Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Payment Remittance098.html
|
HTML document, ASCII text, with CRLF line terminators
|
initial sample
|
 |
|
|
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\04d871ba-d1cf-411e-9e87-51eed7d5cfbb.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\26ee5d8c-e50e-4831-93b2-f80cb2c9e55c.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\2aa00e1d-c18d-47eb-a0a3-c022093a7731.tmp
|
SysEx File -
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\31f5ae90-c5bb-49fd-882b-bae736024b2d.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\664548e1-ac09-431c-8d97-fce7d1209be3.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\83455fc5-5a80-43d3-9a2b-485a8f451dd6.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\86fcff70-32df-4ab5-a82e-291542eb0089.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\884042d4-93cf-4f33-9fcb-a6966581edcb.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\8f68ca91-7f91-47a1-855e-c5eaca3a0be5.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\10c3ee85-707e-4066-a3f9-7916b994e5ae.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1151b456-094b-495a-b2d8-746b036c0c74.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\127f30e7-85e5-4e8d-840b-3f6cc56b7ea9.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1ae217c2-8515-4937-b1cd-cb7a318a85f3.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5c7c69f9-89d2-46fb-848a-d2f6ce2f3059.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\773381af-2ac4-4d73-875d-bfcb44fedf64.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\8018c6d4-f2fc-47ba-953d-c142712371f4.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\c6ab26d7-00aa-4fcf-9b7b-f00b8b984a31.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\8f741158-826b-4f27-94d4-a530747eb434.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a4e18988-092e-4b53-ba24-fc2e1b65cb56.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d692b981-5956-4b33-8c26-ec67baa5b401.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Subresource Filter\Indexed Rules\27\scoped_dir5676_1506470791\Ruleset
Data
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\a35b9205-c1f0-4a8f-ab17-6e478f1b208a.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\c5da18d1-f5c7-4ddd-9c38-0975dedabc9a.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\ccefc4b2-60da-4374-8d06-87a09f707edb.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5676_1554045649\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5676_1554045649\download_file_types.pb
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5676_1554045649\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5676_1554045649\manifest.json
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5676_2047189785\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5676_2047189785\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5676_2047189785\manifest.json
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5676_216083431\LICENSE
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5676_216083431\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5676_216083431\crl-set
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5676_216083431\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5676_216083431\manifest.json
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5676_445734699\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5676_445734699\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5676_445734699\manifest.json
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5676_445734699\tls_deprecation_config.pb
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5676_857226258\Filtering Rules
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5676_857226258\LICENSE.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5676_857226258\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5676_857226258\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5676_857226258\manifest.json
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5676_857226258\manifest.json~
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\5ad12549-7ca0-4eea-991c-f0083fffedd4.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\72175575-b615-4fde-9215-6be6c71dc5e3.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\72175575-b615-4fde-9215-6be6c71dc5e3.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir5676_1241831104\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
There are 114 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation "C:\Users\user\Desktop\Payment
Remittance098.html
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1612,15108676134963797540,3795265843241502574,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1916 /prefetch:8
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
file:///C:/Users/user/Desktop/Payment%20Remittance098.html
|
|
||
|
https://alankara-dhamma.org/wp-includes/assets/news.js
|
54.39.157.6
|
|
|
|
https://alankara-dhamma.org/wp-includes/assets/just.js
|
54.39.157.6
|
|
|
|
https://i.stack.imgur.com/vzbuQ.jpg
|
151.101.112.193
|
||
|
https://dns.google
|
unknown
|
||
|
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
||
|
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
||
|
https://ogs.google.com
|
unknown
|
||
|
https://www.google.com/images/cleardot.gif
|
unknown
|
||
|
https://code.jquery.com/jquery-3.2.1.slim.min.js
|
unknown
|
||
|
https://stackpath.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css
|
104.18.11.207
|
||
|
https://play.google.com
|
unknown
|
||
|
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
142.250.185.206
|
