Automated Malware Analysis IOC Report for

Details

Name:	00000000.00000000.280292541.0000000000692000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	692000
Size:	278528

Signature Hits	Behavior Group	Mitre Attack
Detected Nanocore Rat	Remote Access Functionality	Remote Access Software
Malicious sample detected (through community Yara rule)	System Summary
Yara detected MercurialGrabber	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality
Yara detected Nanocore RAT	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality
Sample file is different than original file name gathered from version info	System Summary
Yara signature match	System Summary

Details

Name:	00000002.00000000.283905085.0000000000A82000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	A82000
Size:	118784

Signature Hits	Behavior Group	Mitre Attack
Detected Nanocore Rat	Remote Access Functionality	Remote Access Software
Malicious sample detected (through community Yara rule)	System Summary
Yara detected Nanocore RAT	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality
Yara signature match	System Summary

Details

Name:	00000000.00000002.287619799.0000000002DE1000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2DE1000
Size:	77824

Signature Hits	Behavior Group	Mitre Attack
Yara detected MercurialGrabber	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality
Sample file is different than original file name gathered from version info	System Summary

Details

Name:	00000002.00000000.283285603.0000000000A82000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	A82000
Size:	118784

Signature Hits	Behavior Group	Mitre Attack
Malicious sample detected (through community Yara rule)	System Summary
Yara detected Nanocore RAT	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality
Yara signature match	System Summary

Details

Name:	00000000.00000002.287642993.0000000003DE4000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	3DE4000
Size:	208896

Signature Hits	Behavior Group	Mitre Attack
Detected Nanocore Rat	Remote Access Functionality	Remote Access Software
Malicious sample detected (through community Yara rule)	System Summary
Yara detected Nanocore RAT	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality
Yara signature match	System Summary

Details

Name:	00000002.00000000.283614922.0000000000A82000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	A82000
Size:	118784

Signature Hits	Behavior Group	Mitre Attack
Malicious sample detected (through community Yara rule)	System Summary
Yara detected Nanocore RAT	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality
Yara signature match	System Summary

Details

Name:	00000002.00000002.555253844.0000000005C40000.00000004.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	5C40000
Size:	102400

Signature Hits	Behavior Group	Mitre Attack
Detected Nanocore Rat	Remote Access Functionality	Remote Access Software
Malicious sample detected (through community Yara rule)	System Summary
Yara detected Nanocore RAT	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality
Installs a raw input device (often for capturing keystrokes)	Key, Mouse, Clipboard, Microphone and Screen Capturing	Input Capture
Yara signature match	System Summary

Details

Name:	00000005.00000002.301105822.0000000000302000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	302000
Size:	45056

Signature Hits	Behavior Group	Mitre Attack
Yara detected MercurialGrabber	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality

Details

Name:	00000005.00000000.285297877.0000000000302000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	302000
Size:	45056

Signature Hits	Behavior Group	Mitre Attack
Yara detected MercurialGrabber	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality

Details

Name:	00000002.00000002.553881083.00000000042DB000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	42DB000
Size:	397312

Signature Hits	Behavior Group	Mitre Attack
Detected Nanocore Rat	Remote Access Functionality	Remote Access Software
Found malware configuration	AV Detection
Malicious sample detected (through community Yara rule)	System Summary
Yara detected Nanocore RAT	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality
Yara signature match	System Summary

Details

Name:	00000005.00000000.285865715.0000000000302000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	302000
Size:	45056

Signature Hits	Behavior Group	Mitre Attack
Yara detected MercurialGrabber	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality

Details

Name:	00000002.00000002.549792626.0000000000A82000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	A82000
Size:	118784

Signature Hits	Behavior Group	Mitre Attack
Malicious sample detected (through community Yara rule)	System Summary
Yara detected Nanocore RAT	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality
Yara signature match	System Summary

Details

Name:	00000005.00000000.285573349.0000000000302000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	302000
Size:	45056

Signature Hits	Behavior Group	Mitre Attack
Yara detected MercurialGrabber	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality

Details

Name:	00000000.00000002.286708512.0000000000692000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	692000
Size:	278528

Signature Hits	Behavior Group	Mitre Attack
Malicious sample detected (through community Yara rule)	System Summary
Yara detected MercurialGrabber	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality
Yara detected Nanocore RAT	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality
Yara signature match	System Summary

Details

Name:	00000002.00000000.282943204.0000000000A82000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	A82000
Size:	118784

Signature Hits	Behavior Group	Mitre Attack
Malicious sample detected (through community Yara rule)	System Summary
Yara detected Nanocore RAT	AV Detection, E-Banking Fraud, Stealing of Sensitive Information, Remote Access Functionality
Yara signature match	System Summary

Details

Name:	00000002.00000003.305679474.0000000004533000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4533000
Size:	139264

Details

Name:	00000004.00000002.551909001.00007FF51B1F7000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B1F7000
Size:	49152

Details

Name:	00000002.00000003.506592726.0000000004509000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4509000
Size:	122880

Details

Name:	00000002.00000003.284441610.00000000053A5000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	53A5000
Size:	8192

Details

Name:	0000000D.00000000.332569267.00000219BE220000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	219BE220000
Size:	102400

Details

Name:	00000002.00000003.321211614.000000000452C000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	452C000
Size:	139264

Details

Name:	00000002.00000003.407090715.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000005.00000002.302179357.000000000246E000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	246E000
Size:	8192

Details

Name:	00000006.00000002.297168438.0000026457A90000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	26457A90000
Size:	102400

Details

Name:	00000007.00000002.551550325.00000188938D0000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	188938D0000
Size:	4096

Details

Name:	00000002.00000003.405187814.00000000044B2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44B2000
Size:	135168

Details

Name:	00000006.00000002.297120572.0000006D69E7B000.00000004.00000010.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6D69E7B000
Size:	20480

Details

Name:	00000008.00000002.311750781.00007FF509BB3000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509BB3000
Size:	4096

Details

Name:	00000002.00000002.550536165.00000000010C0000.00000004.00000020.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	10C0000
Size:	16384

Details

Name:	00000002.00000003.442943751.000000000454B000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	454B000
Size:	131072

Details

Name:	00000005.00000002.301114286.0000000000310000.00000004.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	310000
Size:	4096

Details

Name:	0000000D.00000002.347145817.00007FF5BC521000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC521000
Size:	20480

Details

Name:	00000005.00000002.304535695.00007FFC08484000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	7FFC08484000
Size:	8192

Details

Name:	00000003.00000002.551696982.00007DF5B82A2000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5B82A2000
Size:	4096

Details

Name:	00000002.00000003.532087176.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000010.00000003.394391730.0000019C9286A000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9286A000
Size:	425984

Details

Name:	00000002.00000003.286738782.0000000005730000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5730000
Size:	16384

Details

Name:	0000000D.00000002.347314281.00007FF5BC9B7000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC9B7000
Size:	8192

Details

Name:	00000010.00000002.407971414.0000019C92384000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92384000
Size:	32768

Details

Name:	00000002.00000003.525407161.0000000004444000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4444000
Size:	118784

Details

Name:	00000002.00000000.282997545.000000007FDB0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDB0000
Size:	4096

Details

Name:	00000002.00000002.554390080.00000000053B0000.00000040.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	53B0000
Size:	65536

Details

Name:	00000004.00000002.549898578.000000F9C39FE000.00000004.00000010.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	F9C39FE000
Size:	8192

Details

Name:	0000000D.00000002.347165534.00007FF5BC6C5000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC6C5000
Size:	8192

Details

Name:	00000002.00000003.475109216.00000000012CC000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12CC000
Size:	40960

Details

Name:	00000002.00000003.485336031.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	0000000E.00000002.373260949.00007DF527260000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF527260000
Size:	4096

Details

Name:	00000005.00000003.293937516.000000001BD80000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD80000
Size:	61440

Details

Name:	00000003.00000002.551909024.00007FF5AA1A1000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA1A1000
Size:	4096

Details

Name:	00000002.00000002.549748615.0000000000A80000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	A80000
Size:	4096

Details

Name:	00000007.00000002.552551836.00007FF5DC086000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC086000
Size:	16384

Details

Name:	00000006.00000000.285664264.00007DF5F6B60000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5F6B60000
Size:	12288

Details

Name:	00000002.00000003.444590787.0000000005DCD000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5DCD000
Size:	16384

Details

Name:	00000005.00000002.304576392.00007FFC084A4000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	7FFC084A4000
Size:	4096

Details

Name:	00000003.00000002.552574212.00007FF5AA5A7000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA5A7000
Size:	8192

Details

Name:	00000010.00000002.407587678.0000019C91AB3000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91AB3000
Size:	40960

Details

Name:	00000003.00000000.283294842.00007DF5B8290000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5B8290000
Size:	4096

Details

Name:	00000002.00000003.480296540.0000000004582000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4582000
Size:	122880

Details

Name:	00000002.00000003.388465926.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000002.00000003.378230383.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000006.00000002.297557064.00007FF5E8C9C000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8C9C000
Size:	4096

Details

Name:	00000005.00000003.290263793.0000000002500000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	2500000
Size:	4096

Details

Name:	00000005.00000002.304515789.00007FF5B8BD2000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5B8BD2000
Size:	4096

Details

Name:	00000002.00000003.442981911.00000000045EA000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45EA000
Size:	131072

Details

Name:	0000000E.00000002.373249285.000002D086002000.00000004.00000001.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2D086002000
Size:	4096

Details

Name:	00000005.00000003.295351407.000000001BD96000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD96000
Size:	40960

Details

Name:	00000003.00000002.549927304.0000005D73DFC000.00000004.00000010.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5D73DFC000
Size:	16384

Details

Name:	00000002.00000003.504087965.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000000.00000000.280286283.0000000000690000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	690000
Size:	4096

Details

Name:	00000008.00000002.311873786.00007FF509E01000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509E01000
Size:	16384

Details

Name:	00000007.00000002.552844643.00007FF5DC220000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC220000
Size:	4096

Details

Name:	00000002.00000003.375222806.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000000.00000002.287968686.000000007FC92000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC92000
Size:	4096

Details

Name:	00000002.00000003.421367821.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	122880

Details

Name:	00000011.00000002.394013892.00007DF5477A0000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5477A0000
Size:	12288

Details

Name:	00000008.00000002.311585844.000002781967B000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2781967B000
Size:	4096

Details

Name:	00000002.00000002.555017898.0000000005730000.00000004.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	5730000
Size:	12288

Details

Name:	00000008.00000002.310930224.000000D77847E000.00000004.00000010.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	D77847E000
Size:	8192

Details

Name:	00000002.00000003.488334853.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000003.00000002.551496467.000001F362300000.00000004.00000001.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1F362300000
Size:	4096

Details

Name:	00000002.00000003.513204783.00000000043F8000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43F8000
Size:	118784

Details

Name:	00000002.00000003.533249572.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000001.00000002.550852260.000001D34F513000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1D34F513000
Size:	20480

Details

Name:	00000010.00000003.384513477.0000019C923D0000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C923D0000
Size:	126976

Details

Name:	0000000B.00000002.549749166.0000004493DEC000.00000004.00000001.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	4493DEC000
Size:	16384

Details

Name:	00000006.00000002.297135653.0000006D69FFE000.00000004.00000010.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6D69FFE000
Size:	8192

Details

Name:	00000001.00000002.551084965.00007DF498250000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF498250000
Size:	20480

Details

Name:	00000005.00000000.285919389.00007FF5B8BE0000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5B8BE0000
Size:	12288

Details

Name:	00000002.00000003.493127776.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000006.00000002.297837618.00007FF5E8E33000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8E33000
Size:	24576

Details

Name:	0000000B.00000002.550664543.0000014839400000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	14839400000
Size:	12288

Details

Name:	00000002.00000003.369158350.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000002.00000003.444739933.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000000.00000002.286849302.0000000000770000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	770000
Size:	16384

Details

Name:	00000010.00000003.395271256.0000019C92369000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92369000
Size:	57344

Details

Name:	00000001.00000002.549749833.00000092679AB000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	92679AB000
Size:	20480

Details

Name:	00000004.00000002.550434958.0000024029A29000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	24029A29000
Size:	77824

Details

Name:	0000000E.00000002.373345667.00007FF519386000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF519386000
Size:	16384

Details

Name:	00000002.00000003.491144100.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000002.00000003.328543961.0000000005FE2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE2000
Size:	135168

Details

Name:	00000002.00000003.417485559.00000000043C0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43C0000
Size:	135168

Details

Name:	00000005.00000002.304494203.00007FF4B6A90000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4B6A90000
Size:	20480

Details

Name:	00000010.00000002.407861052.0000019C92315000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92315000
Size:	229376

Details

Name:	00000002.00000003.333206645.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000001.00000002.551432309.00007FF58C5CF000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C5CF000
Size:	4096

Details

Name:	00000003.00000000.283298785.00007DF5B8292000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5B8292000
Size:	4096

Details

Name:	00000002.00000003.430490839.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.500679760.00000000044E0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44E0000
Size:	122880

Details

Name:	0000000B.00000002.550441622.0000014839013000.00000004.00000001.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	14839013000
Size:	61440

Details

Name:	00000004.00000002.551494941.00007FF51B1A3000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B1A3000
Size:	16384

Details

Name:	00000005.00000003.295366881.000000001BDB0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BDB0000
Size:	65536

Details

Name:	00000000.00000002.287333056.0000000000C8B000.00000004.00000020.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	C8B000
Size:	131072

Details

Name:	00000002.00000003.415556730.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000011.00000002.394255100.00007FF539B15000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539B15000
Size:	16384

Details

Name:	00000002.00000003.350513485.0000000005FE2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE2000
Size:	135168

Details

Name:	00000002.00000000.283022023.000000007FDC2000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDC2000
Size:	4096

Details

Name:	00000002.00000003.334462938.0000000005FE2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE2000
Size:	139264

Details

Name:	00000002.00000002.550359773.0000000000C59000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	C59000
Size:	4096

Details

Name:	00000002.00000003.436880292.000000000451D000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	451D000
Size:	131072

Details

Name:	00000002.00000003.446632994.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000006.00000002.297269508.0000026457C6F000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	26457C6F000
Size:	45056

Details

Name:	00000007.00000002.550530025.0000018891E42000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	18891E42000
Size:	139264

Details

Name:	00000005.00000003.293816219.000000001BD70000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD70000
Size:	12288

Details

Name:	00000002.00000003.319615821.0000000006760000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6760000
Size:	28672

Details

Name:	00000002.00000003.424607887.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000000.00000002.286887625.000000000097C000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	97C000
Size:	8192

Details

Name:	00000005.00000002.301858246.00000000009CD000.00000004.00000020.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	9CD000
Size:	8192

Details

Name:	00000007.00000002.550150701.0000018891D70000.00000004.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	18891D70000
Size:	4096

Details

Name:	00000008.00000002.311739805.00007FF509A85000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509A85000
Size:	8192

Details

Name:	00000010.00000002.407831868.0000019C92202000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92202000
Size:	4096

Details

Name:	00000010.00000002.408303596.00007FF4F4501000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4501000
Size:	4096

Details

Name:	00000002.00000003.419449661.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000003.00000002.552725317.00007FF5AA61A000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA61A000
Size:	12288

Details

Name:	00000010.00000003.394309515.0000019C92802000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92802000
Size:	851968

Details

Name:	00000010.00000003.394114874.0000019C9238A000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9238A000
Size:	425984

Details

Name:	00000002.00000003.338181013.0000000004607000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4607000
Size:	139264

Details

Name:	00000010.00000003.395682984.0000019C9239F000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9239F000
Size:	176128

Details

Name:	00000010.00000002.408625799.00007FF4F4727000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4727000
Size:	8192

Details

Name:	00000002.00000003.331444556.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000004.00000002.550135088.00000240298C0000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	240298C0000
Size:	12288

Details

Name:	00000003.00000002.550985428.000001F361B02000.00000004.00000001.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1F361B02000
Size:	32768

Details

Name:	00000002.00000003.455148686.00000000044A6000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44A6000
Size:	126976

Details

Name:	00000000.00000002.287261611.0000000000C0A000.00000040.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	C0A000
Size:	4096

Details

Name:	00000002.00000003.423161683.00000000043E0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43E0000
Size:	131072

Details

Name:	00000000.00000002.287414514.0000000000F5E000.00000004.00000010.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	F5E000
Size:	8192

Details

Name:	00000002.00000003.473975167.00000000043BD000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43BD000
Size:	122880

Details

Name:	00000002.00000003.455651541.00000000012CB000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12CB000
Size:	45056

Details

Name:	00000002.00000003.286233622.0000000005700000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5700000
Size:	16384

Details

Name:	00000002.00000003.395533809.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.487128253.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.433390770.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000007.00000002.552053547.00007DF4E7E30000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF4E7E30000
Size:	20480

Details

Name:	00000003.00000002.549876366.0000005D73C7E000.00000004.00000010.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5D73C7E000
Size:	8192

Details

Name:	00000002.00000003.476453098.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000010.00000002.407317254.0000019C91820000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	19C91820000
Size:	102400

Details

Name:	00000002.00000003.406288266.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	28672

Details

Name:	00000002.00000003.485318836.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000001.00000002.549898154.000000926827B000.00000004.00000010.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	926827B000
Size:	20480

Details

Name:	00000002.00000003.463471678.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.328575566.00000000012DD000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12DD000
Size:	4096

Details

Name:	00000002.00000003.291912122.0000000004551000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4551000
Size:	143360

Details

Name:	00000011.00000002.393833054.000001CCF4130000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1CCF4130000
Size:	16384

Details

Name:	00000005.00000003.295855550.0000000002480000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2480000
Size:	32768

Details

Name:	00000011.00000002.394263943.00007FF539B1A000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539B1A000
Size:	4096

Details

Name:	00000003.00000002.551022638.000001F361B13000.00000004.00000001.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1F361B13000
Size:	4096

Details

Name:	00000007.00000002.550762171.0000018891F18000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	18891F18000
Size:	8192

Details

Name:	00000002.00000003.480171687.00000000043B8000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43B8000
Size:	122880

Details

Name:	00000002.00000003.455209385.0000000004590000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4590000
Size:	122880

Details

Name:	0000000E.00000002.373432163.00007FF519509000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF519509000
Size:	8192

Details

Name:	00000002.00000003.414347600.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000001.00000002.551011890.000001D34F9A0000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1D34F9A0000
Size:	16384

Details

Name:	00000006.00000002.297786012.00007FF5E8E0E000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8E0E000
Size:	28672

Details

Name:	0000000B.00000002.551697237.00007FF5D38CA000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D38CA000
Size:	12288

Details

Name:	00000002.00000003.329116940.0000000005FE2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE2000
Size:	135168

Details

Name:	00000010.00000002.407577383.0000019C91AA8000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91AA8000
Size:	40960

Details

Name:	0000000E.00000002.373392156.00007FF519455000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF519455000
Size:	20480

Details

Name:	0000000D.00000003.346640507.00000219BE449000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	219BE449000
Size:	16384

Details

Name:	00000006.00000002.297255268.0000026457C54000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	26457C54000
Size:	106496

Details

Name:	00000008.00000003.310742074.0000027819658000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	27819658000
Size:	4096

Details

Name:	0000000E.00000002.373183511.000002D085A70000.00000004.00000001.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2D085A70000
Size:	36864

Details

Name:	0000000E.00000002.373557784.00007FF5195EA000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5195EA000
Size:	12288

Details

Name:	00000002.00000003.392484063.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.374070688.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	0000000E.00000002.373095586.000002D085800000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	2D085800000
Size:	12288

Details

Name:	00000005.00000002.303880604.000000001B94D000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1B94D000
Size:	12288

Details

Name:	00000002.00000003.499687606.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.491840336.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	0000000D.00000002.347230034.00007FF5BC8C5000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC8C5000
Size:	4096

Details

Name:	00000002.00000003.329624416.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000010.00000002.407700408.0000019C91B13000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91B13000
Size:	8192

Details

Name:	00000002.00000003.520712773.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000010.00000002.407612837.0000019C91AD9000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91AD9000
Size:	32768

Details

Name:	00000002.00000002.554088089.000000000436B000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	436B000
Size:	118784

Details

Name:	00000007.00000002.552412800.00007FF5DBE67000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DBE67000
Size:	4096

Details

Name:	0000000B.00000002.550748387.0000014839590000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	14839590000
Size:	12288

Details

Name:	00000006.00000002.298005562.00007FF5E8EDA000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8EDA000
Size:	4096

Details

Name:	00000002.00000003.395514872.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	0000000D.00000002.347196836.00007FF5BC82B000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC82B000
Size:	8192

Details

Name:	00000002.00000003.327249778.0000000004340000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4340000
Size:	135168

Details

Name:	00000011.00000002.394228470.00007FF539B04000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539B04000
Size:	20480

Details

Name:	00000002.00000003.519611932.00000000045CC000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45CC000
Size:	122880

Details

Name:	00000011.00000002.394137522.00007FF539A43000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539A43000
Size:	12288

Details

Name:	00000001.00000002.551388088.00007FF58C49B000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C49B000
Size:	4096

Details

Name:	00000001.00000002.549972726.000001D34F2D0000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1D34F2D0000
Size:	102400

Details

Name:	0000000D.00000002.347363668.00007FF5BCA41000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BCA41000
Size:	16384

Details

Name:	00000007.00000002.550663365.0000018891F00000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	18891F00000
Size:	4096

Details

Name:	00000002.00000003.286205861.0000000005710000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5710000
Size:	28672

Details

Name:	00000002.00000003.480228441.000000000449D000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	449D000
Size:	122880

Details

Name:	00000007.00000002.552980148.00007FF5DC2E4000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC2E4000
Size:	20480

Details

Name:	00000002.00000003.533876202.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000006.00000002.297932168.00007FF5E8EB9000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8EB9000
Size:	12288

Details

Name:	00000002.00000003.327397038.00000000045CE000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45CE000
Size:	135168

Details

Name:	00000010.00000003.382997734.0000019C919E0000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C919E0000
Size:	4096

Details

Name:	00000011.00000000.382014923.00007DF547792000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF547792000
Size:	4096

Details

Name:	0000000B.00000002.550505783.0000014839029000.00000004.00000001.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	14839029000
Size:	90112

Details

Name:	00000005.00000003.296894080.0000000002480000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2480000
Size:	24576

Details

Name:	0000000E.00000002.373274758.00007DF527272000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF527272000
Size:	4096

Details

Name:	00000002.00000003.338023086.0000000004416000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4416000
Size:	139264

Details

Name:	00000005.00000003.295637673.000000001BDB0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BDB0000
Size:	65536

Details

Name:	0000000B.00000002.551721453.00007FF5D38D1000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D38D1000
Size:	12288

Details

Name:	00000011.00000002.394121013.00007FF539A36000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539A36000
Size:	16384

Details

Name:	00000002.00000003.533907125.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.501064795.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.379444697.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000002.00000003.376409771.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000005.00000002.301186481.00000000008A0000.00000004.00000040.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	8A0000
Size:	12288

Details

Name:	00000010.00000002.408646660.00007FF4F4782000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4782000
Size:	12288

Details

Name:	00000005.00000002.301204555.00000000008AB000.00000004.00000040.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	8AB000
Size:	16384

Details

Name:	00000002.00000002.554929861.00000000056FE000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	56FE000
Size:	8192

Details

Name:	00000002.00000003.482271183.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000002.555495887.00000000064C0000.00000004.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	64C0000
Size:	4096

Details

Name:	0000000D.00000002.347274684.00007FF5BC96E000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC96E000
Size:	28672

Details

Name:	00000002.00000002.550339064.0000000000C55000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	C55000
Size:	8192

Details

Name:	00000006.00000002.297336934.00007DF4F4A10000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF4F4A10000
Size:	20480

Details

Name:	0000000D.00000002.346802463.00000093D857D000.00000004.00000010.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	93D857D000
Size:	12288

Details

Name:	00000002.00000003.493632898.0000000004614000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4614000
Size:	122880

Details

Name:	00000002.00000003.500580569.00000000043AC000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43AC000
Size:	122880

Details

Name:	00000002.00000003.491178078.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000002.550994233.0000000001217000.00000040.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	1217000
Size:	4096

Details

Name:	00000008.00000002.311549741.000002781964E000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2781964E000
Size:	32768

Details

Name:	00000002.00000002.555304475.0000000005DA0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	5DA0000
Size:	159744

Details

Name:	00000010.00000002.408278703.00007FF4F44F4000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F44F4000
Size:	4096

Details

Name:	00000005.00000000.285621036.00007FF5B8BC2000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5B8BC2000
Size:	4096

Details

Name:	00000002.00000003.444754460.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000010.00000002.408383753.00007FF4F459B000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F459B000
Size:	8192

Details

Name:	00000006.00000002.297868843.00007FF5E8E57000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8E57000
Size:	8192

Details

Name:	00000002.00000003.484751189.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000003.00000002.551926114.00007FF5AA23D000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA23D000
Size:	4096

Details

Name:	0000000B.00000002.551240639.00007FF5D37E9000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D37E9000
Size:	8192

Details

Name:	00000008.00000002.310944418.000000D77867E000.00000004.00000010.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	D77867E000
Size:	8192

Details

Name:	00000002.00000003.428513822.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.488395085.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000005.00000003.294772240.000000001BDA0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BDA0000
Size:	65536

Details

Name:	00000005.00000003.295686995.0000000002470000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2470000
Size:	65536

Details

Name:	00000002.00000003.291929807.00000000045A4000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45A4000
Size:	143360

Details

Name:	00000002.00000001.283981514.0000000000A80000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	image loaded
Regiontype:	unkown image
Protect:	page readonly
Base address:	A80000
Size:	4096

Details

Name:	00000002.00000000.283005378.000000007FDB2000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDB2000
Size:	4096

Details

Name:	0000000E.00000002.373078857.000002D0857E0000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	2D0857E0000
Size:	102400

Details

Name:	00000010.00000003.384475141.0000019C9237E000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9237E000
Size:	32768

Details

Name:	00000002.00000003.485893398.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000005.00000000.285308314.0000000000330000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	330000
Size:	102400

Details

Name:	00000003.00000002.551647378.00007DF5B8292000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5B8292000
Size:	4096

Details

Name:	00000002.00000003.473395712.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000006.00000002.297734674.00007FF5E8E00000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8E00000
Size:	4096

Details

Name:	00000002.00000000.283385018.000000007FDC2000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDC2000
Size:	4096

Details

Name:	0000000B.00000002.550125122.0000014838DF0000.00000004.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	14838DF0000
Size:	4096

Details

Name:	00000004.00000002.551213313.00007FF51AF87000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51AF87000
Size:	12288

Details

Name:	00000002.00000003.436897903.000000000456D000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	456D000
Size:	131072

Details

Name:	00000006.00000002.297114990.0000006D69D7E000.00000004.00000010.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6D69D7E000
Size:	8192

Details

Name:	00000002.00000003.287667120.00000000012F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	00000007.00000002.552399402.00007FF5DBE53000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DBE53000
Size:	4096

Details

Name:	00000011.00000002.394237957.00007FF539B0A000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539B0A000
Size:	12288

Details

Name:	00000010.00000002.408654798.00007FF4F4789000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4789000
Size:	12288

Details

Name:	00000002.00000003.349397253.000000000450D000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	450D000
Size:	139264

Details

Name:	00000002.00000003.449028502.00000000044C9000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44C9000
Size:	126976

Details

Name:	00000002.00000003.525459257.0000000004528000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4528000
Size:	118784

Details

Name:	00000002.00000002.552440240.0000000002E50000.00000040.00000040.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page execute and read and write
Base address:	2E50000
Size:	8192

Details

Name:	00000002.00000003.475149681.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000007.00000002.552670129.00007FF5DC117000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC117000
Size:	4096

Details

Name:	00000002.00000003.455069705.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	0000000E.00000002.373047484.000000EEFFBED000.00000004.00000010.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	EEFFBED000
Size:	12288

Details

Name:	00000002.00000003.284971202.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	28672

Details

Name:	0000000E.00000002.373270313.00007DF527270000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF527270000
Size:	4096

Details

Name:	00000006.00000002.297537579.00007FF5E8C91000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8C91000
Size:	8192

Details

Name:	00000002.00000002.555111367.000000000585D000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	585D000
Size:	12288

Details

Name:	00000010.00000002.408222441.00007FF4F4384000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4384000
Size:	8192

Details

Name:	00000005.00000003.295552338.0000000002480000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2480000
Size:	65536

Details

Name:	00000002.00000003.396675817.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000005.00000003.288076676.0000000000850000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	850000
Size:	65536

Details

Name:	00000004.00000002.550683053.0000024029B13000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	24029B13000
Size:	4096

Details

Name:	00000001.00000002.551817312.00007FF58C67E000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C67E000
Size:	4096

Details

Name:	00000002.00000003.527218020.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000005.00000003.287908808.0000000000810000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	810000
Size:	40960

Details

Name:	00000005.00000003.300548200.0000000000804000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	804000
Size:	49152

Details

Name:	00000008.00000000.286298820.0000027819580000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	27819580000
Size:	102400

Details

Name:	00000002.00000003.285175328.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	28672

Details

Name:	00000002.00000003.338156152.00000000045B4000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45B4000
Size:	139264

Details

Name:	00000010.00000003.395864181.0000019C9238E000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9238E000
Size:	397312

Details

Name:	0000000E.00000002.373053715.000000EEFFE7E000.00000004.00000010.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	EEFFE7E000
Size:	8192

Details

Name:	00000002.00000003.422482614.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000002.00000003.366715716.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000002.00000003.429843958.000000000447E000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	447E000
Size:	131072

Details

Name:	0000000E.00000002.373025285.000000EE802FE000.00000004.00000010.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	EE802FE000
Size:	8192

Details

Name:	00000010.00000000.380991311.0000019C91820000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	19C91820000
Size:	102400

Details

Name:	00000005.00000003.295384220.0000000002470000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2470000
Size:	45056

Details

Name:	00000002.00000003.381417227.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000002.554232819.000000000446F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	446F000
Size:	118784

Details

Name:	00000003.00000002.551121657.000001F361F80000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1F361F80000
Size:	4096

