	30000
Size:	4096

Details

Name:	00000009.00000003.35838187654.0000000001200000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1200000
Size:	4096

Details

Name:	0000000D.00000002.37892737701.000001E7B2E4A000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E7B2E4A000
Size:	40960

Details

Name:	00000009.00000003.35788365739.0000000001770000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1770000
Size:	49152

Details

Name:	00000009.00000003.35795186822.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35003490844.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.35839534425.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34983754568.0000000001210000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1210000
Size:	12288

Details

Name:	0000000E.00000002.39547344797.000002CD71140000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	2CD71140000
Size:	8192

Details

Name:	00000009.00000002.39548757610.0000000001584000.00000004.00000020.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	1584000
Size:	352256

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery
URLs found in memory or binary data	Networking

Details

Name:	00000009.00000003.35820655764.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	12288

Details

Name:	00000009.00000003.35853354063.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35789851753.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	16384

Details

Name:	00000009.00000003.34909196970.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.35810553542.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	16384

Details

Name:	00000009.00000003.35814896116.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39550088650.00000000018DE000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	18DE000
Size:	8192

Details

Name:	0000000E.00000002.39548250209.00007FF5D3718000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D3718000
Size:	20480

Details

Name:	00000009.00000003.35851726897.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35804819287.00000000017D0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17D0000
Size:	61440

Details

Name:	00000009.00000003.35798087816.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35803352235.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	45056

Details

Name:	0000000D.00000002.37891645219.000001E7B2CA0000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1E7B2CA0000
Size:	4096

Details

Name:	00000009.00000003.35002176144.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35854488356.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35799577126.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35002542462.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39569042427.000000002098E000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2098E000
Size:	8192

Details

Name:	00000009.00000003.35863530961.0000000001200000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1200000
Size:	45056

Details

Name:	0000000E.00000000.39123524032.00007DF5DF490000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5DF490000
Size:	4096

Details

Name:	00000009.00000003.34978857007.0000000000F90000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	F90000
Size:	4096

Details

Name:	00000009.00000002.39550499162.0000000001A90000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1A90000
Size:	8192

Details

Name:	00000009.00000003.35002575885.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35820273489.0000000001A71000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A71000
Size:	61440

Details

Name:	0000000E.00000002.39547308741.000002CD71135000.00000004.00000040.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	2CD71135000
Size:	4096

Details

Name:	00000009.00000003.34980567397.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35004031645.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35816922727.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35865230972.0000000001430000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1430000
Size:	53248

Details

Name:	00000009.00000003.35858354440.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35804131534.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	65536

Details

Name:	00000009.00000003.35794942763.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	65536

Details

Name:	00000009.00000003.34987746100.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.35836653100.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.34977314448.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35836741787.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34986121642.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000001.00000002.34926879789.0000000002990000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2990000
Size:	4096

Details

Name:	00000009.00000002.39557938250.000000001E1E0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E1E0000
Size:	8192

Details

Name:	00000009.00000003.34979084973.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000001.00000002.34926566818.00000000021F0000.00000004.00000040.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	21F0000
Size:	8192

Details

Name:	00000009.00000003.34984148379.0000000001210000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1210000
Size:	16384

Details

Name:	00000009.00000003.34914862673.0000000020750000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20750000
Size:	16384

Details

Name:	00000009.00000002.39565707706.000000001F420000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1F420000
Size:	106496

Details

Name:	00000009.00000000.34697899415.000000007FC10000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC10000
Size:	4096

Details

Name:	00000009.00000003.34985273093.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34985230522.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34914264185.0000000020750000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20750000
Size:	16384

Details

Name:	00000009.00000003.35793254467.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35002067176.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000001.00000000.34500960597.000000007FFB2000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFB2000
Size:	4096

Details

Name:	00000009.00000003.35810306065.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	20480

Details

Name:	00000009.00000003.35854632426.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35814196297.0000000001A40000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A40000
Size:	65536

Details

Name:	00000009.00000003.35792360763.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.35850486251.0000000001201000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1201000
Size:	57344

Details

Name:	00000009.00000003.35815206851.0000000001840000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1840000
Size:	16384

Details

Name:	00000009.00000003.35005029071.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.35794160721.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000002.39567714411.0000000020720000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	20720000
Size:	61440

Details

Name:	00000001.00000002.34927106361.0000000002F10000.00000004.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	2F10000
Size:	8192

Details

Name:	00000009.00000000.34699787840.000000007FC30000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC30000
Size:	12288

Details

Name:	00000009.00000002.39558088113.000000001E1FD000.00000040.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	1E1FD000
Size:	4096

Details

Name:	00000009.00000003.35815321252.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34984451915.0000000001210000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1210000
Size:	12288

Details

Name:	00000009.00000003.35799292355.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	65536

Details

Name:	00000009.00000003.35815892933.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000000.34695346688.000000007FC22000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC22000
Size:	4096

Details

Name:	00000009.00000003.35803113586.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34978908411.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35005212556.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000002.39567797989.0000000020730000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	20730000
Size:	65536

Details

Name:	00000009.00000003.35832065340.00000000209F0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	209F0000
Size:	65536

Details

Name:	00000009.00000002.39558373456.000000001E220000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E220000
Size:	4096

Details

Name:	00000009.00000003.35834835966.000000002065B000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	2065B000
Size:	86016

Details

Name:	00000009.00000003.34988185791.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39565469090.000000001F3C1000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1F3C1000
Size:	32768

Details

Name:	00000009.00000003.35795934605.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34983953002.0000000001210000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1210000
Size:	16384

Details

Name:	00000009.00000002.39558806920.000000001E270000.00000004.00000040.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	1E270000
Size:	4096

Details

Name:	00000009.00000003.35803860937.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	65536

Details

Name:	00000009.00000003.35802222390.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35792196784.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35814747392.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34990128114.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35003750060.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35814512411.0000000001840000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1840000
Size:	65536

Details

Name:	00000009.00000003.35832996492.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	24576

Details

Name:	00000009.00000003.35855353852.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35809956676.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	12288

Details

Name:	00000009.00000003.34913997195.0000000020750000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20750000
Size:	16384

Details

Name:	00000009.00000003.35801187090.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	28672

Details

Name:	00000009.00000003.35854677163.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35807894985.00000000017C0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17C0000
Size:	16384

Details

Name:	00000009.00000003.35002768030.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35852543578.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39565906415.000000002059E000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2059E000
Size:	8192

Details

Name:	00000009.00000003.35862991648.0000000001200000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1200000
Size:	65536

Details

Name:	00000009.00000002.39549274032.00000000015EB000.00000004.00000020.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	15EB000
Size:	81920

Details

Name:	00000001.00000002.34926617931.0000000002200000.00000020.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute read
Base address:	2200000
Size:	40960

Details

Name:	00000009.00000003.35005549399.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34914228842.0000000020755000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20755000
Size:	8192

Details

Name:	00000009.00000002.39560681450.000000001E4EE000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E4EE000
Size:	20480

Details

Name:	00000009.00000003.35820400843.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	8192

Details

Name:	00000009.00000003.35850267609.0000000001200000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1200000
Size:	12288

Details

Name:	00000001.00000002.34934573976.000000007FE50000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FE50000
Size:	20480

Details

Name:	00000009.00000003.35795489219.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000002.39560631161.000000001E4EA000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E4EA000
Size:	4096

Details

Name:	00000009.00000003.35815831747.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35836329639.0000000001200000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1200000
Size:	16384

Details

Name:	00000001.00000001.34501136631.0000000000400000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	image loaded
Regiontype:	unkown image
Protect:	page readonly
Base address:	400000
Size:	4096

Details

Name:	00000009.00000003.35822525979.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	36864

Details

Name:	00000009.00000002.39569202509.0000000020CAE000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	20CAE000
Size:	8192

Details

Name:	00000009.00000003.35791196950.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	16384

Details

Name:	00000009.00000003.35811846167.00000000017E0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17E0000
Size:	53248

Details

Name:	00000009.00000002.39557469453.000000001DC30000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1DC30000
Size:	4096

Details

Name:	00000009.00000003.34906548580.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	20480

Details

Name:	00000001.00000002.34925645144.0000000000509000.00000004.00000020.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	509000
Size:	12288

Details

Name:	00000009.00000002.39547979743.0000000001508000.00000004.00000020.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	1508000
Size:	245760

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery
URLs found in memory or binary data	Networking

Details

Name:	00000009.00000003.35816322899.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000E.00000002.39546392067.000002CD70DD0000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	2CD70DD0000
Size:	4096

Details

Name:	00000009.00000003.35792696264.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.35832370253.00000000209D0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	209D0000
Size:	65536

Details

Name:	00000009.00000003.34982391469.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35807320255.00000000017E0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17E0000
Size:	16384

Details

Name:	00000009.00000003.35853122097.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35790177887.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35807262900.00000000017C0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17C0000
Size:	16384

Details

Name:	00000009.00000003.35851664485.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34984983654.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000001.00000002.34926403976.00000000021E0000.00000004.00000040.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	21E0000
Size:	28672

Details

Name:	00000009.00000003.35799192576.0000000001483000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1483000
Size:	53248

Details

Name:	00000009.00000003.35821410203.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	16384

Details

Name:	00000009.00000002.39547712144.00000000014C0000.00000004.00000020.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	14C0000
Size:	16384

Details

Name:	00000009.00000003.35853719880.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35806950692.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	20480

Details

Name:	0000000E.00000002.39548382093.00007FF5D372F000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D372F000
Size:	12288

Details

Name:	00000009.00000002.39567885842.0000000020750000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	20750000
Size:	65536

Details

Name:	0000000E.00000002.39548191091.00007FF5D370F000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D370F000
Size:	28672

Details

Name:	00000009.00000003.35813967463.0000000001800000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1800000
Size:	20480

Details

Name:	00000009.00000003.35833985917.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	12288

Details

Name:	0000000D.00000002.37893027555.000001E7B2E7D000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E7B2E7D000
Size:	8192

Details

Name:	00000009.00000003.34980441022.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34977671360.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35821349571.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	4096

Details

Name:	00000009.00000003.35822625106.00000000207B0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	207B0000
Size:	4096

Details

Name:	0000000E.00000002.39547173893.000002CD71090000.00000004.00000001.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2CD71090000
Size:	4096

Details

Name:	0000000E.00000002.39548421022.00007FF5D3736000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D3736000
Size:	8192

Details

Name:	00000009.00000003.35853871681.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35850819233.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35791678777.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	20480

Details

Name:	00000009.00000003.34914105419.0000000020750000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20750000
Size:	16384

Details

Name:	00000009.00000002.39557674589.000000001DF6E000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1DF6E000
Size:	8192

Details

Name:	00000009.00000003.35791896130.0000000001471000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1471000
Size:	57344

Details

Name:	0000000D.00000002.37893137057.000001E7B2F02000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E7B2F02000
Size:	16384

Details

Name:	0000000E.00000002.39548821972.00007FF5D37A5000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D37A5000
Size:	20480

Details

Name:	00000009.00000000.34699443997.0000000000FE0000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	FE0000
Size:	4096

Details

Name:	00000009.00000003.35835745356.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35807715725.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	12288

Details

Name:	00000009.00000003.34983357874.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35809154440.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	12288

Details

Name:	0000000D.00000002.37894736778.00007FF56D4F6000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D4F6000
Size:	8192

Details

Name:	00000009.00000003.34912743016.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	24576

Details

Name:	00000009.00000003.35838394352.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	0000000E.00000002.39548453784.00007FF5D373C000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D373C000
Size:	16384

Details

Name:	00000009.00000003.35802405974.0000000001475000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1475000
Size:	8192

Details

Name:	00000009.00000003.35832717803.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000002.37892625802.000001E7B2E40000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E7B2E40000
Size:	16384

Details

Name:	00000009.00000003.34914375183.0000000020755000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20755000
Size:	8192

Details

Name:	00000009.00000003.35855163254.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35795983849.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000001.00000002.34928543241.00000000031B0000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	31B0000
Size:	12288

Details

Name:	00000009.00000003.34979906817.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35789393316.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	12288

Details

Name:	0000000D.00000002.37892466704.000001E7B2E31000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E7B2E31000
Size:	36864

Details

Name:	00000009.00000002.39558193806.000000001E20D000.00000040.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	1E20D000
Size:	8192

Details

Name:	00000009.00000002.39558674316.000000001E250000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E250000
Size:	65536

Details

Name:	0000000D.00000002.37892830671.000001E7B2E55000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E7B2E55000
Size:	32768

Details

Name:	00000009.00000003.35832830202.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	24576