||
|
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
|
142.250.186.77
|
||
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
https://stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
|
104.18.11.207
|
||
|
https://easylist.to/)
|
unknown
|
||
|
https://aadcdn.msftauth.net/shared/1.0/content/images/microsoft_logo_ed9c9eb0dce17d752bedea6b5acda6d
|
unknown
|
||
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
https://www.google.com/images/x2.gif
|
unknown
|
||
|
https://accounts.google.com/MergeSession
|
unknown
|
||
|
https://creativecommons.org/compatiblelicenses
|
unknown
|
||
|
https://www.google.com
|
unknown
|
||
|
https://www.google.com/images/dot2.gif
|
unknown
|
||
|
https://github.com/easylist)
|
unknown
|
||
|
https://creativecommons.org/.
|
unknown
|
||
|
https://cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
|
104.17.24.14
|
||
|
https://accounts.google.com
|
unknown
|
||
|
https://cdn.jsdelivr.net/npm/jquery.session
|
unknown
|
||
|
https://aadcdn.msftauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
|
152.199.23.37
|
||
|
https://clients2.googleusercontent.com
|
unknown
|
||
|
https://apis.google.com
|
unknown
|
||
|
https://maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
|
104.18.11.207
|
||
|
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
||
|
https://aadcdn.msftauth.net/shared/1.0/content/images/microsoft_logo_ed9c9eb0dce17d752bedea6b5acda6d9.png
|
152.199.23.37
|
||
|
https://www.google.com/
|
unknown
|
||
|
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
||
|
https://clients2.google.com
|
unknown
|
||
|
https://clients2.google.com/service/update2/crx
|
unknown
|
There are 29 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
alankara-dhamma.org
|
54.39.157.6
|
|
|
|
stackpath.bootstrapcdn.com
|
104.18.11.207
|
||
|
gstaticadssl.l.google.com
|
142.250.74.195
|
||
|
cs1100.wpc.omegacdn.net
|
152.199.23.37
|
||
|
accounts.google.com
|
142.250.186.77
|
||
|
cdnjs.cloudflare.com
|
104.17.24.14
|
||
|
maxcdn.bootstrapcdn.com
|
104.18.11.207
|
||
|
clients.l.google.com
|
142.250.185.206
|
||
|
ipv4.imgur.map.fastly.net
|
151.101.112.193
|
||
|
i.stack.imgur.com
|
unknown
|
||
|
clients2.google.com
|
unknown
|
||
|
code.jquery.com
|
unknown
|
||
|
cdn.jsdelivr.net
|
unknown
|
||
|
aadcdn.msftauth.net
|
unknown
|
There are 4 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
54.39.157.6
|
alankara-dhamma.org
|
Canada
|
|
|
|
104.17.24.14
|
cdnjs.cloudflare.com
|
United States
|
||
|
142.250.185.206
|
clients.l.google.com
|
United States
|
||
|
192.168.2.1
|
unknown
|
unknown
|
||
|
104.18.11.207
|
stackpath.bootstrapcdn.com
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
152.199.23.37
|
cs1100.wpc.omegacdn.net
|
United States
|
||
|
151.101.112.193
|
ipv4.imgur.map.fastly.net
|
United States
|
||
|
142.250.186.77
|
accounts.google.com
|
United States
|
||
|
142.250.74.195
|
gstaticadssl.l.google.com
|
United States
|
||
|
127.0.0.1
|
unknown
|
unknown
|
There are 1 hidden IPs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
dr
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
||
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
There are 34 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
6A04DFB000
|
stack
|
page read and write
|
||
|
1A2D7A02000
|
heap
|
page read and write
|
||
|
1F6A53DF000
|
heap
|
page read and write
|
||
|
20ED0F96000
|
heap
|
page read and write
|
||
|
20A6D939000
|
heap
|
page read and write
|
||
|
20ED0F8F000
|
heap
|
page read and write
|
||
|
20ED0F77000
|
heap
|
page read and write
|
||
|
23BB3955000
|
heap
|
page read and write
|
||
|
1F6AA480000
|
trusted library allocation
|
page read and write
|
||
|
1EF87FF000
|
stack
|
page read and write
|
||
|
12FD6113000
|
heap
|
page read and write
|
||
|
1EF7F5D000
|
stack
|
page read and write
|
||
|
23BB38A0000
|
heap
|
page read and write
|
||
|
20ED06FB000
|
heap
|
page read and write
|
||
|
192DC0B0000
|
heap
|
page read and write
|
||
|
1A2D7A29000
|
heap
|
page read and write
|
||
|
24EC0C7C000
|
heap
|
page read and write
|
||
|
23BB395F000
|
heap
|
page read and write
|
||
|
20ED0F89000
|
heap
|
page read and write
|
||
|
1F6AA0F1000
|
heap
|
page read and write
|
||
|
1F6AA117000
|
heap
|
page read and write
|
||
|
A95E6FE000
|
stack
|
page read and write
|
||
|
1DA6E641000
|
heap
|
page read and write
|
||
|
6641D7F000
|
stack
|
page read and write
|
||
|
1DA6E663000
|
heap
|
page read and write
|
||
|
1DA6E645000
|
heap
|
page read and write
|
||
|
1DA6E65F000
|
heap
|
page read and write
|
||
|
20ED0F73000
|
heap
|
page read and write
|
||
|
20ED0F89000
|
heap
|
page read and write
|
||
|
12FD6068000
|
heap
|
page read and write
|
||
|
6400BFE000
|
stack
|
page read and write
|
||
|
40253FF000
|
stack
|
page read and write
|
||
|
20ED0F75000
|
heap
|
page read and write
|
||
|
1DA6E685000
|
heap
|
page read and write
|
||
|
1F6AA123000
|
heap
|
page read and write
|
||
|
1DA6E647000
|
heap
|
page read and write
|
||
|
1F2A7C00000
|
heap
|
page read and write
|
||
|
20ED0F73000
|
heap
|
page read and write
|
||
|
23BB394F000
|
heap
|
page read and write
|
||
|
12FD6028000
|
heap
|
page read and write
|
||
|
1F2A7C3C000
|
heap
|
page read and write
|
||
|
1F6AA201000
|
trusted library allocation
|
page read and write
|
||
|
20ED0F9E000
|
heap
|
page read and write
|
||
|
20ED0F74000
|
heap
|
page read and write
|
||
|
1F6AA123000
|
heap
|
page read and write
|
||
|
1F6AA244000
|
trusted library allocation
|
page read and write
|
||
|
20ED06D5000
|
heap
|
page read and write
|
||
|
F9AFDFD000
|
stack
|
page read and write
|
||
|
1EF7EDB000
|
stack
|