Details

Name:	00000010.00000003.407006401.0000019C91A4E000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91A4E000
Size:	16384

Details

Name:	00000002.00000003.407759121.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000005.00000002.304585515.00007FFC084AD000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	7FFC084AD000
Size:	8192

Details

Name:	00000002.00000003.406300213.00000000012D7000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12D7000
Size:	28672

Details

Name:	00000002.00000003.286287066.00000000012A7000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12A7000
Size:	4096

Details

Name:	00000002.00000003.405135419.00000000043C1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43C1000
Size:	131072

Details

Name:	00000005.00000000.285879249.0000000000330000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	330000
Size:	102400

Details

Name:	00000002.00000003.465180051.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.467641736.000000000450F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	450F000
Size:	122880

Details

Name:	00000005.00000003.294781825.000000001BDB0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BDB0000
Size:	24576

Details

Name:	00000005.00000002.303823957.000000001B4F3000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1B4F3000
Size:	20480

Details

Name:	00000002.00000003.380234637.000000000459F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	459F000
Size:	4096

Details

Name:	00000002.00000003.332604230.0000000005FE2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE2000
Size:	135168

Details

Name:	00000010.00000003.388985122.0000019C92388000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92388000
Size:	4096

Details

Name:	0000000E.00000003.372795084.000002D085A49000.00000004.00000001.sdmp
TargetID:	14
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	2D085A49000
Size:	24576

Details

Name:	00000000.00000000.280341129.000000007FC80000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC80000
Size:	4096

Details

Name:	00000011.00000002.394079841.00007FF539328000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539328000
Size:	4096

Details

Name:	00000002.00000003.490516857.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000008.00000002.311571487.000002781966A000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2781966A000
Size:	8192

Details

Name:	00000002.00000002.554877928.0000000005570000.00000040.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	5570000
Size:	20480

Details

Name:	00000002.00000003.408345812.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000004.00000002.552194866.00007FF51B2C0000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B2C0000
Size:	20480

Details

Name:	0000000D.00000002.347135820.00007FF5BC0F8000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC0F8000
Size:	16384

Details

Name:	00000005.00000002.304645356.00007FFC08640000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	7FFC08640000
Size:	4096

Details

Name:	00000002.00000003.518780329.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000002.550317383.0000000000BFD000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	BFD000
Size:	12288

Details

Name:	00000002.00000002.551556333.00000000012F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	00000002.00000003.406330320.00000000012DA000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12DA000
Size:	16384

Details

Name:	00000005.00000002.304614581.00007FFC08566000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	7FFC08566000
Size:	4096

Details

Name:	00000005.00000003.300915499.000000001CEE1000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1CEE1000
Size:	90112

Details

Name:	00000003.00000002.551860144.00007FF5AA179000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA179000
Size:	12288

Details

Name:	00000005.00000002.301157799.00000000006F5000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6F5000
Size:	45056

Details

Name:	00000005.00000000.285609722.00007FF5B8BC0000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5B8BC0000
Size:	4096

Details

Name:	00000002.00000003.448917797.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000002.554620935.0000000005490000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	5490000
Size:	4096

Details

Name:	00000002.00000003.373449647.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000002.00000003.349345331.0000000004415000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4415000
Size:	143360

Details

Name:	00000002.00000003.519519263.000000000449C000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	449C000
Size:	122880

Details

Name:	00000002.00000003.429898420.000000000451D000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	451D000
Size:	131072

Details

Name:	00000002.00000003.424268216.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000002.00000003.447178925.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	122880

Details

Name:	00000002.00000003.408294253.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000010.00000003.395230505.0000019C92380000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92380000
Size:	4096

Details

Name:	00000004.00000002.550414200.0000024029A24000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	24029A24000
Size:	16384

Details

Name:	00000002.00000002.551783314.0000000001580000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1580000
Size:	65536

Details

Name:	00000002.00000003.288001412.00000000012ED000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12ED000
Size:	4096

Details

Name:	00000004.00000002.551830735.00007FF51B1E3000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B1E3000
Size:	12288

Details

Name:	00000005.00000003.288484823.0000000000820000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	820000
Size:	65536

Details

Name:	00000002.00000003.423123879.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.473954751.0000000004340000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4340000
Size:	118784

Details

Name:	00000003.00000002.549823061.0000005D739FF000.00000004.00000010.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5D739FF000
Size:	4096

Details

Name:	00000010.00000002.407678846.0000019C91B08000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91B08000
Size:	32768

Details

Name:	00000005.00000002.302955170.00000000026B8000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	26B8000
Size:	8192

Details

Name:	00000002.00000003.433399760.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.287673852.00000000012AF000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12AF000
Size:	4096

Details

Name:	00000000.00000002.287481820.0000000001140000.00000004.00020000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	1140000
Size:	8192

Signature Hits	Behavior Group	Mitre Attack
Sample file is different than original file name gathered from version info	System Summary

Details

Name:	0000000D.00000002.347027151.00000219BE800000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	219BE800000
Size:	12288

Details

Name:	00000007.00000002.553037272.00007FF5DC301000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC301000
Size:	16384

Details

Name:	00000006.00000002.297408382.00007FF5E89C1000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E89C1000
Size:	20480

Details

Name:	00000002.00000003.418199119.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000004.00000002.551549408.00007FF51B1AE000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B1AE000
Size:	8192

Details

Name:	00000002.00000003.436786166.0000000004390000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4390000
Size:	131072

Details

Name:	00000002.00000003.482870762.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000002.552765744.00000000032F5000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	32F5000
Size:	217088

Details

Name:	00000003.00000002.552260816.00007FF5AA53D000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA53D000
Size:	4096

Details

Name:	00000002.00000003.363185812.00000000012CB000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12CB000
Size:	24576

Details

Name:	00000010.00000002.408442065.00007FF4F4635000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4635000
Size:	4096

Details

Name:	00000002.00000003.365533924.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000002.00000003.431702444.00000000012D7000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12D7000
Size:	12288

Details

Name:	00000006.00000002.297308073.0000026457E00000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	26457E00000
Size:	4096

Details

Name:	00000005.00000003.295669129.0000000002470000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2470000
Size:	36864

Details

Name:	00000001.00000002.550916739.000001D34F800000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1D34F800000
Size:	16384

Details

Name:	00000002.00000003.300233303.00000000044AF000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44AF000
Size:	143360

Details

Name:	00000002.00000003.429215223.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	0000000B.00000002.550174304.0000014838E10000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	14838E10000
Size:	102400

Details

Name:	00000011.00000003.393462783.000001CCF4188000.00000004.00000001.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1CCF4188000
Size:	102400

Details

Name:	00000002.00000002.555576410.000000007FDD0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDD0000
Size:	12288

Details

Name:	00000002.00000003.491810062.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000002.00000002.550499533.0000000001090000.00000004.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	1090000
Size:	4096

Details

Name:	00000005.00000003.287922633.0000000000810000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	810000
Size:	4096

Details

Name:	00000002.00000003.391910429.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.362523970.0000000004340000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4340000
Size:	4096

Details

Name:	00000002.00000003.435166131.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000004.00000002.550263291.0000024029A02000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	24029A02000
Size:	65536

Details

Name:	00000000.00000002.286979726.000000000099E000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	99E000
Size:	4096

Details

Name:	00000000.00000002.287955244.000000007FC90000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC90000
Size:	4096

Details

Name:	00000002.00000003.381393294.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000010.00000002.408322074.00007FF4F4515000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4515000
Size:	4096

Details

Name:	00000002.00000003.375825961.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000001.00000002.550395675.000001D34F43C000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1D34F43C000
Size:	102400

Details

Name:	00000010.00000002.408556652.00007FF4F46D3000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F46D3000
Size:	12288

Details

Name:	00000002.00000003.515553089.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.481601755.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.363166951.00000000012F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	00000002.00000003.436828503.000000000442F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	442F000
Size:	131072

Details

Name:	00000003.00000002.552058527.00007FF5AA3CF000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA3CF000
Size:	8192

Details

Name:	00000002.00000003.312805427.0000000004457000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4457000
Size:	143360

Details

Name:	00000007.00000002.552929701.00007FF5DC277000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC277000
Size:	8192

Details

Name:	00000008.00000002.311811672.00007FF509D4B000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509D4B000
Size:	12288

Details

Name:	00000002.00000003.286594765.0000000005730000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5730000
Size:	4096

Details

Name:	00000002.00000003.467532072.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.377021170.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000010.00000003.389958890.0000019C9238A000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9238A000
Size:	61440

Details

Name:	00000011.00000002.393660998.00000086F977F000.00000004.00000010.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	86F977F000
Size:	4096

Details

Name:	00000005.00000002.302286708.0000000002510000.00000040.00000040.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page execute and read and write
Base address:	2510000
Size:	4096

Details

Name:	00000002.00000003.490545409.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	0000000D.00000002.347352037.00007FF5BCA31000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BCA31000
Size:	32768

Details

Name:	00000000.00000001.280373476.0000000000690000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	image loaded
Regiontype:	unkown image
Protect:	page readonly
Base address:	690000
Size:	4096

Details

Name:	00000001.00000002.551696449.00007FF58C643000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C643000
Size:	12288

Details

Name:	0000000B.00000002.551257004.00007FF5D37ED000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D37ED000
Size:	4096

Details

Name:	00000002.00000003.383429079.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000005.00000002.301210335.00000000008B0000.00000004.00000040.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	8B0000
Size:	12288

Details

Name:	0000000B.00000002.551479159.00007FF5D3857000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D3857000
Size:	8192

Details

Name:	00000002.00000003.349412586.0000000004560000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4560000
Size:	135168

Details

Name:	00000008.00000003.310647106.000002781966C000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	2781966C000
Size:	94208

Details

Name:	0000000D.00000002.347046604.00000219BEC02000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	219BEC02000
Size:	4096

Details

Name:	00000005.00000002.303519869.000000001B10D000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1B10D000
Size:	12288

Details

Name:	00000002.00000003.502359300.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000010.00000002.408397030.00007FF4F45C2000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F45C2000
Size:	8192

Details

Name:	00000001.00000002.551177888.00007DF59A3A0000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF59A3A0000
Size:	12288

Details

Name:	00000001.00000002.550578607.000001D34F456000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1D34F456000
Size:	57344

Details

Name:	00000002.00000003.333835032.0000000005FE2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE2000
Size:	139264

Details

Name:	00000001.00000002.551925970.00007FF58C704000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C704000
Size:	20480

Details

Name:	00000002.00000003.453890513.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000010.00000002.408366482.00007FF4F456C000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F456C000
Size:	4096

Details

Name:	00000002.00000003.500630501.0000000004446000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4446000
Size:	122880

Details

Name:	00000002.00000003.486571047.0000000004445000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4445000
Size:	122880

Details

Name:	00000002.00000003.502977439.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.284743624.0000000005500000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5500000
Size:	65536

Details

Name:	00000003.00000002.550018643.000001F361830000.00000004.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	1F361830000
Size:	4096

Details

Name:	00000002.00000003.300145436.0000000004360000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4360000
Size:	139264

Details

Name:	00000003.00000002.552487715.00007FF5AA57B000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA57B000
Size:	12288

Details

Name:	00000008.00000002.311529837.000002781963D000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2781963D000
Size:	12288

Details

Name:	00000002.00000002.550107378.0000000000AE0000.00000004.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	AE0000
Size:	4096

Details

Name:	00000002.00000003.501134720.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.486589382.0000000004492000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4492000
Size:	122880

Details

Name:	00000001.00000002.551721414.00007FF58C647000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C647000
Size:	16384

Details

Name:	00000006.00000002.297109495.0000006D69CFE000.00000004.00000010.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6D69CFE000
Size:	8192

Details

Name:	00000008.00000002.311733102.00007FF509635000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509635000
Size:	4096

Details

Name:	00000008.00000002.311089114.0000027819560000.00000004.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	27819560000
Size:	4096

Details

Name:	00000002.00000002.550548871.00000000010C5000.00000004.00000020.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	10C5000
Size:	12288

Details

Name:	00000002.00000003.436913727.00000000045BC000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45BC000
Size:	131072

Details

Name:	0000000D.00000002.346837030.00000093D88F7000.00000004.00000010.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	93D88F7000
Size:	36864

Details

Name:	00000010.00000002.408390848.00007FF4F45BF000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F45BF000
Size:	8192

Details

Name:	00000010.00000003.388739449.0000019C923AB000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C923AB000
Size:	28672

Details

Name:	00000002.00000003.416952711.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.485958182.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000005.00000003.290242360.0000000002500000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	2500000
Size:	4096

Details

Name:	00000002.00000003.405243204.00000000045A4000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45A4000
Size:	135168

Details

Name:	00000010.00000002.408483475.00007FF4F4693000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4693000
Size:	16384

Details

Name:	00000002.00000003.546636669.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000002.00000003.478374319.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000003.00000002.552772931.00007FF5AA62A000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA62A000
Size:	4096

Details

Name:	00000011.00000002.394087735.00007FF5398D3000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5398D3000
Size:	4096

Details

Name:	00000002.00000003.527888479.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.382793392.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000003.00000002.552208102.00007FF5AA51E000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA51E000
Size:	8192

Details

Name:	00000002.00000003.284955092.0000000005508000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5508000
Size:	32768

Details

Name:	00000002.00000003.525382061.00000000043F8000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43F8000
Size:	118784

Details

Name:	00000005.00000003.295414977.0000000002480000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2480000
Size:	65536

Details

Name:	00000002.00000003.433276120.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000006.00000002.297194315.0000026457BC0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	26457BC0000
Size:	16384

Details

Name:	00000002.00000003.519390591.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.422095377.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	122880

Details

Name:	00000002.00000003.534417079.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000010.00000002.407148297.00000076A79AB000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	76A79AB000
Size:	20480

Details

Name:	00000002.00000003.457374684.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000007.00000002.552195807.00007FF5DB89D000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DB89D000
Size:	40960

Details

Name:	00000006.00000002.297572242.00007FF5E8CAD000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8CAD000
Size:	4096

Details

Name:	00000000.00000002.287242878.0000000000BFA000.00000040.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	BFA000
Size:	4096

Details

Name:	00000011.00000002.394270778.00007FF539B21000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539B21000
Size:	16384

Details

Name:	00000002.00000003.448933396.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.489967261.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000002.00000000.283377555.000000007FDB2000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDB2000
Size:	4096

Details

Name:	00000010.00000003.387190302.0000019C92386000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92386000
Size:	4096

Details

Name:	00000002.00000003.382214605.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.436845658.000000000447E000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	447E000
Size:	131072

Details

Name:	0000000D.00000000.332613436.00007DF5CA6C0000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5CA6C0000
Size:	12288

Details

Name:	00000002.00000003.356732474.0000000004467000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4467000
Size:	139264

Details

Name:	00000001.00000000.282037137.00007DF59A3A0000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF59A3A0000
Size:	12288

Details

Name:	0000000E.00000002.373335726.00007FF519285000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF519285000
Size:	8192

Details

Name:	00000002.00000003.386966003.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000006.00000002.297693279.00007FF5E8DE9000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8DE9000
Size:	8192

Details

Name:	00000002.00000003.487700454.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	0000000B.00000000.291542394.00007DF5E1540000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5E1540000
Size:	4096

Details

Name:	00000002.00000003.500702076.000000000452D000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	452D000
Size:	122880

Details

Name:	00000010.00000003.383092915.0000019C91AEB000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91AEB000
Size:	36864

Details

Name:	00000002.00000003.435142024.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000002.00000003.319649534.0000000006760000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6760000
Size:	24576

Details

Name:	00000002.00000003.525310302.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000005.00000002.302534952.00000000025E8000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	25E8000
Size:	4096

Details

Name:	00000005.00000002.304520865.00007FF5B8BE0000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5B8BE0000
Size:	12288

Details

Name:	00000002.00000002.555151762.000000000595B000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	595B000
Size:	20480

Details

Name:	00000002.00000003.486528041.00000000043AC000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43AC000
Size:	118784

Details

Name:	00000004.00000002.550572777.0000024029A67000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	24029A67000
Size:	4096

Details

Name:	00000007.00000002.550650184.0000018891E8B000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	18891E8B000
Size:	4096

Details

Name:	00000005.00000002.302325017.0000000002540000.00000004.00000040.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	2540000
Size:	4096

Details

Name:	00000008.00000002.311598459.0000027819685000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	27819685000
Size:	32768

Details

Name:	00000002.00000003.406311257.00000000012ED000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12ED000
Size:	4096

Details

Name:	00000002.00000003.544656715.000000000448F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	448F000
Size:	118784

Details

Name:	00000002.00000000.283357041.0000000000B50000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	B50000
Size:	16384

Details

Name:	00000002.00000003.452078177.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000002.00000002.554583067.0000000005480000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	5480000
Size:	12288

Details

Name:	00000010.00000003.388776868.0000019C92399000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92399000
Size:	32768

Details

Name:	00000002.00000003.417631049.00000000045F2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45F2000
Size:	135168

Details

Name:	00000010.00000002.407216533.00000076A8077000.00000004.00000010.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	76A8077000
Size:	36864

Details

Name:	00000002.00000002.552908452.000000000332B000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	332B000
Size:	2109440

Signature Hits	Behavior Group	Mitre Attack
May try to detect the Windows Explorer process (often used for injection)	HIPS / PFW / Operating System Protection Evasion	Process Injection Process Discovery

Details

Name:	0000000E.00000002.373074504.000002D0857D0000.00000004.00000040.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	2D0857D0000
Size:	4096

Details

Name:	0000000E.00000002.373546443.00007FF5195D9000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5195D9000
Size:	12288

Details

Name:	00000000.00000002.286844306.000000000076C000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	76C000
Size:	16384

Details

Name:	00000002.00000003.362649880.00000000045AE000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45AE000
Size:	139264

Details

Name:	00000002.00000003.535625908.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.285036521.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	45056

Details

Name:	00000005.00000003.295453730.0000000002480000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2480000
Size:	16384

Details

Name:	00000000.00000002.287407605.0000000000F1E000.00000004.00000010.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	F1E000
Size:	8192

Details

Name:	00000002.00000003.285002151.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	24576

Details

Name:	0000000D.00000002.346889420.00000219BE270000.00000004.00000020.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	219BE270000
Size:	8192

Details

Name:	00000006.00000002.297278148.0000026457C87000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	26457C87000
Size:	32768

Details

Name:	0000000B.00000002.550383478.0000014839000000.00000004.00000001.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	14839000000
Size:	4096

Details

Name:	00000002.00000002.554190515.0000000004423000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	4423000
Size:	118784

Details

Name:	00000005.00000003.293897496.000000001BD70000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD70000
Size:	57344

Details

Name:	00000002.00000003.286669147.0000000005738000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5738000
Size:	32768

Details

Name:	00000002.00000003.407073166.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000002.00000003.449681839.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	122880

Details

Name:	00000002.00000003.538012634.00000000044B9000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44B9000
Size:	118784

Details

Name:	00000002.00000003.533304884.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	0000000B.00000000.291564025.00007DF5E1560000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5E1560000
Size:	12288

Details

Name:	0000000D.00000002.347219917.00007FF5BC8AC000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC8AC000
Size:	4096

Details

Name:	00000002.00000003.513346113.000000000460D000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	460D000
Size:	118784

Details

Name:	00000005.00000003.297700061.0000000002480000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2480000
Size:	65536

Details

Name:	0000000B.00000002.551335534.00007FF5D3803000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D3803000
Size:	12288

Details

Name:	00000002.00000003.284963855.0000000005510000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5510000
Size:	45056

Details

Name:	00000000.00000002.287705082.00000000050AD000.00000004.00000010.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	50AD000
Size:	12288

Details

Name:	00000001.00000002.551039723.000001D34FA80000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1D34FA80000
Size:	4096

Details

Name:	00000008.00000003.310727734.000002781965A000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	2781965A000
Size:	20480

Details

Name:	00000002.00000003.372205723.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000002.00000003.363160617.00000000012ED000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12ED000
Size:	4096

Details

Name:	00000010.00000003.389899075.0000019C9239B000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9239B000
Size:	32768

Details

Name:	00000002.00000003.519442008.00000000043B8000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43B8000
Size:	118784

Details

Name:	0000000B.00000002.551796839.00007FF5D38E1000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D38E1000
Size:	16384

Details

Name:	0000000E.00000002.373205628.000002D085B02000.00000004.00000001.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2D085B02000
Size:	16384

Details

Name:	0000000B.00000002.550360855.0000014838F60000.00000004.00000001.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	14838F60000
Size:	4096

Details

Name:	00000007.00000002.551585156.0000018893910000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	18893910000
Size:	8192

Details

Name:	00000003.00000002.551579568.00007DF4B6160000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF4B6160000
Size:	20480

Details

Name:	00000010.00000003.407020393.0000019C91A4B000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91A4B000
Size:	4096

Details

Name:	00000002.00000003.531470712.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.411283832.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.286238831.0000000005705000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5705000
Size:	8192

Details

Name:	00000002.00000003.378792054.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.388489340.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.519412889.000000000436B000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	436B000
Size:	122880

Details

Name:	00000011.00000002.393960005.00007DF445650000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF445650000
Size:	20480

Details

Name:	0000000D.00000002.347069094.00007DF5CA6B0000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5CA6B0000
Size:	4096

Details

Name:	00000002.00000003.455235123.00000000045DD000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45DD000
Size:	122880

Details

Name:	00000002.00000003.305699013.0000000004586000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4586000
Size:	143360

Details

Name:	00000006.00000002.297679296.00007FF5E8D65000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8D65000
Size:	4096

Details

Name:	00000002.00000003.411298207.0000000004391000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4391000
Size:	131072

Details

Name:	00000002.00000003.486650377.0000000004579000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4579000
Size:	122880

Details

Name:	00000006.00000002.297452151.00007FF5E89C7000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E89C7000
Size:	32768

Details

Name:	00000010.00000002.408463469.00007FF4F4672000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4672000
Size:	4096

Details

Name:	00000002.00000003.389246544.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000010.00000003.387694295.0000019C923D8000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C923D8000
Size:	147456

Details

Name:	0000000E.00000002.373574218.00007FF519601000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF519601000
Size:	16384

Details

Name:	00000003.00000002.552651490.00007FF5AA602000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA602000
Size:	12288

Details

Name:	00000000.00000002.287046922.00000000009A1000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	9A1000
Size:	4096

Details

Name:	0000000D.00000000.332604719.00007DF5CA6B2000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5CA6B2000
Size:	4096

Details

Name:	00000002.00000003.431253187.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.516903852.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.349850243.0000000005FE2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE2000
Size:	139264

Details

Name:	00000002.00000003.478918079.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000008.00000002.311720170.00007FF5094AC000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5094AC000
Size:	4096

Details

Name:	00000005.00000002.304489332.00007FF4B69E0000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	7FF4B69E0000
Size:	4096

Details

Name:	00000002.00000002.554989173.0000000005720000.00000004.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	5720000
Size:	20480

Signature Hits	Behavior Group	Mitre Attack
Detected Nanocore Rat	Remote Access Functionality	Remote Access Software
Malicious sample detected (through community Yara rule)	System Summary
Yara signature match	System Summary

Details

Name:	00000002.00000003.485287174.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000005.00000003.293927352.000000001BD70000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD70000
Size:	65536

Details

Name:	0000000B.00000002.551439099.00007FF5D3838000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D3838000
Size:	16384

Details

Name:	00000005.00000003.290254168.0000000002500000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	2500000
Size:	4096

Details

Name:	00000002.00000002.555381488.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000010.00000002.408454015.00007FF4F4661000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4661000
Size:	24576

Details

Name:	00000011.00000002.393668426.00000086F97FF000.00000004.00000010.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	86F97FF000
Size:	4096

Details

Name:	00000010.00000002.408127245.00007FF4F4117000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4117000
Size:	12288

Details

Name:	00000007.00000002.549999858.0000006A1B67C000.00000004.00000010.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6A1B67C000
Size:	16384

Details

Name:	00000011.00000002.393802110.000001CCF40D0000.00000004.00000040.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	1CCF40D0000
Size:	12288

Details

Name:	00000002.00000003.287652531.00000000012ED000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12ED000
Size:	4096

Details

Name:	00000000.00000000.280347754.000000007FC90000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC90000
Size:	4096

Details

Name:	00000005.00000000.285632828.00007FF5B8BE0000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5B8BE0000
Size:	12288

Details

Name:	00000002.00000003.389879020.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	0000000B.00000002.550722193.0000014839580000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	14839580000
Size:	4096

Details

Name:	00000002.00000003.408959931.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.344022140.00000000044BB000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44BB000
Size:	139264

Details

Name:	00000002.00000003.431852789.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	0000000D.00000002.347202652.00007FF5BC84F000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC84F000
Size:	8192

Details

Name:	00000001.00000002.551142366.00007DF59A390000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF59A390000
Size:	4096

Details

Name:	00000002.00000003.349879906.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000002.00000003.332630633.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000010.00000003.395287604.0000019C92390000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92390000
Size:	4096

Details

Name:	00000002.00000003.416252888.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000005.00000000.285583049.0000000000330000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	330000
Size:	102400

Details

Name:	00000002.00000003.514356271.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000002.550598296.00000000011D2000.00000040.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	11D2000
Size:	8192

Details

Name:	00000007.00000002.552102355.00007DF5E9F62000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5E9F62000
Size:	4096

Details

Name:	00000002.00000003.349441645.0000000004604000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4604000
Size:	139264

Details

Name:	0000000E.00000000.361627951.00007DF527270000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF527270000
Size:	4096

Details

Name:	00000005.00000000.285910738.00007FF5B8BD0000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5B8BD0000
Size:	4096

Details

Name:	00000008.00000002.311663086.00007DF517A60000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF517A60000
Size:	4096

Details

Name:	00000004.00000002.552157525.00007FF51B2B1000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B2B1000
Size:	32768

Details

Name:	00000001.00000002.550756239.000001D34F500000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1D34F500000
Size:	4096

Details

Name:	00000002.00000003.513902352.00000000012F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	00000005.00000002.302666942.0000000002614000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2614000
Size:	4096

Details

Name:	00000002.00000003.285142722.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	16384

Details

Name:	00000006.00000002.297127387.0000006D69F7B000.00000004.00000010.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6D69F7B000
Size:	20480

Details

Name:	00000002.00000003.532738455.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000002.00000003.493348076.0000000004493000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4493000
Size:	122880

Details

Name:	00000002.00000003.516240390.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000003.00000002.552739800.00007FF5AA621000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA621000
Size:	32768

Details

Name:	00000002.00000000.283371216.0000000000B60000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	B60000
Size:	4096

Details

Name:	00000002.00000003.285196736.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	32768

Details

Name:	00000006.00000002.297361372.00007DF5F6B60000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5F6B60000
Size:	12288

Details

Name:	0000000B.00000002.551465514.00007FF5D383E000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D383E000
Size:	4096

Details

Name:	00000002.00000003.448952002.00000000043DE000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43DE000
Size:	126976

Details

Name:	00000002.00000003.411413977.0000000004522000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4522000
Size:	135168

Details

Name:	00000010.00000002.407258908.00000076A83FF000.00000004.00000010.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	76A83FF000
Size:	4096

Details

Name:	00000010.00000002.408188498.00007FF4F4317000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4317000
Size:	4096

Details

Name:	00000005.00000003.295585389.00000000024A0000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	24A0000
Size:	65536

Details

Name:	00000002.00000003.504636113.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000005.00000002.302881460.000000000265E000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	265E000
Size:	8192

Details

Name:	0000000E.00000002.373468308.00007FF519520000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF519520000
Size:	4096

Details

Name:	00000002.00000003.385767172.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000002.00000003.461718946.00000000045D5000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45D5000
Size:	122880

Details

Name:	00000010.00000003.394636031.0000019C92395000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92395000
Size:	16384

Details

Name:	00000002.00000003.537901163.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000005.00000002.301135812.0000000000350000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	350000
Size:	12288

Details

Name:	00000002.00000003.448925587.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	0000000D.00000002.346955158.00000219BE43C000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	219BE43C000
Size:	45056

Details

Name:	00000002.00000003.461628344.0000000004456000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4456000
Size:	122880

Details

Name:	00000010.00000002.407467674.0000019C91A3C000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91A3C000
Size:	53248

Details

Name:	00000002.00000003.332684533.0000000004487000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4487000
Size:	139264

Details

Name:	00000006.00000003.296952562.0000026457C49000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	26457C49000
Size:	24576

Details

Name:	00000002.00000003.411347133.0000000004431000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4431000
Size:	135168

Details

Name:	00000010.00000002.408408545.00007FF4F4605000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4605000
Size:	20480

Details

Name:	00000010.00000002.408550105.00007FF4F46D0000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F46D0000
Size:	4096

Details

Name:	0000000E.00000002.373370435.00007FF5193CD000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5193CD000
Size:	4096

Details

Name:	00000002.00000002.552500603.00000000032A1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	32A1000
Size:	339968

Signature Hits	Behavior Group	Mitre Attack
Detected Nanocore Rat	Remote Access Functionality	Remote Access Software

Details

Name:	00000003.00000002.551803737.00007FF5A9E5D000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5A9E5D000
Size:	8192

Details

Name:	00000002.00000003.327297675.0000000004435000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4435000
Size:	135168

Details

Name:	00000002.00000003.545516010.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.493179143.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000005.00000002.302729185.0000000002618000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2618000
Size:	53248

Details

Name:	00000010.00000003.383087002.0000019C91AE8000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91AE8000
Size:	4096

Details

Name:	00000002.00000003.330831997.0000000005FE2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE2000
Size:	135168

Details

Name:	00000006.00000002.297204167.0000026457C00000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	26457C00000
Size:	4096

Details

Name:	00000002.00000003.451454342.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000002.00000000.283960668.000000007FDC2000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDC2000
Size:	4096

Details

Name:	00000000.00000002.287900410.00000000057EC000.00000004.00000010.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	57EC000
Size:	16384

Details

Name:	00000002.00000003.362536576.00000000043C3000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43C3000
Size:	135168

Details

Name:	00000007.00000002.553018823.00007FF5DC2F5000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC2F5000
Size:	16384