Details

Name:	00000009.00000003.35789477721.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	00000009.00000003.35817015740.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35799536845.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34905039669.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.34983906439.0000000001210000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1210000
Size:	12288

Details

Name:	00000009.00000003.35852377002.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35832221767.00000000209E0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	209E0000
Size:	65536

Details

Name:	00000009.00000003.35791740532.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35787670655.0000000001480000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1480000
Size:	16384

Details

Name:	00000009.00000000.34698787226.000000007FC22000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC22000
Size:	4096

Details

Name:	00000001.00000002.34925958944.0000000000610000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	610000
Size:	4096

Details

Name:	00000009.00000003.35860061981.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35813162026.0000000001820000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1820000
Size:	40960

Details

Name:	00000009.00000002.39549909894.0000000001810000.00000040.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page execute and read and write
Base address:	1810000
Size:	8192

Details

Name:	00000009.00000003.34984940053.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34980212126.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35797964611.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	20480

Details

Name:	00000009.00000002.39547555814.00000000014A0000.00000040.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page execute and read and write
Base address:	14A0000
Size:	65536

Details

Name:	00000009.00000003.35004710773.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34902918897.00000000015D9000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	15D9000
Size:	8192

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000009.00000003.35795434498.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.35817063097.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39558335521.000000001E21A000.00000040.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	1E21A000
Size:	12288

Details

Name:	00000009.00000003.35854300622.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000002.37893487753.000001E7B33D0000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1E7B33D0000
Size:	4096

Details

Name:	00000009.00000003.35803272163.0000000001480000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1480000
Size:	16384

Details

Name:	00000009.00000003.35805315759.0000000001850000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1850000
Size:	16384

Details

Name:	00000009.00000003.35862386952.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35818045425.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35820985155.0000000001A71000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A71000
Size:	61440

Details

Name:	00000009.00000003.35790780965.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	12288

Details

Name:	00000009.00000003.35806808447.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	28672

Details

Name:	00000009.00000003.35810431902.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	16384

Details

Name:	00000009.00000003.34903021933.0000000001594000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1594000
Size:	282624

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000009.00000003.35805639792.0000000001820000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1820000
Size:	20480

Details

Name:	00000009.00000003.35859718196.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35863949136.00000000012A0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	12A0000
Size:	65536

Details

Name:	00000009.00000003.35816048760.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000000.34695312275.000000007FC20000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC20000
Size:	4096

Details

Name:	00000009.00000003.35801293803.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.34914982829.0000000020755000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20755000
Size:	8192

Details

Name:	00000009.00000003.35802294910.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34986842984.0000000001260000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1260000
Size:	12288

Details

Name:	00000009.00000003.35805710453.0000000001826000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1826000
Size:	40960

Details

Name:	00000009.00000002.39547817342.00000000014E0000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	14E0000
Size:	4096

Details

Name:	00000009.00000003.35839127058.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35787759894.00000000014A0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	14A0000
Size:	12288

Details

Name:	00000009.00000002.39569159252.0000000020C6D000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	20C6D000
Size:	12288

Details

Name:	0000000D.00000002.37892970766.000001E7B2E6C000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E7B2E6C000
Size:	12288

Details

Name:	00000009.00000003.35807130741.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	16384

Details

Name:	00000009.00000003.35821868756.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	28672

Details

Name:	00000009.00000000.34698432265.0000000000F70000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	F70000
Size:	118784

Details

Name:	0000000D.00000002.37891354045.000000E18557F000.00000004.00000010.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	E18557F000
Size:	4096

Details

Name:	0000000D.00000002.37892686626.000001E7B2E47000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E7B2E47000
Size:	8192

Details

Name:	00000009.00000003.35838892770.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34987175104.0000000001270000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1270000
Size:	12288

Details

Name:	0000000E.00000002.39547462083.000002CD714C0000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	2CD714C0000
Size:	4096

Details

Name:	00000009.00000003.35806910109.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	12288

Details

Name:	00000009.00000003.35864133765.00000000012A0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	12A0000
Size:	65536

Details

Name:	00000001.00000002.34925569619.0000000000424000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	424000
Size:	4096

Signature Hits	Behavior Group	Mitre Attack
Sample file is different than original file name gathered from version info	System Summary

Details

Name:	00000009.00000003.34981620253.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35789645232.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	65536

Details

Name:	00000009.00000003.34898900637.00000000015DA000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	15DA000
Size:	4096

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000009.00000003.35798319228.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000002.39557804196.000000001E1B7000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1E1B7000
Size:	36864

Details

Name:	00000009.00000003.35790535479.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	36864

Details

Name:	00000009.00000002.39558301684.000000001E216000.00000040.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	1E216000
Size:	8192

Details

Name:	00000009.00000003.35793972948.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.35797677514.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35854395211.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35860423818.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39545967207.0000000000F40000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	F40000
Size:	4096

Details

Name:	00000009.00000002.39567543735.0000000020704000.00000004.00000040.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	20704000
Size:	4096

Details

Name:	0000000E.00000002.39546822513.000002CD70EC7000.00000004.00000020.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	2CD70EC7000
Size:	188416

Details

Name:	00000009.00000003.35853632518.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35860010905.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35795539299.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34977441291.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35818098263.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35860474954.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34913531828.0000000020758000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20758000
Size:	20480

Details

Name:	00000009.00000000.34699675432.000000007FC12000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC12000
Size:	4096

Details

Name:	00000009.00000003.35814670126.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35822921206.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	16384

Details

Name:	00000009.00000003.35809023777.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	12288

Details

Name:	00000009.00000003.34982120294.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35813109113.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000002.37892356051.000001E7B2E2A000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E7B2E2A000
Size:	24576

Details

Name:	00000009.00000003.35794302402.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	20480

Details

Name:	00000009.00000003.35003785389.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35822247677.00000000207B0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	207B0000
Size:	36864

Details

Name:	00000009.00000003.34908797432.00000000206A6000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A6000
Size:	16384

Details

Name:	00000009.00000003.35820066970.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	16384

Details

Name:	00000009.00000002.39546173328.0000000000F60000.00000004.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	F60000
Size:	4096

Details

Name:	00000009.00000003.34904928807.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.34889820546.000000001DF30000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1DF30000
Size:	4096

Details

Name:	00000009.00000003.35811598762.0000000001800000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1800000
Size:	12288

Details

Name:	00000009.00000003.35833159576.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	65536

Details

Name:	0000000D.00000002.37895135183.00007FF56D565000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D565000
Size:	20480

Details

Name:	00000009.00000003.35792965948.0000000001480000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1480000
Size:	36864

Details

Name:	00000009.00000003.35002257960.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.34904991521.00000000206A5000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A5000
Size:	8192

Details

Name:	00000009.00000003.35800399852.0000000001471000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1471000
Size:	61440

Details

Name:	00000009.00000002.39550856100.0000000001E61000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1E61000
Size:	344064

Signature Hits	Behavior Group	Mitre Attack
May try to detect the Windows Explorer process (often used for injection)	HIPS / PFW / Operating System Protection Evasion	Process Injection Process Discovery

Details

Name:	00000009.00000003.35795275582.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000000.34696004150.0000000000F70000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	F70000
Size:	118784

Details

Name:	00000009.00000003.35814820986.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34905483221.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	28672

Details

Name:	00000009.00000003.35003677063.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35817544707.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35005261710.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34915062999.0000000020755000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20755000
Size:	8192

Details

Name:	00000009.00000003.35820790858.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	65536

Details

Name:	00000009.00000003.35807804827.00000000017C0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17C0000
Size:	16384

Details

Name:	00000009.00000003.35815506967.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34987283480.0000000001270000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1270000
Size:	12288

Details

Name:	00000009.00000003.35804656444.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	20480

Details

Name:	00000009.00000003.35003924456.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000001.00000002.34925025705.00000000001D0000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1D0000
Size:	4096

Details

Name:	00000009.00000003.35862489108.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35809372652.00000000017E0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17E0000
Size:	40960

Details

Name:	00000009.00000002.39560861282.000000001E4FE000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E4FE000
Size:	4284416

Details

Name:	00000009.00000003.35820937941.0000000001A80000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A80000
Size:	4096

Details

Name:	00000009.00000003.35852043022.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35836141807.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35804495652.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	53248

Details

Name:	00000009.00000003.35820520735.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	16384

Details

Name:	00000009.00000002.39566184224.00000000205D4000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	205D4000
Size:	4096

Details

Name:	00000001.00000002.34927059581.0000000002B10000.00000004.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	2B10000
Size:	16384

Details

Name:	00000001.00000002.34934715071.000000007FFB2000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFB2000
Size:	4096

Details

Name:	00000009.00000002.39569291102.000000002156E000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2156E000
Size:	8192

Details

Name:	00000009.00000003.35853218059.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34910967642.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	20480

Details

Name:	00000001.00000000.34500911703.0000000000424000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	424000
Size:	4096

Details

Name:	00000009.00000003.35790820801.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	12288

Details

Name:	00000009.00000003.34897886336.00000000015D6000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	15D6000
Size:	20480

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000009.00000003.35791340518.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	00000009.00000003.35836611634.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34912433757.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.35823400672.00000000209E0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	209E0000
Size:	45056

Details

Name:	00000001.00000003.34520507687.000000001D2A1000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D2A1000
Size:	49152

Details

Name:	00000009.00000003.34914153360.0000000020755000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20755000
Size:	8192

Details

Name:	00000009.00000003.35797903193.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34988781694.00000000012E0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12E0000
Size:	12288

Details

Name:	00000009.00000003.34914941809.0000000020750000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20750000
Size:	16384

Details

Name:	0000000E.00000002.39546767828.000002CD70EC0000.00000004.00000020.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	2CD70EC0000
Size:	24576

Details

Name:	00000009.00000003.34907583211.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.35835829770.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000001.00000002.34926138396.0000000000A2F000.00000004.00000010.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	A2F000
Size:	4096

Details

Name:	00000009.00000003.34977852362.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35817873102.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.35812081331.0000000001800000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1800000
Size:	20480

Details

Name:	00000009.00000003.35811408649.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	65536

Details

Name:	00000009.00000003.34905672951.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	36864

Details

Name:	00000009.00000003.34981678879.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34985080313.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35853925348.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34912529460.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.35004751682.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35004283451.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39550372873.0000000001A80000.00000040.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page execute and read and write
Base address:	1A80000
Size:	65536

Details

Name:	00000009.00000003.34912058990.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000002.39546852084.0000000001250000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1250000
Size:	49152

Details

Name:	00000009.00000003.35817108808.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35795888885.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000002.39566417408.0000000020645000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	20645000
Size:	28672

Details

Name:	00000009.00000003.34906367007.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.34911634837.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	57344

Details

Name:	00000009.00000003.35002839453.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35791057490.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	00000009.00000003.34911182216.00000000205D7000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	205D7000
Size:	28672

Details

Name:	00000009.00000003.35814968418.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34908931007.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.34989233797.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000000.34699751007.000000007FC22000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC22000
Size:	4096

Details

Name:	00000009.00000002.39569567841.0000000021B70000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	21B70000
Size:	4096

Details

Name:	00000009.00000003.34984194662.0000000001220000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1220000
Size:	16384

Details

Name:	00000009.00000002.39569427116.0000000021776000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	21776000
Size:	8192

Details

Name:	00000009.00000003.34978518309.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35837823638.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34987229888.0000000001270000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1270000
Size:	12288

Details

Name:	00000009.00000003.34985314268.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39568119504.0000000020860000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	20860000
Size:	925696

Details

Name:	00000009.00000003.35817495024.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000001.00000002.34926357951.00000000021D0000.00000004.00000040.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	21D0000
Size:	4096

Details

Name:	00000009.00000003.35800356361.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.35813718086.0000000001840000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1840000
Size:	65536

Details

Name:	00000009.00000003.35803474998.0000000001480000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1480000
Size:	65536

Details

Name:	00000009.00000003.35806206090.00000000017E0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17E0000
Size:	65536

Details

Name:	00000009.00000003.34910134615.00000000206A5000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A5000
Size:	16384

Details

Name:	00000009.00000003.34913894504.0000000020750000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20750000
Size:	16384

Details

Name:	00000001.00000002.34925077636.00000000001E0000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1E0000
Size:	4096

Details

Name:	00000009.00000003.35803617111.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	65536

Details

Name:	00000009.00000003.35853970526.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35818786039.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	53248

Details

Name:	00000009.00000003.35851401870.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35003254936.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34990024069.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000E.00000002.39548066171.00007FF5D36EE000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D36EE000
Size:	4096

Details

Name:	00000009.00000003.34905146766.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.35792527111.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.35832580261.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	65536

Details

Name:	00000009.00000003.35831834911.00000000207B0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	207B0000
Size:	16384