page read and write
|
||
|
1F6AA201000
|
trusted library allocation
|
page read and write
|
||
|
24EC0C4E000
|
heap
|
page read and write
|
||
|
20ED0FA4000
|
heap
|
page read and write
|
||
|
24EC0B10000
|
heap
|
page read and write
|
||
|
1F6AA200000
|
trusted library allocation
|
page read and write
|
||
|
1F6AA2F0000
|
trusted library allocation
|
page read and write
|
||
|
20ED0F96000
|
heap
|
page read and write
|
||
|
1F6A4A6F000
|
heap
|
page read and write
|
||
|
20ED0FB3000
|
heap
|
page read and write
|
||
|
664197B000
|
stack
|
page read and write
|
||
|
1A5ACA02000
|
heap
|
page read and write
|
||
|
1F2A7D02000
|
heap
|
page read and write
|
||
|
20ED05E0000
|
trusted library allocation
|
page read and write
|
||
|
402487B000
|
stack
|
page read and write
|
||
|
1EF83FB000
|
stack
|
page read and write
|
||
|
1A5ACA13000
|
heap
|
page read and write
|
||
|
99A0F7C000
|
stack
|
page read and write
|
||
|
1F6A4A8D000
|
heap
|
page read and write
|
||
|
1F6AA13B000
|
heap
|
page read and write
|
||
|
1A5ACA2A000
|
heap
|
page read and write
|
||
|
1DA6E629000
|
heap
|
page read and write
|
||
|
20ED0F9A000
|
heap
|
page read and write
|
||
|
1DA6E63A000
|
heap
|
page read and write
|
||
|
66416FE000
|
stack
|
page read and write
|
||
|
1F2A7C8E000
|
heap
|
page read and write
|
||
|
1F6A539D000
|
heap
|
page read and write
|
||
|
20ED0F95000
|
heap
|
page read and write
|
||
|
55774FA000
|
stack
|
page read and write
|
||
|
1F6AA118000
|
heap
|
page read and write
|
||
|
192DC26A000
|
heap
|
page read and write
|
||
|
1F6AA138000
|
heap
|
page read and write
|
||
|
1DA6E660000
|
heap
|
page read and write
|
||
|
20ED0716000
|
heap
|
page read and write
|
||
|
1F6A5308000
|
heap
|
page read and write
|
||
|
20ED0F7A000
|
heap
|
page read and write
|
||
|
20ED0F96000
|
heap
|
page read and write
|
||
|
1F6AA04A000
|
heap
|
page read and write
|
||
|
1F6AA10E000
|
heap
|
page read and write
|
||
|
20ED1402000
|
heap
|
page read and write
|
||
|
20ED0E02000
|
heap
|
page read and write
|
||
|
1F6AA0ED000
|
heap
|
page read and write
|
||
|
64009FB000
|
stack
|
page read and write
|
||
|
6400AFC000
|
stack
|
page read and write
|
||
|
1F6AA11B000
|
heap
|
page read and write
|
||
|
1DA6E642000
|
heap
|
page read and write
|
||
|
23BB3977000
|
heap
|
page read and write
|
||
|
1F6AA000000
|
heap
|
page read and write
|
||
|
20ED0F75000
|
heap
|
page read and write
|
||
|
1DA6E675000
|
heap
|
page read and write
|
||
|
20ED0F76000
|
heap
|
page read and write
|
||
|
20ED0F7A000
|
heap
|
page read and write
|
||
|
24EC0C13000
|
heap
|
page read and write
|
||
|
1F6A4A13000
|
heap
|
page read and write
|
||
|
20ED0F73000
|
heap
|
page read and write
|
||
|
64004FC000
|
stack
|
page read and write
|
||
|
1F6AA117000
|
heap
|
page read and write
|
||
|
20ED0F8F000
|
heap
|
page read and write
|
||
|
20ED0F89000
|
heap
|
page read and write
|
||
|
20A6D802000
|
heap
|
page read and write
|
||
|
20ED0F88000
|
heap
|
page read and write
|
||
|
20ED0F89000
|
heap
|
page read and write
|
||
|
20ED0FD2000
|
heap
|
page read and write
|
||
|
1F6AA11B000
|
heap
|
page read and write
|
||
|
1F2A7C4F000
|
heap
|
page read and write
|
||
|
20ED0F79000
|
heap
|
page read and write
|
||
|
1F2A7C8C000
|
heap
|
page read and write
|
||
|
1DA6E667000
|
heap
|
page read and write
|
||
|
1F6A4ABC000
|
heap
|
page read and write
|
||
|
1F6A9E80000
|
trusted library allocation
|
page read and write
|
||
|
23BB3972000
|
heap
|
page read and write
|
||
|
1DA6E659000
|
heap
|
page read and write
|
||
|
99A11FF000
|
stack
|
page read and write
|
||
|
402507F000
|
stack
|
page read and write
|
||
|
12FD5DC0000
|
heap
|
page read and write
|
||
|
1DA6E67C000
|
heap
|
page read and write
|
||
|
A55CBBF000
|
stack
|
page read and write
|
||
|
23BB3973000
|
heap
|
page read and write
|
||
|
1F6AA104000
|
heap
|
page read and write
|
||
|
20ED0FC5000
|
heap
|
page read and write
|
||
|
1F6AA490000
|
trusted library allocation
|
page read and write
|
||
|
20ED065B000
|
heap
|
page read and write
|
||
|
1F6A539D000
|
heap
|
page read and write
|
||
|
1F6AA360000
|
remote allocation
|
page read and write
|
||
|
20ED0F74000
|
heap
|
page read and write
|
||
|
20ED0F89000
|
heap
|
page read and write
|
||
|
12FD6040000
|
heap
|
page read and write
|
||
|
20ED0F7A000
|
heap
|
page read and write
|
||
|
20ED0F5F000
|
heap
|
page read and write
|
||
|
1A5ACA63000
|
heap
|
page read and write
|
||
|
23BB3977000
|
heap
|
page read and write
|
||
|
1DA6E631000
|
heap
|
page read and write
|
||
|
20A6D0CC000
|
heap
|
page read and write
|
||
|
1F6A539E000
|
heap
|
page read and write
|
||
|
20ED0F73000
|
heap
|
page read and write
|
||
|
1F6AA0FF000
|
heap
|
page read and write
|
||
|
12FD6002000
|
heap
|
page read and write
|
||
|
23BB3974000
|
heap
|
page read and write
|
||
|
20ED0F73000
|
heap
|
page read and write
|
||
|
20ED0F76000
|
heap
|
page read and write
|
||
|
1F6AA102000
|
heap
|
page read and write
|
||
|
192DC302000
|
heap
|
page read and write
|
||
|
1F6AA111000
|
heap
|
page read and write
|
||
|
6A051FD000
|
stack
|
page read and write
|
||
|
20A6D0BB000
|
heap
|
page read and write
|
||
|
20ED0F00000
|
heap
|
page read and write
|
||
|
1EF85FF000
|
stack
|
page read and write
|
||
|
1F6A4B25000
|
heap
|
page read and write
|
||
|
1F6A5E60000
|
trusted library allocation
|
page read and write
|
||
|
20ED1402000
|
heap
|
page read and write
|
||
|
20ED06AD000
|
heap
|
page read and write
|
||
|
20A6D000000
|
heap
|
page read and write
|
||
|
1A5ACA61000
|
heap
|
page read and write
|
||
|
1DA6E670000
|
heap
|
page read and write
|
||
|
1DA6E66E000
|
heap
|