Details

Name:	00000003.00000002.551988832.00007FF5AA314000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA314000
Size:	4096

Details

Name:	00000002.00000003.423084861.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000002.00000002.550441879.000000000104E000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	104E000
Size:	8192

Details

Name:	00000002.00000003.328467093.0000000005FE2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE2000
Size:	135168

Details

Name:	00000005.00000003.293777911.000000001BD71000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD71000
Size:	8192

Details

Name:	00000002.00000002.550867372.0000000001200000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1200000
Size:	4096

Details

Name:	00000010.00000003.391991450.0000019C92369000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92369000
Size:	69632

Details

Name:	00000002.00000003.445449138.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000002.00000000.282965661.0000000000AA2000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	AA2000
Size:	90112

Details

Name:	00000010.00000003.406990614.0000019C91A53000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91A53000
Size:	8192

Details

Name:	00000002.00000002.551496517.00000000012DC000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	12DC000
Size:	8192

Details

Name:	00000002.00000003.529609464.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000002.00000003.429805276.00000000043DF000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43DF000
Size:	131072

Details

Name:	00000002.00000003.408946161.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.312730436.00000000043B2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43B2000
Size:	139264

Details

Name:	0000000E.00000002.373531607.00007FF51957A000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51957A000
Size:	8192

Details

Name:	00000005.00000003.295188768.0000000002470000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2470000
Size:	4096

Details

Name:	00000005.00000002.301964174.0000000000BD0000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	BD0000
Size:	36864

Details

Name:	00000003.00000002.551143251.000001F361F90000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1F361F90000
Size:	12288

Details

Name:	00000002.00000003.300206588.000000000445B000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	445B000
Size:	143360

Details

Name:	00000002.00000003.433911221.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000007.00000002.553028761.00007FF5DC2FA000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC2FA000
Size:	4096

Details

Name:	00000007.00000002.552351445.00007FF5DBB16000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DBB16000
Size:	4096

Details

Name:	00000010.00000003.394222871.0000019C9238A000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9238A000
Size:	425984

Details

Name:	00000002.00000003.467658024.000000000455C000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	455C000
Size:	122880

Details

Name:	00000007.00000002.550423047.0000018891E13000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	18891E13000
Size:	90112

Details

Name:	00000002.00000002.555466771.00000000064A0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	64A0000
Size:	65536

Details

Name:	00000005.00000000.285338622.00007FF5B8BE0000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5B8BE0000
Size:	12288

Details

Name:	0000000E.00000002.373141192.000002D085A29000.00000004.00000001.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2D085A29000
Size:	73728

Details

Name:	00000007.00000002.552740360.00007FF5DC209000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC209000
Size:	4096

Details

Name:	00000002.00000003.501734310.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000004.00000000.284881082.00000240298A0000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	240298A0000
Size:	102400

Details

Name:	00000002.00000003.377572383.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000003.00000002.552071262.00007FF5AA442000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA442000
Size:	8192

Details

Name:	00000002.00000003.385807395.000000000459F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	459F000
Size:	4096

Details

Name:	00000002.00000003.417420947.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000002.00000002.550699063.00000000011E2000.00000040.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	11E2000
Size:	36864

Details

Name:	00000002.00000003.285159856.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	20480

Details

Name:	00000005.00000002.302479114.00000000025C7000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	25C7000
Size:	8192

Details

Name:	00000002.00000003.472795629.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000010.00000002.407603409.0000019C91AC8000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91AC8000
Size:	57344

Details

Name:	00000010.00000002.408564478.00007FF4F46D7000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F46D7000
Size:	16384

Details

Name:	00000008.00000002.311846735.00007FF509DD2000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509DD2000
Size:	12288

Details

Name:	00000002.00000003.421982639.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000006.00000002.297150520.0000006D6A1FF000.00000004.00000010.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6D6A1FF000
Size:	4096

Details

Name:	00000002.00000003.493535606.000000000457A000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	457A000
Size:	122880

Details

Name:	00000001.00000002.551601262.00007FF58C62F000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C62F000
Size:	12288

Details

Name:	00000002.00000003.384607015.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000006.00000002.297687672.00007FF5E8DD7000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8DD7000
Size:	4096

Details

Name:	0000000E.00000002.373227133.000002D085E00000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	2D085E00000
Size:	12288

Details

Name:	00000002.00000003.410121710.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000005.00000002.302497941.00000000025CA000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	25CA000
Size:	118784

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000002.00000002.552288220.0000000002D58000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2D58000
Size:	4096

Details

Name:	00000006.00000002.297250151.0000026457C4C000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	26457C4C000
Size:	12288

Details

Name:	00000003.00000002.551830612.00007FF5A9FAC000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5A9FAC000
Size:	4096

Details

Name:	00000005.00000002.302604830.00000000025FC000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	25FC000
Size:	28672

Details

Name:	00000000.00000002.287068140.0000000000AF6000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	AF6000
Size:	40960

Details

Name:	00000002.00000003.513856612.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	0000000D.00000002.346906370.00000219BE400000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	219BE400000
Size:	73728

Details

Name:	00000002.00000003.514385585.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000001.00000002.551989667.00007FF58C715000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C715000
Size:	16384

Details

Name:	00000004.00000002.550758909.0000024029F80000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	24029F80000
Size:	4096

Details

Name:	00000002.00000003.442846446.000000000440D000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	440D000
Size:	131072

Details

Name:	00000005.00000003.295654838.000000001BDD0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BDD0000
Size:	40960

Details

Name:	00000000.00000002.286959858.0000000000998000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	998000
Size:	4096

Details

Name:	00000002.00000003.462849569.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000005.00000003.295260447.0000000002470000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2470000
Size:	65536

Details

Name:	00000002.00000002.550573590.00000000011CE000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	11CE000
Size:	8192

Details

Name:	0000000D.00000002.346857537.00000219BE200000.00000004.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	219BE200000
Size:	4096

Details

Name:	00000002.00000003.546042928.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000010.00000003.385009417.0000019C9237E000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9237E000
Size:	4096

Details

Name:	00000010.00000002.408196776.00007FF4F4319000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4319000
Size:	4096

Details

Name:	00000010.00000003.386445259.0000019C92802000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92802000
Size:	94208

Details

Name:	00000002.00000003.536196616.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000005.00000003.295748844.0000000002470000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2470000
Size:	28672

Details

Name:	00000010.00000003.396009622.0000019C92863000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92863000
Size:	397312

Details

Name:	00000005.00000003.288259702.000000000082D000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	82D000
Size:	8192

Details

Name:	0000000B.00000000.291522551.0000014838E10000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	14838E10000
Size:	102400

Details

Name:	00000002.00000003.444747645.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000002.00000003.526006926.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000002.552458225.0000000002E54000.00000040.00000040.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page execute and read and write
Base address:	2E54000
Size:	4096

Details

Name:	00000001.00000002.551317982.00007FF58C289000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C289000
Size:	4096

Details

Name:	00000010.00000003.407033826.0000019C91A49000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91A49000
Size:	4096

Details

Name:	00000005.00000003.294726814.000000001BD74000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD74000
Size:	24576

Details

Name:	00000002.00000003.380766613.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000010.00000002.407997461.0000019C92800000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92800000
Size:	8192

Details

Name:	00000011.00000002.394197040.00007FF539A9D000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539A9D000
Size:	8192

Details

Name:	00000002.00000003.458612490.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000011.00000002.393808133.000001CCF40D5000.00000004.00000040.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	1CCF40D5000
Size:	8192

Details

Name:	00000002.00000003.525443625.00000000044DC000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44DC000
Size:	118784

Details

Name:	00000006.00000002.298013544.00007FF5E8EE1000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8EE1000
Size:	16384

Details

Name:	00000002.00000002.555170011.00000000059FD000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	59FD000
Size:	12288

Details

Name:	00000002.00000003.300329496.00000000045FD000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45FD000
Size:	143360

Details

Name:	0000000D.00000002.346990443.00000219BE487000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	219BE487000
Size:	20480

Details

Name:	00000001.00000002.551847477.00007FF58C69A000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C69A000
Size:	8192

Details

Name:	00000002.00000003.286227188.0000000005705000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5705000
Size:	8192

Details

Name:	00000002.00000003.394980713.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000005.00000002.303506501.000000001B00E000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1B00E000
Size:	8192

Details

Name:	00000002.00000003.530223668.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000002.00000003.422505870.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.423327049.000000000460D000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	460D000
Size:	131072

Details

Name:	00000011.00000000.381995468.00007DF547780000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF547780000
Size:	4096

Details

Name:	00000002.00000003.498564584.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.481636270.00000000012ED000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12ED000
Size:	4096

Details

Name:	00000001.00000002.551349130.00007FF58C442000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C442000
Size:	4096

Details

Name:	00000002.00000003.291767629.0000000004360000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4360000
Size:	135168

Details

Name:	00000002.00000003.414358361.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000005.00000000.285903848.00007FF5B8BC0000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5B8BC0000
Size:	4096

Details

Name:	00000002.00000003.335667443.0000000005FE2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE2000
Size:	139264

Details

Name:	00000005.00000002.301549791.00000000009A0000.00000004.00000020.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	9A0000
Size:	106496

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery

Details

Name:	00000002.00000003.285146502.00000000054F6000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F6000
Size:	12288

Details

Name:	00000002.00000003.416920575.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000004.00000002.552006936.00007FF51B21E000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B21E000
Size:	4096

Details

Name:	00000002.00000003.455127087.0000000004459000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4459000
Size:	122880

Details

Name:	00000000.00000002.287159364.0000000000BA0000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	BA0000
Size:	4096

Details

Name:	00000002.00000003.418856181.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000007.00000003.289945475.0000018891E5A000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	18891E5A000
Size:	4096

Details

Name:	00000008.00000003.310736041.0000027819659000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	27819659000
Size:	4096

Details

Name:	00000010.00000002.408600167.00007FF4F46FB000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F46FB000
Size:	12288

Details

Name:	00000005.00000002.302916671.0000000002697000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2697000
Size:	4096

Details

Name:	00000005.00000002.303895298.000000001BB4B000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1BB4B000
Size:	20480

Details

Name:	0000000D.00000002.347213443.00007FF5BC89B000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC89B000
Size:	24576

Details

Name:	00000004.00000002.550717617.0000024029E00000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	24029E00000
Size:	12288

Details

Name:	00000002.00000000.283953611.000000007FDB2000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDB2000
Size:	4096

Details

Name:	00000002.00000003.425426101.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000010.00000003.386382151.0000019C923A6000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C923A6000
Size:	90112

Details

Name:	00000002.00000003.431724162.00000000012ED000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12ED000
Size:	4096

Details

Name:	00000002.00000003.368632534.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	0000000E.00000002.373364785.00007FF5193BC000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5193BC000
Size:	4096

Details

Name:	00000010.00000002.407990857.0000019C9238D000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9238D000
Size:	12288

Details

Name:	00000010.00000002.407354407.0000019C91850000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	19C91850000
Size:	4096

Details

Name:	00000007.00000002.552235020.00007FF5DB9AF000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DB9AF000
Size:	4096

Details

Name:	00000005.00000002.302765950.0000000002626000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2626000
Size:	12288

Details

Name:	0000000D.00000002.346863380.00000219BE210000.00000004.00000040.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	219BE210000
Size:	4096

Details

Name:	00000002.00000000.282938259.0000000000A80000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	A80000
Size:	4096

Details

Name:	00000002.00000003.370332064.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000006.00000002.297190211.0000026457AE0000.00000004.00000020.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	26457AE0000
Size:	8192

Details

Name:	00000008.00000002.311726388.00007FF5094AE000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5094AE000
Size:	4096

Details

Name:	00000005.00000003.297683446.0000000002470000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2470000
Size:	65536

Details

Name:	00000002.00000003.344084177.0000000004606000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4606000
Size:	139264

Details

Name:	00000002.00000003.349911621.0000000005FE2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE2000
Size:	135168

Details

Name:	00000010.00000002.407546932.0000019C91A84000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91A84000
Size:	4096

Details

Name:	00000002.00000003.534428263.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000011.00000002.394145976.00007FF539A47000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539A47000
Size:	16384

Details

Name:	00000005.00000003.288019012.0000000000810000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	810000
Size:	20480

Details

Name:	00000002.00000003.285118763.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	20480

Details

Name:	00000002.00000003.526634288.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.362558498.0000000004415000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4415000
Size:	135168

Details

Name:	00000007.00000002.552487183.00007FF5DBFC7000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DBFC7000
Size:	12288

Details

Name:	00000002.00000003.362706686.0000000004600000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4600000
Size:	139264

Details

Name:	00000010.00000002.407595655.0000019C91AC1000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91AC1000
Size:	24576

Details

Name:	00000010.00000002.408416245.00007FF4F460B000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F460B000
Size:	24576

Details

Name:	00000005.00000003.295597450.000000001BD70000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD70000
Size:	65536

Details

Name:	0000000B.00000002.551188202.00007FF5D37A2000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D37A2000
Size:	4096

Details

Name:	00000002.00000003.535023104.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.417609629.00000000045A2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45A2000
Size:	135168

Details

Name:	00000002.00000002.552008550.0000000001930000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1930000
Size:	4096

Details

Name:	00000002.00000003.366201848.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000002.00000003.321091249.0000000004392000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4392000
Size:	139264

Details

Name:	00000007.00000000.285975171.00007DF5E9F70000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5E9F70000
Size:	4096

Details

Name:	00000002.00000003.287992059.0000000006010000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6010000
Size:	4096

Details

Name:	00000008.00000000.286349589.00007DF517A80000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF517A80000
Size:	12288

Details

Name:	00000001.00000002.551537910.00007FF58C617000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C617000
Size:	4096

Details

Name:	00000000.00000002.287528506.0000000001200000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1200000
Size:	32768

Details

Name:	00000002.00000003.286218343.0000000005725000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5725000
Size:	4096

Details

Name:	00000002.00000003.287271782.0000000004340000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4340000
Size:	139264

Details

Name:	00000002.00000003.406409574.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.449113655.00000000045B3000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45B3000
Size:	126976

Details

Name:	00000005.00000002.304609909.00007FFC08540000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	7FFC08540000
Size:	4096

Details

Name:	00000002.00000003.429864308.00000000044CE000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44CE000
Size:	131072

Details

Name:	00000010.00000002.408505071.00007FF4F46A7000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F46A7000
Size:	4096

Details

Name:	00000008.00000002.311759354.00007FF509D0D000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509D0D000
Size:	4096

Details

Name:	00000002.00000003.519490085.0000000004450000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4450000
Size:	118784

Details

Name:	0000000D.00000002.346893759.00000219BE350000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	219BE350000
Size:	16384

Details

Name:	0000000E.00000002.373441984.00007FF51950F000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51950F000
Size:	12288

Details

Name:	00000000.00000002.287933856.000000007FB80000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FB80000
Size:	20480

Details

Name:	00000002.00000003.407019880.00000000012A5000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12A5000
Size:	196608

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery

Details

Name:	00000000.00000002.287491859.0000000001151000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1151000
Size:	4096

Details

Name:	0000000E.00000002.373101160.000002D085810000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	2D085810000
Size:	4096

Details

Name:	00000002.00000003.532228306.00000000045BD000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45BD000
Size:	122880

Details

Name:	00000002.00000003.537957899.0000000004423000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4423000
Size:	118784

Details

Name:	00000008.00000002.311542110.0000027819646000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	27819646000
Size:	12288

Details

Name:	00000002.00000003.399313497.0000000004620000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4620000
Size:	135168

Details

Name:	00000002.00000003.442874902.000000000445D000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	445D000
Size:	131072

Details

Name:	00000002.00000003.425394887.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000010.00000002.407281212.00000076A85FE000.00000004.00000010.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	76A85FE000
Size:	8192

Details

Name:	00000002.00000002.554138568.00000000043D7000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	43D7000
Size:	122880

Details

Name:	00000002.00000003.459182401.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.530799779.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000011.00000002.394189262.00007FF539A9A000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539A9A000
Size:	8192

Details

Name:	00000010.00000003.388785536.0000019C923AA000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C923AA000
Size:	4096

Details

Name:	00000002.00000000.283374679.000000007FDB0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDB0000
Size:	4096

Details

Name:	00000007.00000000.285981794.00007DF5E9F80000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5E9F80000
Size:	12288

Details

Name:	00000002.00000003.312848360.000000000454F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	454F000
Size:	143360

Details

Name:	00000010.00000003.384980632.0000019C92360000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92360000
Size:	12288

Details

Name:	00000010.00000003.384460786.0000019C9235A000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9235A000
Size:	65536

Details

Name:	00000002.00000003.514944523.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.529025907.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000010.00000000.381020792.00007DF502420000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF502420000
Size:	4096

Details

Name:	00000005.00000003.293875644.000000001BDA0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BDA0000
Size:	65536

Details

Name:	00000002.00000003.291894530.00000000044FE000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44FE000
Size:	139264

Details

Name:	00000002.00000003.420772044.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	0000000E.00000002.373222463.000002D085C00000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	2D085C00000
Size:	4096

Details

Name:	00000006.00000002.297751978.00007FF5E8E03000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8E03000
Size:	12288

Details

Name:	00000002.00000003.394950304.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000002.00000003.423129784.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000010.00000003.382860226.0000019C91AA9000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91AA9000
Size:	24576

Details

Name:	00000005.00000002.301216833.00000000008B5000.00000004.00000040.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	8B5000
Size:	20480

Details

Name:	00000002.00000002.551672613.000000000151D000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	151D000
Size:	12288

Details

Name:	00000005.00000002.301274373.0000000000911000.00000004.00000020.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	911000
Size:	4096

Details

Name:	00000002.00000003.332639595.00000000043E4000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43E4000
Size:	131072

Details

Name:	00000000.00000002.287700411.0000000005060000.00000004.00000040.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	5060000
Size:	4096

Details

Name:	00000010.00000002.407738935.0000019C91E00000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	19C91E00000
Size:	12288

Details

Name:	00000002.00000003.500569315.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.286693761.0000000005730000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5730000
Size:	20480

Details

Name:	00000002.00000003.286280983.00000000012A1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12A1000
Size:	4096

Details

Name:	00000002.00000003.286503051.0000000005740000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5740000
Size:	24576

Details

Name:	00000004.00000002.550031379.0000024029880000.00000004.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	24029880000
Size:	4096

Details

Name:	0000000D.00000002.347336737.00007FF5BCA19000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BCA19000
Size:	12288

Details

Name:	00000000.00000002.287130003.0000000000B90000.00000004.00000020.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	B90000
Size:	16384

Details

Name:	00000006.00000002.297699132.00007FF5E8DED000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8DED000
Size:	4096

Details

Name:	00000001.00000002.551614578.00007FF58C633000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C633000
Size:	28672

Details

Name:	00000002.00000003.434505051.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.431734252.00000000012F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	00000002.00000003.447803907.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	122880

Details

Name:	00000002.00000003.284817938.000000000128C000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	128C000
Size:	90112

Details

Name:	00000005.00000003.295768142.0000000002480000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2480000
Size:	65536

Details

Name:	00000002.00000003.367361628.00000000012D5000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12D5000
Size:	36864

Details

Name:	00000002.00000003.461663938.00000000044F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44F0000
Size:	122880

Details

Name:	00000002.00000003.286896250.0000000005730000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5730000
Size:	20480

Details

Name:	00000002.00000002.551478348.00000000012D8000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	12D8000
Size:	8192

Details

Name:	00000002.00000003.356716102.0000000004415000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4415000
Size:	139264

Details

Name:	00000010.00000002.407235059.00000076A827A000.00000004.00000010.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	76A827A000
Size:	24576

Details

Name:	00000002.00000003.285163982.00000000054F6000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F6000
Size:	28672

Details

Name:	00000002.00000003.473925859.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000005.00000002.301268739.000000000090D000.00000004.00000020.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	90D000
Size:	12288

Details

Name:	00000001.00000002.552023398.00007FF58C71A000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C71A000
Size:	4096

Details

Name:	00000005.00000002.302937012.000000000269F000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	269F000
Size:	81920

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000002.00000003.545473135.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.461568228.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.500457934.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.481591318.0000000005DCC000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5DCC000
Size:	4096

Details

Name:	00000002.00000003.327314406.0000000004487000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4487000
Size:	135168

Details

Name:	00000010.00000002.407770743.0000019C92060000.00000008.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page write copy
Base address:	19C92060000
Size:	266240

Details

Name:	00000002.00000003.517685966.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000007.00000002.550291345.0000018891DC0000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	18891DC0000
Size:	4096

Details

Name:	00000002.00000003.524707058.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.444724335.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	122880

Details

Name:	00000002.00000003.464020025.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000010.00000003.383013188.0000019C919E0000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C919E0000
Size:	4096

Details

Name:	00000006.00000002.297850137.00007FF5E8E3E000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8E3E000
Size:	4096

Details

Name:	00000002.00000003.405154440.0000000004411000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4411000
Size:	135168

Details

Name:	00000002.00000003.429826100.000000000442F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	442F000
Size:	131072

Details

Name:	00000002.00000003.332752130.000000000457E000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	457E000
Size:	139264

Details

Name:	00000002.00000003.513306168.0000000004574000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4574000
Size:	122880

Details

Name:	00000002.00000003.442905327.00000000044AC000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44AC000
Size:	131072

Details

Name:	0000000E.00000002.373244849.000002D085F90000.00000004.00000001.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2D085F90000
Size:	4096

Details

Name:	00000002.00000000.283014461.000000007FDC0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDC0000
Size:	4096

Details

Name:	00000005.00000003.295780608.0000000002490000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2490000
Size:	65536

Details

Name:	00000001.00000002.551950148.00007FF58C70A000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C70A000
Size:	12288

Details

Name:	00000002.00000003.410066341.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000005.00000003.290155547.000000001BA50000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BA50000
Size:	8192

Details

Name:	00000010.00000002.408372175.00007FF4F457D000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F457D000
Size:	4096

Details

Name:	00000002.00000003.328581168.00000000012ED000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12ED000
Size:	4096

Details

Name:	00000010.00000003.389673230.0000019C9235A000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9235A000
Size:	122880

Details

Name:	00000002.00000003.411901617.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000005.00000003.295493780.0000000002490000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2490000
Size:	65536

Details

Name:	00000005.00000002.304590360.00007FFC084DC000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	7FFC084DC000
Size:	12288

Details

Name:	00000002.00000003.481667586.00000000012F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	00000001.00000002.550206998.000001D34F413000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1D34F413000
Size:	86016

Details

Name:	00000002.00000000.283920776.0000000000AA2000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	AA2000
Size:	90112

Details

Name:	00000002.00000003.319628885.0000000006768000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6768000
Size:	32768

Details

Name:	00000001.00000002.550725287.000001D34F479000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1D34F479000
Size:	20480

Details

Name:	00000002.00000002.550736081.00000000011EC000.00000040.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	11EC000
Size:	12288

Details

Name:	00000005.00000002.303914251.000000001BF7E000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1BF7E000
Size:	8192

Details

Name:	00000004.00000002.551347931.00007FF51B081000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B081000
Size:	4096

Details

Name:	0000000E.00000000.361640487.00007DF527280000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF527280000
Size:	12288

Details

Name:	00000002.00000003.521325290.00000000012D8000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12D8000
Size:	8192

Details

Name:	0000000E.00000002.373065154.000000EEFFFFF000.00000004.00000010.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	EEFFFFF000
Size:	4096

Details

Name:	00000000.00000002.287944418.000000007FC80000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC80000
Size:	4096

Details

Name:	00000002.00000003.466365033.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.492355501.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.371609911.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000002.00000003.330250744.0000000005FE2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE2000
Size:	135168

Details

Name:	00000011.00000002.393906014.000001CCF4260000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1CCF4260000
Size:	36864

Details

Name:	00000002.00000003.480189342.0000000004404000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4404000
Size:	122880

Details

Name:	00000004.00000002.551328876.00007FF51B05F000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B05F000
Size:	8192

Details

Name:	00000002.00000003.521410971.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000002.555529607.000000007FCB0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FCB0000
Size:	20480

Details

Name:	00000003.00000002.552273296.00007FF5AA53F000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA53F000
Size:	12288

Details

Name:	00000002.00000000.283631247.0000000000AA2000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	AA2000
Size:	90112

Details

Name:	00000007.00000002.552639556.00007FF5DC112000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC112000
Size:	8192

Details

Name:	00000002.00000003.500649986.0000000004493000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4493000
Size:	122880

Details

Name:	00000002.00000003.447844953.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000011.00000003.393480005.000001CCF419F000.00000004.00000001.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1CCF419F000
Size:	8192

Details

Name:	00000002.00000003.414315451.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000002.00000003.532043320.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	0000000B.00000002.551349520.00007FF5D3807000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D3807000
Size:	16384

Details

Name:	00000005.00000002.303804925.000000001B4F1000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1B4F1000
Size:	4096

Details

Name:	00000011.00000002.394006555.00007DF547792000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF547792000
Size:	4096

Details

Name:	00000006.00000000.285645681.00007DF5F6B50000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5F6B50000
Size:	4096

Details

Name:	00000010.00000003.388990898.0000019C9238F000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9238F000
Size:	16384

Details

Name:	00000004.00000002.550699029.0000024029C00000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	24029C00000
Size:	4096

Details

Name:	00000002.00000003.328495573.00000000012D5000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12D5000
Size:	36864

Details

Name:	00000001.00000002.549926237.000001D34F2B0000.00000004.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	1D34F2B0000
Size:	4096

Details

Name:	0000000B.00000002.551287989.00007FF5D37F3000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D37F3000
Size:	28672

Details

Name:	00000010.00000002.408314738.00007FF4F450F000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F450F000
Size:	4096

Details

Name:	00000008.00000002.311857321.00007FF509DEA000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509DEA000
Size:	12288

Details

Name:	00000002.00000003.500408885.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000004.00000002.551759975.00007FF51B1D3000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B1D3000
Size:	28672

Details

Name:	0000000D.00000002.346828965.00000093D87FE000.00000004.00000010.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	93D87FE000
Size:	8192

Details

Name:	00000002.00000003.545490569.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000002.00000003.493159309.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000002.00000003.493581141.00000000045C7000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45C7000
Size:	122880

Details

Name:	00000002.00000003.506613280.0000000004555000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4555000
Size:	122880

Details

Name:	0000000E.00000002.373034477.000000EE803FE000.00000004.00000010.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	EE803FE000
Size:	8192

Details

Name:	00000000.00000002.287889989.00000000056EE000.00000004.00000010.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	56EE000
Size:	8192

Details

Name:	00000005.00000002.303598041.000000001B463000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1B463000
Size:	61440

Details

Name:	00000004.00000002.551817490.00007FF51B1E0000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B1E0000
Size:	4096

Details

Name:	0000000D.00000002.347006352.00000219BE502000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	219BE502000
Size:	16384

Details

Name:	00000010.00000002.408144176.00007FF4F412C000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F412C000
Size:	4096

Details

Name:	00000002.00000003.442790277.000000000436F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	436F000
Size:	131072

Details

Name:	00000010.00000003.406942178.0000019C91A59000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91A59000
Size:	86016

Details

Name:	00000002.00000003.418108380.00000000012A6000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12A6000
Size:	192512

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery

Details

Name:	00000002.00000003.424309501.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.444602808.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000010.00000003.395724216.0000019C92802000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92802000
Size:	159744

Details

Name:	00000011.00000002.394169939.00007FF539A73000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539A73000
Size:	24576

Details

Name:	00000008.00000002.311125818.00000278195A0000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	278195A0000
Size:	12288

Details

Name:	00000002.00000003.286566258.0000000005740000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5740000
Size:	28672

Details

Name:	00000001.00000002.551478625.00007FF58C603000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C603000
Size:	8192

Details

Name:	00000001.00000002.551830734.00007FF58C697000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C697000
Size:	8192

Details

Name:	00000000.00000002.287923861.000000000592E000.00000004.00000010.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	592E000
Size:	8192

Details

Name:	00000002.00000003.384633280.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.356768142.000000000450B000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	450B000
Size:	139264

Details

Name:	00000005.00000003.292590836.000000001BD60000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD60000
Size:	65536

Details

Name:	00000002.00000003.424615694.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.524106418.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	0000000B.00000000.291602953.00007FF5D38E1000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D38E1000
Size:	16384

Details

Name:	00000010.00000003.385024488.0000019C92385000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92385000
Size:	16384

Details

Name:	00000010.00000003.391864647.0000019C92395000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92395000
Size:	8192

Details

Name:	0000000E.00000002.373487628.00007FF51952E000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51952E000
Size:	28672

Details

Name:	0000000E.00000002.373110381.000002D085910000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	2D085910000
Size:	16384

Details

Name:	00000002.00000003.521377319.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.286883333.00000000012ED000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12ED000
Size:	4096

Details

Name:	00000002.00000003.327332523.00000000044D9000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44D9000
Size:	135168

Details

Name:	00000002.00000003.518858505.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000000.00000002.286702466.0000000000690000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	690000
Size:	4096

Details

Name:	00000005.00000002.304623702.00007FFC085A2000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	7FFC085A2000
Size:	32768

Details

Name:	00000007.00000002.552084684.00007DF5E9F60000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5E9F60000
Size:	4096

Details

Name:	00000002.00000003.497181277.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000001.00000002.550662943.000001D34F46D000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1D34F46D000
Size:	24576

Details

Name:	00000005.00000002.303048035.00000000026E6000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	26E6000
Size:	86016

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000002.00000003.286169068.0000000005700000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5700000
Size:	16384

Details

Name:	00000005.00000000.285899172.0000000000360000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	360000
Size:	4096

Details

Name:	00000003.00000000.283334033.00007FF5AA631000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA631000
Size:	16384

Details

Name:	00000000.00000002.287212432.0000000000BE2000.00000040.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	BE2000
Size:	4096

Details

Name:	00000005.00000003.295199933.0000000002472000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2472000
Size:	24576

Details

Name:	00000002.00000003.284772158.00000000054E0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54E0000
Size:	12288

Details

Name:	00000010.00000003.393348097.0000019C923AC000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C923AC000
Size:	118784