Details

Name:	00000009.00000003.35004665247.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.35796026855.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35188528689.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	00000009.00000000.34697022242.0000000000FD0000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	FD0000
Size:	16384

Details

Name:	00000009.00000003.35801500243.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35795843450.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.34909064299.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.34978757524.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000002.37894366234.00007FF56D4BD000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D4BD000
Size:	4096

Details

Name:	00000009.00000003.35835922490.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35852742494.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35807040901.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	16384

Details

Name:	00000009.00000003.34980269265.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34914710045.0000000020750000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20750000
Size:	16384

Details

Name:	00000009.00000003.35791386694.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	20480

Details

Name:	0000000E.00000002.39547391290.000002CD71340000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	2CD71340000
Size:	16384

Details

Name:	00000009.00000002.39557411529.000000001D5E7000.00000004.00000040.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	1D5E7000
Size:	16384

Details

Name:	00000009.00000003.35004354575.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35819232443.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	4096

Details

Name:	00000009.00000003.34909711485.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.34906932315.00000000206AA000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206AA000
Size:	24576

Details

Name:	00000009.00000003.35790857020.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	00000009.00000003.35796205467.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	20480

Details

Name:	00000009.00000003.35863183542.0000000001200000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1200000
Size:	65536

Details

Name:	00000009.00000003.34981559089.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39557589304.000000001DDCC000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1DDCC000
Size:	16384

Details

Name:	00000001.00000002.34934860901.000000007FFD0000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFD0000
Size:	12288

Details

Name:	0000000E.00000002.39548094724.00007FF5D36FF000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D36FF000
Size:	4096

Details

Name:	00000009.00000003.35790448249.0000000001480000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1480000
Size:	65536

Details

Name:	00000009.00000003.35305689164.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34984795631.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35834590083.000000002068B000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	2068B000
Size:	81920

Details

Name:	00000009.00000003.34978794267.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34978640084.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35838034636.0000000001200000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1200000
Size:	16384

Details

Name:	00000009.00000003.34988531258.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39558772629.000000001E260000.00000040.00000040.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page execute and read and write
Base address:	1E260000
Size:	4096

Details

Name:	0000000E.00000002.39547755909.00007DF5DF492000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5DF492000
Size:	4096

Details

Name:	00000001.00000002.34926156597.0000000000A30000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	A30000
Size:	32768

Details

Name:	00000009.00000003.35002877968.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000000.34698028651.000000007FC30000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC30000
Size:	12288

Details

Name:	00000009.00000003.35795748587.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	20480

Details

Name:	00000009.00000003.35001885669.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35849958880.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34981073035.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35810024385.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	16384

Details

Name:	00000009.00000003.35797734798.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35836465702.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.35865016633.0000000001410000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1410000
Size:	65536

Details

Name:	0000000D.00000002.37894701340.00007FF56D4F4000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D4F4000
Size:	4096

Details

Name:	00000009.00000003.35834781847.0000000020653000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20653000
Size:	28672

Details

Name:	00000009.00000002.39548721460.0000000001582000.00000004.00000020.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	1582000
Size:	4096

Details

Name:	00000009.00000003.35834217093.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	16384

Details

Name:	00000009.00000003.35005123381.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000000.37289239093.00007DF579250000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF579250000
Size:	4096

Details

Name:	00000009.00000003.34898028924.0000000001598000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1598000
Size:	266240

Details

Name:	00000009.00000003.34906035408.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	65536

Details

Name:	0000000D.00000002.37892170697.000001E7B2E13000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E7B2E13000
Size:	49152

Details

Name:	00000009.00000003.35816877493.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35863308337.0000000001200000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1200000
Size:	28672

Details

Name:	00000009.00000003.35817306217.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000001.00000002.34926071602.00000000007EE000.00000004.00000010.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	7EE000
Size:	8192

Details

Name:	00000009.00000003.34984243378.0000000001220000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1220000
Size:	16384

Details

Name:	00000009.00000003.34914521269.0000000020755000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20755000
Size:	8192

Details

Name:	00000009.00000003.34989836542.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000002.37895002932.00007FF56D522000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D522000
Size:	20480

Details

Name:	00000009.00000003.34979521681.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35806454093.00000000017C0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17C0000
Size:	65536

Details

Name:	00000009.00000003.34898417742.00000000015DA000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	15DA000
Size:	4096

Details

Name:	00000009.00000003.35820180183.0000000001A80000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A80000
Size:	16384

Details

Name:	00000009.00000000.34696431391.000000007FC22000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC22000
Size:	4096

Details

Name:	00000009.00000003.35790902362.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	12288

Details

Name:	00000009.00000003.34988459646.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.34914825508.0000000020755000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20755000
Size:	8192

Details

Name:	00000009.00000003.34907712366.00000000206A8000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A8000
Size:	20480

Details

Name:	00000009.00000003.35815792686.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000001.00000002.34924509918.0000000000040000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	40000
Size:	118784

Details

Name:	00000009.00000003.34982633446.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35793323975.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000000.34695246029.000000007FC10000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC10000
Size:	4096

Details

Name:	00000009.00000003.35809601048.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	12288

Details

Name:	00000009.00000003.35799403783.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.35005612350.00000000012E0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12E0000
Size:	12288

Details

Name:	00000009.00000003.35818154773.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35863678035.00000000012A0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	12A0000
Size:	28672

Details

Name:	00000009.00000003.35788017067.0000000001790000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1790000
Size:	65536

Details

Name:	00000009.00000002.39546540785.0000000000FE0000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	FE0000
Size:	4096

Details

Name:	00000009.00000003.35854439698.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35794580776.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34979452888.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35809733801.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	20480

Details

Name:	00000009.00000002.39557255968.000000001D480000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1D480000
Size:	4096

Details

Name:	00000009.00000003.35817401548.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34905878563.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	28672

Details

Name:	00000009.00000003.34889907289.000000001DF30000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1DF30000
Size:	4096

Details

Name:	00000009.00000002.39565526748.000000001F3E9000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1F3E9000
Size:	155648

Details

Name:	0000000D.00000002.37892914681.000001E7B2E5F000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E7B2E5F000
Size:	12288

Details

Name:	00000009.00000002.39546496490.0000000000FD0000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	FD0000
Size:	16384

Details

Name:	00000009.00000002.39558535050.000000001E230000.00000040.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	1E230000
Size:	65536

Details

Name:	00000009.00000003.35838536138.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35003458675.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34915018030.0000000020750000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20750000
Size:	16384

Details

Name:	00000009.00000003.35855112493.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34907411820.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	28672

Details

Name:	00000009.00000003.35804000856.0000000001480000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1480000
Size:	65536

Details

Name:	00000009.00000000.34696397115.000000007FC20000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC20000
Size:	4096

Details

Name:	00000009.00000003.35791812409.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34980884328.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35815545270.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39569467913.0000000021792000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	21792000
Size:	24576

Details

Name:	00000009.00000003.35852204754.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35815355220.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34907462375.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	28672

Details

Name:	00000009.00000003.35807753680.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	20480

Details

Name:	00000009.00000003.35798029464.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35791438782.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	36864

Details

Name:	00000009.00000003.35811319991.00000000017E0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17E0000
Size:	65536

Details

Name:	0000000E.00000002.39548637164.00007FF5D375B000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D375B000
Size:	12288

Details

Name:	00000009.00000003.35005077026.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35806998258.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	16384

Details

Name:	00000009.00000003.35864417914.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000002.37891691208.000001E7B2CB0000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1E7B2CB0000
Size:	118784

Details

Name:	00000009.00000003.34986639306.0000000001260000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1260000
Size:	12288

Details

Name:	00000009.00000003.35835961168.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35820456262.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	12288

Details

Name:	00000009.00000003.35003816131.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34981314167.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34985642381.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35816540107.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35855494171.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39566283279.000000002062C000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2062C000
Size:	98304

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000009.00000003.35860317160.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35790976930.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	16384

Details

Name:	00000009.00000002.39547772750.00000000014D0000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	14D0000
Size:	4096

Details

Name:	00000009.00000003.35818724887.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	12288

Details

Name:	00000009.00000003.35800200497.0000000001471000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1471000
Size:	53248

Details

Name:	00000009.00000002.39558046343.000000001E1F4000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E1F4000
Size:	8192

Details

Name:	00000009.00000003.35814166067.0000000001A50000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A50000
Size:	4096

Details

Name:	00000009.00000003.35801437435.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.34989376166.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000E.00000002.39546420897.000002CD70DE0000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	2CD70DE0000
Size:	118784

Details

Name:	00000009.00000003.35822379472.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	65536

Details

Name:	00000009.00000003.35792032515.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000002.39560288212.000000001E4C0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E4C0000
Size:	12288

Details

Name:	00000009.00000003.34984681796.0000000001210000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1210000
Size:	32768

Details

Name:	00000009.00000002.39546464162.0000000000F90000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	F90000
Size:	4096

Details

Name:	00000009.00000003.35812933759.0000000001800000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1800000
Size:	57344

Details

Name:	00000009.00000003.35851781890.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35800577470.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.34911280252.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	53248

Details

Name:	00000009.00000003.34908998495.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000002.39550648590.0000000001CD0000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1CD0000
Size:	73728

Details

Name:	00000009.00000003.35788773458.00000000014A0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	14A0000
Size:	65536

Details

Name:	00000009.00000000.34696251132.0000000000FE0000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	FE0000
Size:	4096

Details

Name:	00000009.00000003.34988946349.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35794849923.0000000001480000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1480000
Size:	20480

Details

Name:	00000009.00000002.39549170223.00000000015DB000.00000004.00000020.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	15DB000
Size:	45056

Details

Name:	00000009.00000002.39547856996.00000000014F0000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	14F0000
Size:	8192

Details

Name:	00000009.00000003.34988636293.00000000012E0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12E0000
Size:	8192

Details

Name:	00000009.00000003.35834318711.0000000020670000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20670000
Size:	192512

Details

Name:	00000009.00000002.39560105173.000000001E4A9000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E4A9000
Size:	40960

Details

Name:	00000009.00000003.35802511876.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000001.00000000.34500746188.0000000000401000.00000020.00020000.sdmp
TargetID:	1
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page execute read
Base address:	401000
Size:	135168

Details

Name:	00000009.00000003.35815667137.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.35792115494.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.35859907017.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35789893592.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	16384

Details

Name:	00000009.00000002.39566898318.00000000206A0000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.35792608007.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.35802188966.0000000001475000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1475000
Size:	8192

Details

Name:	00000009.00000002.39546745379.0000000001240000.00000040.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	1240000
Size:	65536

Details

Name:	00000009.00000003.35802763202.0000000001475000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1475000
Size:	8192

Details

Name:	00000009.00000003.35859806132.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35834064579.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	20480

Details

Name:	00000009.00000003.34912801161.00000000206A7000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A7000
Size:	16384

Details

Name:	00000009.00000003.35796979843.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	57344

Details

Name:	00000009.00000002.39560348048.000000001E4C4000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E4C4000
Size:	20480

Details

Name:	0000000D.00000002.37891433208.000000E18567E000.00000004.00000010.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	E18567E000
Size:	8192

Details

Name:	00000009.00000003.35815427598.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35851993549.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35822141699.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	12288

Details

Name:	00000009.00000003.35797277201.000000000147C000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	147C000
Size:	16384

Details

Name:	00000009.00000003.35801950298.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	0000000E.00000002.39548301122.00007FF5D371E000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D371E000
Size:	4096

Details

Name:	00000009.00000003.35003029357.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34989610972.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34913339616.0000000020750000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20750000
Size:	12288

Details

Name:	00000009.00000003.35837963230.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35305587711.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35858088045.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35802875147.0000000001475000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1475000
Size:	8192

Details

Name:	00000009.00000000.34697866797.0000000000FE0000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	FE0000
Size:	4096

Details

Name:	00000009.00000003.34907257074.00000000206A5000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A5000
Size:	8192

Details

Name:	00000009.00000003.35819872608.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	16384

Details

Name:	00000009.00000003.35003099745.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34987004329.0000000001260000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1260000
Size:	12288

Details

Name:	00000009.00000003.35800316603.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000002.39558406474.000000001E222000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E222000
Size:	4096

Details

Name:	00000009.00000003.34908098991.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	28672

Details

Name:	00000009.00000002.39546245204.0000000000F70000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	F70000
Size:	118784

Details

Name:	00000009.00000003.35836190839.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35002994886.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35838948678.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000E.00000002.39547260090.000002CD71130000.00000004.00000040.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	2CD71130000
Size:	12288

Details

Name:	00000009.00000003.35865423741.0000000001430000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1430000
Size:	57344