page read and write
|
||
|
1A2D7A00000
|
heap
|
page read and write
|
||
|
1F6A5318000
|
heap
|
page read and write
|
||
|
1F6AA11B000
|
heap
|
page read and write
|
||
|
20ED0F8A000
|
heap
|
page read and write
|
||
|
1F6AA240000
|
trusted library allocation
|
page read and write
|
||
|
1F6A49A0000
|
heap
|
page read and write
|
||
|
1F6AA360000
|
remote allocation
|
page read and write
|
||
|
20ED0FB1000
|
heap
|
page read and write
|
||
|
1F6AA01F000
|
heap
|
page read and write
|
||
|
20A6CFF0000
|
trusted library allocation
|
page read and write
|
||
|
20ED0F8A000
|
heap
|
page read and write
|
||
|
1F6AA179000
|
heap
|
page read and write
|
||
|
1A5ACA7E000
|
heap
|
page read and write
|
||
|
6A052FE000
|
stack
|
page read and write
|
||
|
1F6AA11B000
|
heap
|
page read and write
|
||
|
1F6AA117000
|
heap
|
page read and write
|
||
|
99A13FD000
|
stack
|
page read and write
|
||
|
40254FA000
|
stack
|
page read and write
|
||
|
20A6D0C0000
|
heap
|
page read and write
|
||
|
1F6AA360000
|
remote allocation
|
page read and write
|
||
|
1DA6E668000
|
heap
|
page read and write
|
||
|
4024F7B000
|
stack
|
page read and write
|
||
|
12FD6079000
|
heap
|
page read and write
|
||
|
20ED0DD0000
|
remote allocation
|
page read and write
|
||
|
23BB3954000
|
heap
|
page read and write
|
||
|
20ED0F6E000
|
heap
|
page read and write
|
||
|
20ED0F89000
|
heap
|
page read and write
|
||
|
20ED0613000
|
heap
|
page read and write
|
||
|
1F2A7C2C000
|
heap
|
page read and write
|
||
|
20ED0F77000
|
heap
|
page read and write
|
||
|
1F6A4930000
|
heap
|
page read and write
|
||
|
1F6AA11B000
|
heap
|
page read and write
|
||
|
1EF7FDE000
|
stack
|
page read and write
|
||
|
1F6A53DF000
|
heap
|
page read and write
|
||
|
1F6A5359000
|
heap
|
page read and write
|
||
|
F9AF55C000
|
stack
|
page read and write
|
||
|
20ED0F86000
|
heap
|
page read and write
|
||
|
20ED0F76000
|
heap
|
page read and write
|
||
|
24EC0D08000
|
heap
|
page read and write
|
||
|
A55CF79000
|
stack
|
page read and write
|
||
|
20ED0F6F000
|
heap
|
page read and write
|
||
|
20ED0F8A000
|
heap
|
page read and write
|
||
|
5576D4F000
|
stack
|
page read and write
|
||
|
1F2A7A50000
|
heap
|
page read and write
|
||
|
12FD6013000
|
heap
|
page read and write
|
||
|
20ED0F9E000
|
heap
|
page read and write
|
||
|
1A5ACA2E000
|
heap
|
page read and write
|
||
|
20ED06E2000
|
heap
|
page read and write
|
||
|
20ED0FA4000
|
heap
|
page read and write
|
||
|
1DA6E664000
|
heap
|
page read and write
|
||
|
192DC27A000
|
heap
|
page read and write
|
||
|
1DA6E65A000
|
heap
|
page read and write
|
||
|
4024A77000
|
stack
|
page read and write
|
||
|
20ED0F84000
|
heap
|
page read and write
|
||
|
1F6AA11F000
|
heap
|
page read and write
|
||
|
24EC0C49000
|
heap
|
page read and write
|
||
|
20A6D102000
|
heap
|
page read and write
|
||
|
1F2A7C4A000
|
heap
|
page read and write
|
||
|
20ED0F89000
|
heap
|
page read and write
|
||
|
20ED0F79000
|
heap
|
page read and write
|
||
|
20ED0F9E000
|
heap
|
page read and write
|
||
|
1DA6E662000
|
heap
|
page read and write
|
||
|
1E0E5FF000
|
stack
|
page read and write
|
||
|
12FD6064000
|
heap
|
page read and write
|
||
|
64007FE000
|
stack
|
page read and write
|
||
|
20ED0DD0000
|
remote allocation
|
page read and write
|
||
|
20ED0F74000
|
heap
|
page read and write
|
||
|
1F6A5318000
|
heap
|
page read and write
|
||
|
1F6A5359000
|
heap
|
page read and write
|
||
|
20ED0F74000
|
heap
|
page read and write
|
||
|
1F6A539D000
|
heap
|
page read and write
|
||
|
20ED0FA1000
|
heap
|
page read and write
|
||
|
1F6A5318000
|
heap
|
page read and write
|
||
|
1F6AA360000
|
trusted library allocation
|
page read and write
|
||
|
640087C000
|
stack
|
page read and write
|
||
|
1A5ACA5E000
|
heap
|
page read and write
|
||
|
1DA6EE02000
|
trusted library allocation
|
page read and write
|
||
|
1A5ACB08000
|
heap
|
page read and write
|
||
|
1A2D7920000
|
heap
|
page read and write
|
||
|
20ED0F5B000
|
heap
|
page read and write
|
||
|
192DC213000
|
heap
|
page read and write
|
||
|
20ED0F7A000
|
heap
|
page read and write
|
||
|
1F6AA138000
|
heap
|
page read and write
|
||
|
1F6AA117000
|
heap
|
page read and write
|
||
|
1DA6E646000
|
heap
|
page read and write
|
||
|
20ED0681000
|
heap
|
page read and write
|
||
|
1F6A5202000
|
heap
|
page read and write
|
||
|
1F2A7C29000
|
heap
|
page read and write
|
||
|
20ED0663000
|
heap
|
page read and write
|
||
|
4024FFE000
|
stack
|
page read and write
|
||
|
1F6A4A29000
|
heap
|
page read and write
|
||
|
1A2D7A40000
|
heap
|
page read and write
|
||
|
F9AFAF9000
|
stack
|
page read and write
|
||
|
1F6AA062000
|
heap
|
page read and write
|
||
|
1F6AA2D0000
|
trusted library allocation
|
page read and write
|
||
|
1F6A5501000
|
trusted library allocation
|
page read and write
|
||
|
1F6AA208000
|
trusted library allocation
|
page read and write
|
||
|
20ED0F8F000
|
heap
|
page read and write
|
||
|
192DC274000
|
heap
|
page read and write
|
||
|
1F6AA102000
|
heap
|
page read and write
|
||
|
20ED0F99000
|
heap
|
page read and write
|
||
|
20ED0F65000
|
heap
|
page read and write
|
||
|
1F6AA111000
|
heap
|
page read and write
|
||
|
1F2A7C54000
|
heap
|
page read and write
|
||
|
24EC0C6E000
|
heap
|
page read and write
|
||
|
20ED0F76000
|
heap
|
page read and write
|
||
|
1DA6E67E000
|
heap
|
page read and write
|
||
|
1F6AA200000
|
trusted library allocation
|
page read and write
|
||
|
1A2D8202000
|
trusted library allocation
|
page read and write
|
||
|
1EF84F7000
|
stack
|
page read and write
|
||
|
20ED0540000
|
heap
|
page read and write
|
||
|
1F6A4A3F000
|
heap
|