Details

Name:	00000002.00000002.555540415.000000007FDB0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDB0000
Size:	4096

Details

Name:	00000005.00000000.285628660.00007FF5B8BD2000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5B8BD2000
Size:	4096

Details

Name:	0000000D.00000003.346633823.00000219BE44D000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	219BE44D000
Size:	12288

Details

Name:	00000002.00000003.358856538.0000000005DCF000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5DCF000
Size:	8192

Details

Name:	00000002.00000003.525353224.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000002.555425620.000000000625E000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	625E000
Size:	8192

Details

Name:	0000000D.00000000.332587643.00007DF5CA6A0000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5CA6A0000
Size:	4096

Details

Name:	00000002.00000003.418839555.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.444684612.00000000012DC000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12DC000
Size:	8192

Details

Name:	0000000B.00000000.291558299.00007DF5E1552000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5E1552000
Size:	4096

Details

Name:	00000006.00000002.297327465.0000026458180000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	26458180000
Size:	4096

Details

Name:	00000002.00000003.519345342.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000006.00000002.297158840.0000026457A70000.00000004.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	26457A70000
Size:	4096

Details

Name:	0000000E.00000000.361634368.00007DF527272000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF527272000
Size:	4096

Details

Name:	00000002.00000003.522321383.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000011.00000002.394108670.00007FF539A33000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539A33000
Size:	8192

Details

Name:	00000002.00000003.349427203.00000000045B2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45B2000
Size:	139264

Details

Name:	00000002.00000002.555342853.0000000005FE0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE0000
Size:	4096

Details

Name:	00000002.00000003.431861532.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000006.00000002.297634604.00007FF5E8D35000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8D35000
Size:	20480

Details

Name:	00000000.00000002.287228652.0000000000BF0000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	BF0000
Size:	8192

Details

Name:	00000002.00000003.374107496.000000000459F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	459F000
Size:	4096

Details

Name:	00000008.00000000.286379054.00007FF509E01000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509E01000
Size:	16384

Details

Name:	00000001.00000002.549943293.000001D34F2C0000.00000004.00000040.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	1D34F2C0000
Size:	4096

Details

Name:	00000008.00000002.311644056.0000027819D30000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	27819D30000
Size:	4096

Details

Name:	00000002.00000003.516935294.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000005.00000002.303491818.000000001AF0E000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1AF0E000
Size:	8192

Details

Name:	00000006.00000002.297821783.00007FF5E8E2B000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8E2B000
Size:	12288

Details

Name:	00000002.00000003.486492776.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000002.00000003.332051559.0000000005FE2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE2000
Size:	135168

Details

Name:	00000002.00000003.285188837.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	32768

Details

Name:	00000002.00000003.531484504.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000002.00000003.461603355.000000000440A000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	440A000
Size:	122880

Details

Name:	00000002.00000003.483426906.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.489999040.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.447316097.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000005.00000003.295757077.0000000002478000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2478000
Size:	32768

Details

Name:	00000002.00000003.456784984.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000003.00000002.550178902.000001F3619A0000.00000004.00000001.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1F3619A0000
Size:	4096

Details

Name:	00000002.00000003.399287779.00000000045CF000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45CF000
Size:	135168

Details

Name:	00000005.00000003.295814180.000000001BD70000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD70000
Size:	61440

Details

Name:	00000010.00000003.395792802.0000019C9239F000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9239F000
Size:	200704

Details

Name:	00000002.00000003.447852225.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000005.00000002.302626898.0000000002605000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2605000
Size:	12288

Details

Name:	00000005.00000003.288247056.0000000000828000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	828000
Size:	16384

Details

Name:	00000005.00000003.288225551.0000000000824000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	824000
Size:	8192

Details

Name:	00000002.00000003.537320453.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000007.00000002.550263003.0000018891DB0000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	18891DB0000
Size:	12288

Details

Name:	00000008.00000002.311577209.000002781966E000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2781966E000
Size:	40960

Details

Name:	00000003.00000002.552508975.00007FF5AA582000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA582000
Size:	40960

Details

Name:	00000002.00000003.364842962.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000002.00000002.554651248.00000000054A0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	54A0000
Size:	4096

Details

Name:	0000000B.00000002.551121451.00007FF5D35A0000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D35A0000
Size:	4096

Details

Name:	00000002.00000003.399120603.00000000043C1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43C1000
Size:	135168

Details

Name:	00000002.00000003.284490768.00000000053A0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	53A0000
Size:	20480

Details

Name:	00000002.00000002.550513184.00000000010A0000.00000004.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	10A0000
Size:	4096

Details

Name:	00000005.00000002.302650273.0000000002610000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2610000
Size:	4096

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000010.00000002.407410011.0000019C91A00000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91A00000
Size:	73728

Details

Name:	00000010.00000003.392988481.0000019C9238A000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9238A000
Size:	53248

Details

Name:	00000006.00000000.285656421.00007DF5F6B52000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5F6B52000
Size:	4096

Details

Name:	0000000D.00000002.346969057.00000219BE453000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	219BE453000
Size:	114688

Details

Name:	00000002.00000003.376989309.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000000.00000002.286801004.0000000000700000.00000004.00020000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	700000
Size:	4096

Details

Name:	00000002.00000003.387525330.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000003.00000002.549904143.0000005D73CFB000.00000004.00000010.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5D73CFB000
Size:	20480

Details

Name:	00000010.00000003.387610570.0000019C92397000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92397000
Size:	147456

Details

Name:	00000002.00000003.285086012.0000000005500000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5500000
Size:	20480

Details

Name:	00000002.00000003.444561608.0000000005DA1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5DA1000
Size:	167936

Details

Name:	00000007.00000002.550830437.00000188920D0000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	188920D0000
Size:	36864

Details

Name:	00000002.00000003.449062660.0000000004517000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4517000
Size:	126976

Details

Name:	00000005.00000002.304525982.00007FFC08480000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	7FFC08480000
Size:	4096

Details

Name:	00000002.00000003.546663246.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.529037396.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000011.00000002.394161068.00007FF539A6B000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539A6B000
Size:	12288

Details

Name:	00000002.00000002.550664668.00000000011E0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	11E0000
Size:	8192

Details

Name:	00000007.00000003.290243714.0000018893990000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	18893990000
Size:	4096

Details

Name:	00000002.00000003.321230637.000000000457E000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	457E000
Size:	139264

Details

Name:	00000002.00000003.413782387.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000010.00000002.408518841.00007FF4F46BD000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F46BD000
Size:	4096

Details

Name:	00000002.00000003.284735201.0000000005510000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5510000
Size:	28672

Details

Name:	0000000D.00000002.347281141.00007FF5BC977000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC977000
Size:	49152

Details

Name:	0000000B.00000002.551419700.00007FF5D3833000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D3833000
Size:	12288

Details

Name:	00000000.00000002.287456009.0000000000F80000.00000040.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	F80000
Size:	4096

Details

Name:	0000000D.00000002.346847028.00000093D89FE000.00000004.00000010.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	93D89FE000
Size:	8192

Details

Name:	00000000.00000002.287712230.00000000051AE000.00000004.00000010.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	51AE000
Size:	8192

Details

Name:	0000000E.00000002.373240155.000002D085F80000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	2D085F80000
Size:	4096

Details

Name:	00000002.00000002.551532569.00000000012ED000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	12ED000
Size:	4096

Details

Name:	00000002.00000003.374638559.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	0000000E.00000002.373415245.00007FF519485000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF519485000
Size:	4096

Details

Name:	00000002.00000002.550395843.0000000000EF6000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	EF6000
Size:	40960

Details

Name:	0000000D.00000002.347358724.00007FF5BCA3A000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BCA3A000
Size:	4096

Details

Name:	00000010.00000003.388790584.0000019C923B5000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C923B5000
Size:	65536

Details

Name:	00000004.00000000.284903024.00007DF528F22000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF528F22000
Size:	4096

Details

Name:	00000002.00000003.530811368.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000002.00000003.406222708.0000000005DCE000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5DCE000
Size:	8192

Details

Name:	00000005.00000002.302200599.0000000002470000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2470000
Size:	4096

Details

Name:	00000002.00000002.552310303.0000000002DF0000.00000004.00000040.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	2DF0000
Size:	12288

Details

Name:	00000002.00000003.285020252.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	16384

Details

Name:	00000002.00000003.406338585.00000000012ED000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12ED000
Size:	4096

Details

Name:	00000003.00000002.551039628.000001F361C00000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1F361C00000
Size:	4096

Details

Name:	00000004.00000002.549747902.000000F9C311C000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	F9C311C000
Size:	16384

Details

Name:	0000000B.00000002.551204843.00007FF5D37AE000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D37AE000
Size:	8192

Details

Name:	00000002.00000003.406385492.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000002.00000002.554815195.0000000005560000.00000004.00000040.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	5560000
Size:	8192

Details

Name:	00000002.00000003.501103021.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.544823413.00000000045BD000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45BD000
Size:	118784

Details

Name:	00000006.00000002.297094947.0000006D69C7B000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6D69C7B000
Size:	20480

Details

Name:	00000002.00000003.411926894.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000007.00000002.549899683.0000006A1B47E000.00000004.00000010.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6A1B47E000
Size:	8192

Details

Name:	00000002.00000003.516223872.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.546064555.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000002.00000003.480316814.00000000045CF000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45CF000
Size:	118784

Details

Name:	00000005.00000003.288047767.0000000000830000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	830000
Size:	65536

Details

Name:	00000002.00000003.387540580.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000010.00000003.395779543.0000019C9238E000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9238E000
Size:	61440

Details

Name:	0000000E.00000002.373409362.00007FF519481000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF519481000
Size:	12288

Details

Name:	00000002.00000003.312862900.00000000045A2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45A2000
Size:	139264

Details

Name:	00000010.00000003.392042120.0000019C9238A000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9238A000
Size:	12288

Details

Name:	00000002.00000003.506495053.00000000043D8000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43D8000
Size:	122880

Details

Name:	00000000.00000002.287105908.0000000000B3E000.00000004.00000010.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	B3E000
Size:	8192

Details

Name:	00000010.00000003.387717954.0000019C923AA000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C923AA000
Size:	147456

Details

Name:	00000002.00000003.530248957.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000005.00000002.303906333.000000001BD4E000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1BD4E000
Size:	8192

Details

Name:	00000000.00000002.287511018.00000000011F0000.00000004.00000040.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	11F0000
Size:	16384

Details

Name:	00000008.00000002.311774880.00007FF509D20000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509D20000
Size:	4096

Details

Name:	00000002.00000003.428503575.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.288631970.0000000005DA1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5DA1000
Size:	180224

Details

Name:	00000008.00000002.310936418.000000D7784FE000.00000004.00000010.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	D7784FE000
Size:	8192

Details

Name:	0000000D.00000002.347309525.00007FF5BC99E000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC99E000
Size:	4096

Details

Name:	00000004.00000002.551977570.00007FF51B213000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B213000
Size:	24576

Details

Name:	00000002.00000003.486515047.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.466933603.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000002.555291249.0000000005D9F000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5D9F000
Size:	4096

Details

Name:	00000002.00000003.405170926.0000000004462000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4462000
Size:	135168

Details

Name:	00000008.00000003.310722242.000002781965F000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	2781965F000
Size:	4096

Details

Name:	0000000D.00000002.346941079.00000219BE429000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	219BE429000
Size:	73728

Details

Name:	00000008.00000003.310716556.0000027819660000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	27819660000
Size:	4096

Details

Name:	00000002.00000003.305601690.00000000043E6000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43E6000
Size:	143360

Details

Name:	00000005.00000002.301148213.00000000003A0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	3A0000
Size:	12288

Details

Name:	00000002.00000003.413209418.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	0000000B.00000002.551550732.00007FF5D385D000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D385D000
Size:	12288

Details

Name:	00000002.00000003.452733594.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000010.00000002.408031996.00007DF502412000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF502412000
Size:	4096

Details

Name:	00000005.00000003.295616904.000000001BD90000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD90000
Size:	20480

Details

Name:	00000005.00000003.288064398.0000000000840000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	840000
Size:	65536

Details

Name:	00000005.00000003.295214361.0000000002470000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2470000
Size:	36864

Details

Name:	00000002.00000003.399184714.00000000044B3000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44B3000
Size:	135168

Details

Name:	00000010.00000003.384592455.0000019C923B0000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C923B0000
Size:	131072

Details

Name:	00000002.00000003.285102266.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	16384

Details

Name:	00000004.00000002.550189680.00000240298F0000.00000004.00000020.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	240298F0000
Size:	8192

Details

Name:	00000002.00000003.446581670.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	122880

Details

Name:	00000002.00000002.552479814.0000000002F5E000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2F5E000
Size:	8192

Details

Name:	00000010.00000002.407478968.0000019C91A4F000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91A4F000
Size:	12288

Details

Name:	0000000B.00000002.550395055.0000014839002000.00000004.00000001.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	14839002000
Size:	65536

Details

Name:	00000004.00000002.550248021.0000024029A00000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	24029A00000
Size:	4096

Details

Name:	0000000E.00000002.373521635.00007FF51955E000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51955E000
Size:	4096

Details

Name:	00000003.00000002.550156782.000001F361980000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1F361980000
Size:	16384

Details

Name:	00000010.00000002.408618162.00007FF4F470E000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F470E000
Size:	4096

Details

Name:	00000002.00000003.455188072.0000000004542000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4542000
Size:	126976

Details

Name:	0000000E.00000000.361614193.00007DF527260000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF527260000
Size:	4096

Details

Name:	00000010.00000002.407530548.0000019C91A6F000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91A6F000
Size:	81920

Details

Name:	00000002.00000000.283933789.0000000000AF0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	AF0000
Size:	102400

Details

Name:	00000007.00000002.552704890.00007FF5DC1EB000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC1EB000
Size:	8192

Details

Name:	00000002.00000003.515498982.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.429918091.000000000456D000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	456D000
Size:	131072

Details

Name:	00000002.00000003.285134161.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	16384

Details

Name:	00000002.00000003.515584024.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.499120131.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.537265874.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.286256217.000000000570B000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	570B000
Size:	20480

Details

Name:	00000010.00000002.408162802.00007FF4F4291000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4291000
Size:	20480

Details

Name:	00000002.00000002.550917278.000000000120A000.00000040.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	120A000
Size:	4096

Details

Name:	00000002.00000003.536246316.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.444663886.00000000012DC000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12DC000
Size:	8192

Details

Name:	00000002.00000003.498248015.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.494128122.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.499181949.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.537915199.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000002.00000003.497946939.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.523579016.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.503011854.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000002.554951535.0000000005700000.00000040.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	5700000
Size:	36864

Details

Name:	00000002.00000003.517646470.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000001.00000002.551067028.000001D34FC02000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1D34FC02000
Size:	4096

Details

Name:	00000010.00000002.408447720.00007FF4F465F000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F465F000
Size:	4096

Details

Name:	00000002.00000003.442925345.00000000044FB000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44FB000
Size:	135168

Details

Name:	00000002.00000003.426011997.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000005.00000002.304600520.00007FFC08536000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	7FFC08536000
Size:	4096

Details

Name:	00000001.00000002.551883956.00007FF58C6F2000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C6F2000
Size:	12288

Details

Name:	00000002.00000003.446623742.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000002.00000003.502935809.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.500766367.0000000004613000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4613000
Size:	122880

Details

Name:	00000007.00000002.549944912.0000006A1B57C000.00000004.00000010.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6A1B57C000
Size:	16384

Details

Name:	00000001.00000002.550701805.000001D34F474000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1D34F474000
Size:	16384

Details

Name:	00000002.00000003.329146016.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000002.00000003.406319349.00000000012F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	00000006.00000002.297356968.00007DF5F6B52000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5F6B52000
Size:	4096

Details

Name:	0000000E.00000002.373116452.000002D085A00000.00000004.00000001.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2D085A00000
Size:	73728

Details

Name:	00000002.00000003.290682398.0000000006010000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6010000
Size:	8192

Details

Name:	0000000D.00000002.346868091.00000219BE220000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	219BE220000
Size:	102400

Details

Name:	00000002.00000003.525425293.0000000004490000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4490000
Size:	118784

Details

Name:	00000002.00000002.555032849.0000000005741000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	5741000
Size:	16384

Details

Name:	00000004.00000002.551445479.00007FF51B191000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B191000
Size:	4096

Details

Name:	00000002.00000002.555558688.000000007FDC0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDC0000
Size:	4096

Details

Name:	00000002.00000003.513822129.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000004.00000002.552139506.00007FF51B2AA000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B2AA000
Size:	12288

Details

Name:	00000010.00000003.388717960.0000019C92388000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92388000
Size:	53248

Details

Name:	00000002.00000002.551876111.0000000001590000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1590000
Size:	4096

Details

Name:	00000002.00000003.285044554.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	16384

Details

Name:	0000000B.00000002.549795378.000000449417C000.00000004.00000010.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	449417C000
Size:	16384

Details

Name:	00000005.00000002.301892745.0000000000ACE000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	ACE000
Size:	8192

Details

Name:	00000003.00000002.550124853.000001F361880000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1F361880000
Size:	4096

Details

Name:	00000002.00000000.283670636.000000007FDB2000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDB2000
Size:	4096

Details

Name:	00000002.00000003.328421935.0000000005DA1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5DA1000
Size:	180224

Details

Name:	00000002.00000003.411389825.00000000044D2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44D2000
Size:	135168

Details

Name:	00000008.00000002.310922527.000000D7781EB000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	D7781EB000
Size:	20480

Details

Name:	00000002.00000003.520073932.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000007.00000002.552389705.00007FF5DBC5D000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DBC5D000
Size:	4096

Details

Name:	00000011.00000002.393734834.00000086F9B7F000.00000004.00000010.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	86F9B7F000
Size:	4096

Details

Name:	00000002.00000003.481651742.00000000012DC000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12DC000
Size:	8192

Details

Name:	00000010.00000002.408337408.00007FF4F4561000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4561000
Size:	12288

Details

Name:	00000002.00000003.513182245.00000000043AC000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43AC000
Size:	118784

Details

Name:	00000002.00000002.554350006.00000000053A0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	53A0000
Size:	8192

Details

Name:	00000002.00000003.425434649.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.544712102.00000000044DA000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44DA000
Size:	118784

Details

Name:	00000005.00000003.293770814.000000001BD80000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD80000
Size:	8192

Details

Name:	00000010.00000003.406982476.0000019C91A55000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91A55000
Size:	8192

Details

Name:	00000005.00000002.303918569.000000001BFD0000.00000004.00000040.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	1BFD0000
Size:	20480

Details

Name:	00000002.00000003.416225781.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000002.00000003.305726105.00000000045D9000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45D9000
Size:	139264

Details

Name:	00000000.00000002.286900020.0000000000989000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	989000
Size:	4096

Details

Name:	00000002.00000003.383404614.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000001.00000002.551759283.00007FF58C66B000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C66B000
Size:	12288

Details

Name:	00000002.00000003.502374925.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000007.00000002.552870942.00007FF5DC227000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC227000
Size:	16384

Details

Name:	00000002.00000003.424579583.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000002.00000003.521307007.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.544614980.0000000004443000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4443000
Size:	118784

Details

Name:	00000011.00000002.393976888.00007DF547780000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF547780000
Size:	4096

Details

Name:	0000000B.00000002.551165587.00007FF5D3666000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D3666000
Size:	16384

Details

Name:	00000008.00000002.311494181.0000027819613000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	27819613000
Size:	86016

Details

Name:	00000002.00000003.519545815.00000000044E8000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44E8000
Size:	122880

Details

Name:	00000005.00000002.304480092.000000001CEF0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1CEF0000
Size:	28672

Details

Name:	00000002.00000003.327380440.000000000457C000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	457C000
Size:	139264

Details

Name:	00000002.00000003.287322960.00000000043C5000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43C5000
Size:	86016

Details

Name:	00000011.00000002.393846683.000001CCF4160000.00000004.00000020.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	1CCF4160000
Size:	69632

Details

Name:	00000010.00000003.386403778.0000019C9237E000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9237E000
Size:	61440

Details

Name:	00000005.00000000.285907474.00007FF5B8BC2000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5B8BC2000
Size:	4096

Details

Name:	00000000.00000002.286891973.0000000000980000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	980000
Size:	4096

Details

Name:	00000005.00000002.303924301.000000001BFDC000.00000004.00000040.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	1BFDC000
Size:	8192

Details

Name:	00000002.00000003.405224986.0000000004553000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4553000
Size:	135168

Details

Name:	00000010.00000003.395293252.0000019C9239A000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9239A000
Size:	4096

Details

Name:	00000005.00000002.303873114.000000001B84E000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1B84E000
Size:	8192

Details

Name:	00000002.00000003.287679770.00000000012B2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12B2000
Size:	45056

Details

Name:	00000005.00000003.293011035.000000001BD70000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD70000
Size:	45056

Details

Name:	00000006.00000002.297993485.00007FF5E8ED1000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8ED1000
Size:	32768

Details

Name:	00000002.00000003.446144543.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000006.00000002.297610992.00007FF5E8CEF000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8CEF000
Size:	8192

Details

Name:	00000002.00000003.450287585.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	0000000E.00000002.373473388.00007FF519523000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF519523000
Size:	12288

Details

Name:	00000002.00000003.349366050.0000000004468000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4468000
Size:	139264

Details

Name:	00000002.00000002.550901023.0000000001202000.00000040.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	1202000
Size:	4096

Details

Name:	00000002.00000003.423211459.0000000004480000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4480000
Size:	131072

Details

Name:	00000005.00000002.301237193.00000000008DC000.00000004.00000020.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	8DC000
Size:	188416

Details

Name:	00000002.00000003.498008066.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.522964930.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000006.00000002.297714754.00007FF5E8DF3000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8DF3000
Size:	28672

Details

Name:	00000002.00000003.481578661.0000000005DCA000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5DCA000
Size:	4096

Details

Name:	00000005.00000003.294738739.000000001BD70000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD70000
Size:	8192

Details

Name:	00000005.00000003.295540868.0000000002470000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2470000
Size:	65536

Details

Name:	00000002.00000003.363153537.00000000012DD000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12DD000
Size:	4096

Details

Name:	00000001.00000002.550047947.000001D34F2F0000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1D34F2F0000
Size:	12288

Details

Name:	00000010.00000002.408089396.00007FF4F3E68000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F3E68000
Size:	16384

Details

Name:	00000010.00000002.408511808.00007FF4F46B9000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F46B9000
Size:	8192

Details

Name:	00000002.00000003.538035906.0000000004504000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4504000
Size:	118784

Details

Name:	00000004.00000002.551287208.00007FF51B01F000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B01F000
Size:	4096

Details

Name:	0000000B.00000002.550257364.0000014838E30000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	14838E30000
Size:	12288

Details

Name:	00000002.00000003.367370360.00000000012ED000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12ED000
Size:	4096

Details

Name:	00000002.00000003.286656029.0000000005730000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5730000
Size:	28672

Details

Name:	00000002.00000003.532247517.0000000004609000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4609000
Size:	118784

Details

Name:	00000002.00000003.514891965.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.546095027.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000010.00000002.407620899.0000019C91AE2000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91AE2000
Size:	28672

Details

Name:	00000008.00000002.311671597.00007DF517A62000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF517A62000
Size:	4096

Details

Name:	00000010.00000002.408266580.00007FF4F4482000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4482000
Size:	4096

Details

Name:	00000002.00000003.285073692.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	45056

Details

Name:	00000003.00000002.551451837.000001F362202000.00000004.00000001.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1F362202000
Size:	4096

Details

Name:	0000000D.00000002.347041462.00000219BE980000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	219BE980000
Size:	4096

Details

Name:	00000002.00000003.424301142.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.413789415.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.321169268.0000000004488000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4488000
Size:	139264

Details

Name:	00000002.00000003.467562225.00000000043DE000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43DE000
Size:	118784

Details

Name:	0000000D.00000002.347239537.00007FF5BC949000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC949000
Size:	8192

Details

Name:	00000011.00000000.381958774.000001CCF3FB0000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	1CCF3FB0000
Size:	102400

Details

Name:	00000001.00000002.551401967.00007FF58C4ED000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C4ED000
Size:	4096

Details

Name:	00000002.00000003.535037627.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	0000000B.00000002.550788944.0000014839660000.00000004.00000001.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	14839660000
Size:	4096

Details

Name:	00000005.00000001.285942071.0000000000300000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	image loaded
Regiontype:	unkown image
Protect:	page readonly
Base address:	300000
Size:	4096

Details

Name:	00000002.00000003.328485054.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.328592188.00000000012F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	00000005.00000002.303632459.000000001B473000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1B473000
Size:	229376

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000008.00000002.311563354.0000027819662000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	27819662000
Size:	20480

Details

Name:	00000011.00000002.393888702.000001CCF41A0000.00000004.00000001.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1CCF41A0000
Size:	4096

Details

Name:	00000002.00000003.416961240.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	0000000D.00000003.346614922.00000219BE450000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	219BE450000
Size:	126976

Details

Name:	00000002.00000003.417544783.00000000044B1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44B1000
Size:	135168

Details

Name:	00000002.00000003.431267626.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.513869300.00000000012DC000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12DC000
Size:	8192

Details

Name:	00000002.00000002.550240380.0000000000B4A000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	B4A000
Size:	24576

Details

Name:	00000007.00000000.285978242.00007DF5E9F72000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5E9F72000
Size:	4096

Details

Name:	00000002.00000003.284977030.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	16384

Details

Name:	00000002.00000003.535694067.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000004.00000002.551615190.00007FF51B1CA000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B1CA000
Size:	4096

Details

Name:	00000002.00000003.537982357.000000000446E000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	446E000
Size:	118784

Details

Name:	00000007.00000003.290254748.0000018893990000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	18893990000
Size:	4096

Details

Name:	00000000.00000002.287114979.0000000000B7E000.00000004.00000010.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	B7E000
Size:	8192

Details

Name:	00000002.00000003.506522398.0000000004424000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4424000
Size:	122880

Details

Name:	00000005.00000002.303153410.0000000012561000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	12561000
Size:	323584

Details

Name:	00000002.00000003.284862950.00000000054E0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54E0000
Size:	40960

Details

Name:	00000002.00000003.449725549.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.522259764.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.380200371.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000005.00000002.303103485.0000000012553000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	12553000
Size:	36864

Details

Name:	00000005.00000002.301225399.00000000008D0000.00000004.00000020.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	8D0000
Size:	45056

Details

Name:	00000010.00000003.389885943.0000019C9238A000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9238A000
Size:	61440

Details

Name:	00000002.00000003.526604449.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000003.00000002.552354010.00007FF5AA553000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA553000
Size:	12288

Details

Name:	00000003.00000002.551666847.00007DF5B82A0000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5B82A0000
Size:	4096

Details

Name:	00000003.00000002.550789944.000001F361AB9000.00000004.00000001.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1F361AB9000
Size:	28672

Details

Name:	00000011.00000002.393742369.00000086F9BFD000.00000004.00000010.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	86F9BFD000
Size:	12288

Details

Name:	00000007.00000002.552889971.00007FF5DC24B000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC24B000
Size:	12288

Details

Name:	00000002.00000003.487157377.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000002.00000003.444657116.00000000012D8000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12D8000
Size:	8192

Details

Name:	00000000.00000002.287246396.0000000000BFC000.00000040.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	BFC000
Size:	4096

Details

Name:	00000002.00000003.328503677.00000000012ED000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12ED000
Size:	4096

Details

Name:	00000000.00000002.287851750.000000000556E000.00000004.00000010.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	556E000
Size:	8192

Details

Name:	00000005.00000002.303850291.000000001B64E000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1B64E000
Size:	8192

Details

Name:	00000002.00000003.413747200.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000010.00000002.408639314.00007FF4F472D000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F472D000
Size:	12288

Details

Name:	00000004.00000002.552052874.00007FF51B23A000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B23A000
Size:	8192

Details

Name:	0000000E.00000002.373382074.00007FF5193EB000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5193EB000
Size:	8192

Details

Name:	00000002.00000002.550424297.000000000100E000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	100E000
Size:	8192

Details

Name:	00000002.00000003.535058114.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000007.00000002.552772140.00007FF5DC20F000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC20F000
Size:	12288

Details

Name:	00000002.00000003.513259821.00000000044DC000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44DC000
Size:	122880

Details

Name:	00000002.00000003.532167710.00000000044DA000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44DA000
Size:	122880

Details

Name:	0000000E.00000002.373479371.00007FF519527000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF519527000
Size:	16384

Details

Name:	00000002.00000000.283950855.000000007FDB0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDB0000
Size:	4096

Details

Name:	0000000E.00000000.361664364.00007FF519601000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF519601000
Size:	16384

Details

Name:	00000007.00000000.285971641.00007DF5E9F62000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5E9F62000
Size:	4096

Details

Name:	00000004.00000002.552070733.00007FF51B23D000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B23D000
Size:	12288

Details

Name:	00000007.00000002.552731808.00007FF5DC1F7000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC1F7000
Size:	4096

Details

Name:	00000002.00000003.524672931.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.417507949.0000000004410000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4410000
Size:	135168

Details

Name:	00000002.00000002.551740889.000000000155E000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	155E000
Size:	8192

Details

Name:	0000000E.00000002.373404669.00007FF51946C000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51946C000
Size:	4096

Details

Name:	00000007.00000002.550691512.0000018891F02000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	18891F02000
Size:	49152

Details

Name:	00000004.00000002.549998145.000000F9C3EFF000.00000004.00000010.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	F9C3EFF000
Size:	4096

Details

Name:	00000005.00000002.304511250.00007FF5B8BD0000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5B8BD0000
Size:	4096

Details

Name:	00000002.00000003.380785667.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	0000000B.00000002.551219937.00007FF5D37C4000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D37C4000
Size:	4096

Details

Name:	00000010.00000002.407158830.00000076A7C7E000.00000004.00000010.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	76A7C7E000
Size:	8192

Details

Name:	00000006.00000002.297949205.00007FF5E8EC4000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8EC4000
Size:	20480

Details

Name:	00000011.00000000.382070663.00007FF539B21000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539B21000
Size:	16384

Details

Name:	00000001.00000002.551104435.00007DF59A380000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF59A380000
Size:	4096