Details

Name:	0000000E.00000000.39123863743.00007FF5D37A5000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D37A5000
Size:	20480

Details

Name:	00000009.00000000.34697133840.000000007FC12000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC12000
Size:	4096

Details

Name:	00000009.00000003.35807984530.00000000017C0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17C0000
Size:	16384

Details

Name:	00000009.00000003.35819255965.0000000001A72000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A72000
Size:	53248

Details

Name:	00000009.00000003.35799619256.0000000001480000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1480000
Size:	16384

Details

Name:	00000009.00000003.34911493408.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	28672

Details

Name:	00000009.00000003.35839182191.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35796740299.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	20480

Details

Name:	00000009.00000003.35812763922.0000000001804000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1804000
Size:	49152

Details

Name:	00000009.00000003.34913597983.0000000020750000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20750000
Size:	32768

Details

Name:	00000009.00000003.35818266775.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000E.00000002.39548584185.00007FF5D3753000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D3753000
Size:	16384

Details

Name:	00000009.00000003.35823187991.00000000207B0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	207B0000
Size:	16384

Details

Name:	0000000E.00000002.39546209724.000000D8AD8FE000.00000004.00000010.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	D8AD8FE000
Size:	8192

Details

Name:	00000009.00000003.34981251566.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35790217069.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	0000000D.00000002.37894780744.00007FF56D4FC000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D4FC000
Size:	16384

Details

Name:	00000009.00000003.35853586918.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35789520613.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34907546880.00000000206A5000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A5000
Size:	12288

Details

Name:	00000001.00000002.34924977032.00000000001C0000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1C0000
Size:	4096

Details

Name:	00000009.00000003.34910647038.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.35795685075.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	24576

Details

Name:	00000009.00000003.35834697258.0000000020642000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20642000
Size:	8192

Details

Name:	00000009.00000002.39546945877.000000000129C000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	129C000
Size:	16384

Details

Name:	00000009.00000003.34985030139.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35859857493.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34989279748.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34983401458.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35819351342.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	45056

Details

Name:	0000000E.00000000.39123679553.00007DF5DF4A0000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5DF4A0000
Size:	4096

Details

Name:	00000009.00000002.39551309400.00000000032B9000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	32B9000
Size:	24576

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery

Details

Name:	00000009.00000003.35796679921.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	20480

Details

Name:	00000009.00000003.35004485836.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.35863381058.0000000001200000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1200000
Size:	28672

Details

Name:	00000009.00000000.34697641682.0000000000F70000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	F70000
Size:	118784

Details

Name:	00000009.00000003.35002806697.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35855015164.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35789562724.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	20480

Details

Name:	00000009.00000003.35811131707.0000000001810000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1810000
Size:	57344

Details

Name:	00000009.00000003.34910414013.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.34914631284.0000000020750000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20750000
Size:	16384

Details

Name:	00000009.00000003.35837027678.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35858174271.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35788172456.0000000001780000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1780000
Size:	32768

Details

Name:	00000001.00000002.34934812237.000000007FFC2000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFC2000
Size:	4096

Details

Name:	00000009.00000003.34982451572.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35814931819.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35807083541.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	16384

Details

Name:	00000009.00000003.35802581854.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34910861556.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	24576

Details

Name:	00000009.00000003.34909844402.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	20480

Details

Name:	00000009.00000003.35835356324.0000000001200000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1200000
Size:	65536

Details

Name:	00000009.00000002.39558472416.000000001E227000.00000040.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	1E227000
Size:	4096

Details

Name:	00000009.00000003.35850666192.0000000001200000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1200000
Size:	65536

Details

Name:	0000000D.00000002.37893840044.00007DF579262000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF579262000
Size:	4096

Details

Name:	00000009.00000003.34912488179.00000000206A5000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A5000
Size:	8192

Details

Name:	00000009.00000003.34914596534.0000000020755000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20755000
Size:	8192

Details

Name:	00000009.00000003.35854871352.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35804936839.00000000017C0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17C0000
Size:	65536

Details

Name:	00000009.00000003.35791507678.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	65536

Details

Name:	00000009.00000003.35853262447.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35855259192.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000E.00000002.39547715966.00007DF5DF490000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5DF490000
Size:	4096

Details

Name:	00000009.00000002.39546573881.00000000011E8000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	11E8000
Size:	8192

Details

Name:	00000009.00000003.35816686161.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.34912859280.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	20480

Details

Name:	00000009.00000003.35850623812.0000000001840000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1840000
Size:	12288

Details

Name:	00000009.00000003.35803189568.0000000001475000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1475000
Size:	8192

Details

Name:	00000009.00000003.35794034962.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000001.00000002.34925348041.0000000000401000.00000020.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page execute read
Base address:	401000
Size:	135168

Details

Name:	00000009.00000003.35850378656.0000000001200000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1200000
Size:	16384

Details

Name:	00000009.00000003.35808407009.00000000017D0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17D0000
Size:	65536

Details

Name:	0000000D.00000002.37894648699.00007FF56D4EF000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D4EF000
Size:	16384

Details

Name:	0000000D.00000002.37893199765.000001E7B3000000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1E7B3000000
Size:	4096

Details

Name:	00000009.00000003.34904056274.00000000205AC000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	205AC000
Size:	69632

Details

Name:	00000009.00000003.35858299763.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34983852461.0000000001210000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1210000
Size:	16384

Details

Name:	00000009.00000002.39569759298.000000007FC10000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC10000
Size:	4096

Details

Name:	00000009.00000003.35853079424.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34989059402.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35836422574.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35796800272.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	20480

Details

Name:	00000009.00000003.35831721308.00000000207B0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	207B0000
Size:	20480

Details

Name:	00000009.00000003.35002009848.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000002.37894146189.00007FF56D3A8000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D3A8000
Size:	8192

Details

Name:	00000009.00000003.34979128026.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35790055680.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35862582910.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39565837473.00000000203C8000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	203C8000
Size:	4096

Details

Name:	00000009.00000003.35852147081.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35815006351.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34981873648.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35823503890.00000000209D0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	209D0000
Size:	65536

Details

Name:	0000000D.00000002.37893948814.00007FF56CB45000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56CB45000
Size:	4096

Details

Name:	00000009.00000003.35854067215.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000000.34697100666.000000007FC10000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC10000
Size:	4096

Details

Name:	00000001.00000002.34926012722.0000000000630000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	630000
Size:	4096

Details

Name:	00000009.00000003.34912220715.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	65536

Details

Name:	00000009.00000003.34986054715.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000002.37893699274.00007DF579250000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF579250000
Size:	4096

Details

Name:	00000009.00000003.35837466243.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000001.00000002.34927142067.0000000002F90000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2F90000
Size:	4096

Details

Name:	00000009.00000003.34913948003.0000000020755000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20755000
Size:	12288

Details

Name:	0000000E.00000002.39546657609.000002CD70E20000.00000004.00000001.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2CD70E20000
Size:	8192

Details

Name:	00000009.00000002.39569603622.0000000021C20000.00000004.00000040.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	21C20000
Size:	8192

Details

Name:	00000009.00000003.35789935924.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	16384

Details

Name:	00000009.00000003.34910347087.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	20480

Details

Name:	00000009.00000003.35802726205.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35838605818.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34914555198.0000000020750000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20750000
Size:	16384

Details

Name:	00000009.00000003.34978317049.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34984888212.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35787866709.00000000017A0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17A0000
Size:	57344

Details

Name:	00000009.00000003.34897981953.0000000001594000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1594000
Size:	8192

Details

Name:	00000009.00000003.35851833789.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39567412050.00000000206F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	206F0000
Size:	65536

Details

Name:	00000009.00000003.35853399434.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35862897102.00000000012A0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	12A0000
Size:	16384

Details

Name:	00000009.00000003.35792754827.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35788501086.0000000001760000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1760000
Size:	65536

Details

Name:	0000000D.00000002.37893535081.000001E7B34C0000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E7B34C0000
Size:	4096

Details

Name:	00000009.00000003.35003151735.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34983696940.0000000001210000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1210000
Size:	16384

Details

Name:	00000009.00000002.39546104039.0000000000F50000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	F50000
Size:	4096

Details

Name:	00000009.00000003.35835200723.0000000001200000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1200000
Size:	32768

Details

Name:	00000009.00000003.35002126143.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35809221679.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	16384

Details

Name:	00000009.00000003.35852430362.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35796568482.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	20480

Details

Name:	00000009.00000003.34985750642.0000000001240000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1240000
Size:	20480

Details

Name:	00000009.00000003.35796267346.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	12288

Details

Name:	00000009.00000003.35005168707.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34987392426.0000000001260000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1260000
Size:	65536

Details

Name:	00000009.00000003.35800919064.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000001.00000002.34928297727.0000000003100000.00000040.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	3100000
Size:	102400

Details

Name:	00000009.00000003.35810937441.0000000001830000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1830000
Size:	61440

Details

Name:	00000009.00000003.35005471143.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.34907620372.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000002.39566680043.0000000020675000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	20675000
Size:	4096

Details

Name:	00000009.00000003.35836276609.0000000001200000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1200000
Size:	16384

Details

Name:	00000009.00000003.35813916828.0000000001800000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1800000
Size:	12288

Details

Name:	00000009.00000003.35851497618.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34981501650.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35306273775.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35797386462.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34978606622.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000000.34696463678.000000007FC30000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC30000
Size:	12288

Details

Name:	00000009.00000003.34906170141.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	20480

Details

Name:	00000009.00000003.35004538592.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35835791983.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35788900216.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	53248

Details

Name:	00000009.00000003.34982309565.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000002.37892563765.000001E7B2E3B000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E7B2E3B000
Size:	16384

Details

Name:	0000000D.00000002.37893245727.000001E7B3010000.00000004.00000040.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	1E7B3010000
Size:	4096

Details

Name:	00000009.00000003.34904808975.00000000206A5000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A5000
Size:	8192

Details

Name:	00000009.00000003.34984343462.0000000001210000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1210000
Size:	65536

Details

Name:	00000001.00000002.34926781307.0000000002240000.00000004.00000040.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	2240000
Size:	8192

Details

Name:	0000000E.00000002.39548783605.00007FF5D3781000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D3781000
Size:	12288

Details

Name:	00000009.00000003.35833263034.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	53248

Details

Name:	00000009.00000003.34911026373.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.34978995081.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34986896554.0000000001260000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1260000
Size:	12288

Details

Name:	00000009.00000003.35805064468.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	61440

Details

Name:	00000009.00000003.34990078144.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35799663215.0000000001480000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1480000
Size:	16384

Details

Name:	00000009.00000003.35851888562.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35791300240.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	16384

Details

Name:	0000000D.00000002.37891960074.000001E7B2CF0000.00000004.00000020.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	1E7B2CF0000
Size:	8192

Details

Name:	00000009.00000003.34981994742.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35814432388.0000000001A24000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A24000
Size:	49152

Details

Name:	00000009.00000002.39566249514.00000000205FA000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	205FA000
Size:	4096

Details

Name:	00000009.00000003.34911113335.00000000205CE000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	205CE000
Size:	32768

Details

Name:	00000009.00000003.34915147090.0000000020755000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20755000
Size:	8192

Details

Name:	00000009.00000002.39558121435.000000001E200000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E200000
Size:	40960

Details

Name:	00000009.00000003.34913766657.0000000020750000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20750000
Size:	28672

Details

Name:	00000009.00000003.34914482540.0000000020750000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20750000
Size:	16384

Details

Name:	00000009.00000003.34904678234.0000000020720000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20720000
Size:	24576

Details

Name:	00000009.00000003.35862183880.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35798903749.0000000001750000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1750000
Size:	65536

Details

Name:	0000000E.00000002.39547212185.000002CD71111000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	2CD71111000
Size:	12288

Details

Name:	00000009.00000003.35860163573.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34988074972.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35853823952.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35808074270.00000000017C0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17C0000
Size:	16384

Details

Name:	00000009.00000003.35815157469.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35835619494.0000000001200000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1200000
Size:	16384

Details

Name:	0000000D.00000002.37893995114.00007FF56D101000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D101000
Size:	4096

Details

Name:	00000009.00000002.39569794864.000000007FC12000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC12000
Size:	4096

Details

Name:	00000009.00000003.34907839230.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	57344

Details

Name:	0000000E.00000002.39548737745.00007FF5D3768000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D3768000
Size:	12288

Details

Name:	00000009.00000002.39557746848.000000001E0BA000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1E0BA000
Size:	24576

Details

Name:	00000009.00000003.34989570148.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35816636834.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.35796625846.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34986706484.0000000001260000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1260000
Size:	12288