page read and write
|
||
|
55775F9000
|
stack
|
page read and write
|
||
|
1F6A5800000
|
trusted library allocation
|
page read and write
|
||
|
1DA6E657000
|
heap
|
page read and write
|
||
|
24EC0C65000
|
heap
|
page read and write
|
||
|
40251FF000
|
stack
|
page read and write
|
||
|
1DA6E570000
|
heap
|
page read and write
|
||
|
20ED0F76000
|
heap
|
page read and write
|
||
|
40257FF000
|
stack
|
page read and write
|
||
|
20ED0600000
|
heap
|
page read and write
|
||
|
20ED0681000
|
heap
|
page read and write
|
||
|
F9AF87E000
|
stack
|
page read and write
|
||
|
20ED0F8A000
|
heap
|
page read and write
|
||
|
1F6A5B00000
|
trusted library section
|
page readonly
|
||
|
1DA6E632000
|
heap
|
page read and write
|
||
|
20ED0F74000
|
heap
|
page read and write
|
||
|
1F6A51F3000
|
trusted library allocation
|
page read and write
|
||
|
24EC0C65000
|
heap
|
page read and write
|
||
|
1F2A7D08000
|
heap
|
page read and write
|
||
|
1F6A4A56000
|
heap
|
page read and write
|
||
|
6641B7E000
|
stack
|
page read and write
|
||
|
1F2A7AC0000
|
heap
|
page read and write
|
||
|
20ED0F7A000
|
heap
|
page read and write
|
||
|
1F6AA0FF000
|
heap
|
page read and write
|
||
|
1DA6E65C000
|
heap
|
page read and write
|
||
|
20ED0F4E000
|
heap
|
page read and write
|
||
|
55773FF000
|
stack
|
page read and write
|
||
|
1F2A8402000
|
trusted library allocation
|
page read and write
|
||
|
20ED06B1000
|
heap
|
page read and write
|
||
|
1A2D79E0000
|
remote allocation
|
page read and write
|
||
|
1F6AA205000
|
trusted library allocation
|
page read and write
|
||
|
20ED0F73000
|
heap
|
page read and write
|
||
|
1F6A51F0000
|
trusted library allocation
|
page read and write
|
||
|
1F6AA350000
|
trusted library allocation
|
page read and write
|
||
|
23BB3946000
|
heap
|
page read and write
|
||
|
20ED0F5B000
|
heap
|
page read and write
|
||
|
192DC25B000
|
heap
|
page read and write
|
||
|
23BB3952000
|
heap
|
page read and write
|
||
|
20A6CF60000
|
heap
|
page read and write
|
||
|
20A6CFC0000
|
heap
|
page read and write
|
||
|
1F6AA320000
|
trusted library allocation
|
page read and write
|
||
|
20ED067E000
|
heap
|
page read and write
|
||
|
12FD5E20000
|
heap
|
page read and write
|
||
|
1F2A7C4C000
|
heap
|
page read and write
|
||
|
23BB3977000
|
heap
|
page read and write
|
||
|
1F6AA11B000
|
heap
|
page read and write
|
||
|
A55CB3A000
|
stack
|
page read and write
|
||
|
192DC23D000
|
heap
|
page read and write
|
||
|
20ED0F76000
|
heap
|
page read and write
|
||
|
1DA6E676000
|
heap
|
page read and write
|
||
|
192DC200000
|
heap
|
page read and write
|
||
|
F9AF5DE000
|
stack
|
page read and write
|
||
|
55771F7000
|
stack
|
page read and write
|
||
|
1F6AA0FF000
|
heap
|
page read and write
|
||
|
20A6D029000
|
heap
|
page read and write
|
||
|
1F6AA120000
|
heap
|
page read and write
|
||
|
1F6AA224000
|
trusted library allocation
|
page read and write
|
||
|
1F6A539D000
|
heap
|
page read and write
|
||
|
1A5AC940000
|
heap
|
page read and write
|
||
|
1F6AA207000
|
trusted library allocation
|
page read and write
|
||
|
20ED0FB5000
|
heap
|
page read and write
|
||
|
20ED0F89000
|
heap
|
page read and write
|
||
|
1F6AA08B000
|
heap
|
page read and write
|
||
|
1F6AA02D000
|
heap
|
page read and write
|
||
|
23BB3941000
|
heap
|
page read and write
|
||
|
F9AFBF7000
|
stack
|
page read and write
|
||
|
23BB3946000
|
heap
|
page read and write
|
||
|
1E0E3FB000
|
stack
|
page read and write
|
||
|
20ED0F96000
|
heap
|
page read and write
|
||
|
557767F000
|
unkown
|
page read and write
|
||
|
1E0E4FB000
|
stack
|
page read and write
|
||
|
20ED0F73000
|
heap
|
page read and write
|
||
|
20A6D0C9000
|
heap
|
page read and write
|
||
|
1F6A9EA3000
|
trusted library allocation
|
page read and write
|
||
|
1F6AA240000
|
trusted library allocation
|
page read and write
|
||
|
1F6AA340000
|
trusted library allocation
|
page read and write
|
||
|
20ED0FA0000
|
heap
|
page read and write
|
||
|
F9AF9FE000
|
stack
|
page read and write
|
||
|
20ED0688000
|
heap
|
page read and write
|
||
|
20ED0F74000
|
heap
|
page read and write
|
||
|
1DA6E661000
|
heap
|
page read and write
|
||
|
1F6A5313000
|
heap
|
page read and write
|
||
|
A55D07C000
|
stack
|
page read and write
|
||
|
99A12FD000
|
stack
|
page read and write
|
||
|
1F6A9EE0000
|
trusted library allocation
|
page read and write
|
||
|
23BB395F000
|
heap
|
page read and write
|
||
|
1A2D7980000
|
heap
|
page read and write
|
||
|
20ED0F74000
|
heap
|
page read and write
|
||
|
6A04FFE000
|
stack
|
page read and write
|
||
|
20ED0F73000
|
heap
|
page read and write
|
||
|
20ED0F73000
|
heap
|
page read and write
|
||
|
A55CEF9000
|
stack
|
page read and write
|
||
|
99A117D000
|
stack
|
page read and write
|
||
|
1A5ACB13000
|
heap
|
page read and write
|
||
|
1F6AA0FF000
|
heap
|
page read and write
|
||
|
20ED0F5B000
|
heap
|
page read and write
|
||
|
24EC0C85000
|
heap
|
page read and write
|
||
|
A95E17B000
|
stack
|
page read and write
|
||
|
1A5ACA60000
|
heap
|
page read and write
|
||
|
1F6A5215000
|
heap
|
page read and write
|
||
|
192DC880000
|
trusted library allocation
|
page read and write
|
||
|
1F6AA123000
|
heap
|
page read and write
|
||
|
20A6D071000
|
heap
|
page read and write
|
||
|
20ED0F9A000
|
heap
|
page read and write
|
||
|
1F6AA102000
|
heap
|
page read and write
|
||
|
1A5ACB00000
|
heap
|
page read and write
|
||
|
20ED0F84000
|
heap
|
page read and write
|
||
|
20ED0F89000
|
heap
|
page read and write
|
||
|
20ED0F73000
|
heap
|
page read and write
|
||
|
12FD5DB0000
|
heap
|
page read and write
|
||
|
20A6D900000
|
heap
|
page read and write
|
||