Details

Name:	00000010.00000002.408054512.00007DF502422000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF502422000
Size:	4096

Details

Name:	00000005.00000003.295346709.000000001BD90000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD90000
Size:	16384

Details

Name:	00000002.00000003.467600330.0000000004476000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4476000
Size:	122880

Details

Name:	00000011.00000002.393945460.000001CCF45E0000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1CCF45E0000
Size:	4096

Details

Name:	00000005.00000002.304502003.00007FF5B8BC0000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5B8BC0000
Size:	4096

Details

Name:	00000002.00000002.554727036.00000000054E0000.00000040.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	54E0000
Size:	4096

Details

Name:	00000002.00000003.473991425.000000000440A000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	440A000
Size:	122880

Details

Name:	00000003.00000002.552399791.00007FF5AA55E000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA55E000
Size:	28672

Details

Name:	00000005.00000003.295428210.0000000002490000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2490000
Size:	28672

Details

Name:	00000002.00000003.513960342.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.343972777.00000000043E4000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43E4000
Size:	4096

Details

Name:	0000000D.00000002.347177564.00007FF5BC7F1000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC7F1000
Size:	8192

Details

Name:	00000010.00000002.407899976.0000019C9234E000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9234E000
Size:	110592

Details

Name:	00000003.00000002.550603575.000001F361A6E000.00000004.00000001.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1F361A6E000
Size:	102400

Details

Name:	00000002.00000003.532186287.0000000004526000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4526000
Size:	118784

Details

Name:	00000002.00000002.555567155.000000007FDC2000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDC2000
Size:	4096

Details

Name:	00000000.00000002.287294023.0000000000C50000.00000004.00000020.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	C50000
Size:	36864

Details

Name:	00000002.00000003.467674635.00000000045A8000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45A8000
Size:	122880

Details

Name:	00000003.00000002.551068077.000001F361E00000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1F361E00000
Size:	12288

Details

Name:	00000004.00000002.551584878.00007FF51B1B7000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B1B7000
Size:	4096

Details

Name:	00000002.00000003.286903585.0000000005737000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5737000
Size:	8192

Details

Name:	0000000D.00000002.347346993.00007FF5BCA2A000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BCA2A000
Size:	12288

Details

Name:	00000002.00000003.328453255.0000000005DCF000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5DCF000
Size:	20480

Details

Name:	0000000D.00000002.347207536.00007FF5BC895000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC895000
Size:	20480

Details

Name:	00000005.00000002.303901332.000000001BC4C000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1BC4C000
Size:	16384

Details

Name:	00000002.00000003.286746977.0000000005730000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5730000
Size:	24576

Details

Name:	00000002.00000003.477179415.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000007.00000002.549859423.0000006A1B37F000.00000004.00000010.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6A1B37F000
Size:	4096

Details

Name:	0000000E.00000002.373040441.000000EEFFB6B000.00000004.00000001.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	EEFFB6B000
Size:	20480

Details

Name:	00000002.00000003.380241476.00000000045D0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45D0000
Size:	135168

Details

Name:	00000002.00000003.338047246.0000000004468000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4468000
Size:	143360

Details

Name:	00000002.00000003.286467811.0000000005735000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5735000
Size:	8192

Details

Name:	00000006.00000002.297974849.00007FF5E8ECA000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8ECA000
Size:	12288

Details

Name:	00000002.00000002.555435730.000000000635E000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	635E000
Size:	8192

Details

Name:	0000000D.00000002.347187382.00007FF5BC80D000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC80D000
Size:	4096

Details

Name:	00000002.00000003.533851972.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	0000000D.00000002.347182852.00007FF5BC7FC000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC7FC000
Size:	4096

Details

Name:	00000002.00000000.283346642.0000000000AF0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	AF0000
Size:	102400

Details

Name:	00000010.00000003.406999893.0000019C91A52000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91A52000
Size:	4096

Details

Name:	00000002.00000003.300164789.00000000043B3000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43B3000
Size:	143360

Details

Name:	00000008.00000002.311509945.0000027819629000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	27819629000
Size:	16384

Details

Name:	00000010.00000003.393712962.0000019C92802000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92802000
Size:	106496

Details

Name:	00000002.00000003.461684653.000000000453C000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	453C000
Size:	122880

Details

Name:	00000002.00000003.312820795.00000000044AA000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44AA000
Size:	139264

Details

Name:	00000002.00000003.291841567.0000000004457000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4457000
Size:	143360

Details

Name:	00000005.00000003.292935253.000000001BD60000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD60000
Size:	53248

Details

Name:	00000002.00000003.330873935.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000005.00000003.295470295.0000000002471000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2471000
Size:	61440

Details

Name:	00000008.00000003.310758301.0000027819657000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	27819657000
Size:	4096

Details

Name:	00000002.00000003.503561103.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.286939244.0000000005735000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5735000
Size:	8192

Details

Name:	00000007.00000002.552370421.00007FF5DBB24000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DBB24000
Size:	4096

Details

Name:	00000010.00000002.408283755.00007FF4F44F6000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F44F6000
Size:	4096

Details

Name:	00000010.00000003.386418397.0000019C9238F000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9238F000
Size:	94208

Details

Name:	00000001.00000002.551555597.00007FF58C629000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C629000
Size:	4096

Details

Name:	00000002.00000003.480153450.000000000436C000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	436C000
Size:	118784

Details

Name:	00000002.00000003.521267598.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	28672

Details

Name:	00000002.00000003.422515257.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000003.00000002.552235519.00007FF5AA534000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA534000
Size:	4096

Details

Name:	0000000B.00000002.551600932.00007FF5D38B2000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D38B2000
Size:	12288

Details

Name:	00000002.00000000.283280200.0000000000A80000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	A80000
Size:	4096

Details

Name:	00000005.00000002.303542739.000000001B209000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1B209000
Size:	28672

Details

Name:	00000005.00000000.285914650.00007FF5B8BD2000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5B8BD2000
Size:	4096

Details

Name:	00000010.00000002.408038284.00007DF502420000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF502420000
Size:	4096

Details

Name:	00000002.00000000.283654848.0000000000B50000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	B50000
Size:	16384

Details

Name:	00000002.00000002.550455867.0000000001050000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1050000
Size:	16384

Details

Name:	00000002.00000003.495399227.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000010.00000002.408378111.00007FF4F4580000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4580000
Size:	4096

Details

Name:	00000010.00000003.387657057.0000019C92386000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92386000
Size:	294912

Details

Name:	00000007.00000003.289768104.0000018891E49000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	18891E49000
Size:	4096

Details

Name:	00000003.00000002.550317517.000001F361A3E000.00000004.00000001.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1F361A3E000
Size:	192512

Details

Name:	00000006.00000002.297669554.00007FF5E8D61000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8D61000
Size:	12288

Details

Name:	00000002.00000003.434493560.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	0000000E.00000002.373217279.000002D085B13000.00000004.00000001.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2D085B13000
Size:	12288

Details

Name:	00000002.00000003.442964774.000000000459A000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	459A000
Size:	131072

Details

Name:	00000002.00000003.287051617.0000000005736000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5736000
Size:	8192

Details

Name:	0000000D.00000002.347073850.00007DF5CA6B2000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5CA6B2000
Size:	4096

Details

Name:	00000002.00000003.329052853.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000002.00000003.291797680.00000000043B2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43B2000
Size:	139264

Details

Name:	00000007.00000002.551001515.0000018892450000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	18892450000
Size:	4096

Details

Name:	0000000E.00000002.373526510.00007FF519577000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF519577000
Size:	8192

Details

Name:	00000002.00000003.429225830.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.448998087.000000000447A000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	447A000
Size:	131072

Details

Name:	00000008.00000002.311763309.00007FF509D0F000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509D0F000
Size:	12288

Details

Name:	00000005.00000000.285568515.0000000000300000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	300000
Size:	4096

Details

Name:	00000002.00000003.461736269.0000000004622000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4622000
Size:	122880

Details

Name:	00000005.00000002.302561397.00000000025EB000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	25EB000
Size:	32768

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	0000000D.00000002.347022498.00000219BE600000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	219BE600000
Size:	4096

Details

Name:	00000003.00000002.550226825.000001F361A13000.00000004.00000001.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1F361A13000
Size:	86016

Details

Name:	00000008.00000002.311841312.00007FF509D7D000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509D7D000
Size:	8192

Details

Name:	00000006.00000000.285695739.00007FF5E8EE1000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8EE1000
Size:	16384

Details

Name:	00000002.00000002.554437682.00000000053C0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	53C0000
Size:	733184

Details

Name:	00000005.00000003.288036339.0000000000820000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	820000
Size:	65536

Details

Name:	00000010.00000003.407028152.0000019C91A4A000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91A4A000
Size:	4096

Details

Name:	00000003.00000000.283276025.000001F361850000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	1F361850000
Size:	102400

Details

Name:	00000002.00000003.530834649.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000005.00000002.301140434.0000000000360000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	360000
Size:	4096

Details

Name:	00000002.00000003.472859496.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000011.00000002.393762083.000001CCF3FB0000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1CCF3FB0000
Size:	102400

Details

Name:	00000002.00000003.481537289.0000000005DA1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5DA1000
Size:	159744

Details

Name:	00000002.00000002.550939019.000000000120C000.00000040.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	120C000
Size:	4096

Details

Name:	00000002.00000003.349334708.00000000043E4000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43E4000
Size:	4096

Details

Name:	00000002.00000003.513937778.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.336822930.0000000005FE2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE2000
Size:	139264

Details

Name:	00000002.00000003.411241252.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000002.00000003.356828986.0000000004601000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4601000
Size:	139264

Details

Name:	00000008.00000002.311862287.00007FF509DF1000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509DF1000
Size:	32768

Details

Name:	00000002.00000003.328490577.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000002.00000002.555074949.0000000005756000.00000040.00000040.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page execute and read and write
Base address:	5756000
Size:	36864

Details

Name:	00000002.00000003.285182665.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	24576

Details

Name:	00000011.00000002.394213726.00007FF539AF9000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539AF9000
Size:	12288

Details

Name:	00000011.00000002.394246222.00007FF539B11000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539B11000
Size:	12288

Details

Name:	00000007.00000002.552157538.00007DF5E9F80000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5E9F80000
Size:	12288

Details

Name:	00000002.00000003.532106574.00000000043F8000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43F8000
Size:	118784

Details

Name:	00000008.00000002.311779058.00007FF509D23000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509D23000
Size:	12288

Details

Name:	00000005.00000003.293886368.000000001BDB0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BDB0000
Size:	61440

Details

Name:	00000002.00000003.285630053.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	12288

Details

Name:	00000002.00000003.344004085.0000000004468000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4468000
Size:	143360

Details

Name:	00000002.00000003.284881528.00000000054E6000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54E6000
Size:	8192

Details

Name:	00000006.00000000.285623024.0000026457A90000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	26457A90000
Size:	102400

Details

Name:	0000000E.00000002.373069577.000002D0857C0000.00000004.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	2D0857C0000
Size:	4096

Details

Name:	00000002.00000003.389915846.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000001.00000002.550893857.000001D34F600000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1D34F600000
Size:	4096

Details

Name:	00000010.00000002.407167363.00000076A7CFE000.00000004.00000010.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	76A7CFE000
Size:	8192

Details

Name:	00000002.00000003.336215244.0000000005FE2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE2000
Size:	139264

Details

Name:	00000002.00000003.362598300.00000000044B8000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44B8000
Size:	139264

Details

Name:	00000002.00000003.329679303.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000002.00000002.551908476.00000000015B0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	15B0000
Size:	36864

Details

Name:	0000000D.00000002.347224507.00007FF5BC8C1000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC8C1000
Size:	12288

Details

Name:	0000000E.00000003.372774951.000002D085A4F000.00000004.00000001.sdmp
TargetID:	14
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	2D085A4F000
Size:	131072

Details

Name:	00000002.00000003.284873426.00000000054E0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54E0000
Size:	20480

Details

Name:	00000010.00000003.383006550.0000019C919E0000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C919E0000
Size:	4096

Details

Name:	0000000E.00000002.373536275.00007FF51957D000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51957D000
Size:	8192

Details

Name:	00000002.00000003.436930430.000000000460C000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	460C000
Size:	131072

Details

Name:	00000007.00000002.550868920.00000188922D0000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	188922D0000
Size:	65536

Details

Name:	00000002.00000003.506657617.00000000045EE000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45EE000
Size:	118784

Details

Name:	00000006.00000002.297302794.0000026457D13000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	26457D13000
Size:	12288

Details

Name:	00000002.00000003.504042343.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.491754960.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000005.00000000.285625502.00007FF5B8BD0000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5B8BD0000
Size:	4096

Details

Name:	00000005.00000002.301118777.0000000000320000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	320000
Size:	16384

Details

Name:	00000002.00000003.286442849.0000000005730000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5730000
Size:	4096

Details

Name:	0000000E.00000003.372756413.000002D085A8F000.00000004.00000001.sdmp
TargetID:	14
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	2D085A8F000
Size:	28672

Details

Name:	00000002.00000003.414988218.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000000.00000002.287250048.0000000000C07000.00000040.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	C07000
Size:	4096

Details

Name:	00000002.00000000.283642888.0000000000AF0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	AF0000
Size:	102400

Details

Name:	00000002.00000003.521190042.0000000005DA1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5DA1000
Size:	155648

Details

Name:	00000005.00000000.285335184.00007FF5B8BD2000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5B8BD2000
Size:	4096

Details

Name:	0000000E.00000002.373497900.00007FF519537000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF519537000
Size:	49152

Details

Name:	00000005.00000003.292606576.000000001BD70000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD70000
Size:	16384

Details

Name:	00000002.00000003.529057073.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000008.00000002.311619974.0000027819AD0000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	27819AD0000
Size:	12288

Details

Name:	00000005.00000002.303126887.000000001255F000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1255F000
Size:	4096

Details

Name:	00000002.00000002.555404563.000000000611E000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	611E000
Size:	8192

Details

Name:	00000002.00000003.305643388.000000000448D000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	448D000
Size:	139264

Details

Name:	00000008.00000003.310709275.0000027819661000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	27819661000
Size:	24576

Details

Name:	00000002.00000003.393170353.00000000045EF000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45EF000
Size:	139264

Details

Name:	00000002.00000003.321116299.00000000043E4000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43E4000
Size:	139264

Details

Name:	00000005.00000003.295834724.0000000002470000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2470000
Size:	65536

Details

Name:	00000002.00000003.363112275.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000002.00000003.430503127.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.445244307.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	122880

Details

Name:	0000000D.00000002.347235006.00007FF5BC937000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC937000
Size:	4096

Details

Name:	00000008.00000002.310955436.000000D77887E000.00000004.00000010.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	D77887E000
Size:	8192

Details

Name:	00000011.00000003.393425818.000001CCF4171000.00000004.00000001.sdmp
TargetID:	17
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1CCF4171000
Size:	196608

Details

Name:	00000002.00000003.474023848.00000000044A3000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44A3000
Size:	122880

Details

Name:	00000010.00000002.408540596.00007FF4F46C3000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F46C3000
Size:	28672

Details

Name:	00000002.00000003.423283070.000000000456E000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	456E000
Size:	131072

Details

Name:	00000004.00000002.550357807.0000024029A13000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	24029A13000
Size:	65536

Details

Name:	00000005.00000002.303928744.000000001C9E0000.00000004.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	1C9E0000
Size:	5242880

Details

Name:	00000010.00000002.407361442.0000019C91870000.00000004.00000020.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	19C91870000
Size:	12288

Details

Name:	00000002.00000003.411934769.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	0000000E.00000002.373265542.00007DF527262000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF527262000
Size:	4096

Details

Name:	00000002.00000003.374667048.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000006.00000003.296905137.0000026457C4F000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	26457C4F000
Size:	126976

Details

Name:	00000003.00000002.550048732.000001F361850000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1F361850000
Size:	102400

Details

Name:	00000008.00000003.288986832.0000027819632000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	27819632000
Size:	40960

Details

Name:	0000000B.00000002.551740177.00007FF5D38D5000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D38D5000
Size:	16384

Details

Name:	00000002.00000003.479536275.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000005.00000003.290137201.0000000002500000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	2500000
Size:	65536

Details

Name:	00000004.00000002.551086363.00007DF528F30000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF528F30000
Size:	4096

Details

Name:	00000002.00000003.286200539.0000000005725000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5725000
Size:	4096

Details

Name:	00000002.00000003.284940179.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	65536

Details

Name:	00000002.00000003.413195170.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.411370040.0000000004481000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4481000
Size:	135168

Details

Name:	00000002.00000003.356752239.00000000044B9000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44B9000
Size:	139264

Details

Name:	00000005.00000002.302155002.0000000000F50000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	F50000
Size:	4096

Details

Name:	00000003.00000002.549857445.0000005D73B7C000.00000004.00000010.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5D73B7C000
Size:	16384

Details

Name:	00000002.00000003.524689738.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000000.00000002.287462393.0000000000F90000.00000004.00000040.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	F90000
Size:	12288

Details

Name:	00000002.00000003.448391696.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000003.00000002.549835391.0000005D73AFF000.00000004.00000010.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5D73AFF000
Size:	4096

Details

Name:	00000002.00000003.474075473.0000000004588000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4588000
Size:	122880

Details

Name:	00000010.00000003.386343451.0000019C923A6000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C923A6000
Size:	90112

Details

Name:	00000002.00000003.368018907.000000000459F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	459F000
Size:	135168

Details

Name:	00000004.00000002.551304811.00007FF51B046000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B046000
Size:	16384

Details

Name:	00000002.00000003.418783909.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000007.00000003.289935918.0000018891E4A000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	18891E4A000
Size:	4096

Details

Name:	00000002.00000003.410713586.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.522898250.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.411319147.00000000043E1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43E1000
Size:	131072

Details

Name:	00000002.00000003.287301185.0000000004393000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4393000
Size:	139264

Details

Name:	00000010.00000002.407656730.0000019C91AF5000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91AF5000
Size:	49152

Details

Name:	00000010.00000003.393772397.0000019C9238A000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9238A000
Size:	319488

Details

Name:	00000002.00000003.286631080.0000000005740000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5740000
Size:	45056

Details

Name:	00000002.00000003.382186132.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000005.00000000.285860359.0000000000300000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	300000
Size:	4096

Details

Name:	00000007.00000002.550338355.0000018891DF0000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	18891DF0000
Size:	16384

Details

Name:	00000002.00000002.550290631.0000000000BA0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	BA0000
Size:	8192

Details

Name:	00000005.00000003.300539411.0000000000800000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	800000
Size:	12288

Details

Name:	00000002.00000003.487784424.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000002.555213911.0000000005B3D000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5B3D000
Size:	12288

Details

Name:	0000000B.00000002.550939609.00007DF5E1552000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5E1552000
Size:	4096

Details

Name:	00000002.00000003.495936311.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000010.00000002.408237272.00007FF4F4435000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4435000
Size:	8192

Details

Name:	00000002.00000003.286222154.0000000005700000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5700000
Size:	16384

Details

Name:	00000002.00000003.286537245.0000000005730000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5730000
Size:	65536

Details

Name:	00000002.00000003.284422787.00000000053A0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	53A0000
Size:	24576

Details

Name:	00000002.00000003.524201694.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	0000000D.00000002.347051080.00007DF4C8570000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF4C8570000
Size:	20480

Details

Name:	00000010.00000002.408477123.00007FF4F468E000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F468E000
Size:	4096

Details

Name:	00000002.00000003.416261930.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.356706643.00000000043E4000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43E4000
Size:	4096

Details

Name:	00000004.00000002.550619495.0000024029A75000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	24029A75000
Size:	28672

Details

Name:	00000000.00000002.287723304.00000000051ED000.00000004.00000010.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	51ED000
Size:	12288

Details

Name:	0000000D.00000002.347326550.00007FF5BC9BD000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC9BD000
Size:	8192

Details

Name:	00000002.00000002.551028351.0000000001220000.00000004.00000020.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	1220000
Size:	36864

Details

Name:	0000000D.00000000.332593330.00007DF5CA6A2000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5CA6A2000
Size:	4096

Details

Name:	00000002.00000003.412430826.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000005.00000002.304638428.00007FFC08630000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	7FFC08630000
Size:	20480

Details

Name:	00000002.00000002.550521969.00000000010B0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	10B0000
Size:	8192

Details

Name:	00000002.00000003.481643484.00000000012F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	00000002.00000003.546610038.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000007.00000002.550742360.0000018891F13000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	18891F13000
Size:	12288

Details

Name:	00000002.00000003.525491753.00000000045C0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45C0000
Size:	122880

Details

Name:	00000007.00000002.550055974.0000006A1B77E000.00000004.00000010.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6A1B77E000
Size:	8192

Details

Name:	00000007.00000002.552273083.00007FF5DBAC1000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DBAC1000
Size:	4096

Details

Name:	00000004.00000002.549835982.000000F9C36FC000.00000004.00000010.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	F9C36FC000
Size:	16384

Details

Name:	00000008.00000002.311755158.00007FF509CF7000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509CF7000
Size:	4096

Details

Name:	00000010.00000002.408702649.00007FF4F47B0000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F47B0000
Size:	20480

Details

Name:	00000002.00000003.486629915.000000000452C000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	452C000
Size:	122880

Details

Name:	00000002.00000003.288013735.00000000012F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	00000002.00000003.372956378.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000002.00000003.284950223.0000000005500000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5500000
Size:	28672

Details

Name:	00000003.00000002.552377217.00007FF5AA557000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA557000
Size:	16384

Details

Name:	00000002.00000003.490481924.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000007.00000002.551470040.0000018893880000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	18893880000
Size:	4096

Details

Name:	0000000B.00000002.550152280.0000014838E00000.00000004.00000040.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	14838E00000
Size:	4096

Details

Name:	00000002.00000003.385822260.00000000045D0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45D0000
Size:	143360

Details

Name:	00000002.00000000.283677891.000000007FDC2000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDC2000
Size:	4096

Details

Name:	00000005.00000002.301930333.0000000000BCE000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	BCE000
Size:	8192

Details

Name:	00000002.00000003.429171754.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000002.00000003.461646735.00000000044A3000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44A3000
Size:	122880

Details

Name:	00000002.00000003.409478835.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000002.00000003.431816191.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000011.00000002.394180882.00007FF539A7E000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539A7E000
Size:	8192

Details

Name:	00000006.00000002.297659311.00007FF5E8D4C000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8D4C000
Size:	4096

Details

Name:	00000004.00000002.551368482.00007FF51B087000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B087000
Size:	4096

Details

Name:	0000000B.00000000.291553015.00007DF5E1550000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5E1550000
Size:	4096

Details

Name:	00000002.00000003.537940109.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.462240110.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.444647172.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	28672

Details

Name:	00000010.00000003.388752759.0000019C923B5000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C923B5000
Size:	65536

Details

Name:	00000002.00000003.338108412.000000000450E000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	450E000
Size:	139264

Details

Name:	00000002.00000003.444670431.00000000012ED000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12ED000
Size:	4096

Details

Name:	00000010.00000002.407373843.0000019C91950000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	19C91950000
Size:	16384

Details

Name:	00000002.00000000.283674231.000000007FDC0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDC0000
Size:	4096

Details

Name:	00000004.00000002.550806850.0000024029F90000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	24029F90000
Size:	16384

Details

Name:	00000002.00000003.436863495.00000000044CE000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44CE000
Size:	131072

Details

Name:	00000010.00000002.408272319.00007FF4F44BB000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F44BB000
Size:	8192

Details

Name:	00000005.00000002.301101277.0000000000300000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	300000
Size:	4096

Details

Name:	00000005.00000003.295397081.0000000002470000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2470000
Size:	65536

Details

Name:	00000006.00000002.297207822.0000026457C02000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	26457C02000
Size:	65536

Details

Name:	00000001.00000002.551968261.00007FF58C711000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C711000
Size:	12288

Details

Name:	00000002.00000003.532714323.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	0000000D.00000002.347253369.00007FF5BC953000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC953000
Size:	28672

Details

Name:	0000000B.00000002.550867056.00007DF5E1540000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5E1540000
Size:	4096

Details

Name:	00000010.00000002.408328374.00007FF4F4536000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4536000
Size:	16384

Details

Name:	00000002.00000003.375859109.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.305622417.0000000004439000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4439000
Size:	143360

Details

Name:	00000002.00000003.285106993.00000000054F5000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F5000
Size:	16384

Details

Name:	00000002.00000003.409531764.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.367332201.0000000005DA1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5DA1000
Size:	180224

Details

Name:	00000007.00000002.552508521.00007FF5DBFD2000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DBFD2000
Size:	4096

Details

Name:	00000003.00000002.552169805.00007FF5AA501000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA501000
Size:	4096

Details

Name:	00000006.00000002.297706893.00007FF5E8DEF000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8DEF000
Size:	12288

Details

Name:	00000002.00000003.394321586.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000010.00000002.408346244.00007FF4F4565000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4565000
Size:	12288

Details

Name:	00000002.00000003.367985100.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000002.00000003.450855173.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000005.00000002.302347096.0000000002551000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2551000
Size:	479232

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery

Details

Name:	00000008.00000002.311460685.00000278195D0000.00000004.00000020.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	278195D0000
Size:	8192

Details

Name:	00000010.00000003.387635833.0000019C92386000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92386000
Size:	147456

Details

Name:	00000002.00000003.529595749.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000008.00000002.311635636.0000027819C50000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	27819C50000
Size:	4096

Details

Name:	00000002.00000003.329656143.0000000005FE2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE2000
Size:	135168

Details

Name:	00000002.00000002.552363313.0000000002E3E000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2E3E000
Size:	8192

Details

Name:	00000005.00000002.301164632.00000000007D0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	7D0000
Size:	8192

Details

Name:	0000000D.00000002.347078334.00007DF5CA6C0000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5CA6C0000
Size:	12288

Details

Name:	00000002.00000003.396085031.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000005.00000002.303735178.000000001B4CA000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1B4CA000
Size:	12288

Details

Name:	00000000.00000002.287193277.0000000000BD0000.00000040.00000040.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page execute and read and write
Base address:	BD0000
Size:	4096

Details

Name:	0000000B.00000002.550338537.0000014838F40000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	14838F40000
Size:	16384

Details

Name:	00000002.00000003.413163737.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000002.00000003.377613497.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000008.00000002.311783876.00007FF509D27000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509D27000
Size:	16384

Details

Name:	00000005.00000002.303080611.0000000012551000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	12551000
Size:	4096

Details

Name:	00000008.00000002.310949972.000000D77877E000.00000004.00000010.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	D77877E000
Size:	8192

Details

Name:	00000002.00000003.285112775.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	24576

Details

Name:	00000002.00000003.489339791.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000002.00000003.285658177.0000000001295000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1295000
Size:	131072

Details

Name:	00000002.00000003.528435503.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000008.00000002.311516631.000002781962F000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2781962F000
Size:	36864

Details

Name:	00000010.00000003.393019746.0000019C9239B000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9239B000
Size:	32768

Details

Name:	00000007.00000002.550382338.0000018891E02000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	18891E02000
Size:	65536

Details

Name:	00000002.00000003.285169584.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	20480

Details

Name:	00000002.00000003.461701829.0000000004589000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4589000
Size:	122880

Details

Name:	00000002.00000003.332572184.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000002.00000003.518336656.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000006.00000002.297770144.00007FF5E8E07000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8E07000
Size:	16384

Details

Name:	00000010.00000000.381009424.00007DF502412000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF502412000
Size:	4096

Details

Name:	00000004.00000002.551655313.00007FF51B1CD000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B1CD000
Size:	4096

Details

Name:	00000010.00000002.408688201.00007FF4F47A1000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F47A1000
Size:	32768

Details

Name:	00000005.00000002.302902345.0000000002693000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2693000
Size:	4096

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000002.00000003.480246937.00000000044EA000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44EA000
Size:	118784

Details

Name:	00000002.00000003.429767736.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000005.00000000.285893664.0000000000350000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	350000
Size:	12288

Details

Name:	00000008.00000003.310781688.0000027819644000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	27819644000
Size:	4096

Details

Name:	00000002.00000003.378188688.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000002.00000003.506635485.00000000045A2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45A2000
Size:	118784

Details

Name:	0000000D.00000002.347248414.00007FF5BC94F000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC94F000
Size:	12288

Details

Name:	00000002.00000003.321054798.0000000004340000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4340000
Size:	135168

Details

Name:	00000005.00000002.301123861.0000000000330000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	330000
Size:	102400

Details

Name:	00000002.00000003.501820092.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000005.00000003.295375418.000000001BDC0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BDC0000
Size:	57344

Details

Name:	00000010.00000002.408671238.00007FF4F4794000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4794000
Size:	20480

Details

Name:	0000000D.00000002.347244170.00007FF5BC94D000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC94D000
Size:	4096

Details

Name:	0000000B.00000002.551228272.00007FF5D37D7000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D37D7000
Size:	4096

Details

Name:	00000002.00000003.343983229.0000000004415000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4415000
Size:	143360

Details

Name:	00000005.00000002.301153120.00000000003C0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	3C0000
Size:	4096

Details

Name:	00000002.00000003.421997476.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.538054760.000000000454F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	454F000
Size:	118784

Details

Name:	00000000.00000000.280344412.000000007FC82000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC82000
Size:	4096

Details

Name:	00000002.00000003.286193762.0000000005720000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5720000
Size:	16384

Details

Name:	00000002.00000002.554697962.00000000054D0000.00000040.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	54D0000
Size:	12288

Details

Name:	00000005.00000002.303910315.000000001BE70000.00000004.00000040.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	1BE70000
Size:	4096

Details

Name:	00000002.00000003.504576823.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000011.00000002.393868577.000001CCF4189000.00000004.00000001.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1CCF4189000
Size:	90112

Details

Name:	00000007.00000002.552139415.00007DF5E9F72000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5E9F72000
Size:	4096

Details

Name:	00000002.00000003.406275178.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	32768

Details

Name:	00000002.00000003.363217875.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000002.00000003.344052599.0000000004560000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4560000
Size:	143360