Details

Name:	00000009.00000003.35836570729.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000000.34699394830.0000000000FD0000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	FD0000
Size:	16384

Details

Name:	00000009.00000003.34909265301.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.34981938917.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39550555864.0000000001AD0000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1AD0000
Size:	32768

Details

Name:	00000009.00000003.35814709177.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000001.00000002.34925136515.00000000001F0000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1F0000
Size:	4096

Details

Name:	00000009.00000003.34904556298.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	45056

Details

Name:	00000009.00000003.35802335640.0000000001475000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1475000
Size:	8192

Details

Name:	00000009.00000003.35793600492.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	20480

Details

Name:	00000009.00000003.35003886636.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000002.37893291966.000001E7B3040000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1E7B3040000
Size:	8192

Details

Name:	00000009.00000003.35854964582.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35817803202.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000001.00000002.34924847845.000000000019C000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C000
Size:	16384

Details

Name:	00000001.00000002.34925297030.0000000000400000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	400000
Size:	4096

Details

Name:	00000009.00000003.35800106772.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	65536

Details

Name:	00000009.00000003.34988133740.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35001715158.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35807367631.00000000017D0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17D0000
Size:	65536

Details

Name:	00000001.00000002.34925775794.0000000000524000.00000004.00000020.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	524000
Size:	135168

Details

Name:	00000009.00000003.35790731641.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	00000009.00000003.35839357554.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000003.37890807160.000001E7B2E7F000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1E7B2E7F000
Size:	20480

Details

Name:	00000009.00000003.34911922968.00000000206A8000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A8000
Size:	24576

Details

Name:	00000009.00000003.34985355207.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34979709287.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34978426065.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35792282458.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.35854345268.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39569669554.000000007FA50000.00000040.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	7FA50000
Size:	4096

Details

Name:	00000009.00000003.35833728110.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	65536

Details

Name:	00000001.00000002.34927172355.0000000003010000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	3010000
Size:	925696

Details

Name:	00000009.00000002.39560412992.000000001E4CA000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E4CA000
Size:	65536

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000009.00000003.35817933187.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35839071503.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35850908391.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35810791606.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	16384

Details

Name:	00000009.00000003.35807604865.0000000001495000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1495000
Size:	40960

Details

Name:	00000009.00000003.35799914846.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	65536

Details

Name:	00000009.00000003.35789616048.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	8192

Details

Name:	00000009.00000003.35815045692.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35789432363.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	00000009.00000002.39548353577.0000000001547000.00000004.00000020.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	1547000
Size:	155648

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000009.00000003.35816388705.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34989003382.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35812723519.0000000001800000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1800000
Size:	12288

Details

Name:	00000009.00000003.35860265837.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35001826957.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000001.00000000.34500989102.000000007FFC0000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFC0000
Size:	4096

Details

Name:	00000009.00000003.35800277613.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.35794096769.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.35799712901.0000000001480000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1480000
Size:	16384

Details

Name:	00000009.00000000.34698692000.000000007FC10000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC10000
Size:	4096

Details

Name:	00000009.00000003.35855211917.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34902994200.000000000158D000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	158D000
Size:	4096

Details

Name:	00000009.00000002.39547412323.0000000001470000.00000004.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	1470000
Size:	4096

Details

Name:	0000000E.00000002.39546611718.000002CD70E00000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	2CD70E00000
Size:	12288

Details

Name:	00000001.00000000.34500722205.0000000000400000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	400000
Size:	4096

Details

Name:	00000009.00000003.34907664076.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	28672

Details

Name:	00000009.00000002.39550802009.0000000001E50000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1E50000
Size:	4096

Details

Name:	00000009.00000002.39567053605.00000000206BE000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	206BE000
Size:	12288

Details

Name:	00000009.00000002.39547021299.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	57344

Details

Name:	00000009.00000002.39550315708.0000000001A5E000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1A5E000
Size:	8192

Details

Name:	00000009.00000000.34697068248.0000000000FE0000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	FE0000
Size:	4096

Details

Name:	0000000D.00000002.37894875339.00007FF56D50B000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D50B000
Size:	8192

Details

Name:	00000009.00000003.34911385380.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.34980325308.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34985395686.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39566542058.000000002065B000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2065B000
Size:	94208

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000009.00000003.35813439275.0000000001840000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1840000
Size:	45056

Details

Name:	00000001.00000002.34926053901.00000000007AF000.00000004.00000010.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	7AF000
Size:	4096

Details

Name:	00000009.00000003.35835017850.000000002062D000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	2062D000
Size:	36864

Details

Name:	00000009.00000003.34907094544.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	65536

Details

Name:	00000009.00000003.35305845088.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000E.00000002.39546314898.000000D8AD9FF000.00000004.00000010.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	D8AD9FF000
Size:	4096

Details

Name:	00000009.00000003.35864576774.0000000001440000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1440000
Size:	61440

Details

Name:	0000000D.00000002.37894961288.00007FF56D51B000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D51B000
Size:	12288

Details

Name:	00000009.00000003.35811533101.00000000017E0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17E0000
Size:	8192

Details

Name:	00000009.00000003.35823688974.00000000207B6000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	207B6000
Size:	40960

Details

Name:	00000001.00000002.34924762911.000000000009A000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	9A000
Size:	24576

Details

Name:	00000001.00000003.34520634578.0000000000624000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	624000
Size:	4096

Details

Name:	00000009.00000003.35004137288.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35306062899.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34913682932.0000000020750000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20750000
Size:	32768

Details

Name:	00000009.00000003.34911436689.00000000206A5000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A5000
Size:	12288

Details

Name:	00000009.00000002.39546612686.0000000001200000.00000040.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	1200000
Size:	32768

Details

Name:	0000000E.00000002.39547496562.000002CD714D1000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	2CD714D1000
Size:	110592

Details

Name:	00000009.00000003.34908188717.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	20480

Details

Name:	00000001.00000002.34925931721.0000000000601000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	601000
Size:	12288

Details

Name:	00000009.00000003.35816588703.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34985435087.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35793460239.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35809470706.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	65536

Details

Name:	00000009.00000003.35802949428.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35003567855.00000000012E1000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12E1000
Size:	53248

Details

Name:	00000009.00000003.35793674610.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34908863824.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.34983441232.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35793840690.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	65536

Details

Name:	00000009.00000003.34913200622.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.35790135024.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35794711997.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34914191280.0000000020750000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20750000
Size:	16384

Details

Name:	0000000D.00000002.37894100305.00007FF56D37E000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D37E000
Size:	4096

Details

Name:	00000009.00000003.35854533241.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000000.37289284738.00007DF579252000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF579252000
Size:	4096

Details

Name:	00000009.00000003.34983150152.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34989422382.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35819540060.00000000207B0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	207B0000
Size:	16384

Details

Name:	0000000E.00000002.39547931872.00007FF5D3031000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D3031000
Size:	4096

Details

Name:	00000009.00000003.35793194502.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	0000000D.00000000.37289472736.00007FF56D565000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D565000
Size:	20480

Details

Name:	00000009.00000003.35791269005.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	12288

Details

Name:	00000009.00000003.35837292118.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34987114230.0000000001260000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1260000
Size:	16384

Details

Name:	00000009.00000002.39558893109.000000001E3BF000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1E3BF000
Size:	4096

Details

Name:	00000009.00000003.34912580206.00000000206A5000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A5000
Size:	8192

Details

Name:	00000009.00000003.35854824456.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35791162789.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	12288

Details

Name:	00000009.00000003.34986240033.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35800848233.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35794229401.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000001.00000002.34926096180.00000000008EF000.00000004.00000010.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	8EF000
Size:	4096

Details

Name:	00000009.00000003.35816833723.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39558633386.000000001E240000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E240000
Size:	12288

Details

Name:	0000000E.00000002.39548131801.00007FF5D3702000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D3702000
Size:	24576

Details

Name:	00000009.00000000.34697165374.000000007FC20000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC20000
Size:	4096

Details

Name:	00000009.00000002.39566707424.0000000020677000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	20677000
Size:	163840

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000009.00000003.35839413654.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35807564764.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	16384

Details

Name:	0000000D.00000002.37894834191.00007FF56D501000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D501000
Size:	8192

Details

Name:	00000009.00000003.34981013864.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35817988870.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000000.37289032469.000001E7B2CB0000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	1E7B2CB0000
Size:	118784

Details

Name:	00000009.00000003.34981437593.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39567504450.0000000020700000.00000004.00000040.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	20700000
Size:	8192

Details

Name:	00000009.00000003.35862043274.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35836944975.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35795108727.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.35790595280.000000000147A000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	147A000
Size:	24576

Details

Name:	00000009.00000003.35789770178.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	16384

Details

Name:	00000009.00000003.35801093277.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	20480

Details

Name:	00000009.00000003.34980755274.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34910583294.0000000020740000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20740000
Size:	24576

Details

Name:	00000009.00000003.34989331904.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35821479302.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	16384

Details

Name:	00000009.00000003.34986363109.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000000.34696284407.0000000000FF0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	FF0000
Size:	4096

Details

Name:	0000000D.00000002.37893628663.00007DF477110000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF477110000
Size:	20480

Details

Name:	00000009.00000003.34913393337.0000000020754000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20754000
Size:	12288

Details

Name:	00000009.00000003.35797076877.0000000001480000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1480000
Size:	65536

Details

Name:	00000009.00000003.35804254140.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000002.37893344994.000001E7B3241000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1E7B3241000
Size:	12288

Details

Name:	00000009.00000003.34906622252.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	49152

Details

Name:	00000009.00000002.39551279132.0000000003270000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	3270000
Size:	4096

Details

Name:	00000009.00000003.35005332821.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39547213705.0000000001410000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1410000
Size:	12288

Details

Name:	00000009.00000003.35817634260.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000002.37894197165.00007FF56D3AB000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D3AB000
Size:	4096

Details

Name:	00000009.00000003.35862291179.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35799771482.0000000001750000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1750000
Size:	53248

Details

Name:	00000009.00000003.35818609277.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	57344

Details

Name:	00000009.00000003.35797505115.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35839237164.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35818211930.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34907043539.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.34982571851.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39550001886.0000000001820000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1820000
Size:	4096

Details

Name:	00000009.00000003.34990175883.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35807849220.00000000017C0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17C0000
Size:	16384

Details

Name:	00000009.00000003.35860214907.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35854778362.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35003069416.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35810852500.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	12288

Details

Name:	00000009.00000003.34984633388.0000000001210000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1210000
Size:	12288

Details

Name:	00000009.00000003.34915371861.0000000020780000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20780000
Size:	40960

Details

Name:	00000009.00000003.34978081525.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35823623873.00000000207B0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	207B0000
Size:	20480

Details

Name:	00000009.00000002.39557342984.000000001D5E0000.00000004.00000040.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	1D5E0000
Size:	16384

Details

Name:	00000009.00000003.35809875618.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	24576

Details

Name:	00000009.00000003.35849843449.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000002.37894559773.00007FF56D4DE000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D4DE000
Size:	4096

Details

Name:	00000009.00000003.35836985723.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35853541179.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35833352074.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	12288

Details

Name:	00000009.00000003.35852815880.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34989908611.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34909133877.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.35802147985.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35815079666.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000001.00000000.34501041617.000000007FFD0000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFD0000
Size:	12288

Details

Name:	00000009.00000003.35811985948.0000000001800000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1800000
Size:	20480

Details

Name:	00000009.00000003.35821711963.0000000001A80000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A80000
Size:	49152

Details

Name:	00000009.00000003.35003641941.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35812178965.0000000001800000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1800000
Size:	36864

Details

Name:	00000009.00000003.35819034243.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	49152

Details

Name:	00000009.00000003.34984098860.0000000001210000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1210000
Size:	16384

Details

Name:	00000009.00000003.35793755606.0000000001480000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1480000
Size:	28672

Details

Name:	00000009.00000003.35809292751.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	16384

Details

Name:	0000000E.00000000.39123601080.00007DF5DF492000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5DF492000
Size:	4096

Details

Name:	00000009.00000000.34696319017.000000007FC10000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC10000
Size:	4096

Details

Name:	00000009.00000003.35834729103.0000000020645000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20645000
Size:	28672

Details

Name:	00000009.00000003.35807678269.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	12288

Details

Name:	00000009.00000003.34984001251.0000000001210000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1210000
Size:	20480

Details

Name:	00000009.00000003.35805188045.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	20480

Details

Name:	00000009.00000003.34988837817.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35810491496.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	16384

Details

Name:	0000000E.00000002.39548329391.00007FF5D3723000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D3723000
Size:	16384

Details

Name:	00000009.00000003.35854111992.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35853491511.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35855447193.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34908731917.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	20480