|
1F6AA11F000
|
heap
|
page read and write
|
||
|
1F6A4A93000
|
heap
|
page read and write
|
||
|
20ED0FB1000
|
heap
|
page read and write
|
||
|
20ED0F73000
|
heap
|
page read and write
|
||
|
1F6AA0F7000
|
heap
|
page read and write
|
||
|
1DA6E665000
|
heap
|
page read and write
|
||
|
1F6AA11B000
|
heap
|
page read and write
|
||
|
20A6D013000
|
heap
|
page read and write
|
||
|
99A0DFF000
|
stack
|
page read and write
|
||
|
1DA6E63D000
|
heap
|
page read and write
|
||
|
1F2A7C72000
|
heap
|
page read and write
|
||
|
1F6A5AF0000
|
trusted library section
|
page readonly
|
||
|
20ED0F7A000
|
heap
|
page read and write
|
||
|
12FD6602000
|
trusted library allocation
|
page read and write
|
||
|
20ED0F5B000
|
heap
|
page read and write
|
||
|
1A5ACA5C000
|
heap
|
page read and write
|
||
|
1F6A5AD0000
|
trusted library section
|
page readonly
|
||
|
1F6A49D0000
|
trusted library allocation
|
page read and write
|
||
|
1F6AA550000
|
trusted library allocation
|
page read and write
|
||
|
20ED1402000
|
heap
|
page read and write
|
||
|
1F6AA120000
|
heap
|
page read and write
|
||
|
20ED0F73000
|
heap
|
page read and write
|
||
|
20ED0F89000
|
heap
|
page read and write
|
||
|
1F6A9EF0000
|
trusted library allocation
|
page read and write
|
||
|
1DA6E64D000
|
heap
|
page read and write
|
||
|
20ED0F1A000
|
heap
|
page read and write
|
||
|
6A056FE000
|
stack
|
page read and write
|
||
|
1F6AA20B000
|
trusted library allocation
|
page read and write
|
||
|
1F6AA230000
|
trusted library allocation
|
page read and write
|
||
|
1DA6E640000
|
heap
|
page read and write
|
||
|
6A053FF000
|
stack
|
page read and write
|
||
|
1F6AA0AB000
|
heap
|
page read and write
|
||
|
1A2D7910000
|
heap
|
page read and write
|
||
|
1F6AA102000
|
heap
|
page read and write
|
||
|
1F6AA470000
|
trusted library allocation
|
page read and write
|
||
|
1DA6E500000
|
heap
|
page read and write
|
||
|
1F6AA540000
|
trusted library allocation
|
page read and write
|
||
|
20ED0F60000
|
heap
|
page read and write
|
||
|
23BB3972000
|
heap
|
page read and write
|
||
|
20ED0664000
|
heap
|
page read and write
|
||
|
1F6AA123000
|
heap
|
page read and write
|
||
|
1A5AD202000
|
trusted library allocation
|
page read and write
|
||
|
1F2A7C13000
|
heap
|
page read and write
|
||
|
23BB3972000
|
heap
|
page read and write
|
||
|
12FD6100000
|
heap
|
page read and write
|
||
|
1A2D7B02000
|
heap
|
page read and write
|
||
|
20ED0FBA000
|
heap
|
page read and write
|
||
|
1A5ACA3C000
|
heap
|
page read and write
|
||
|
1F6A5AE0000
|
trusted library section
|
page readonly
|
||
|
1F2A7BC0000
|
trusted library allocation
|
page read and write
|
||
|
1F6A539A000
|
heap
|
page read and write
|
||
|
1F6AA220000
|
trusted library allocation
|
page read and write
|
||
|
23BB3956000
|
heap
|
page read and write
|
||
|
20ED0F89000
|
heap
|
page read and write
|
||
|
20ED0DD0000
|
remote allocation
|
page read and write
|
||
|
A95E8FF000
|
stack
|
page read and write
|
||
|
1F6AA20B000
|
trusted library allocation
|
page read and write
|
||
|
4024E7A000
|
stack
|
page read and write
|
||
|
A95E7FE000
|
stack
|
page read and write
|
||
|
1F6A5359000
|
heap
|
page read and write
|
||
|
1F6AA200000
|
trusted library allocation
|
page read and write
|
||
|
1F6A539D000
|
heap
|
page read and write
|
||
|
20ED05B0000
|
heap
|
page read and write
|
||
|
1DA6E5A0000
|
trusted library allocation
|
page read and write
|
||
|
1F6A4A58000
|
heap
|
page read and write
|
||
|
1F6AA11F000
|
heap
|
page read and write
|
||
|
20ED1421000
|
heap
|
page read and write
|
||
|
20ED0F76000
|
heap
|
page read and write
|
||
|
20ED06B5000
|
heap
|
page read and write
|
||
|
24EC0C00000
|
heap
|
page read and write
|
||
|
20ED0F74000
|
heap
|
page read and write
|
||
|
1F6AA350000
|
trusted library allocation
|
page read and write
|
||
|
20ED06EB000
|
heap
|
page read and write
|
||
|
23BB3930000
|
heap
|
page read and write
|
||
|
20ED0F73000
|
heap
|
page read and write
|
||
|
20ED0F97000
|
heap
|
page read and write
|
||
|
20ED06C5000
|
heap
|
page read and write
|
||
|
20A6D113000
|
heap
|
page read and write
|
||
|
1F6AA20E000
|
trusted library allocation
|
page read and write
|
||
|
1F6A5300000
|
heap
|
page read and write
|
||
|
20ED0713000
|
heap
|
page read and write
|
||
|
1F6A59E0000
|
trusted library allocation
|
page read and write
|
||
|
20ED0F77000
|
heap
|
page read and write
|
||
|
1DA6E66C000
|
heap
|
page read and write
|
||
|
24EC0C3C000
|
heap
|
page read and write
|
||
|
192DC120000
|
heap
|
page read and write
|
||
|
20ED0F74000
|
heap
|
page read and write
|
||
|
20ED0FB1000
|
heap
|
page read and write
|
||
|
1A5AC930000
|
heap
|
page read and write
|
||
|
20A6D913000
|
heap
|
page read and write
|
||
|
20ED0F76000
|
heap
|
page read and write
|
||
|
20ED0F99000
|
heap
|
page read and write
|
||
|
1F6AA0FF000
|
heap
|
page read and write
|
||
|
1F6A539E000
|
heap
|
page read and write
|
||
|
1A2D7A13000
|
heap
|
page read and write
|
||
|
6641A77000
|
stack
|
page read and write
|
||
|
24EC0D00000
|
heap
|
page read and write
|
||
|
20ED0668000
|
heap
|
page read and write
|
||
|
20ED0F89000
|
heap
|
page read and write
|
||
|
1F6AA205000
|
trusted library allocation
|
page read and write
|
||
|
1F6A4940000
|
heap
|
page read and write
|
||
|
1DA6E702000
|
heap
|
page read and write
|
||
|
20ED1402000
|
heap
|
page read and write
|
||
|
1F6AA330000
|
trusted library allocation
|
page read and write
|
||
|
4024C79000
|
stack
|
page read and write
|
||
|
20ED0F9E000
|
heap
|
page read and write
|
||
|
1A5AC9A0000
|
heap
|
page read and write
|
||
|
1F6AA117000
|
heap
|