Details

Name:	00000000.00000002.286863682.00000000007C0000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	7C0000
Size:	4096

Details

Name:	00000002.00000000.283963319.000000007FDD0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDD0000
Size:	12288

Details

Name:	00000006.00000002.297877006.00007FF5E8E5A000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8E5A000
Size:	8192

Details

Name:	00000004.00000002.552029196.00007FF51B237000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B237000
Size:	8192

Details

Name:	00000011.00000002.393793252.000001CCF3FD0000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1CCF3FD0000
Size:	12288

Details

Name:	00000002.00000003.435174929.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.499760188.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000002.551166452.000000000125C000.00000004.00000020.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	125C000
Size:	499712

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery

Details

Name:	00000010.00000002.407396595.0000019C91990000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	19C91990000
Size:	8192

Details

Name:	00000002.00000003.427839397.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000010.00000003.394613033.0000019C92395000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92395000
Size:	16384

Details

Name:	00000002.00000002.555239831.0000000005C3E000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5C3E000
Size:	8192

Details

Name:	0000000B.00000002.550964061.00007DF5E1560000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5E1560000
Size:	12288

Details

Name:	00000005.00000003.295622098.000000001BD97000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD97000
Size:	36864

Details

Name:	00000004.00000002.550233750.00000240299F0000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	240299F0000
Size:	4096

Details

Name:	00000005.00000003.293801646.000000001BD74000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD74000
Size:	16384

Details

Name:	00000002.00000002.555277580.0000000005C9E000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5C9E000
Size:	8192

Details

Name:	00000007.00000002.549841928.0000006A1B27F000.00000004.00000010.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6A1B27F000
Size:	4096

Details

Name:	00000010.00000003.395264532.0000019C92377000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92377000
Size:	12288

Details

Name:	00000002.00000003.362632465.000000000455C000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	455C000
Size:	139264

Details

Name:	00000003.00000002.551720792.00007DF5B82B0000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5B82B0000
Size:	12288

Details

Name:	0000000D.00000002.346963946.00000219BE44B000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	219BE44B000
Size:	8192

Details

Name:	00000000.00000002.287884510.00000000056AF000.00000004.00000010.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	56AF000
Size:	4096

Details

Name:	00000005.00000003.295481916.0000000002480000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2480000
Size:	65536

Details

Name:	00000002.00000003.455693854.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.337389450.0000000005FE2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE2000
Size:	139264

Details

Name:	00000003.00000002.552227144.00007FF5AA527000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA527000
Size:	4096

Details

Name:	00000002.00000003.286760217.0000000005730000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5730000
Size:	16384

Details

Name:	0000000E.00000002.373427564.00007FF5194F7000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5194F7000
Size:	4096

Details

Name:	00000002.00000003.338014134.00000000043E4000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43E4000
Size:	4096

Details

Name:	00000002.00000003.500723552.000000000457A000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	457A000
Size:	122880

Details

Name:	00000002.00000003.474112877.0000000004621000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4621000
Size:	122880

Details

Name:	0000000D.00000003.346646893.00000219BE447000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	219BE447000
Size:	8192

Details

Name:	00000002.00000003.285007870.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	20480

Details

Name:	00000002.00000003.417569009.0000000004501000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4501000
Size:	135168

Details

Name:	00000002.00000003.332077079.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000002.00000003.406242764.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000005.00000002.302801569.000000000262A000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	262A000
Size:	139264

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	0000000E.00000002.373279411.00007DF527280000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF527280000
Size:	12288

Details

Name:	00000001.00000002.551803403.00007FF58C678000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C678000
Size:	16384

Details

Name:	00000002.00000003.489272124.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000008.00000002.311557404.000002781965C000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2781965C000
Size:	12288

Details

Name:	00000002.00000003.305661389.00000000044E0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44E0000
Size:	139264

Details

Name:	00000005.00000002.303888168.000000001BA4B000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1BA4B000
Size:	20480

Details

Name:	00000002.00000003.500327820.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	0000000B.00000002.551380483.00007FF5D380E000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D380E000
Size:	4096

Details

Name:	00000002.00000003.426042952.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000000.283388196.000000007FDD0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDD0000
Size:	12288

Details

Name:	00000002.00000003.286973823.0000000005730000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5730000
Size:	16384

Details

Name:	00000002.00000003.519593078.0000000004580000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4580000
Size:	122880

Details

Name:	00000011.00000000.382020362.00007DF5477A0000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5477A0000
Size:	12288

Details

Name:	00000005.00000002.304619222.00007FFC085A0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	7FFC085A0000
Size:	4096

Details

Name:	00000002.00000003.396695952.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	0000000B.00000002.550316098.0000014838E60000.00000004.00000020.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	14838E60000
Size:	8192

Details

Name:	00000000.00000002.286814752.0000000000710000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	710000
Size:	102400

Details

Name:	00000008.00000002.311591349.000002781967F000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2781967F000
Size:	16384

Details

Name:	00000011.00000002.393813831.000001CCF40E0000.00000004.00000001.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1CCF40E0000
Size:	4096

Details

Name:	00000005.00000003.293840079.000000001BD74000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD74000
Size:	49152

Details

Name:	00000005.00000003.295291689.0000000002483000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2483000
Size:	53248

Details

Name:	00000001.00000002.551666619.00007FF58C640000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C640000
Size:	4096

Details

Name:	00000002.00000003.394338670.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000000.00000002.287835071.000000000546E000.00000004.00000010.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	546E000
Size:	8192

Details

Name:	00000002.00000003.514439865.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	0000000B.00000002.550918684.00007DF5E1550000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5E1550000
Size:	4096

Details

Name:	00000004.00000002.550214947.00000240299D0000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	240299D0000
Size:	16384

Details

Name:	00000002.00000003.504611358.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.321147758.0000000004436000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4436000
Size:	139264

Details

Name:	00000005.00000003.295505424.00000000024A0000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	24A0000
Size:	65536

Details

Name:	00000002.00000003.449091861.0000000004565000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4565000
Size:	126976

Details

Name:	0000000B.00000002.550473834.0000014839023000.00000004.00000001.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	14839023000
Size:	20480

Details

Name:	00000001.00000000.282024505.00007DF59A382000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF59A382000
Size:	4096

Details

Name:	00000005.00000003.295441922.0000000002470000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2470000
Size:	65536

Details

Name:	00000011.00000000.382009220.00007DF547790000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF547790000
Size:	4096

Details

Name:	00000003.00000002.552247984.00007FF5AA539000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA539000
Size:	4096

Details

Name:	00000003.00000002.550866971.000001F361ACA000.00000004.00000001.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1F361ACA000
Size:	110592

Details

Name:	00000006.00000002.297181747.0000026457AB0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	26457AB0000
Size:	12288

Details

Name:	00000005.00000003.293863766.000000001BD90000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD90000
Size:	65536

Details

Name:	00000002.00000000.283946682.0000000000B50000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	B50000
Size:	16384

Details

Name:	00000002.00000003.486459810.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000010.00000002.408497785.00007FF4F469E000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F469E000
Size:	8192

Details

Name:	00000002.00000003.423257856.0000000004520000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4520000
Size:	126976

Details

Name:	00000002.00000003.419459341.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.285154836.00000000054F6000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F6000
Size:	16384

Details

Name:	00000002.00000002.549949229.0000000000AA2000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	AA2000
Size:	90112

Details

Name:	00000002.00000000.283666731.000000007FDB0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDB0000
Size:	4096

Details

Name:	00000010.00000000.381004148.00007DF502410000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF502410000
Size:	4096

Details

Name:	00000010.00000002.408697199.00007FF4F47AA000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F47AA000
Size:	4096

Details

Name:	00000002.00000003.321197647.00000000044DA000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44DA000
Size:	139264

Details

Name:	00000007.00000002.552969739.00007FF5DC2D9000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC2D9000
Size:	12288

Details

Name:	00000002.00000003.284755829.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	65536

Details

Name:	0000000E.00000002.373386827.00007FF51940F000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51940F000
Size:	8192

Details

Name:	00000004.00000002.552121165.00007FF51B2A4000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B2A4000
Size:	20480

Details

Name:	00000002.00000003.427808999.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000005.00000003.295696999.0000000002480000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2480000
Size:	65536

Details

Name:	00000006.00000002.297186388.0000026457AC0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	26457AC0000
Size:	4096

Details

Name:	00000004.00000002.551866661.00007FF51B1EE000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B1EE000
Size:	28672

Details

Name:	0000000B.00000002.550037871.000000449467D000.00000004.00000010.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	449467D000
Size:	12288

Details

Name:	0000000E.00000002.373191616.000002D085A81000.00000004.00000001.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2D085A81000
Size:	57344

Details

Name:	00000002.00000003.536218687.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000003.00000002.552151057.00007FF5AA4B5000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA4B5000
Size:	4096

Details

Name:	00000002.00000003.376473489.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000007.00000002.552753713.00007FF5DC20D000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC20D000
Size:	4096

Details

Name:	00000010.00000002.408632445.00007FF4F472A000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F472A000
Size:	8192

Details

Name:	00000002.00000003.503509772.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000007.00000002.550597608.0000018891E65000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	18891E65000
Size:	57344

Details

Name:	0000000B.00000002.551274063.00007FF5D37EF000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D37EF000
Size:	12288

Details

Name:	0000000D.00000002.346981980.00000219BE470000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	219BE470000
Size:	53248

Details

Name:	00000002.00000003.399100540.0000000004370000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4370000
Size:	135168

Details

Name:	00000002.00000003.448345160.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	122880

Details

Name:	00000002.00000003.455166298.00000000044F4000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44F4000
Size:	126976

Details

Name:	00000005.00000002.301173240.000000000085F000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	85F000
Size:	4096

Details

Name:	00000008.00000002.311680110.00007DF517A70000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF517A70000
Size:	4096

Details

Name:	00000010.00000003.395258475.0000019C9239A000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9239A000
Size:	4096

Details

Name:	00000011.00000002.394069112.00007FF539324000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539324000
Size:	12288

Details

Name:	00000004.00000002.551023527.00007DF528F20000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF528F20000
Size:	4096

Details

Name:	00000002.00000003.286815612.00000000012AD000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12AD000
Size:	139264

Details

Name:	00000002.00000003.287621510.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000000.00000002.286868399.00000000007D0000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7D0000
Size:	16384

Details

Name:	00000007.00000003.290044127.0000018891E5A000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	18891E5A000
Size:	4096

Details

Name:	00000002.00000003.431770948.00000000012F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	0000000E.00000002.373508228.00007FF51954B000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51954B000
Size:	12288

Details

Name:	00000002.00000003.544799514.0000000004571000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4571000
Size:	118784

Details

Name:	00000005.00000003.295573487.0000000002490000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2490000
Size:	65536

Details

Name:	00000008.00000002.311655814.00007DF415930000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF415930000
Size:	20480

Details

Name:	00000008.00000002.311830970.00007FF509D77000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509D77000
Size:	8192

Details

Name:	00000002.00000003.363680507.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000005.00000003.288498384.0000000000830000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	830000
Size:	28672

Details

Name:	00000002.00000003.300293225.00000000045AA000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45AA000
Size:	139264

Details

Name:	00000002.00000003.290693189.00000000012ED000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12ED000
Size:	4096

Details

Name:	00000011.00000002.394130009.00007FF539A40000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539A40000
Size:	4096

Details

Name:	00000010.00000003.395252048.0000019C92390000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92390000
Size:	4096

Details

Name:	00000001.00000002.551902031.00007FF58C6F9000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C6F9000
Size:	12288

Details

Name:	00000006.00000002.297289959.0000026457D02000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	26457D02000
Size:	12288

Details

Name:	00000005.00000000.285606403.0000000000370000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown
Protect:	page read and write
Base address:	370000
Size:	4096

Details

Name:	00000002.00000000.283681712.000000007FDD0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDD0000
Size:	12288

Details

Name:	00000008.00000002.311825023.00007FF509D5E000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509D5E000
Size:	4096

Details

Name:	00000003.00000002.549949503.0000005D73EFE000.00000004.00000010.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5D73EFE000
Size:	8192

Details

Name:	00000002.00000003.527869383.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000010.00000003.394060966.0000019C923B1000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C923B1000
Size:	212992

Details

Name:	0000000E.00000002.373398003.00007FF51945B000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51945B000
Size:	24576

Details

Name:	00000001.00000002.551305335.00007FF58C287000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C287000
Size:	4096

Details

Name:	00000010.00000002.407492608.0000019C91A56000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91A56000
Size:	4096

Details

Name:	0000000D.00000002.347063552.00007DF5CA6A2000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5CA6A2000
Size:	4096

Details

Name:	0000000D.00000002.347259752.00007FF5BC960000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC960000
Size:	4096

Details

Name:	0000000E.00000002.373358487.00007FF5193B1000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5193B1000
Size:	8192

Details

Name:	00000002.00000003.426056110.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.406122166.0000000005DA1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5DA1000
Size:	176128

Details

Name:	00000010.00000002.407840069.0000019C92300000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92300000
Size:	61440

Details

Name:	00000008.00000002.311836662.00007FF509D7A000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509D7A000
Size:	8192

Details

Name:	00000002.00000003.358871139.0000000005DD2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5DD2000
Size:	4096

Details

Name:	00000002.00000003.489471312.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.513243640.0000000004490000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4490000
Size:	122880

Details

Name:	00000003.00000002.551765045.00007FF5A9CEE000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5A9CEE000
Size:	12288

Details

Name:	00000002.00000002.551011425.000000000121B000.00000040.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	121B000
Size:	4096

Details

Name:	00000002.00000003.444621990.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000002.550818696.00000000011F6000.00000040.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	11F6000
Size:	8192

Details

Name:	00000002.00000003.528454630.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000005.00000002.302047137.0000000000DD0000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	DD0000
Size:	65536

Details

Name:	00000005.00000000.285323781.00007FF5B8BC0000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5B8BC0000
Size:	4096

Details

Name:	00000005.00000003.295801651.00000000024A0000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	24A0000
Size:	65536

Details

Name:	00000002.00000003.291868477.00000000044AA000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44AA000
Size:	143360

Details

Name:	00000002.00000003.423186883.0000000004430000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4430000
Size:	131072

Details

Name:	00000002.00000003.393104527.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000005.00000003.296867348.0000000002470000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2470000
Size:	65536

Details

Name:	00000002.00000003.410723925.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000007.00000002.550637851.0000018891E74000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	18891E74000
Size:	8192

Details

Name:	00000004.00000002.550643829.0000024029B02000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	24029B02000
Size:	32768

Details

Name:	00000005.00000003.295338500.000000001BD80000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD80000
Size:	57344

Details

Name:	00000002.00000003.286519831.0000000005C40000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5C40000
Size:	49152

Details

Name:	0000000D.00000002.347191914.00007FF5BC810000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC810000
Size:	4096

Details

Name:	00000002.00000003.456254736.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.423946013.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.436808844.00000000043DF000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43DF000
Size:	131072

Details

Name:	00000004.00000002.550167998.00000240298D0000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	240298D0000
Size:	4096

Details

Name:	00000006.00000002.297241361.0000026457C3C000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	26457C3C000
Size:	53248

Details

Name:	00000002.00000003.378769994.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000002.00000003.338075449.00000000044BB000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44BB000
Size:	143360

Details

Name:	00000006.00000000.285642540.00007DF5F6B42000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5F6B42000
Size:	4096

Details

Name:	00000003.00000002.551614277.00007DF5B8290000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5B8290000
Size:	4096

Details

Name:	0000000E.00000002.373105609.000002D085830000.00000004.00000020.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	2D085830000
Size:	8192

Details

Name:	00000010.00000002.408354721.00007FF4F4569000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4569000
Size:	4096

Details

Name:	00000003.00000002.552131578.00007FF5AA4B1000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA4B1000
Size:	12288

Details

Name:	0000000E.00000002.373569921.00007FF5195FA000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5195FA000
Size:	4096

Details

Name:	00000002.00000003.455106467.000000000440B000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	440B000
Size:	126976

Details

Name:	00000001.00000002.551368968.00007FF58C46E000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C46E000
Size:	4096

Details

Name:	00000002.00000003.312698505.0000000004360000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4360000
Size:	135168

Details

Name:	00000003.00000002.552029711.00007FF5AA3B6000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA3B6000
Size:	16384

Details

Name:	00000008.00000003.310748013.0000027819640000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	27819640000
Size:	36864

Details

Name:	0000000D.00000002.347290206.00007FF5BC98B000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC98B000
Size:	12288

Details

Name:	00000002.00000003.285056742.00000000054F7000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F7000
Size:	12288

Details

Name:	00000002.00000003.391224217.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000005.00000003.294722601.000000001BD71000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD71000
Size:	8192

Details

Name:	0000000D.00000003.346601096.00000219BE47C000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	219BE47C000
Size:	40960

Details

Name:	00000008.00000002.311650068.0000027819E02000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	27819E02000
Size:	4096

Details

Name:	00000002.00000003.481658664.00000000012ED000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12ED000
Size:	4096

Details

Name:	00000005.00000002.301177844.0000000000880000.00000040.00000040.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page execute and read and write
Base address:	880000
Size:	8192

Details

Name:	00000005.00000003.295646297.000000001BDC0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BDC0000
Size:	65536

Details

Name:	00000002.00000000.283381753.000000007FDC0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDC0000
Size:	4096

Details

Name:	00000002.00000003.399231279.000000000457E000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	457E000
Size:	135168

Details

Name:	00000002.00000003.338132799.0000000004561000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4561000
Size:	139264

Details

Name:	00000002.00000003.284464369.00000000053A0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	53A0000
Size:	32768

Details

Name:	00000007.00000002.552425927.00007FF5DBE69000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DBE69000
Size:	4096

Details

Name:	0000000E.00000002.373376076.00007FF5193D0000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5193D0000
Size:	4096

Details

Name:	00000002.00000003.356801191.00000000045AF000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45AF000
Size:	139264

Details

Name:	00000010.00000003.407012691.0000019C91A4C000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91A4C000
Size:	8192

Details

Name:	00000002.00000003.291821240.0000000004405000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4405000
Size:	139264

Details

Name:	00000002.00000003.305576384.0000000004393000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4393000
Size:	143360

Details

Name:	00000008.00000002.311789737.00007FF509D2E000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509D2E000
Size:	28672

Details

Name:	00000010.00000003.395925291.0000019C92802000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92802000
Size:	794624

Details

Name:	00000002.00000003.513150113.0000000004340000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4340000
Size:	118784

Details

Name:	00000002.00000003.319658160.0000000006770000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6770000
Size:	24576

Details

Name:	00000000.00000002.287184674.0000000000BC0000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	BC0000
Size:	8192

Details

Name:	00000005.00000002.301280018.0000000000939000.00000004.00000020.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	939000
Size:	417792

Details

Name:	00000002.00000003.331397387.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000010.00000002.407293800.0000019C91800000.00000004.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	19C91800000
Size:	4096

Details

Name:	0000000B.00000000.291547371.00007DF5E1542000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5E1542000
Size:	4096

Details

Name:	00000001.00000000.282033171.00007DF59A392000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF59A392000
Size:	4096

Details

Name:	00000002.00000003.523547822.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000008.00000002.311483879.0000027819600000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	27819600000
Size:	73728

Details

Name:	00000002.00000002.550136530.0000000000AF0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	AF0000
Size:	102400

Details

Name:	00000002.00000003.493297322.0000000004446000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4446000
Size:	122880

Details

Name:	00000002.00000003.423235381.00000000044D0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44D0000
Size:	131072

Details

Name:	00000002.00000003.500747908.00000000045C7000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45C7000
Size:	122880

Details

Name:	00000002.00000003.312755952.0000000004405000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4405000
Size:	139264

Details

Name:	0000000B.00000002.551401056.00007FF5D382B000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D382B000
Size:	12288

Details

Name:	00000002.00000003.321247005.00000000045D0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45D0000
Size:	139264

Details

Name:	00000002.00000003.445991158.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	122880

Details

Name:	00000005.00000003.288214590.0000000000821000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	821000
Size:	8192

Details

Name:	00000010.00000003.389314840.0000019C92380000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92380000
Size:	45056

Details

Name:	00000010.00000000.381025319.00007DF502422000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF502422000
Size:	4096

Details

Name:	00000002.00000002.550484186.0000000001070000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1070000
Size:	4096

Details

Name:	00000005.00000002.304581033.00007FFC084AB000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	7FFC084AB000
Size:	4096

Details

Name:	00000002.00000003.457976707.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.332004159.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000004.00000000.284944317.00007FF51B2C1000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B2C1000
Size:	16384

Details

Name:	00000002.00000003.496098197.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000006.00000002.297331595.0000026458402000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	26458402000
Size:	4096

Details

Name:	00000003.00000002.552808900.00007FF5AA62E000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA62E000
Size:	28672

Details

Name:	00000002.00000003.486549918.00000000043F8000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43F8000
Size:	122880

Details

Name:	00000007.00000002.552620556.00007FF5DC0EB000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC0EB000
Size:	8192

Details

Name:	00000002.00000003.285093888.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	45056

Details

Name:	00000010.00000002.407563244.0000019C91A8C000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91A8C000
Size:	102400

Details

Name:	00000002.00000003.447830930.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.319641611.0000000006770000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6770000
Size:	12288

Details

Name:	00000002.00000002.555200066.0000000005AFE000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5AFE000
Size:	8192

Details

Name:	00000002.00000003.290531883.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000010.00000002.407853504.0000019C92310000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92310000
Size:	16384

Details

Name:	0000000B.00000002.551520744.00007FF5D385A000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D385A000
Size:	8192

Details

Name:	00000002.00000003.287892214.0000000005DA1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5DA1000
Size:	180224

Details

Name:	00000002.00000003.520110791.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	0000000B.00000002.549945639.00000044944FD000.00000004.00000010.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	44944FD000
Size:	12288

Details

Name:	00000002.00000003.386356846.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000002.00000002.555361244.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.285030692.00000000054F6000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F6000
Size:	4096

Details

Name:	00000011.00000002.394205045.00007FF539AF2000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539AF2000
Size:	12288

Details

Name:	00000002.00000003.285025987.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	16384

Details

Name:	00000002.00000000.283026158.000000007FDD0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDD0000
Size:	12288

Details

Name:	00000002.00000002.550850375.00000000011FA000.00000040.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	11FA000
Size:	8192

Details

Name:	00000004.00000002.549985662.000000F9C3DFF000.00000004.00000010.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	F9C3DFF000
Size:	4096

Details

Name:	00000002.00000003.385794530.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000000.00000002.287816206.000000000542F000.00000004.00000010.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	542F000
Size:	4096

Details

Name:	00000002.00000003.474058507.000000000453C000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	453C000
Size:	118784

Details

Name:	00000002.00000003.538088545.00000000045E6000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45E6000
Size:	118784

Details

Name:	00000005.00000003.288087937.0000000000860000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	860000
Size:	53248

Details

Name:	00000005.00000003.294749673.000000001BD80000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD80000
Size:	65536

Details

Name:	00000002.00000003.532755731.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.500384741.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.386396033.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000002.550958899.0000000001210000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1210000
Size:	4096

Details

Name:	00000002.00000002.550788256.00000000011F2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	11F2000
Size:	4096

Details

Name:	00000004.00000002.550048733.0000024029890000.00000004.00000040.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	24029890000
Size:	4096

Details

Name:	00000002.00000003.379487057.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	0000000B.00000003.292680213.0000014838F90000.00000004.00000001.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	14838F90000
Size:	4096

Details

Name:	00000002.00000002.551940134.00000000017B0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	17B0000
Size:	65536

Details

Name:	00000002.00000000.282979862.0000000000AF0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	AF0000
Size:	102400

Details

Name:	00000005.00000000.285292652.0000000000300000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	300000
Size:	4096

Details

Name:	00000000.00000002.287375570.0000000000CCE000.00000004.00000020.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	CCE000
Size:	81920

Details

Name:	00000002.00000003.290720459.0000000006620000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6620000
Size:	20480

Details

Name:	00000002.00000003.521252754.0000000005DCC000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5DCC000
Size:	8192

Details

Name:	00000010.00000003.387888300.0000019C92386000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92386000
Size:	4096

Details

Name:	00000007.00000002.553008816.00007FF5DC2F1000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC2F1000
Size:	12288

Details

Name:	00000002.00000003.522931247.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.405260231.00000000045F5000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45F5000
Size:	135168

Details

Name:	00000002.00000003.333255057.0000000005FE2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE2000
Size:	139264

Details

Name:	00000010.00000002.407287797.00000076A86FF000.00000004.00000010.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	76A86FF000
Size:	4096

Details

Name:	00000004.00000002.551104869.00007DF528F32000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF528F32000
Size:	4096

Details

Name:	0000000E.00000002.373211063.000002D085B08000.00000004.00000001.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2D085B08000
Size:	24576

Details

Name:	00000004.00000000.284907002.00007DF528F30000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF528F30000
Size:	4096

Details

Name:	00000004.00000002.550869398.000002402A202000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2402A202000
Size:	4096

Details

Name:	00000000.00000002.286910498.000000000098F000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	98F000
Size:	4096

Details

Name:	00000005.00000003.292572926.000000001BD50000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD50000
Size:	65536

Details

Name:	00000003.00000002.552339173.00007FF5AA550000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA550000
Size:	4096

Details

Name:	00000010.00000003.387894865.0000019C9238D000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9238D000
Size:	16384

Details

Name:	00000004.00000002.551274587.00007FF51AFE2000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51AFE2000
Size:	4096

Details

Name:	00000005.00000003.295723300.0000000002471000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2471000
Size:	8192

Details

Name:	00000002.00000003.431759563.00000000012ED000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12ED000
Size:	4096

Details

Name:	00000002.00000003.522297101.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.363174186.00000000012BB000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12BB000
Size:	90112

Signature Hits	Behavior Group	Mitre Attack
May try to detect the virtual machine to hinder analysis (VM artifact strings found in memory)	Malware Analysis System Evasion	Security Software Discovery

Details

Name:	00000010.00000002.407706947.0000019C91B16000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91B16000
Size:	4096

Details

Name:	00000002.00000003.393650841.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000005.00000002.302233245.00000000024B0000.00000008.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page write copy
Base address:	24B0000
Size:	266240

Details

Name:	0000000B.00000002.551087790.00007FF5D3597000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D3597000
Size:	12288

Details

Name:	00000002.00000003.477750383.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.487176285.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.286263014.0000000005720000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5720000
Size:	57344

Details

Name:	00000010.00000003.394598922.0000019C9238B000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9238B000
Size:	16384

Details

Name:	00000004.00000002.551257817.00007FF51AFB6000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51AFB6000
Size:	4096

Details

Name:	00000008.00000002.311524588.000002781963B000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2781963B000
Size:	4096

Details

Name:	00000002.00000002.554914351.00000000056BD000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	56BD000
Size:	12288

Details

Name:	00000002.00000003.417464895.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000010.00000002.408230114.00007FF4F4387000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4387000
Size:	4096

Details

Name:	00000010.00000002.407668305.0000019C91B02000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91B02000
Size:	16384

Details

Name:	00000000.00000002.287693138.0000000004EDF000.00000004.00000010.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	4EDF000
Size:	4096

Details

Name:	00000007.00000002.550096940.0000006A1B87C000.00000004.00000010.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6A1B87C000
Size:	16384

Details

Name:	00000002.00000003.523502576.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000001.00000002.551578275.00007FF58C62D000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C62D000
Size:	4096

Details

Name:	00000002.00000003.374139085.0000000004622000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4622000
Size:	139264

Details

Name:	00000002.00000002.553829365.00000000042A1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	42A1000
Size:	24576

Details

Name:	00000003.00000002.549794065.0000005D7387C000.00000004.00000010.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5D7387C000
Size:	16384

Details

Name:	00000003.00000002.551889960.00007FF5AA17D000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA17D000
Size:	4096

Details

Name:	00000002.00000003.332774850.00000000045D0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45D0000
Size:	139264

Details

Name:	0000000D.00000002.347017152.00000219BE513000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	219BE513000
Size:	12288

Details

Name:	00000006.00000002.297200273.0000026457BE0000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	26457BE0000
Size:	4096

Details

Name:	00000001.00000002.551501546.00007FF58C60E000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C60E000
Size:	8192

Details

Name:	00000002.00000003.513225853.0000000004444000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4444000
Size:	118784

Details

Name:	00000002.00000003.447302013.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000004.00000002.551413710.00007FF51B13C000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B13C000
Size:	8192

Details

Name:	00000002.00000003.474096269.00000000045D5000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45D5000
Size:	118784

Details

Name:	00000004.00000002.550940830.00007DF426DF0000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF426DF0000
Size:	20480

Details

Name:	00000002.00000003.492403701.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000007.00000002.550800510.0000018891F1B000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	18891F1B000
Size:	8192

Details

Name:	00000011.00000002.393714082.00000086F9AF9000.00000004.00000010.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	86F9AF9000
Size:	28672

Details

Name:	00000010.00000002.407246362.00000076A837A000.00000004.00000010.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	76A837A000
Size:	24576

Details

Name:	00000010.00000002.407632192.0000019C91AEB000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91AEB000
Size:	36864

Details

Name:	00000002.00000003.498271589.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000002.00000003.486609479.00000000044DF000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44DF000
Size:	122880

Details

Name:	0000000D.00000002.347269353.00007FF5BC967000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC967000
Size:	16384

Details

Name:	00000002.00000003.467581624.000000000442A000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	442A000
Size:	122880

Details

Name:	00000010.00000002.407385327.0000019C91970000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91970000
Size:	4096

Details

Name:	00000005.00000003.288136758.0000000000811000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	811000
Size:	8192

Details

Name:	00000002.00000003.284429323.00000000053C0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	53C0000
Size:	16384

Details

Name:	00000003.00000002.550190441.000001F361A00000.00000004.00000001.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1F361A00000
Size:	73728

Details

Name:	00000005.00000002.303680871.000000001B4AC000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1B4AC000
Size:	118784

Details

Name:	0000000B.00000002.550290857.0000014838E40000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	14838E40000
Size:	4096

Details

Name:	00000002.00000003.285137860.00000000054F5000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F5000
Size:	12288