Details

Name:	00000009.00000002.39566939505.00000000206B0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	206B0000
Size:	20480

Details

Name:	00000009.00000003.35790640524.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	65536

Details

Name:	00000009.00000000.34697932775.000000007FC12000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC12000
Size:	4096

Details

Name:	00000009.00000003.35796409063.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	65536

Details

Name:	00000009.00000003.34988235735.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	0000000D.00000002.37894466005.00007FF56D4D0000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D4D0000
Size:	24576

Details

Name:	00000009.00000002.39558506946.000000001E22B000.00000040.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	1E22B000
Size:	4096

Details

Name:	00000009.00000003.35865919960.0000000001430000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1430000
Size:	8192

Details

Name:	00000009.00000003.35820588776.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	16384

Details

Name:	00000009.00000003.35798635764.0000000001480000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1480000
Size:	16384

Details

Name:	00000009.00000003.35835573437.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35790020719.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35795634634.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	20480

Details

Name:	00000009.00000003.34915529666.0000000020776000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20776000
Size:	40960

Details

Name:	00000009.00000003.35796118688.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.35839015638.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35835876155.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39547174531.0000000001400000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1400000
Size:	4096

Details

Name:	00000009.00000003.34980950397.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35789730980.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	16384

Details

Name:	00000009.00000002.39567225944.00000000206D1000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	206D1000
Size:	16384

Details

Name:	00000009.00000003.35800993147.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	32768

Details

Name:	00000009.00000003.34905098736.00000000206A5000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A5000
Size:	8192

Details

Name:	00000009.00000003.35836005962.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000002.37893078489.000001E7B2E90000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E7B2E90000
Size:	12288

Details

Name:	00000009.00000003.35806043098.00000000017F0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17F0000
Size:	16384

Details

Name:	00000009.00000003.34907958760.0000000020741000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20741000
Size:	61440

Details

Name:	00000009.00000003.34989658129.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35798464563.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	0000000E.00000002.39547879758.00007DF5DF4B0000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5DF4B0000
Size:	12288

Details

Name:	00000009.00000003.34978142023.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35834147297.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	8192

Details

Name:	0000000D.00000002.37895094221.00007FF56D541000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D541000
Size:	12288

Details

Name:	00000009.00000003.35818375721.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34897476183.0000000001598000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1598000
Size:	274432

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000009.00000000.34697197407.000000007FC22000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC22000
Size:	4096

Details

Name:	00000009.00000003.34982511145.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34982060766.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34982806803.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35836232243.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35811212573.0000000001800000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1800000
Size:	4096

Details

Name:	00000009.00000003.35821987261.0000000001A78000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A78000
Size:	32768

Details

Name:	00000009.00000003.34915469497.0000000020770000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20770000
Size:	20480

Details

Name:	00000009.00000003.35797619563.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34905781920.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	32768

Details

Name:	00000009.00000003.34979838303.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35833892798.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	16384

Details

Name:	00000009.00000003.35790274737.00000000014A0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	14A0000
Size:	49152

Details

Name:	00000009.00000003.34914052194.0000000020755000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20755000
Size:	8192

Details

Name:	00000009.00000003.35817254928.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35789810151.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	16384

Details

Name:	00000009.00000003.35811023241.0000000001820000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1820000
Size:	16384

Details

Name:	00000009.00000003.35797334106.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.34981189076.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000E.00000002.39547963302.00007FF5D306A000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D306A000
Size:	4096

Details

Name:	00000009.00000003.35866024405.0000000001430000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1430000
Size:	8192

Details

Name:	00000009.00000003.35790092409.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35795801855.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.35815118861.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35796915786.0000000001480000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1480000
Size:	16384

Details

Name:	00000009.00000003.34989964227.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34909933049.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	49152

Details

Name:	00000009.00000003.35816788219.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35791109657.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	00000009.00000003.35854727441.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39569832052.000000007FC20000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC20000
Size:	4096

Details

Name:	00000009.00000003.34906241575.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	57344

Details

Name:	00000009.00000003.34915296724.0000000020770000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20770000
Size:	24576

Details

Name:	00000009.00000003.35852878511.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35794649626.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.35305769709.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34904856496.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	24576

Details

Name:	00000009.00000003.35004944614.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34907513426.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.34904201138.00000000205BE000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	205BE000
Size:	12288

Details

Name:	00000009.00000003.34990225771.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000001.00000002.34926925106.00000000029D0000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	29D0000
Size:	16384

Signature Hits	Behavior Group	Mitre Attack
Sample file is different than original file name gathered from version info	System Summary

Details

Name:	00000009.00000003.34911747359.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.35796158424.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35818967500.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35804733558.00000000017C0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17C0000
Size:	20480

Details

Name:	00000009.00000003.34910203654.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.34716416072.00000000014C4000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	14C4000
Size:	4096

Details

Name:	00000001.00000002.34934660792.000000007FFB0000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFB0000
Size:	4096

Details

Name:	00000009.00000003.35817202127.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000002.39567312999.00000000206DD000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	206DD000
Size:	69632

Details

Name:	00000009.00000003.35809809174.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	12288

Details

Name:	00000009.00000003.35822860727.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	12288

Details

Name:	00000009.00000000.34696204240.0000000000FD0000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	FD0000
Size:	16384

Details

Name:	00000009.00000002.39557980684.000000001E1F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E1F0000
Size:	8192

Details

Name:	00000009.00000003.35798384185.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34907286514.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.34988289525.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34989750134.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34982861975.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35793063965.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	65536

Details

Name:	00000009.00000003.34990304613.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.35854255935.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35810677123.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	12288

Details

Name:	00000009.00000002.39557509832.000000001DC7E000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1DC7E000
Size:	8192

Details

Name:	00000009.00000003.35835668026.0000000001200000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1200000
Size:	36864

Details

Name:	00000009.00000003.35798550207.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35860371448.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34906875068.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	36864

Details

Name:	0000000D.00000002.37894916857.00007FF56D513000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D513000
Size:	16384

Details

Name:	00000009.00000002.39566214724.00000000205E9000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	205E9000
Size:	8192

Details

Name:	00000009.00000003.35816443357.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39567575368.0000000020710000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	20710000
Size:	36864

Details

Name:	00000009.00000003.35827792584.00000000207B0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	207B0000
Size:	49152

Details

Name:	00000001.00000002.34925594052.0000000000500000.00000004.00000020.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	500000
Size:	28672

Details

Name:	00000009.00000003.35806575005.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	65536

Details

Name:	00000009.00000003.35864858187.0000000001420000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1420000
Size:	65536

Details

Name:	00000009.00000003.34990267099.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34983482262.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000002.37891253023.000000E184FEB000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	E184FEB000
Size:	20480

Details

Name:	00000009.00000003.34905361443.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.35808538100.00000000017C0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17C0000
Size:	20480

Details

Name:	00000009.00000003.34907762353.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.35306332260.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35851300512.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34889868247.000000001DF30000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1DF30000
Size:	4096

Details

Name:	00000009.00000003.35854206824.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35799492821.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	0000000D.00000003.37890622247.000001E7B2E88000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1E7B2E88000
Size:	16384

Details

Name:	00000009.00000002.39560748821.000000001E4F6000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E4F6000
Size:	20480

Details

Name:	00000009.00000003.35002614286.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35791016436.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	16384

Details

Name:	00000009.00000002.39558017400.000000001E1F3000.00000040.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	1E1F3000
Size:	4096

Details

Name:	0000000D.00000002.37895052561.00007FF56D528000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D528000
Size:	12288

Details

Name:	0000000E.00000000.39123805489.00007DF5DF4B0000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5DF4B0000
Size:	12288

Details

Name:	00000009.00000003.35802655444.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35816970443.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35823254024.00000000207B0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	207B0000
Size:	16384

Details

Name:	00000009.00000003.35804308415.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35805512958.0000000001830000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1830000
Size:	65536

Details

Name:	00000009.00000003.35815467061.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39569332169.000000002166C000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2166C000
Size:	16384

Details

Name:	00000009.00000003.35837159329.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34987339849.0000000001270000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1270000
Size:	12288

Details

Name:	00000009.00000003.35793530594.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34914447852.0000000020755000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20755000
Size:	8192

Details

Name:	00000009.00000003.34979584932.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000000.34698820653.000000007FC30000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC30000
Size:	12288

Details

Name:	00000009.00000003.34914673646.0000000020755000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20755000
Size:	8192

Details

Name:	00000009.00000002.39569120302.0000000020A40000.00000040.00000040.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page execute and read and write
Base address:	20A40000
Size:	8192

Details

Name:	00000009.00000003.34911991410.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	24576

Details

Name:	00000001.00000003.34695535823.0000000000624000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	624000
Size:	4096

Details

Name:	00000009.00000002.39565940894.00000000205A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	205A0000
Size:	208896

Details

Name:	00000009.00000003.35806713803.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	20480

Details

Name:	00000009.00000003.35802621904.0000000001475000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1475000
Size:	8192

Details

Name:	00000009.00000003.35794379059.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000002.39549604880.00000000017F0000.00000040.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page execute and read and write
Base address:	17F0000
Size:	65536

Details

Name:	0000000D.00000002.37893581480.000001E7B3602000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E7B3602000
Size:	4096

Details

Name:	00000009.00000003.34911854703.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	28672

Details

Name:	00000009.00000003.35822674526.0000000001A71000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A71000
Size:	61440

Details

Name:	00000009.00000003.35837333561.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34897381000.00000000015DB000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	15DB000
Size:	4096

Details

Name:	00000009.00000003.34986181053.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34987060037.0000000001260000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1260000
Size:	12288

Details

Name:	00000001.00000002.34924363221.0000000000010000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	10000
Size:	4096

Details

Name:	00000009.00000003.34980030330.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34906977723.0000000020740000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20740000
Size:	36864

Details

Name:	00000009.00000003.35789142025.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	65536

Details

Name:	00000009.00000003.35823055585.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	16384

Details

Name:	00000009.00000003.34989132928.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000001.00000002.34926113754.000000000092E000.00000004.00000010.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	92E000
Size:	8192

Details

Name:	00000009.00000003.34987882290.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000000.34699713245.000000007FC20000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC20000
Size:	4096

Details

Name:	00000009.00000003.34984053956.0000000001210000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1210000
Size:	12288

Details

Name:	00000009.00000003.35817152357.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.34979777521.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35838838946.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34978256534.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35815712998.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35853774803.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000000.34698756870.000000007FC20000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC20000
Size:	4096

Details

Name:	00000009.00000003.35832679694.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000002.37894042541.00007FF56D37A000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D37A000
Size:	12288

Details

Name:	00000009.00000003.35805919984.0000000001800000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1800000
Size:	65536

Details

Name:	00000009.00000003.35813228390.0000000001800000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1800000
Size:	65536

Details

Name:	00000009.00000003.35850066226.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.35816490873.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35853444381.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39547310887.0000000001460000.00000004.00000040.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	1460000
Size:	16384

Details

Name:	00000009.00000003.35855066217.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34908264628.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	40960

Details

Name:	00000009.00000003.35814012433.0000000001800000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1800000
Size:	20480

Details

Name:	00000009.00000003.35002219684.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34915101425.0000000020750000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20750000
Size:	16384

Details

Name:	0000000D.00000002.37894402803.00007FF56D4C2000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D4C2000
Size:	24576

Details

Name:	00000009.00000003.34989182333.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000002.37894287329.00007FF56D476000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D476000
Size:	4096

Details

Name:	00000009.00000002.39569082358.00000000209CE000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	209CE000
Size:	8192

Details

Name:	00000009.00000003.35789262653.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	65536

Details

Name:	00000009.00000003.34988896210.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35839477847.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35802548537.0000000001475000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1475000
Size:	8192

Details

Name:	00000009.00000003.34716281925.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	49152

Details

Name:	00000009.00000002.39547903633.0000000001500000.00000004.00000020.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	1500000
Size:	28672

Details

Name:	00000009.00000002.39549479568.00000000017E0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	17E0000
Size:	65536

Details

Name:	00000009.00000003.34911561565.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	28672

Details

Name:	00000009.00000003.35797791480.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34905312444.00000000206A5000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A5000
Size:	8192

Details

Name:	00000009.00000003.34981378403.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39557162967.000000001D370000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1D370000
Size:	4096

Details

Name:	00000001.00000002.34926203844.0000000000C30000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	C30000
Size:	73728

Details

Name:	00000009.00000003.35002295858.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35808611182.00000000017C6000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17C6000
Size:	40960

Details

Name:	00000009.00000003.35801367678.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.35800646094.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35864704949.0000000001430000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1430000
Size:	65536