page read and write
|
||
|
664177E000
|
stack
|
page read and write
|
||
|
1F6AA221000
|
trusted library allocation
|
page read and write
|
||
|
20ED0F9F000
|
heap
|
page read and write
|
||
|
24EC0D02000
|
heap
|
page read and write
|
||
|
1F6AA470000
|
trusted library allocation
|
page read and write
|
||
|
24EC0C2A000
|
heap
|
page read and write
|
||
|
1E0DDDB000
|
stack
|
page read and write
|
||
|
1F6A5B10000
|
trusted library section
|
page readonly
|
||
|
20ED0F78000
|
heap
|
page read and write
|
||
|
1F6A4A00000
|
heap
|
page read and write
|
||
|
24EC0C53000
|
heap
|
page read and write
|
||
|
1F6A9E60000
|
trusted library allocation
|
page read and write
|
||
|
20A6D045000
|
heap
|
page read and write
|
||
|
20ED06CA000
|
heap
|
page read and write
|
||
|
20ED0F9F000
|
heap
|
page read and write
|
||
|
1A5AC9D0000
|
trusted library allocation
|
page read and write
|
||
|
99A107E000
|
stack
|
page read and write
|
||
|
1F6A4AA1000
|
heap
|
page read and write
|
||
|
20ED0702000
|
heap
|
page read and write
|
||
|
1A5ACA5D000
|
heap
|
page read and write
|
||
|
20ED0FA2000
|
heap
|
page read and write
|
||
|
1F6A4B02000
|
heap
|
page read and write
|
||
|
20ED0F74000
|
heap
|
page read and write
|
||
|
1F6A4AFE000
|
heap
|
page read and write
|
||
|
20ED0F5B000
|
heap
|
page read and write
|
||
|
20ED0F98000
|
heap
|
page read and write
|
||
|
20ED0FA1000
|
heap
|
page read and write
|
||
|
20ED0F7A000
|
heap
|
page read and write
|
||
|
20ED0F74000
|
heap
|
page read and write
|
||
|
20ED0F88000
|
heap
|
page read and write
|
||
|
1F6A9E70000
|
trusted library allocation
|
page read and write
|
||
|
40256FC000
|
stack
|
page read and write
|
||
|
6A04EFB000
|
stack
|
page read and write
|
||
|
A55CFFF000
|
stack
|
page read and write
|
||
|
20ED0FA0000
|
heap
|
page read and write
|
||
|
20ED0F89000
|
heap
|
page read and write
|
||
|
192DC259000
|
heap
|
page read and write
|
||
|
20ED0F7B000
|
heap
|
page read and write
|
||
|
1F2A7A60000
|
heap
|
page read and write
|
||
|
20ED0F90000
|
heap
|
page read and write
|
||
|
6A055FF000
|
stack
|
page read and write
|
||
|
1F2A7D00000
|
heap
|
page read and write
|
||
|
1F6AA206000
|
trusted library allocation
|
page read and write
|
||
|
24EC0C47000
|
heap
|
page read and write
|
||
|
1F6AA370000
|
trusted library allocation
|
page read and write
|
||
|
20ED065A000
|
heap
|
page read and write
|
||
|
23BB3AE0000
|
heap
|
page read and write
|
||
|
192DC0C0000
|
heap
|
page read and write
|
||
|
20ED0629000
|
heap
|
page read and write
|
||
|
1F6AA0F4000
|
heap
|
page read and write
|
||
|
55770FB000
|
stack
|
page read and write
|
||
|
24EC1402000
|
trusted library allocation
|
page read and write
|
||
|
1F6AA121000
|
heap
|
page read and write
|
||
|
1F2A7C02000
|
heap
|
page read and write
|
||
|
4024D7F000
|
stack
|
page read and write
|
||
|
1A5ACA00000
|
heap
|
page read and write
|
||
|
12FD6102000
|
heap
|
page read and write
|
||
|
1F6A51D1000
|
trusted library allocation
|
page read and write
|
||
|
20ED0F88000
|
heap
|
page read and write
|
||
|
640009B000
|
stack
|
page read and write
|
||
|
20ED0F96000
|
heap
|
page read and write
|
||
|
20ED0F74000
|
heap
|
page read and write
|
||
|
20ED0F9A000
|
heap
|
page read and write
|
||
|
1F6AA310000
|
trusted library allocation
|
page read and write
|
||
|
A95E47E000
|
stack
|
page read and write
|
||
|
1A5ACA8F000
|
heap
|
page read and write
|
||
|
1F6A4A79000
|
heap
|
page read and write
|
||
|
1A2D79E0000
|
remote allocation
|
page read and write
|
||
|
20ED0F89000
|
heap
|
page read and write
|
||
|
20ED0FA7000
|
heap
|
page read and write
|
||
|
1F6AA111000
|
heap
|
page read and write
|
||
|
6A049DB000
|
stack
|
page read and write
|
||
|
1A2D79B0000
|
trusted library allocation
|
page read and write
|
||
|
24EC0B00000
|
heap
|
page read and write
|
||
|
20ED067E000
|
heap
|
page read and write
|
||
|
12FD6000000
|
heap
|
page read and write
|
||
|
24EC0C4B000
|
heap
|
page read and write
|
||
|
99A0EFE000
|
stack
|
page read and write
|
||
|
A95E1FE000
|
stack
|
page read and write
|
||
|
640097C000
|
stack
|
page read and write
|
||
|
20ED0F89000
|
heap
|
page read and write
|
||
|
1F2A7D13000
|
heap
|
page read and write
|
||
|
4024B7C000
|
stack
|
page read and write
|
||
|
20ED0FA0000
|
heap
|
page read and write
|
||
|
20ED0F8C000
|
heap
|
page read and write
|
||
|
1F6AA120000
|
heap
|
page read and write
|
||
|
1F6A5318000
|
heap
|
page read and write
|
||
|
20ED1402000
|
heap
|
page read and write
|
||
|
6A054FF000
|
stack
|
page read and write
|
||
|
6641C7D000
|
stack
|
page read and write
|
||
|
20ED0F23000
|
heap
|
page read and write
|
||
|
1F6A5580000
|
trusted library allocation
|
page read and write
|
||
|
20ED0F5B000
|
heap
|
page read and write
|
||
|
23BB3AE5000
|
heap
|
page read and write
|
||
|
1F6A49E0000
|
trusted library section
|
page read and write
|
||
|
1F6A9EA0000
|
trusted library allocation
|
page read and write
|
||
|
20ED0F74000
|
heap
|
page read and write
|
||
|
20A6D023000
|
heap
|
page read and write
|
||
|
192DCA02000
|
trusted library allocation
|
page read and write
|
||
|
1F6AA20C000
|
trusted library allocation
|
page read and write
|
||
|
20ED063C000
|
heap
|
page read and write
|
||
|
1F6A5359000
|
heap
|
page read and write
|
||
|
192DC202000
|
heap
|
page read and write
|
||
|
24EC0D13000
|
heap
|
page read and write
|
||
|
192DC229000
|
heap
|
page read and write
|
||
|
20ED0F73000
|
heap
|
page read and write
|
||
|
55772F7000
|
stack
|
page read and write
|
||
|
23BB3950000
|
heap
|
page read and write
|
||
|
24EC0BA0000
|
trusted library allocation
|