Details

Name:	0000000B.00000002.551654604.00007FF5D38C4000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D38C4000
Size:	20480

Details

Name:	00000007.00000000.286009358.00007FF5DC301000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC301000
Size:	16384

Details

Name:	00000008.00000002.311851694.00007FF509DE4000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509DE4000
Size:	20480

Details

Name:	00000000.00000002.287440011.0000000000F70000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	F70000
Size:	65536

Details

Name:	00000010.00000002.408435214.00007FF4F4631000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4631000
Size:	12288

Details

Name:	00000002.00000003.393143648.000000000459F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	459F000
Size:	135168

Details

Name:	00000008.00000003.310670431.0000027819678000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	27819678000
Size:	45056

Details

Name:	00000002.00000003.407712260.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000002.00000003.332708268.00000000044D9000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44D9000
Size:	139264

Details

Name:	00000002.00000002.551067632.000000000122A000.00000004.00000020.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	122A000
Size:	172032

Signature Hits	Behavior Group	Mitre Attack
Creates a DirectInput object (often for capturing keystrokes)	Key, Mouse, Clipboard, Microphone and Screen Capturing	Input Capture

Details

Name:	00000011.00000002.393857993.000001CCF4176000.00000004.00000020.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	1CCF4176000
Size:	73728

Details

Name:	0000000B.00000002.551614852.00007FF5D38B9000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D38B9000
Size:	12288

Details

Name:	00000008.00000002.311744928.00007FF509B86000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509B86000
Size:	16384

Details

Name:	00000005.00000002.304571303.00007FFC084A0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	7FFC084A0000
Size:	4096

Details

Name:	00000002.00000003.285013344.00000000054F7000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F7000
Size:	12288

Details

Name:	00000002.00000003.532128201.0000000004443000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4443000
Size:	118784

Details

Name:	00000003.00000002.550839658.000001F361AC3000.00000004.00000001.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1F361AC3000
Size:	24576

Details

Name:	00000002.00000003.536781332.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000000.00000002.287218217.0000000000BEA000.00000040.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	BEA000
Size:	4096

Details

Name:	00000002.00000003.412454843.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.420155415.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	0000000E.00000002.373450002.00007FF519513000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF519513000
Size:	28672

Details

Name:	00000003.00000002.552432459.00007FF5AA567000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA567000
Size:	49152

Details

Name:	00000002.00000003.332730431.000000000452B000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	452B000
Size:	139264

Details

Name:	00000002.00000003.448402991.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000000.00000002.287469304.000000000109E000.00000004.00000010.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	109E000
Size:	8192

Details

Name:	00000002.00000003.444691626.00000000012ED000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12ED000
Size:	4096

Details

Name:	00000005.00000002.301168761.00000000007F0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	7F0000
Size:	4096

Details

Name:	00000010.00000003.389909634.0000019C923AC000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C923AC000
Size:	122880

Details

Name:	0000000E.00000002.373253911.00007DF425130000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF425130000
Size:	20480

Details

Name:	00000010.00000002.408137372.00007FF4F411B000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F411B000
Size:	4096

Details

Name:	00000003.00000002.552687095.00007FF5AA609000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA609000
Size:	12288

Details

Name:	00000002.00000003.362576900.0000000004467000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4467000
Size:	135168

Details

Name:	00000002.00000003.433365756.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000010.00000002.407273398.00000076A84FE000.00000004.00000010.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	76A84FE000
Size:	8192

Details

Name:	00000002.00000003.460961325.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000001.00000002.551120190.00007DF59A382000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF59A382000
Size:	4096

Details

Name:	00000002.00000003.446137412.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000000.00000002.287238285.0000000000BF2000.00000040.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	BF2000
Size:	8192

Details

Name:	00000003.00000002.551956632.00007FF5AA305000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA305000
Size:	32768

Details

Name:	00000001.00000002.549877774.000000926817F000.00000004.00000010.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	926817F000
Size:	4096

Details

Name:	00000002.00000003.333280003.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000005.00000002.301720419.00000000009BB000.00000004.00000020.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	9BB000
Size:	65536

Details

Name:	00000002.00000003.312878344.00000000045F5000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45F5000
Size:	139264

Details

Name:	00000007.00000002.552859374.00007FF5DC223000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC223000
Size:	12288

Details

Name:	00000004.00000002.551191615.00007FF51A972000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51A972000
Size:	16384

Details

Name:	00000006.00000002.297218377.0000026457C13000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	26457C13000
Size:	90112

Details

Name:	00000011.00000000.382003356.00007DF547782000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF547782000
Size:	4096

Details

Name:	00000007.00000002.552288849.00007FF5DBAF5000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DBAF5000
Size:	4096

Details

Name:	00000002.00000003.407097368.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000010.00000002.408680050.00007FF4F479A000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F479A000
Size:	12288

Details

Name:	00000002.00000003.493189296.00000000043AC000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43AC000
Size:	122880

Details

Name:	00000010.00000003.384546427.0000019C923D0000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C923D0000
Size:	126976

Details

Name:	00000000.00000002.287278004.0000000000C1C000.00000040.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	C1C000
Size:	4096

Details

Name:	00000008.00000002.310960526.000000D77897F000.00000004.00000010.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	D77897F000
Size:	4096

Details

Name:	00000002.00000003.448894206.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	122880

Details

Name:	00000002.00000003.389277998.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000006.00000002.297312202.0000026458000000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	26458000000
Size:	12288

Details

Name:	00000002.00000003.300273889.0000000004556000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4556000
Size:	143360

Details

Name:	0000000D.00000000.332650538.00007FF5BCA41000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BCA41000
Size:	16384

Details

Name:	00000002.00000003.498514481.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000007.00000002.552247919.00007FF5DB9C2000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DB9C2000
Size:	4096

Details

Name:	00000005.00000003.297719107.0000000002490000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2490000
Size:	12288

Details

Name:	00000002.00000003.527855622.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000005.00000003.287945593.0000000000810000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	810000
Size:	12288

Details

Name:	00000002.00000003.420148185.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000006.00000002.297141283.0000006D6A0F7000.00000004.00000010.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6D6A0F7000
Size:	36864

Details

Name:	00000002.00000002.551884688.00000000015A0000.00000004.00000040.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	15A0000
Size:	20480

Details

Name:	00000007.00000002.551636692.0000018893A02000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	18893A02000
Size:	4096

Details

Name:	00000002.00000003.524138839.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000010.00000003.388805189.0000019C92388000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92388000
Size:	131072

Details

Name:	00000002.00000003.467616793.00000000044C3000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44C3000
Size:	122880

Details

Name:	00000002.00000003.405104782.0000000004370000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4370000
Size:	135168

Details

Name:	00000002.00000003.519313618.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	0000000B.00000002.551317111.00007FF5D3800000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D3800000
Size:	4096

Details

Name:	00000002.00000003.415582077.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.286489511.0000000005730000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5730000
Size:	28672

Details

Name:	00000005.00000003.295329459.000000001BD70000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD70000
Size:	65536

Details

Name:	00000010.00000002.408581871.00007FF4F46E7000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F46E7000
Size:	49152

Details

Name:	00000004.00000002.551055850.00007DF528F22000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF528F22000
Size:	4096

Details

Name:	00000002.00000003.494183307.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000010.00000003.406972214.0000019C91A57000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91A57000
Size:	8192

Details

Name:	00000004.00000002.549874814.000000F9C37FF000.00000004.00000010.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	F9C37FF000
Size:	4096

Details

Name:	00000002.00000003.421946219.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	122880

Details

Name:	00000002.00000003.421383486.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	0000000E.00000002.373551645.00007FF5195E4000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5195E4000
Size:	20480

Details

Name:	00000010.00000002.407729627.0000019C91C00000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	19C91C00000
Size:	4096

Details

Name:	00000002.00000003.442815429.00000000043BE000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43BE000
Size:	131072

Details

Name:	00000003.00000002.551532138.000001F362312000.00000004.00000001.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1F362312000
Size:	36864

Details

Name:	00000002.00000003.411449788.00000000045C3000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45C3000
Size:	135168

Details

Name:	00000004.00000000.284897830.00007DF528F20000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF528F20000
Size:	4096

Details

Name:	0000000B.00000002.550838147.00007DF4DF410000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF4DF410000
Size:	20480

Details

Name:	00000002.00000003.286776836.0000000005DA1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5DA1000
Size:	65536

Details

Name:	00000005.00000003.295318925.00000000024A0000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	24A0000
Size:	65536

Details

Name:	00000002.00000003.385152351.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	0000000E.00000000.361620880.00007DF527262000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF527262000
Size:	4096

Details

Name:	00000002.00000003.521762449.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.467697059.00000000045F5000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45F5000
Size:	122880

Details

Name:	00000002.00000003.444697864.00000000012F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	00000002.00000003.503539093.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.504117396.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000003.00000002.552083969.00007FF5AA447000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA447000
Size:	28672

Details

Name:	00000005.00000003.288268974.0000000000820000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	820000
Size:	28672

Details

Name:	00000010.00000003.384629065.0000019C92802000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92802000
Size:	131072

Details

Name:	00000002.00000003.418173653.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000004.00000002.551381891.00007FF51B0AB000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B0AB000
Size:	8192

Details

Name:	00000002.00000003.407752576.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	0000000E.00000002.373151503.000002D085A3C000.00000004.00000001.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2D085A3C000
Size:	53248

Details

Name:	00000002.00000002.550977846.0000000001212000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1212000
Size:	4096

Details

Name:	00000002.00000003.433306482.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.286457243.0000000005730000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5730000
Size:	16384

Details

Name:	00000002.00000003.431748923.00000000012DB000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12DB000
Size:	12288

Details

Name:	00000010.00000002.408020896.00007DF502410000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF502410000
Size:	4096

Details

Name:	00000007.00000002.549749094.0000006A1ACCC000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6A1ACCC000
Size:	16384

Details

Name:	00000007.00000002.552179509.00007DFC0C472000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DFC0C472000
Size:	8192

Details

Name:	00000002.00000003.420799781.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.499160320.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000003.00000002.550107326.000001F361870000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1F361870000
Size:	12288

Details

Name:	0000000D.00000002.346852109.00000093D8AFD000.00000004.00000010.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	93D8AFD000
Size:	12288

Details

Name:	00000005.00000000.285596275.0000000000350000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	350000
Size:	12288

Details

Name:	00000007.00000002.552448206.00007FF5DBECC000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DBECC000
Size:	8192

Details

Name:	00000002.00000003.433900593.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000001.00000002.550095596.000001D34F400000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1D34F400000
Size:	4096

Details

Name:	00000002.00000003.417475121.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000010.00000002.408003203.00007DF4002E0000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF4002E0000
Size:	20480

Details

Name:	00000002.00000003.396062542.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000002.00000003.520021350.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.495367377.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	0000000E.00000002.373300103.00007FF518CB8000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF518CB8000
Size:	16384

Details

Name:	00000002.00000003.544761361.0000000004526000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4526000
Size:	118784

Details

Name:	00000002.00000003.363145913.00000000012D1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12D1000
Size:	8192

Details

Name:	00000002.00000003.433316359.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000000.283957813.000000007FDC0000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDC0000
Size:	4096

Details

Name:	0000000D.00000002.346926088.00000219BE413000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	219BE413000
Size:	86016

Details

Name:	00000003.00000002.550032072.000001F361840000.00000004.00000040.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	1F361840000
Size:	4096

Details

Name:	00000002.00000002.555549599.000000007FDB2000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FDB2000
Size:	4096

Details

Name:	00000002.00000003.284475464.00000000053A0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	53A0000
Size:	4096

Details

Name:	00000002.00000003.427221216.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000007.00000002.552583948.00007FF5DC09F000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC09F000
Size:	8192

Details

Name:	00000005.00000002.303474135.000000001AACD000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1AACD000
Size:	12288

Details

Name:	00000002.00000003.530200266.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.399164473.0000000004462000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4462000
Size:	139264

Details

Name:	00000003.00000002.552627156.00007FF5AA5AD000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA5AD000
Size:	12288

Details

Name:	00000000.00000002.287560806.0000000001400000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1400000
Size:	65536

Details

Name:	0000000E.00000002.373321873.00007FF5190E7000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5190E7000
Size:	32768

Details

Name:	00000000.00000002.286903920.000000000098C000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	98C000
Size:	4096

Details

Name:	00000002.00000003.485935102.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	0000000E.00000002.373161541.000002D085A4C000.00000004.00000001.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2D085A4C000
Size:	12288

Details

Name:	00000002.00000002.552327927.0000000002DF5000.00000004.00000040.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	2DF5000
Size:	20480

Signature Hits	Behavior Group	Mitre Attack
Binary contains paths to debug symbols	Compliance, System Summary

Details

Name:	00000002.00000003.480120755.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.330794765.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000002.00000003.532208815.0000000004572000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4572000
Size:	118784

Details

Name:	00000005.00000002.302578345.00000000025F4000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	25F4000
Size:	28672

Details

Name:	00000001.00000002.550283766.000001D34F429000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1D34F429000
Size:	73728

Details

Name:	00000002.00000003.363135441.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000010.00000002.408098123.00007FF4F3FB4000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F3FB4000
Size:	12288

Details

Name:	00000001.00000002.550956642.000001D34F810000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1D34F810000
Size:	12288

Details

Name:	0000000D.00000002.346995964.00000219BE48D000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	219BE48D000
Size:	16384

Details

Name:	00000006.00000002.297230760.0000026457C2A000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	26457C2A000
Size:	69632

Details

Name:	00000002.00000003.286178290.0000000005705000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5705000
Size:	4096

Details

Name:	00000001.00000002.551287840.00007FF58C273000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C273000
Size:	4096

Details

Name:	00000002.00000003.415004158.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000001.00000000.282028115.00007DF59A390000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF59A390000
Size:	4096

Details

Name:	00000002.00000003.420793612.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000000.00000002.286931495.0000000000992000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	992000
Size:	4096

Details

Name:	00000008.00000002.311817652.00007FF509D53000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509D53000
Size:	24576

Details

Name:	00000001.00000002.550782508.000001D34F502000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1D34F502000
Size:	49152

Details

Name:	00000007.00000002.550315301.0000018891DE0000.00000004.00000020.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	18891DE0000
Size:	8192

Details

Name:	00000008.00000002.311697271.00007DF517A80000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF517A80000
Size:	12288

Details

Name:	00000002.00000003.444630790.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000006.00000002.297897883.00007FF5E8E5D000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8E5D000
Size:	8192

Details

Name:	0000000B.00000002.551142176.00007FF5D35FA000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D35FA000
Size:	12288

Details

Name:	0000000E.00000002.373514969.00007FF519553000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF519553000
Size:	24576

Details

Name:	00000000.00000002.287911851.000000000582E000.00000004.00000010.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	582E000
Size:	8192

Details

Name:	0000000D.00000002.347320625.00007FF5BC9BA000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC9BA000
Size:	8192

Details

Name:	00000002.00000003.286413665.0000000005720000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5720000
Size:	24576

Details

Name:	00000002.00000003.383987766.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000003.00000000.283311898.00007DF5B82B0000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5B82B0000
Size:	12288

Details

Name:	00000002.00000003.491083946.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000010.00000002.408429147.00007FF4F461C000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F461C000
Size:	4096

Details

Name:	00000002.00000003.406266162.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000007.00000002.552718062.00007FF5DC1EF000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC1EF000
Size:	4096

Details

Name:	00000002.00000003.411432613.0000000004573000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4573000
Size:	131072

Details

Name:	00000010.00000003.395818254.0000019C9238E000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9238E000
Size:	397312

Details

Name:	00000002.00000003.434457638.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000005.00000003.288147207.0000000000814000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	814000
Size:	28672

Details

Name:	00000002.00000003.285129251.00000000054F6000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F6000
Size:	16384

Details

Name:	00000005.00000003.295279260.0000000002480000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2480000
Size:	8192

Details

Name:	00000000.00000003.280717500.0000000001160000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1160000
Size:	24576

Details

Name:	00000004.00000002.551239974.00007FF51AFA4000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51AFA4000
Size:	20480

Details

Name:	00000002.00000003.484143879.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.423138428.0000000004391000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4391000
Size:	126976

Details

Name:	00000002.00000002.554756765.0000000005550000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	5550000
Size:	4096

Details

Name:	00000004.00000002.551126881.00007DF528F40000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF528F40000
Size:	12288

Details

Name:	00000005.00000003.295516459.000000001BD70000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD70000
Size:	32768

Details

Name:	00000002.00000003.284434671.00000000053A0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	53A0000
Size:	16384

Details

Name:	00000007.00000000.285967727.00007DF5E9F60000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5E9F60000
Size:	4096

Details

Name:	00000008.00000002.311108208.0000027819580000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	27819580000
Size:	102400

Details

Name:	00000008.00000002.311797519.00007FF509D37000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509D37000
Size:	49152

Details

Name:	00000002.00000003.406415264.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000005.00000002.304472828.000000001CEE0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1CEE0000
Size:	4096

Details

Name:	00000003.00000002.549747311.0000005D7367B000.00000004.00000001.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	5D7367B000
Size:	20480

Details

Name:	0000000B.00000002.549904337.00000044943FE000.00000004.00000010.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	44943FE000
Size:	8192

Details

Name:	0000000E.00000002.373541122.00007FF5195D2000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5195D2000
Size:	12288

Details

Name:	00000002.00000003.362616627.000000000450A000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	450A000
Size:	139264

Details

Name:	00000002.00000003.423954609.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000003.00000002.551194104.000001F362060000.00000008.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page write copy
Base address:	1F362060000
Size:	266240

Details

Name:	0000000D.00000002.347011437.00000219BE508000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	219BE508000
Size:	24576

Details

Name:	00000001.00000002.552041233.00007FF58C71E000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C71E000
Size:	28672

Details

Name:	00000010.00000002.408059836.00007DF502430000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF502430000
Size:	12288

Details

Name:	00000008.00000002.311475373.00000278195E0000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	278195E0000
Size:	16384

Details

Name:	00000002.00000003.502334002.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000010.00000002.407510434.0000019C91A5A000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91A5A000
Size:	81920

Details

Name:	00000000.00000002.287736466.00000000052EE000.00000004.00000010.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	52EE000
Size:	8192

Details

Name:	00000011.00000002.393999831.00007DF547790000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF547790000
Size:	4096

Details

Name:	00000007.00000002.552959557.00007FF5DC2D2000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC2D2000
Size:	12288

Details

Name:	00000002.00000003.429731254.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000002.00000003.344068025.00000000045B3000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45B3000
Size:	139264

Details

Name:	00000000.00000002.287286381.0000000000C2B000.00000040.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	C2B000
Size:	4096

Details

Name:	00000005.00000002.301144537.0000000000380000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	380000
Size:	4096

Details

Name:	00000005.00000003.294742547.000000001BD74000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD74000
Size:	49152

Details

Name:	00000002.00000003.367376864.00000000012F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	0000000E.00000002.373167711.000002D085A54000.00000004.00000001.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2D085A54000
Size:	110592

Details

Name:	00000002.00000003.290701059.00000000012F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	0000000D.00000002.346820138.00000093D877B000.00000004.00000010.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	93D877B000
Size:	20480

Details

Name:	00000002.00000003.337976033.0000000005FE2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE2000
Size:	139264

Details

Name:	00000001.00000002.549821930.0000009267F7B000.00000004.00000010.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	9267F7B000
Size:	20480

Details

Name:	00000002.00000003.464592621.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000002.550761798.00000000011F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	11F0000
Size:	4096

Details

Name:	00000002.00000003.493421870.00000000044E0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44E0000
Size:	122880

Details

Name:	00000002.00000002.555519480.000000007FC50000.00000040.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	7FC50000
Size:	4096

Details

Name:	00000000.00000002.287601159.0000000001580000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1580000
Size:	4096

Details

Name:	00000002.00000003.516953880.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.429781290.0000000004391000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4391000
Size:	126976

Details

Name:	00000002.00000003.481718047.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000004.00000003.285428715.0000024029A65000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	24029A65000
Size:	61440

Details

Name:	00000010.00000002.408526928.00007FF4F46BF000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F46BF000
Size:	12288

Details

Name:	00000002.00000003.380225588.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.480205727.0000000004451000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4451000
Size:	122880

Details

Name:	00000000.00000002.287496506.0000000001170000.00000004.00000040.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	1170000
Size:	16384

Details

Name:	00000001.00000002.551336378.00007FF58C416000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C416000
Size:	4096

Details

Name:	0000000D.00000002.347263887.00007FF5BC963000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC963000
Size:	12288

Details

Name:	00000002.00000003.500527300.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.475845092.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.417591264.0000000004552000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4552000
Size:	131072

Details

Name:	00000005.00000002.303561144.000000001B44E000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1B44E000
Size:	8192

Details

Name:	00000005.00000003.295629036.000000001BDA0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BDA0000
Size:	65536

Details

Name:	00000002.00000003.327282377.00000000043E3000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43E3000
Size:	139264

Details

Name:	00000002.00000003.374116078.00000000045D1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45D1000
Size:	135168

Details

Name:	00000002.00000003.529628093.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000010.00000003.387597710.0000019C92386000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92386000
Size:	61440

Details

Name:	00000003.00000002.549983589.0000005D73FFD000.00000004.00000010.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5D73FFD000
Size:	12288

Details

Name:	00000002.00000003.330225024.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000006.00000003.296879347.0000026457C7A000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	26457C7A000
Size:	40960

Details

Name:	00000002.00000003.520673603.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000007.00000002.552920314.00007FF5DC25E000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC25E000
Size:	8192

Details

Name:	00000003.00000002.550272834.000001F361A29000.00000004.00000001.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1F361A29000
Size:	81920

Details

Name:	00000010.00000003.388767088.0000019C92388000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92388000
Size:	65536

Details

Name:	00000002.00000003.410110408.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000011.00000002.393752091.000001CCF3F90000.00000004.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	1CCF3F90000
Size:	4096

Details

Name:	00000002.00000003.421389650.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.420127376.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	0000000B.00000002.550650806.0000014839200000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	14839200000
Size:	4096

Details

Name:	00000008.00000003.310764967.0000027819645000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	27819645000
Size:	16384

Details

Name:	00000002.00000003.287211849.00000000060F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	60F0000
Size:	61440

Details

Name:	00000005.00000003.293849970.000000001BD80000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD80000
Size:	65536

Details

Name:	00000004.00000000.284914653.00007DF528F40000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF528F40000
Size:	12288

Details

Name:	00000007.00000002.552306606.00007FF5DBAF9000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DBAF9000
Size:	12288

Details

Name:	00000006.00000002.297342811.00007DF5F6B40000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5F6B40000
Size:	4096

Details

Name:	00000010.00000002.407301180.0000019C91810000.00000004.00000040.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	19C91810000
Size:	4096

Details

Name:	00000002.00000003.449707833.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000007.00000003.290263935.0000018893990000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	18893990000
Size:	4096

Details

Name:	00000002.00000003.519572615.0000000004534000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4534000
Size:	122880

Details

Name:	00000000.00000002.287637141.0000000003DE1000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	3DE1000
Size:	8192

Details

Name:	00000001.00000002.550107621.000001D34F402000.00000004.00000001.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1D34F402000
Size:	65536

Details

Name:	00000001.00000002.549859481.000000926807B000.00000004.00000010.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	926807B000
Size:	20480

Details

Name:	00000002.00000003.495414398.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	0000000D.00000000.332598969.00007DF5CA6B0000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5CA6B0000
Size:	4096

Details

Name:	00000007.00000003.290036078.0000018891E4A000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	18891E4A000
Size:	4096

Details

Name:	00000002.00000003.448973541.000000000442C000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	442C000
Size:	126976

Details

Name:	00000011.00000002.393675211.00000086F9A7A000.00000004.00000010.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	86F9A7A000
Size:	24576

Details

Name:	00000002.00000003.406344270.00000000012F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	0000000E.00000002.373128621.000002D085A13000.00000004.00000001.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2D085A13000
Size:	86016

Details

Name:	00000005.00000003.293916907.000000001BD70000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD70000
Size:	24576

Details

Name:	00000002.00000003.410687390.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000001.00000002.551860523.00007FF58C69D000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C69D000
Size:	12288

Details

Name:	00000002.00000003.284850636.00000000054E0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54E0000
Size:	16384

Details

Name:	00000002.00000003.332663372.0000000004435000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4435000
Size:	135168

Details

Name:	00000002.00000003.364274700.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000002.00000003.380261879.0000000004621000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4621000
Size:	135168

Details

Name:	00000002.00000003.537284505.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000011.00000002.393991789.00007DF547782000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF547782000
Size:	4096

Details

Name:	00000004.00000002.549806099.000000F9C357B000.00000004.00000010.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	F9C357B000
Size:	20480

Details

Name:	00000001.00000002.551746383.00007FF58C64E000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C64E000
Size:	4096

Details

Name:	00000008.00000003.310698685.0000027819649000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	27819649000
Size:	53248

Details

Name:	0000000E.00000002.373001253.000000EE800FB000.00000004.00000010.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	EE800FB000
Size:	20480

Details

Name:	00000002.00000003.429936273.00000000045BC000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45BC000
Size:	131072

Details

Name:	00000005.00000003.295307959.0000000002490000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2490000
Size:	65536

Details

Name:	00000006.00000002.297586141.00007FF5E8CB0000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8CB0000
Size:	4096

Details

Name:	00000008.00000003.310787389.000002781962D000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	2781962D000
Size:	45056

Details

Name:	00000005.00000003.292995593.000000001BD80000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD80000
Size:	4096

Details

Name:	00000002.00000003.358824944.0000000005DA1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5DA1000
Size:	180224

Details

Name:	00000001.00000002.550998077.000001D34F990000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1D34F990000
Size:	4096

Details

Name:	00000005.00000003.295358303.000000001BDA0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BDA0000
Size:	65536

Details

Name:	00000010.00000002.407762951.0000019C91F80000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	19C91F80000
Size:	4096

Details

Name:	00000002.00000003.516197658.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.489911256.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.474598621.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	0000000B.00000002.550901195.00007DF5E1542000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5E1542000
Size:	4096

Details

Name:	0000000B.00000002.551049476.00007FF5D2E77000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D2E77000
Size:	12288

Details

Name:	00000007.00000002.552990769.00007FF5DC2EA000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC2EA000
Size:	12288

Details

Name:	00000002.00000003.286578532.0000000005748000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5748000
Size:	32768

Details

Name:	00000002.00000003.285151188.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	16384

Details

Name:	00000002.00000003.415592344.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.493483458.000000000452D000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	452D000
Size:	122880

Details

Name:	00000002.00000003.497981617.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000002.00000002.552041989.0000000001940000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1940000
Size:	327680

Signature Hits	Behavior Group	Mitre Attack
May try to detect the Windows Explorer process (often used for injection)	HIPS / PFW / Operating System Protection Evasion	Process Injection Process Discovery

Details

Name:	00000002.00000002.550307525.0000000000BB0000.00000004.00000040.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	BB0000
Size:	16384

Details

Name:	00000002.00000003.330272005.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000002.00000003.433872079.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000002.00000003.488526241.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000001.00000002.551257996.00007FF58BF4D000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58BF4D000
Size:	8192

Details

Name:	00000002.00000003.367419819.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000005.00000002.303572630.000000001B450000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1B450000
Size:	73728

Details

Name:	0000000D.00000002.347341567.00007FF5BCA24000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BCA24000
Size:	20480

Details

Name:	00000008.00000000.286318793.00007DF517A60000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF517A60000
Size:	4096

Details

Name:	00000002.00000003.399203476.0000000004504000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4504000
Size:	135168

Details

Name:	00000001.00000002.550070520.000001D34F300000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1D34F300000
Size:	4096

Details

Name:	00000002.00000003.538072551.000000000459B000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	459B000
Size:	114688

Details

Name:	00000002.00000003.423305862.00000000045BE000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45BE000
Size:	126976

Details

Name:	00000005.00000003.288028350.0000000000816000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	816000
Size:	40960

Details

Name:	00000002.00000003.448380013.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000011.00000002.394154260.00007FF539A4E000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539A4E000
Size:	4096

Details

Name:	00000002.00000003.513886178.00000000012ED000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12ED000
Size:	4096

Details

Name:	00000000.00000002.287145874.0000000000B95000.00000004.00000020.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	B95000
Size:	16384

Details

Name:	0000000D.00000002.347058749.00007DF5CA6A0000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5CA6A0000
Size:	4096

Details

Name:	00000005.00000002.304596206.00007FFC08530000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	7FFC08530000
Size:	4096

Details

Name:	00000008.00000003.310681296.000002781967C000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	2781967C000
Size:	28672

Details

Name:	00000000.00000002.287432155.0000000000F60000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	F60000
Size:	4096

Details

Name:	00000006.00000002.297801617.00007FF5E8E17000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8E17000
Size:	49152

Details

Name:	00000002.00000003.498543398.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000010.00000002.407960494.0000019C9237C000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9237C000
Size:	20480

Details

Name:	00000007.00000002.552538441.00007FF5DC07B000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC07B000
Size:	4096

Details

Name:	00000010.00000002.407342721.0000019C91840000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	19C91840000
Size:	12288

Details

Name:	00000008.00000000.286334743.00007DF517A72000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF517A72000
Size:	4096

Details

Name:	00000002.00000003.536752190.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000002.00000003.287967643.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000002.00000003.449716994.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000002.00000003.535662790.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000002.00000003.419422481.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000006.00000002.297347527.00007DF5F6B42000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5F6B42000
Size:	4096

Details

Name:	00000002.00000003.498293642.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	0000000B.00000003.292665887.0000014838F90000.00000004.00000001.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	14838F90000
Size:	4096

Details

Name:	00000010.00000002.407184224.00000076A7EF7000.00000004.00000010.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	76A7EF7000
Size:	36864

Details

Name:	00000010.00000002.407402950.0000019C919F0000.00000004.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page read and write
Base address:	19C919F0000
Size:	8192

Details

Name:	00000002.00000002.550466738.0000000001060000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1060000
Size:	4096

Details

Name:	0000000E.00000002.373059000.000000EEFFF7B000.00000004.00000010.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	EEFFF7B000
Size:	20480