Details

Name:	00000009.00000003.34987816046.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34907179990.0000000020740000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20740000
Size:	24576

Details

Name:	00000009.00000000.34699216406.0000000000F70000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	F70000
Size:	118784

Details

Name:	00000009.00000003.35865722355.0000000001430000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1430000
Size:	65536

Details

Name:	00000009.00000003.34912339016.0000000020740000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20740000
Size:	45056

Details

Name:	00000009.00000003.34986488114.0000000001260000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1260000
Size:	16384

Details

Name:	00000009.00000003.35858409458.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34986562134.0000000001260000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1260000
Size:	16384

Details

Name:	00000009.00000003.34989704736.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39547123566.0000000001317000.00000040.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	1317000
Size:	8192

Details

Name:	00000009.00000003.34915626897.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	131072

Details

Name:	00000009.00000003.35001773308.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39547370607.0000000001467000.00000004.00000040.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	1467000
Size:	8192

Details

Name:	00000009.00000003.35188427767.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	12288

Details

Name:	00000009.00000003.35811238747.0000000001802000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1802000
Size:	57344

Details

Name:	00000009.00000003.35833524124.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35806758392.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	20480

Details

Name:	00000001.00000002.34926832281.0000000002250000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2250000
Size:	4096

Details

Name:	0000000E.00000002.39547650396.00007DF4DD350000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF4DD350000
Size:	20480

Details

Name:	00000009.00000003.35832892332.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	65536

Details

Name:	0000000D.00000002.37892008113.000001E7B2DF0000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1E7B2DF0000
Size:	4096

Details

Name:	00000009.00000003.35791627220.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34981132104.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35798721054.0000000001480000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1480000
Size:	16384

Details

Name:	00000009.00000003.35819155922.0000000001A80000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A80000
Size:	49152

Details

Name:	00000009.00000003.35797561176.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34989464419.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35805390372.0000000001840000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1840000
Size:	65536

Details

Name:	00000001.00000002.34928607256.00000000031E9000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	31E9000
Size:	24576

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery

Details

Name:	00000009.00000003.35002510619.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35789980163.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	12288

Details

Name:	00000009.00000003.34914905379.0000000020755000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20755000
Size:	8192

Details

Name:	00000009.00000003.35790935209.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	00000009.00000003.34914303856.0000000020755000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20755000
Size:	8192

Details

Name:	00000009.00000003.35859958112.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35837118031.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35002961132.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35814858127.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35798262701.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000002.39560816132.000000001E4FC000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E4FC000
Size:	4096

Details

Name:	00000009.00000003.35810163144.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	16384

Details

Name:	00000009.00000003.35808840190.00000000017C0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17C0000
Size:	4096

Details

Name:	00000009.00000003.34977498750.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34983232640.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34977910098.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35865616404.0000000001440000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1440000
Size:	12288

Details

Name:	00000009.00000003.35817719348.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34988696889.00000000012E0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12E0000
Size:	16384

Details

Name:	00000009.00000003.34977611845.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35815623145.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000001.00000002.34925184592.000000000034A000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	34A000
Size:	12288

Details

Name:	00000009.00000003.35820724165.0000000001A80000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A80000
Size:	16384

Details

Name:	00000009.00000003.35853028915.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35813656288.0000000001A20000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A20000
Size:	28672

Details

Name:	0000000D.00000002.37894328334.00007FF56D4A8000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D4A8000
Size:	4096

Details

Name:	00000009.00000003.34983006283.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34912925185.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	65536

Details

Name:	00000009.00000003.35788641894.0000000001750000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1750000
Size:	65536

Details

Name:	00000009.00000003.34987940666.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39557873289.000000001E1C0000.00000004.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	1E1C0000
Size:	4096

Details

Name:	0000000E.00000000.39123290002.000002CD70DE0000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	2CD70DE0000
Size:	118784

Details

Name:	00000009.00000003.35795583371.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35803034562.0000000001475000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1475000
Size:	8192

Details

Name:	00000009.00000000.34695054556.0000000000F70000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	F70000
Size:	118784

Details

Name:	0000000D.00000002.37891599145.000001E7B2C90000.00000004.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	1E7B2C90000
Size:	4096

Details

Name:	00000009.00000003.35838325567.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35821216516.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	16384

Details

Name:	00000009.00000003.35811061860.0000000001825000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1825000
Size:	45056

Details

Name:	00000009.00000003.35809665306.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	16384

Details

Name:	00000009.00000002.39567016317.00000000206BB000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	206BB000
Size:	8192

Details

Name:	00000009.00000003.35836861948.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35853307683.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39560192318.000000001E4B4000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E4B4000
Size:	45056

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000009.00000003.35854585170.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000001.00000002.34925243016.000000000034E000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	34E000
Size:	4096

Details

Name:	00000009.00000003.35002679168.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000002.37893888050.00007DF579270000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF579270000
Size:	12288

Details

Name:	00000009.00000003.34979213543.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000000.37289329149.00007DF579260000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF579260000
Size:	4096

Details

Name:	00000009.00000003.35851592862.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34986779840.0000000001260000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1260000
Size:	12288

Details

Name:	00000009.00000003.35797191139.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	45056

Details

Name:	00000009.00000003.35863114434.00000000012A0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	12A0000
Size:	28672

Details

Name:	00000009.00000002.39560527557.000000001E4DC000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E4DC000
Size:	4096

Details

Name:	00000009.00000003.35803757877.0000000001480000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1480000
Size:	45056

Details

Name:	00000009.00000003.34983584423.0000000001210000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1210000
Size:	16384

Details

Name:	00000009.00000000.34695277720.000000007FC12000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC12000
Size:	4096

Details

Name:	00000009.00000002.39559729180.000000001E464000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E464000
Size:	274432

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000009.00000003.34982189717.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35003424076.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34912678345.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.35833421954.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	16384

Details

Name:	00000009.00000003.34910803566.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.35837424691.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34910472207.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	65536

Details

Name:	00000009.00000003.35004894893.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34913837811.0000000020758000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20758000
Size:	16384

Details

Name:	00000009.00000002.39569707477.000000007FAB0000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FAB0000
Size:	20480

Details

Name:	00000009.00000002.39566478006.0000000020653000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	20653000
Size:	28672

Details

Name:	00000009.00000003.34908664511.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.34913089919.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	57344

Details

Name:	00000009.00000003.35794450252.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.35819972309.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	12288

Details

Name:	00000009.00000002.39557709241.000000001E06E000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1E06E000
Size:	8192

Details

Name:	00000009.00000003.34984838699.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000E.00000002.39546351398.000002CD70DC0000.00000004.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	2CD70DC0000
Size:	4096

Details

Name:	00000009.00000003.34985813049.0000000001240000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1240000
Size:	53248

Details

Name:	00000009.00000002.39546989634.00000000012A0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	12A0000
Size:	4096

Details

Name:	00000009.00000002.39558268513.000000001E212000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E212000
Size:	4096

Details

Name:	00000009.00000003.35837761267.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35836381266.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34978672719.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35863880045.00000000012B0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	12B0000
Size:	32768

Details

Name:	00000009.00000003.35860526296.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000002.37891518793.000000E18577A000.00000004.00000010.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	E18577A000
Size:	24576

Details

Name:	00000009.00000003.35800501514.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	36864

Details

Name:	00000009.00000003.35806328662.00000000017D0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17D0000
Size:	65536

Details

Name:	00000009.00000003.34980813713.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35812453311.0000000001800000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1800000
Size:	12288

Details

Name:	00000009.00000003.35797849803.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.35804424228.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35850999655.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34914408397.0000000020750000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20750000
Size:	16384

Details

Name:	00000009.00000003.34982696423.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35799035975.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	65536

Details

Name:	0000000D.00000002.37894525053.00007FF56D4D8000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D4D8000
Size:	4096

Details

Name:	00000009.00000003.35836513651.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39567641889.000000002071B000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2071B000
Size:	4096

Details

Name:	00000009.00000003.35852931511.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35801672155.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	32768

Details

Name:	00000009.00000003.34987682334.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35850168453.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35819481193.0000000001A80000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A80000
Size:	16384

Details

Name:	00000009.00000003.34909641112.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.35808893937.0000000001491000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1491000
Size:	61440

Details

Name:	00000009.00000003.34979170214.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000E.00000002.39546034820.000000D8AD4BA000.00000004.00000001.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	D8AD4BA000
Size:	24576

Details

Name:	00000009.00000002.39557545473.000000001DD7E000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1DD7E000
Size:	8192

Details

Name:	00000009.00000003.34976916629.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	204800

Details

Name:	00000009.00000003.34979391781.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35837889140.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.35858229654.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000001.00000002.34934504051.000000001D2A0000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1D2A0000
Size:	4096

Details

Name:	00000009.00000003.34990351882.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35002479927.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35813545876.0000000001802000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1802000
Size:	57344

Details

Name:	00000009.00000003.35816242011.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000E.00000000.39123753186.00007DF5DF4A2000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5DF4A2000
Size:	4096

Details

Name:	0000000E.00000002.39547095143.000002CD70EF6000.00000004.00000020.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	2CD70EF6000
Size:	40960

Details

Name:	00000009.00000003.35805802725.0000000001810000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1810000
Size:	61440

Details

Name:	00000009.00000003.35864241498.00000000012A0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	12A0000
Size:	40960

Details

Name:	00000009.00000003.35791236030.00000000012F0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	12288

Details

Name:	00000009.00000003.34985690470.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34909548440.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	28672

Details

Name:	00000009.00000003.35801866934.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34979322906.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35827883384.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	65536

Details

Name:	00000009.00000003.35835524122.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35808707069.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	65536

Details

Name:	00000009.00000003.35838114112.0000000001200000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1200000
Size:	12288

Details

Name:	00000009.00000003.35003992896.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.34989513345.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000000.37289423336.00007DF579270000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF579270000
Size:	12288

Details

Name:	00000009.00000003.34980382506.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34979032691.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39568079690.00000000207AD000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	207AD000
Size:	12288

Details

Name:	0000000E.00000002.39547797369.00007DF5DF4A0000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5DF4A0000
Size:	4096

Details

Name:	00000009.00000003.35003960103.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35836903459.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35794780168.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.34987999277.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.34983315848.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34984493895.0000000001210000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1210000
Size:	16384

Details

Name:	00000009.00000003.35851172167.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35818884863.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35801782475.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34985554977.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000001.00000002.34927029970.0000000002B00000.00000004.00000040.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	2B00000
Size:	4096

Details

Name:	00000009.00000003.35821548628.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	40960

Details

Name:	00000009.00000003.35839301342.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34905428501.00000000206A5000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A5000
Size:	8192

Details

Name:	00000009.00000003.34983194065.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35802368341.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34907323443.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	28672

Details

Name:	00000001.00000000.34500545942.0000000000040000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	40000
Size:	118784

Details

Name:	00000009.00000003.35814059498.0000000001800000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1800000
Size:	36864

Details

Name:	00000009.00000003.35802693375.0000000001475000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1475000
Size:	8192

Details

Name:	00000009.00000003.35852639636.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35815386766.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35796067592.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35831950496.0000000020A00000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	20A00000
Size:	32768

Details

Name:	00000009.00000003.35863736238.0000000001200000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1200000
Size:	65536

Details

Name:	00000009.00000003.35792440986.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34983636769.0000000001210000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1210000
Size:	20480

Details

Name:	00000009.00000003.35004624417.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35819694715.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	65536

Details

Name:	0000000E.00000002.39547838862.00007DF5DF4A2000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5DF4A2000
Size:	4096

Details

Name:	00000009.00000003.35855586009.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35004846247.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.34980510136.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35796514929.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000001.00000003.34695442518.000000001D2A1000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D2A1000
Size:	49152

Details

Name:	00000009.00000003.35807219848.00000000017C0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17C0000
Size:	16384

Details

Name:	00000009.00000002.39567271943.00000000206D6000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	206D6000
Size:	16384

Details

Name:	00000001.00000002.34926718475.0000000002220000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	2220000
Size:	16384

Details

Name:	00000009.00000000.34695387968.000000007FC30000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC30000
Size:	12288

Details

Name:	00000009.00000003.35814396039.0000000001A20000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A20000
Size:	12288

Details

Name:	00000009.00000003.35836700010.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35003214899.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000002.39547671618.00000000014B0000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	14B0000
Size:	4096

Details

Name:	00000001.00000002.34924908425.00000000001A0000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1A0000
Size:	16384

Details

Name:	00000009.00000002.39547443552.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	65536

Details

Name:	0000000E.00000002.39548002194.00007FF5D3324000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D3324000
Size:	4096