page read and write
|
||
|
20A6D089000
|
heap
|
page read and write
|
||
|
1F6AA230000
|
trusted library allocation
|
page read and write
|
||
|
20ED1400000
|
heap
|
page read and write
|
||
|
20ED0F9A000
|
heap
|
page read and write
|
||
|
23BB3976000
|
heap
|
page read and write
|
||
|
192DC313000
|
heap
|
page read and write
|
||
|
20ED0F96000
|
heap
|
page read and write
|
||
|
1F6AA138000
|
heap
|
page read and write
|
||
|
20ED0FBA000
|
heap
|
page read and write
|
||
|
557777B000
|
stack
|
page read and write
|
||
|
1F6AA123000
|
heap
|
page read and write
|
||
|
20ED0F88000
|
heap
|
page read and write
|
||
|
1DA6E613000
|
heap
|
page read and write
|
||
|
1DA6E644000
|
heap
|
page read and write
|
||
|
402537F000
|
stack
|
page read and write
|
||
|
20ED0F74000
|
heap
|
page read and write
|
||
|
20ED0FC1000
|
heap
|
page read and write
|
||
|
40248FE000
|
stack
|
page read and write
|
||
|
20ED0F5D000
|
heap
|
page read and write
|
||
|
5576CCC000
|
stack
|
page read and write
|
||
|
1F6A539D000
|
heap
|
page read and write
|
||
|
20ED0F65000
|
heap
|
page read and write
|
||
|
1F6A4A74000
|
heap
|
page read and write
|
||
|
20ED0F8E000
|
heap
|
page read and write
|
||
|
1F6AA125000
|
heap
|
page read and write
|
||
|
1E0E2FB000
|
stack
|
page read and write
|
||
|
1F6A5200000
|
heap
|
page read and write
|
||
|
99A0C7B000
|
stack
|
page read and write
|
||
|
20ED0F96000
|
heap
|
page read and write
|
||
|
1F6AA138000
|
heap
|
page read and write
|
||
|
20ED06A6000
|
heap
|
page read and write
|
||
|
1F6AA11B000
|
heap
|
page read and write
|
||
|
20ED0F88000
|
heap
|
page read and write
|
||
|
20ED065E000
|
heap
|
page read and write
|
||
|
1F6A5318000
|
heap
|
page read and write
|
||
|
24EC0B70000
|
heap
|
page read and write
|
||
|
1F6AA0FF000
|
heap
|
page read and write
|
||
|
20ED0F9E000
|
heap
|
page read and write
|
||
|
1F6AA102000
|
heap
|
page read and write
|
||
|
1F6A5AC0000
|
trusted library section
|
page readonly
|
||
|
20ED1402000
|
heap
|
page read and write
|
||
|
20ED0F90000
|
heap
|
page read and write
|
||
|
20ED0F89000
|
heap
|
page read and write
|
||
|
1DA6E658000
|
heap
|
page read and write
|
||
|
A95E5FE000
|
stack
|
page read and write
|
||
|
12FD5FF0000
|
trusted library allocation
|
page read and write
|
||
|
20ED1403000
|
heap
|
page read and write
|
||
|
23BB395F000
|
heap
|
page read and write
|
||
|
1F6AA03D000
|
heap
|
page read and write
|
||
|
1DA6E510000
|
heap
|
page read and write
|
||
|
20ED0550000
|
heap
|
page read and write
|
||
|
20ED0FB1000
|
heap
|
page read and write
|
||
|
1DA6E67F000
|
heap
|
page read and write
|
||
|
20ED0F74000
|
heap
|
page read and write
|
||
|
1F6A5318000
|
heap
|
page read and write
|
||
|
20ED0F8F000
|
heap
|
page read and write
|
||
|
20ED0FD5000
|
heap
|
page read and write
|
||
|
20ED0F89000
|
heap
|
page read and write
|
||
|
20ED0653000
|
heap
|
page read and write
|
||
|
64006FF000
|
stack
|
page read and write
|
||
|
1F6A5318000
|
heap
|
page read and write
|
||
|
20ED0F99000
|
heap
|
page read and write
|
||
|
40255FA000
|
stack
|
page read and write
|
||
|
20ED0F5B000
|
heap
|
page read and write
|
||
|
20ED0FA0000
|
heap
|
page read and write
|
||
|
20ED065C000
|
heap
|
page read and write
|
||
|
20ED1402000
|
heap
|
page read and write
|
||
|
40250FF000
|
stack
|
page read and write
|
||
|
20ED0F96000
|
heap
|
page read and write
|
||
|
20ED0FA0000
|
heap
|
page read and write
|
||
|
20ED1402000
|
heap
|
page read and write
|
||
|
12FD6058000
|
heap
|
page read and write
|
||
|
1F6AA102000
|
heap
|
page read and write
|
||
|
1A2D79E0000
|
remote allocation
|
page read and write
|
||
|
1F6AA0A9000
|
heap
|
page read and write
|
||
|
F9AFCFF000
|
stack
|
page read and write
|
||
|
664167B000
|
stack
|
page read and write
|
||
|
20ED0F5B000
|
heap
|
page read and write
|
||
|
A55CE7E000
|
stack
|
page read and write
|
||
|
1F6AA11B000
|
heap
|
page read and write
|
||
|
6400CFF000
|
stack
|
page read and write
|
||
|
1F6A4B13000
|
heap
|
page read and write
|
||
|
23BB3750000
|
heap
|
page read and write
|
||
|
1F6AA118000
|
heap
|
page read and write
|
||
|
1DA6E600000
|
heap
|
page read and write
|
||
|
20ED0F89000
|
heap
|
page read and write
|
||
|
20ED0666000
|
heap
|
page read and write
|
||
|
20ED0F89000
|
heap
|
page read and write
|
||
|
1F6AA4E0000
|
trusted library allocation
|
page read and write
|
||
|
1F6AA055000
|
heap
|
page read and write
|
||
|
1F6A539B000
|
heap
|
page read and write
|
||
|
20ED0F73000
|
heap
|
page read and write
|
||
|
23BB3880000
|
heap
|
page read and write
|
||
|
20ED0F61000
|
heap
|
page read and write
|
||
|
1EF86FC000
|
stack
|
page read and write
|
||
|
20A6CF50000
|
heap
|
page read and write
|
||
|
20ED0F1C000
|
heap
|
page read and write
|
||
|
20ED0F73000
|
heap
|
page read and write
|
||
|
1F6A53DF000
|
heap
|
page read and write
|
||
|
40252FA000
|
stack
|
page read and write
|
||
|
20ED0F76000
|
heap
|
page read and write
|
||
|
1A5ACB02000
|
heap
|
page read and write
|
||
|
5576DCD000
|
stack
|
page read and write
|
||
|
1F6AA015000
|
heap
|
page read and write
|
||
|
20ED0708000
|
heap
|
page read and write
|
||
|
1DA6E66A000
|
heap
|
page read and write
|
||
|
20ED0F5B000
|
heap
|
page read and write
|
||
|
1A2D7A5C000
|
heap
|
page read and write
|
||
|
1F6A5318000
|
heap
|
page read and write
|
||
|
1F6AA206000
|
trusted library allocation
|
page read and write
|
||
|
20A6D0DF000
|
heap
|
page read and write
|
||
|
192DC269000
|
heap
|
page read and write
|
There are 704 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
file:///C:/Users/user/Desktop/Payment%20Remittance098.html
|
|