Details

Name:	0000000B.00000002.549998958.000000449457F000.00000004.00000010.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	449457F000
Size:	4096

Details

Name:	00000006.00000002.297914973.00007FF5E8EB2000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8EB2000
Size:	12288

Details

Name:	00000010.00000002.408403211.00007FF4F45C7000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F45C7000
Size:	4096

Details

Name:	00000010.00000002.408608197.00007FF4F4703000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4703000
Size:	24576

Details

Name:	0000000E.00000002.373201237.000002D085B00000.00000004.00000001.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2D085B00000
Size:	4096

Details

Name:	00000008.00000003.310773418.0000027819641000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	27819641000
Size:	16384

Details

Name:	00000002.00000003.536729182.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000005.00000000.285331776.00007FF5B8BD0000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5B8BD0000
Size:	4096

Details

Name:	00000005.00000002.304605226.00007FFC0853C000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	7FFC0853C000
Size:	4096

Details

Name:	00000010.00000002.407205209.00000076A7F7F000.00000004.00000010.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	76A7F7F000
Size:	4096

Details

Name:	00000002.00000003.520623986.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000010.00000002.408172996.00007FF4F4297000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4297000
Size:	32768

Details

Name:	00000002.00000003.519468654.0000000004404000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4404000
Size:	118784

Details

Name:	00000010.00000003.395281119.0000019C9238A000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9238A000
Size:	20480

Details

Name:	00000010.00000000.381030936.00007DF502430000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF502430000
Size:	12288

Details

Name:	00000005.00000002.304530381.00007FFC08483000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	7FFC08483000
Size:	4096

Details

Name:	00000002.00000003.300253981.0000000004502000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4502000
Size:	143360

Details

Name:	00000002.00000003.284446574.00000000053A0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	53A0000
Size:	16384

Details

Name:	00000002.00000003.465761245.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000003.00000002.552007296.00007FF5AA38F000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA38F000
Size:	4096

Details

Name:	00000005.00000002.303859626.000000001B749000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	1B749000
Size:	28672

Details

Name:	00000002.00000003.533276054.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000000.00000002.287503184.00000000011BE000.00000004.00000010.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	11BE000
Size:	8192

Details

Name:	00000002.00000003.423919825.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000002.00000002.554298617.000000000539E000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	539E000
Size:	8192

Details

Name:	0000000B.00000002.551765413.00007FF5D38DA000.00000002.00020000.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5D38DA000
Size:	4096

Details

Name:	00000002.00000003.349382198.00000000044BB000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44BB000
Size:	139264

Details

Name:	00000002.00000003.369790101.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	00000002.00000003.531502150.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000007.00000002.549811334.0000006A1B0FD000.00000004.00000010.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6A1B0FD000
Size:	12288

Details

Name:	00000002.00000003.532147560.000000000448F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	448F000
Size:	118784

Details

Name:	0000000B.00000002.550084442.000000449477D000.00000004.00000010.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	449477D000
Size:	12288

Details

Name:	0000000D.00000002.346885332.00000219BE250000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	219BE250000
Size:	4096

Details

Name:	00000002.00000003.454458101.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000000.283899052.0000000000A80000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	A80000
Size:	4096

Details

Name:	00000002.00000003.431178110.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000002.00000003.287239368.00000000060E0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	60E0000
Size:	65536

Details

Name:	00000005.00000003.293756119.000000001BD70000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD70000
Size:	65536

Details

Name:	00000008.00000002.311449327.00000278195B0000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	278195B0000
Size:	4096

Details

Name:	00000002.00000003.521728295.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000001.00000002.551159563.00007DF59A392000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF59A392000
Size:	4096

Details

Name:	0000000E.00000000.361591287.000002D0857E0000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	2D0857E0000
Size:	102400

Details

Name:	00000002.00000003.399138898.0000000004412000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4412000
Size:	135168

Details

Name:	00000002.00000003.285080642.00000000054FC000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54FC000
Size:	16384

Details

Name:	00000002.00000003.327361711.000000000452A000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	452A000
Size:	139264

Details

Name:	00000002.00000002.552378180.0000000002E40000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	2E40000
Size:	65536

Details

Name:	00000010.00000003.386580553.0000019C9235F000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9235F000
Size:	20480

Details

Name:	00000002.00000003.526584514.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.518831584.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000010.00000000.381060916.00007FF4F47B1000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F47B1000
Size:	16384

Details

Name:	00000002.00000002.553757205.000000000352F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	352F000
Size:	139264

Details

Name:	00000002.00000003.484732321.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.518245595.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000002.555456775.000000000649E000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	649E000
Size:	8192

Details

Name:	00000006.00000002.297352797.00007DF5F6B50000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5F6B50000
Size:	4096

Details

Name:	00000010.00000002.407439368.0000019C91A29000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91A29000
Size:	73728

Details

Name:	00000002.00000003.444637231.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	32768

Details

Name:	00000005.00000002.301192005.00000000008A5000.00000004.00000040.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	8A5000
Size:	20480

Details

Name:	00000004.00000002.549925853.000000F9C3AFD000.00000004.00000010.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	F9C3AFD000
Size:	12288

Details

Name:	00000008.00000002.311099642.0000027819570000.00000004.00000040.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	27819570000
Size:	4096

Details

Name:	00000003.00000002.552704450.00007FF5AA614000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA614000
Size:	20480

Details

Name:	00000002.00000003.525973657.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000002.00000003.474007624.0000000004456000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4456000
Size:	122880

Details

Name:	00000003.00000002.550136442.000001F3618A0000.00000004.00000020.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	1F3618A0000
Size:	8192

Details

Name:	00000010.00000002.408469916.00007FF4F468A000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F468A000
Size:	8192

Details

Name:	0000000D.00000002.347155194.00007FF5BC527000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC527000
Size:	32768

Details

Name:	00000002.00000000.283312693.0000000000AA2000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	AA2000
Size:	90112

Details

Name:	00000007.00000002.552899384.00007FF5DC252000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC252000
Size:	28672

Details

Name:	00000007.00000002.552881089.00007FF5DC22E000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC22E000
Size:	4096

Details

Name:	00000002.00000003.514923279.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000000.00000000.280354318.000000007FCA0000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FCA0000
Size:	12288

Details

Name:	00000002.00000003.532064902.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000002.00000003.534445526.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.427181685.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000002.00000003.327266107.0000000004391000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4391000
Size:	139264

Details

Name:	00000004.00000002.551956759.00007FF51B20B000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B20B000
Size:	12288

Details

Name:	00000002.00000003.447325234.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000002.555414956.000000000621E000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	621E000
Size:	8192

Details

Name:	00000002.00000003.525947653.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.382809203.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000007.00000002.551520155.00000188938A0000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	188938A0000
Size:	4096

Details

Name:	00000002.00000003.422126427.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000001.00000002.550082578.000001D34F320000.00000004.00000020.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	1D34F320000
Size:	8192

Details

Name:	00000002.00000003.385187149.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.414906675.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000002.00000003.544845193.0000000004609000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4609000
Size:	118784

Details

Name:	00000007.00000002.552951439.00007FF5DC27D000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC27D000
Size:	8192

Details

Name:	00000007.00000000.285954953.0000018891D90000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	18891D90000
Size:	102400

Details

Name:	00000000.00000002.287265077.0000000000C10000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	C10000
Size:	4096

Details

Name:	00000001.00000000.282005971.000001D34F2D0000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	1D34F2D0000
Size:	102400

Details

Name:	00000002.00000002.555483655.00000000064B0000.00000040.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	64B0000
Size:	4096

Details

Name:	00000008.00000002.311613791.00000278198D0000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	278198D0000
Size:	4096

Details

Name:	0000000E.00000002.373012259.000000EE801F7000.00000004.00000010.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	EE801F7000
Size:	36864

Details

Name:	00000002.00000003.525279011.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000002.555053707.0000000005750000.00000040.00000040.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page execute and read and write
Base address:	5750000
Size:	16384

Details

Name:	00000002.00000003.445415501.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000003.00000002.552188864.00007FF5AA513000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA513000
Size:	8192

Details

Name:	00000002.00000003.521230213.0000000005DCA000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5DCA000
Size:	4096

Details

Name:	0000000D.00000002.347303425.00007FF5BC993000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC993000
Size:	24576

Details

Name:	00000007.00000002.550190058.0000018891D90000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	18891D90000
Size:	102400

Details

Name:	00000007.00000002.551667342.0000018893F40000.00000008.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page write copy
Base address:	18893F40000
Size:	266240

Details

Name:	00000005.00000003.295706897.0000000002490000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2490000
Size:	4096

Details

Name:	0000000D.00000002.347331581.00007FF5BCA12000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BCA12000
Size:	12288

Details

Name:	00000004.00000002.551227648.00007FF51AF92000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51AF92000
Size:	4096

Details

Name:	00000003.00000002.552300452.00007FF5AA543000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA543000
Size:	28672

Details

Name:	00000002.00000003.328508831.00000000012F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	00000002.00000003.286214043.0000000005720000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5720000
Size:	12288

Details

Name:	00000002.00000003.492385572.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000008.00000002.311536500.0000027819642000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	27819642000
Size:	8192

Details

Name:	00000000.00000002.287274297.0000000000C12000.00000040.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	C12000
Size:	4096

Details

Name:	00000000.00000002.287949683.000000007FC82000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC82000
Size:	4096

Details

Name:	00000002.00000003.386995062.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000007.00000002.551039248.0000018892460000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	18892460000
Size:	327680

Details

Name:	00000005.00000003.292986349.000000001BD70000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD70000
Size:	65536

Details

Name:	00000002.00000002.551620003.000000000141E000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	141E000
Size:	8192

Details

Name:	00000000.00000002.287793405.000000000532E000.00000004.00000010.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	532E000
Size:	8192

Details

Name:	00000002.00000003.286923438.0000000005730000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5730000
Size:	16384

Details

Name:	00000002.00000003.453316271.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000002.00000003.391207156.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000002.00000003.521787997.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000010.00000003.384484982.0000019C9238F000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9238F000
Size:	114688

Details

Name:	00000002.00000003.417526707.0000000004461000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4461000
Size:	131072

Details

Name:	00000001.00000002.551783626.00007FF58C672000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C672000
Size:	16384

Details

Name:	00000004.00000002.552177438.00007FF51B2BA000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B2BA000
Size:	4096

Details

Name:	00000002.00000003.285050253.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	24576

Details

Name:	00000005.00000002.303428290.00000000125C9000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	125C9000
Size:	217088

Details

Name:	00000002.00000003.284998006.00000000054F6000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F6000
Size:	4096

Details

Name:	00000002.00000003.501783585.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.481619895.00000000012D8000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12D8000
Size:	8192

Details

Name:	00000005.00000003.300007133.000000001BFE0000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BFE0000
Size:	5242880

Details

Name:	00000008.00000002.311606967.0000027819702000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	27819702000
Size:	16384

Details

Name:	0000000B.00000003.292673029.0000014838F90000.00000004.00000001.sdmp
TargetID:	11
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	14838F90000
Size:	4096

Details

Name:	00000005.00000003.295728281.0000000002474000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2474000
Size:	12288

Details

Name:	00000005.00000003.288284592.0000000000820000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	820000
Size:	28672

Details

Name:	00000006.00000002.297486457.00007FF5E8B65000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8B65000
Size:	8192

Details

Name:	00000002.00000003.430458344.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	0000000B.00000002.550603271.000001483905C000.00000004.00000001.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1483905C000
Size:	36864

Details

Name:	00000000.00000002.286939317.0000000000995000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	995000
Size:	4096

Details

Name:	00000002.00000003.486669180.00000000045C6000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45C6000
Size:	122880

Details

Name:	00000004.00000002.551848164.00007FF51B1E7000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B1E7000
Size:	16384

Details

Name:	00000005.00000000.285327979.00007FF5B8BC2000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5B8BC2000
Size:	4096

Details

Name:	00000004.00000002.552083965.00007FF51B292000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B292000
Size:	12288

Details

Name:	00000002.00000003.392450850.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000010.00000003.394627541.0000019C9238D000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9238D000
Size:	8192

Details

Name:	00000002.00000003.384019379.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.412463449.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	0000000D.00000002.346901753.00000219BE370000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	219BE370000
Size:	4096

Details

Name:	00000002.00000003.285124682.00000000054F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54F0000
Size:	16384

Details

Name:	00000004.00000002.550484402.0000024029A3D000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	24029A3D000
Size:	114688

Details

Name:	00000002.00000003.405207958.0000000004503000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4503000
Size:	135168

Details

Name:	00000002.00000003.460365930.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000005.00000003.294761275.000000001BD90000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD90000
Size:	65536

Details

Name:	00000002.00000003.528422126.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000005.00000002.304630848.00007FFC085B0000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	7FFC085B0000
Size:	24576

Details

Name:	00000008.00000003.310691380.0000027819667000.00000004.00000001.sdmp
TargetID:	8
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	27819667000
Size:	20480

Details

Name:	00000004.00000002.550068862.00000240298A0000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	240298A0000
Size:	102400

Details

Name:	00000002.00000003.408911334.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000002.00000003.494159379.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000002.00000003.418191795.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000005.00000002.303777341.000000001B4D4000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1B4D4000
Size:	114688

Details

Name:	00000010.00000003.395238421.0000019C92384000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92384000
Size:	45056

Details

Name:	00000002.00000003.305567251.0000000004360000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4360000
Size:	8192

Details

Name:	00000002.00000003.429951813.000000000460C000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	460C000
Size:	131072

Details

Name:	00000007.00000002.552466189.00007FF5DBFA4000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DBFA4000
Size:	4096

Details

Name:	00000002.00000003.300185978.0000000004407000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4407000
Size:	143360

Details

Name:	00000004.00000002.549944457.000000F9C3BFF000.00000004.00000010.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	F9C3BFF000
Size:	4096

Details

Name:	00000002.00000003.459787447.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000002.00000003.518376343.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.431714080.00000000012DB000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12DB000
Size:	12288

Details

Name:	00000006.00000000.285639888.00007DF5F6B40000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5F6B40000
Size:	4096

Details

Name:	00000011.00000002.393648863.00000086F96FA000.00000004.00000001.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	86F96FA000
Size:	24576

Details

Name:	00000002.00000003.513287208.0000000004528000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4528000
Size:	122880

Details

Name:	00000000.00000000.280350782.000000007FC92000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FC92000
Size:	4096

Details

Name:	00000007.00000003.289785096.0000018891E59000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	18891E59000
Size:	4096

Details

Name:	00000002.00000002.555446248.000000000639E000.00000004.00000010.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	639E000
Size:	8192

Details

Name:	00000003.00000000.283308334.00007DF5B82A2000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5B82A2000
Size:	4096

Details

Name:	00000002.00000003.445470594.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000003.00000002.550762276.000001F361A88000.00000004.00000001.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1F361A88000
Size:	4096

Details

Name:	00000006.00000002.297285137.0000026457D00000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	26457D00000
Size:	4096

Details

Name:	00000011.00000002.393821136.000001CCF4100000.00000004.00000001.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1CCF4100000
Size:	8192

Details

Name:	00000002.00000003.480270691.0000000004536000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4536000
Size:	122880

Details

Name:	00000005.00000002.304541761.00007FFC0848D000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	7FFC0848D000
Size:	12288

Details

Name:	00000002.00000003.499739541.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	118784

Details

Name:	00000006.00000002.297294756.0000026457D08000.00000004.00000001.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	26457D08000
Size:	24576

Details

Name:	00000001.00000000.282077812.00007FF58C721000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C721000
Size:	16384

Details

Name:	00000002.00000003.513326499.00000000045C0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	45C0000
Size:	122880

Details

Name:	00000002.00000002.550272725.0000000000B50000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	B50000
Size:	16384

Details

Name:	00000000.00000000.280327045.0000000000710000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	710000
Size:	102400

Details

Name:	00000002.00000003.331423722.0000000005FE2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE2000
Size:	135168

Details

Name:	00000007.00000002.552327299.00007FF5DBB0E000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DBB0E000
Size:	8192

Details

Name:	00000007.00000002.550473357.0000018891E2A000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	18891E2A000
Size:	94208

Details

Name:	00000005.00000002.303757000.000000001B4D1000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	1B4D1000
Size:	8192

Details

Name:	00000000.00000002.286967674.000000000099B000.00000004.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	99B000
Size:	4096

Details

Name:	00000004.00000002.550589567.0000024029A6B000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	24029A6B000
Size:	36864

Details

Name:	00000002.00000003.506543273.0000000004470000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4470000
Size:	122880

Details

Name:	00000010.00000002.407425077.0000019C91A13000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91A13000
Size:	86016

Details

Name:	00000002.00000003.409505206.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000003.00000002.549997991.0000005D740FE000.00000004.00000010.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	5D740FE000
Size:	8192

Details

Name:	00000007.00000002.552121252.00007DF5E9F70000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5E9F70000
Size:	4096

Details

Name:	00000002.00000002.555393367.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.411269659.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.527183679.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000002.00000003.328569357.0000000006011000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6011000
Size:	4096

Details

Name:	00000003.00000000.283305135.00007DF5B82A0000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF5B82A0000
Size:	4096

Details

Name:	0000000E.00000002.373307133.00007FF5190E1000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5190E1000
Size:	20480

Details

Name:	00000010.00000002.407227324.00000076A817E000.00000004.00000010.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	76A817E000
Size:	8192

Details

Name:	00000011.00000002.393918903.000001CCF4460000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1CCF4460000
Size:	65536

Details

Name:	00000005.00000002.304506779.00007FF5B8BC2000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5B8BC2000
Size:	4096

Details

Name:	0000000B.00000002.550818017.0000014839802000.00000004.00000001.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	14839802000
Size:	4096

Details

Name:	00000011.00000002.394101053.00007FF539A2F000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539A2F000
Size:	12288

Details

Name:	00000004.00000002.552102252.00007FF51B299000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B299000
Size:	12288

Details

Name:	00000010.00000002.408572202.00007FF4F46DE000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F46DE000
Size:	28672

Details

Name:	00000001.00000002.551243789.00007FF58BDE3000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58BDE3000
Size:	4096

Details

Name:	00000002.00000003.286422322.0000000005727000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5727000
Size:	8192

Details

Name:	00000006.00000002.297154868.0000006D6A2FF000.00000004.00000010.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	6D6A2FF000
Size:	4096

Details

Name:	00000007.00000002.550359783.0000018891E00000.00000004.00000001.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	18891E00000
Size:	4096

Details

Name:	00000011.00000002.393827096.000001CCF4120000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	1CCF4120000
Size:	8192

Details

Name:	00000005.00000002.302895001.000000000268F000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	268F000
Size:	4096

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000006.00000002.297647027.00007FF5E8D3B000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8D3B000
Size:	24576

Details

Name:	00000000.00000002.287612000.0000000002A9E000.00000004.00000010.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	2A9E000
Size:	8192

Details

Name:	00000005.00000002.304561320.00007FFC0849D000.00000040.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	7FFC0849D000
Size:	12288

Details

Name:	0000000B.00000002.549842469.000000449427F000.00000004.00000010.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	449427F000
Size:	4096

Details

Name:	00000002.00000003.493243392.00000000043F9000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43F9000
Size:	122880

Details

Name:	00000004.00000002.551698300.00007FF51B1CF000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51B1CF000
Size:	12288

Details

Name:	00000005.00000003.295607530.000000001BD80000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD80000
Size:	57344

Details

Name:	00000002.00000003.527196589.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000002.00000002.554855202.0000000005564000.00000004.00000040.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	5564000
Size:	8192

Details

Name:	0000000E.00000002.373437332.00007FF51950D000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF51950D000
Size:	4096

Details

Name:	00000002.00000003.422136933.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000002.00000003.506570520.00000000044BD000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44BD000
Size:	118784

Details

Name:	00000003.00000002.552605545.00007FF5AA5AA000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA5AA000
Size:	8192

Details

Name:	00000010.00000003.389742720.0000019C92369000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92369000
Size:	61440

Details

Name:	0000000E.00000002.373563013.00007FF5195F1000.00000002.00020000.sdmp
TargetID:	14
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5195F1000
Size:	32768

Details

Name:	00000002.00000003.344037734.000000000450E000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	450E000
Size:	139264

Details

Name:	00000005.00000002.304547616.00007FFC08490000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	7FFC08490000
Size:	4096

Details

Name:	00000002.00000003.545436682.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	114688

Details

Name:	00000004.00000002.550018958.000000F9C3FFF000.00000004.00000010.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	F9C3FFF000
Size:	4096

Details

Name:	00000005.00000003.296915838.0000000002470000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2470000
Size:	16384

Details

Name:	00000008.00000000.286327098.00007DF517A62000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF517A62000
Size:	4096

Details

Name:	00000002.00000003.474041113.00000000044EF000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44EF000
Size:	122880

Details

Name:	00000006.00000002.297520528.00007FF5E8C66000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8C66000
Size:	16384

Details

Name:	00000006.00000002.297598246.00007FF5E8CCB000.00000002.00020000.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5E8CCB000
Size:	8192

Details

Name:	00000005.00000003.292920233.000000001BD50000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	1BD50000
Size:	65536

Details

Name:	00000002.00000003.374096438.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.428477834.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	126976

Details

Name:	00000002.00000003.356784311.000000000455D000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	455D000
Size:	139264

Details

Name:	00000007.00000002.552526933.00007FF5DBFF9000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DBFF9000
Size:	4096

Details

Name:	00000010.00000002.408107299.00007FF4F3FB8000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F3FB8000
Size:	4096

Details

Name:	00000004.00000002.550548385.0000024029A5A000.00000004.00000001.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	24029A5A000
Size:	49152

Details

Name:	00000002.00000003.393681891.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.481626967.00000000012DC000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12DC000
Size:	8192

Details

Name:	00000005.00000000.285599866.0000000000360000.00000002.00020000.sdmp
TargetID:	5
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	360000
Size:	4096

Details

Name:	00000008.00000002.311768365.00007FF509D13000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509D13000
Size:	28672

Details

Name:	00000002.00000003.393129732.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000010.00000002.407940337.0000019C9236B000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C9236B000
Size:	49152

Details

Name:	0000000D.00000002.346793023.00000093D84FE000.00000004.00000010.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	93D84FE000
Size:	8192

Details

Name:	00000010.00000002.407554942.0000019C91A86000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	19C91A86000
Size:	20480

Details

Name:	00000001.00000002.551445819.00007FF58C5D1000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C5D1000
Size:	24576

Details

Name:	00000000.00000002.287974245.000000007FCA0000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FCA0000
Size:	12288

Details

Name:	0000000D.00000002.347002155.00000219BE500000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	219BE500000
Size:	4096

Details

Name:	0000000D.00000002.346879947.00000219BE240000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	219BE240000
Size:	12288

Details

Name:	00000002.00000003.284779245.00000000054E4000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	54E4000
Size:	49152

Details

Name:	00000000.00000002.287352493.0000000000CAC000.00000004.00000020.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	CAC000
Size:	135168

Details

Name:	00000011.00000002.394094187.00007FF539A2D000.00000002.00020000.sdmp
TargetID:	17
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF539A2D000
Size:	4096

Details

Name:	00000002.00000002.550625985.00000000011DA000.00000040.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	11DA000
Size:	8192

Details

Name:	00000007.00000002.550169662.0000018891D80000.00000004.00000040.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	18891D80000
Size:	4096

Details

Name:	00000005.00000002.304552488.00007FFC08492000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	7FFC08492000
Size:	40960

Details

Name:	00000002.00000000.283609596.0000000000A80000.00000002.00020000.sdmp
TargetID:	2
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	A80000
Size:	4096

Details

Name:	00000001.00000002.551414403.00007FF58C5BE000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF58C5BE000
Size:	4096

Details

Name:	00000005.00000002.302970081.00000000026BB000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	26BB000
Size:	172032

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000002.00000003.517608327.0000000006042000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6042000
Size:	4096

Details

Name:	00000010.00000002.408250090.00007FF4F4477000.00000002.00020000.sdmp
TargetID:	16
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF4F4477000
Size:	12288

Details

Name:	00000005.00000002.301263242.000000000090B000.00000004.00000020.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	90B000
Size:	4096

Details

Name:	00000004.00000002.549973184.000000F9C3CFF000.00000004.00000010.sdmp
TargetID:	4
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	F9C3CFF000
Size:	4096

Details

Name:	00000002.00000003.391878431.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	131072

Details

Name:	00000007.00000002.552220143.00007FF5DB9A9000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DB9A9000
Size:	12288

Details

Name:	00000002.00000003.446613195.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.427852557.0000000006017000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6017000
Size:	4096

Details

Name:	00000003.00000002.552114221.00007FF5AA4AB000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA4AB000
Size:	12288

Details

Name:	00000008.00000002.311869631.00007FF509DFA000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF509DFA000
Size:	4096

Details

Name:	00000002.00000003.312834475.00000000044FD000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	44FD000
Size:	139264

Details

Name:	00000003.00000002.552551286.00007FF5AA58E000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA58E000
Size:	4096

Details

Name:	00000002.00000003.429758257.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000008.00000002.311689196.00007DF517A72000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF517A72000
Size:	4096

Details

Name:	0000000D.00000002.346810876.00000093D867B000.00000004.00000010.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	93D867B000
Size:	20480

Details

Name:	00000007.00000002.552260432.00007FF5DBAB3000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DBAB3000
Size:	4096

Details

Name:	00000005.00000003.295714115.0000000002470000.00000004.00000010.sdmp
TargetID:	5
Dumpstage:	free memory
Regiontype:	stack
Protect:	page read and write
Base address:	2470000
Size:	49152

Details

Name:	00000002.00000003.286249080.0000000005700000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5700000
Size:	40960

Details

Name:	00000002.00000003.335109591.0000000005FE2000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE2000
Size:	139264

Details

Name:	00000002.00000003.370956944.0000000005FE1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5FE1000
Size:	135168

Details

Name:	0000000B.00000002.550627550.0000014839102000.00000004.00000001.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	14839102000
Size:	28672

Details

Name:	00000008.00000000.286330744.00007DF517A70000.00000002.00020000.sdmp
TargetID:	8
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF517A70000
Size:	4096

Details

Name:	00000002.00000003.408338051.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000003.00000002.551938942.00007FF5AA302000.00000002.00020000.sdmp
TargetID:	3
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5AA302000
Size:	8192

Details

Name:	00000007.00000002.552693616.00007FF5DC17C000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC17C000
Size:	8192

Details

Name:	00000002.00000002.554895043.0000000005670000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	5670000
Size:	4096

Details

Name:	00000005.00000002.302925247.000000000269B000.00000004.00000001.sdmp
TargetID:	5
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	269B000
Size:	8192

Signature Hits	Behavior Group	Mitre Attack
URLs found in memory or binary data	Networking

Details

Name:	00000002.00000003.406234485.0000000005DD1000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	5DD1000
Size:	8192

Details

Name:	00000002.00000003.525475827.0000000004574000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	4574000
Size:	118784

Details

Name:	0000000B.00000002.549876283.00000044942FE000.00000004.00000010.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	44942FE000
Size:	8192

Details

Name:	0000000D.00000002.346773534.00000093D847B000.00000004.00000001.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	93D847B000
Size:	20480

Details

Name:	0000000D.00000002.347171529.00007FF5BC7C6000.00000002.00020000.sdmp
TargetID:	13
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5BC7C6000
Size:	16384

Details

Name:	00000002.00000003.427212243.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.544579044.00000000043F8000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43F8000
Size:	118784

Details

Name:	00000004.00000000.284911192.00007DF528F32000.00000002.00020000.sdmp
TargetID:	4
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF528F32000
Size:	4096

Details

Name:	00000002.00000003.446127666.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000002.00000003.487764327.0000000006018000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	6018000
Size:	122880

Details

Name:	00000002.00000003.375254893.000000000600F000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	600F000
Size:	4096

Details

Name:	00000007.00000002.552942500.00007FF5DC27A000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC27A000
Size:	8192

Details

Name:	00000000.00000002.286873907.00000000007E0000.00000002.00020000.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7E0000
Size:	4096

Details

Name:	00000001.00000000.282020597.00007DF59A380000.00000002.00020000.sdmp
TargetID:	1
Dumpstage:	process new
Regiontype:	unkown image
Protect:	page readonly
Base address:	7DF59A380000
Size:	4096

Details

Name:	00000000.00000002.287281677.0000000000C27000.00000040.00000001.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page execute and read and write
Base address:	C27000
Size:	4096

Details

Name:	0000000B.00000002.550559709.0000014839040000.00000004.00000001.sdmp
TargetID:	11
Dumpstage:	process exit
Regiontype:	unkown
Protect:	page read and write
Base address:	14839040000
Size:	94208

Details

Name:	00000006.00000002.297163331.0000026457A80000.00000004.00000040.sdmp
TargetID:	6
Dumpstage:	process exit
Regiontype:	heap private
Protect:	page read and write
Base address:	26457A80000
Size:	4096

Details

Name:	00000002.00000003.444676482.00000000012F0000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	12F0000
Size:	20480

Details

Name:	00000000.00000002.287868890.00000000055AE000.00000004.00000010.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	stack
Protect:	page read and write
Base address:	55AE000
Size:	8192

Details

Name:	00000007.00000002.552817525.00007FF5DC213000.00000002.00020000.sdmp
TargetID:	7
Dumpstage:	process exit
Regiontype:	unkown image
Protect:	page readonly
Base address:	7FF5DC213000
Size:	28672

Details

Name:	00000010.00000003.384992293.0000019C92364000.00000004.00000001.sdmp
TargetID:	16
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	19C92364000
Size:	8192

Details

Name:	00000000.00000002.287309243.0000000000C5A000.00000004.00000020.sdmp
TargetID:	0
Dumpstage:	process exit
Regiontype:	heap default
Protect:	page read and write
Base address:	C5A000
Size:	172032

Details

Name:	00000002.00000003.500603674.00000000043F9000.00000004.00000001.sdmp
TargetID:	2
Dumpstage:	free memory
Regiontype:	unkown
Protect:	page read and write
Base address:	43F9000
Size:	122880

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

IOC Report

Files

Processes

URLs

Domains

IPs

Registry

Memdumps