Details

Name:	0000000E.00000002.39548034700.00007FF5D367B000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D367B000
Size:	4096

Details

Name:	00000009.00000003.34983276818.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35833115727.00000000207B0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	207B0000
Size:	12288

Details

Name:	00000009.00000003.35852092800.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000000.34698657594.0000000000FE0000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	FE0000
Size:	4096

Details

Name:	0000000D.00000000.37289377414.00007DF579262000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF579262000
Size:	4096

Details

Name:	00000001.00000002.34934765175.000000007FFC0000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFC0000
Size:	4096

Details

Name:	00000001.00000000.34501013578.000000007FFC2000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFC2000
Size:	4096

Details

Name:	00000009.00000003.35792822755.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34914752944.0000000020755000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20755000
Size:	8192

Details

Name:	00000009.00000003.35004068666.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35800726734.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	49152

Details

Name:	00000009.00000003.35810095546.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	16384

Details

Name:	00000009.00000003.35001951127.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000001.00000000.34500936427.000000007FFB0000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FFB0000
Size:	4096

Details

Name:	0000000E.00000002.39546279436.000000D8AD97F000.00000004.00000010.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	D8AD97F000
Size:	4096

Details

Name:	0000000D.00000002.37891919158.000001E7B2CE0000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1E7B2CE0000
Size:	4096

Details

Name:	0000000D.00000003.37890715980.000001E7B2E84000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1E7B2E84000
Size:	16384

Details

Name:	00000009.00000003.35812688872.0000000001820000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1820000
Size:	8192

Details

Name:	00000009.00000003.34982913503.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35818489766.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.35823122106.00000000207B0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	207B0000
Size:	16384

Details

Name:	00000009.00000003.35823783948.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	65536

Details

Name:	00000009.00000003.35806866667.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	16384

Details

Name:	00000009.00000003.35823321867.00000000207B0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	207B0000
Size:	16384

Details

Name:	00000009.00000003.35854019947.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35838258555.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34910742960.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	20480

Details

Name:	00000009.00000003.35835311912.0000000001250000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1250000
Size:	12288

Details

Name:	00000009.00000003.34908541261.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	45056

Details

Name:	00000009.00000003.34902954735.00000000015DC000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	15DC000
Size:	12288

Details

Name:	00000009.00000003.35798820029.0000000001760000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1760000
Size:	16384

Details

Name:	00000009.00000003.35802478871.0000000001475000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1475000
Size:	8192

Details

Name:	00000009.00000002.39546694781.0000000001230000.00000040.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	1230000
Size:	8192

Details

Name:	00000001.00000002.34925976708.0000000000620000.00000004.00000020.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	620000
Size:	20480

Details

Name:	00000009.00000003.35003523952.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34911798953.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	0000000E.00000002.39546693644.000002CD70E90000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	2CD70E90000
Size:	4096

Details

Name:	00000009.00000002.39565864320.000000002049C000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2049C000
Size:	16384

Details

Name:	00000009.00000002.39569868301.000000007FC22000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC22000
Size:	4096

Details

Name:	0000000E.00000002.39548538789.00007FF5D3749000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D3749000
Size:	16384

Details

Name:	00000009.00000003.35837242014.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000E.00000002.39546730779.000002CD70EA0000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	2CD70EA0000
Size:	4096

Details

Name:	00000009.00000003.35796858642.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000000.34697964940.000000007FC20000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC20000
Size:	4096

Details

Name:	00000009.00000003.34979969888.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35818326724.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35851938945.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35864491086.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35802794919.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34907376072.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.34980151573.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34985599237.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39548588362.000000000156E000.00000004.00000020.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	156E000
Size:	77824

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000009.00000003.34906483674.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	20480

Details

Name:	00000009.00000003.35005399277.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39559676935.000000001E460000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E460000
Size:	8192

Details

Name:	00000009.00000003.35802439569.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	0000000D.00000002.37891871097.000001E7B2CD0000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1E7B2CD0000
Size:	12288

Details

Name:	00000009.00000002.39567159173.00000000206CA000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	206CA000
Size:	4096

Details

Name:	00000009.00000003.35835466791.0000000001200000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1200000
Size:	24576

Details

Name:	00000009.00000003.35808263404.00000000017E0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17E0000
Size:	57344

Details

Name:	00000001.00000002.34926990804.0000000002AF0000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	2AF0000
Size:	8192

Details

Name:	00000009.00000002.39547264127.0000000001451000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1451000
Size:	12288

Details

Name:	00000009.00000003.35806668877.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	20480

Details

Name:	00000009.00000003.35817448679.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35819435626.0000000001A80000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A80000
Size:	16384

Details

Name:	0000000D.00000002.37892049735.000001E7B2E00000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E7B2E00000
Size:	73728

Details

Name:	00000009.00000002.39557637794.000000001DECE000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1DECE000
Size:	8192

Details

Name:	0000000D.00000002.37893402801.000001E7B3250000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1E7B3250000
Size:	16384

Details

Name:	00000009.00000003.35813028704.0000000001800000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1800000
Size:	45056

Details

Name:	00000009.00000002.39558848437.000000001E2BE000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1E2BE000
Size:	8192

Details

Name:	00000009.00000003.35002410585.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.34905208392.00000000206A5000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A5000
Size:	8192

Details

Name:	00000009.00000003.35832762337.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	28672

Details

Name:	00000009.00000003.35790351587.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	65536

Details

Name:	00000009.00000003.35816738127.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35800011945.0000000001480000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1480000
Size:	65536

Details

Name:	00000009.00000003.35802080454.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	36864

Details

Name:	00000009.00000003.34984584843.0000000001210000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1210000
Size:	16384

Details

Name:	00000001.00000002.34928491010.0000000003120000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	3120000
Size:	4096

Signature Hits	Behavior Group	Mitre Attack
Tries to detect sandboxes and other dynamic analysis tools (process name or module or function)	Malware Analysis System Evasion	Security Software Discovery
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery

Details

Name:	00000009.00000003.34984291146.0000000001220000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1220000
Size:	16384

Details

Name:	00000009.00000003.35305927844.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35815281503.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34907223840.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.35306208971.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35804364924.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35819111110.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35002371344.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35838726721.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35837375860.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35004206491.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.35813380221.0000000001800000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1800000
Size:	12288

Details

Name:	00000009.00000003.35004430117.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34898856217.00000000015DA000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	15DA000
Size:	4096

Details

Name:	00000009.00000003.34897426468.0000000001595000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1595000
Size:	8192

Details

Name:	00000009.00000003.34909467253.0000000020740000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20740000
Size:	24576

Details

Name:	00000009.00000002.39550180870.000000000191E000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	191E000
Size:	8192

Details

Name:	00000009.00000003.35832468050.00000000207B0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	207B0000
Size:	53248

Details

Name:	00000009.00000003.35821124112.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	24576

Details

Name:	00000009.00000003.35806104749.00000000017F5000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	17F5000
Size:	45056

Details

Name:	00000009.00000002.39549741277.0000000001800000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1800000
Size:	65536

Details

Name:	00000009.00000003.34987613334.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000000.34696848932.0000000000F70000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	F70000
Size:	118784

Details

Name:	00000009.00000003.35855400248.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35002649472.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000000.34697233793.000000007FC30000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC30000
Size:	12288

Details

Name:	00000009.00000003.34981810191.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39567097109.00000000206C2000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	206C2000
Size:	28672

Details

Name:	0000000D.00000002.37894243621.00007FF56D43B000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF56D43B000
Size:	4096

Details

Name:	00000009.00000003.34913258689.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	20480

Details

Name:	00000009.00000002.39558440273.000000001E225000.00000040.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	1E225000
Size:	4096

Details

Name:	00000009.00000003.35789015019.0000000001480000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1480000
Size:	65536

Details

Name:	00000009.00000002.39549244377.00000000015E8000.00000004.00000020.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	15E8000
Size:	4096

Details

Name:	00000009.00000003.35807171105.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	16384

Details

Name:	0000000D.00000003.37890509629.000001E7B2E8C000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1E7B2E8C000
Size:	28672

Details

Name:	00000009.00000003.35002445446.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35837199825.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34978474977.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35792890909.0000000001480000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1480000
Size:	16384

Details

Name:	00000009.00000003.35860113084.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39569905646.000000007FC30000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC30000
Size:	12288

Details

Name:	00000009.00000003.35852263002.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34986302263.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35818430025.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.35002916746.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35810734514.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	12288

Details

Name:	00000009.00000003.35798205515.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.35836821952.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000002.39569381820.0000000021770000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	21770000
Size:	12288

Details

Name:	00000009.00000003.34906426517.00000000206A5000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A5000
Size:	12288

Details

Name:	00000009.00000003.34904753489.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	16384

Details

Name:	00000009.00000003.35837077533.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34912123981.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	40960

Details

Name:	00000009.00000003.35815582594.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35854162404.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35801554309.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	32768

Details

Name:	00000009.00000003.34988357006.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35795360786.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	12288

Details

Name:	00000009.00000003.34985935796.0000000001250000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1250000
Size:	16384

Details

Name:	00000009.00000003.35835262907.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000D.00000002.37893792671.00007DF579260000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF579260000
Size:	4096

Details

Name:	00000001.00000002.34925676895.000000000050D000.00000004.00000020.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	50D000
Size:	69632

Details

Name:	00000009.00000000.34697819105.0000000000FD0000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	FD0000
Size:	16384

Details

Name:	00000009.00000003.34910700201.00000000206A5000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A5000
Size:	8192

Details

Name:	00000009.00000003.35799443107.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	20480

Details

Name:	00000009.00000003.35794513441.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34983534991.0000000001210000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1210000
Size:	12288

Details

Name:	00000009.00000003.35838670481.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35819589631.0000000001A80000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A80000
Size:	65536

Details

Name:	00000009.00000003.35813334579.0000000001800000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1800000
Size:	16384

Details

Name:	00000009.00000003.35305994180.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35836782604.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35855306989.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35838467543.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35814625891.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.35832546900.00000000207BE000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	207BE000
Size:	8192

Details

Name:	00000009.00000003.35816010926.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35812871775.0000000001800000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1800000
Size:	24576

Details

Name:	00000009.00000003.35818548144.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35852318049.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35810371599.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	16384

Details

Name:	0000000D.00000002.37892264973.000001E7B2E20000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1E7B2E20000
Size:	36864

Details

Name:	00000009.00000003.35788273597.000000000178A000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	178A000
Size:	24576

Details

Name:	00000009.00000003.35802261900.0000000001475000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1475000
Size:	8192

Details

Name:	00000009.00000003.35834944903.0000000020636000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20636000
Size:	49152

Details

Name:	00000009.00000003.35306137679.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	0000000E.00000002.39548499641.00007FF5D3741000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D3741000
Size:	8192

Details

Name:	00000009.00000003.34910278823.00000000206A5000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A5000
Size:	8192

Details

Name:	00000009.00000000.34698609088.0000000000FD0000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	FD0000
Size:	16384

Details

Name:	00000009.00000000.34699639610.000000007FC10000.00000002.00020000.sdmp
TargetID:	9
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC10000
Size:	4096

Details

Name:	00000009.00000003.35003846225.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	8192

Details

Name:	00000009.00000003.34913453903.0000000020750000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20750000
Size:	28672

Details

Name:	00000009.00000003.35815748279.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34980624877.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35864089379.00000000012B0000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	12B0000
Size:	16384

Details

Name:	00000009.00000003.35802015213.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000001.00000002.34926313064.0000000000DB0000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	DB0000
Size:	4096

Details

Name:	00000009.00000003.35797445814.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000003.34909333953.00000000206A0000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	206A0000
Size:	65536

Details

Name:	00000009.00000003.35860584469.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35004583140.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35813514577.0000000001800000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1800000
Size:	4096

Details

Name:	00000009.00000003.35853174407.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35798147182.0000000001470000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1470000
Size:	16384

Details

Name:	00000009.00000002.39569243626.000000002136D000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2136D000
Size:	12288

Details

Name:	00000009.00000003.34913042146.0000000020740000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	20740000
Size:	4096

Details

Name:	00000009.00000003.34980092138.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34979265879.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35821283135.0000000001A70000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1A70000
Size:	16384

Details

Name:	00000009.00000003.35004988244.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.35816152564.000000001D371000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1D371000
Size:	4096

Details

Name:	00000009.00000003.34986949666.0000000001260000.00000004.00000001.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1260000
Size:	12288

Details

Name:	00000009.00000003.35810231177.0000000001490000.00000004.00000010.sdmp
TargetID:	9
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	1490000
Size:	28672

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

IOC Report

Files

Processes

URLs

Domains

IPs

Registry

Memdumps