Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\01ee403f-82d3-4f74-b986-1b6ea3327b3e.tmp
|
SysEx File -
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\267a7d09-5b33-4310-8364-914110a8fd18.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\693970b4-e212-4d0d-90be-f2111dea9ebf.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\707cea91-9847-4796-866f-a561a7b8c5b5.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\772b472e-a9a3-40c1-9926-562106f2a3b8.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\0bdb8eff-bf01-4153-8209-4096d683d93f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\4afe832c-7b62-486d-83ea-c8dad2d8cca8.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\4f36df3a-176e-4bb8-be85-2a7c60925725.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5e7c2ef0-975d-4a07-8f86-19032fa4ebfa.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\89566aae-9aed-4cfc-9908-6cf92f8bd516.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\92cf187e-9cde-4f02-92e3-a9a058e6de23.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\39811dfa-4006-4384-863d-5a77924a4ed5.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\a63e876f-4e20-4519-b6a6-fe049943e529.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a00ff2ff-b349-444f-aede-c62bc3003682.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\a7a43735-7bbd-4c36-8985-678c4303a6f7.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ceff49a6-c713-48e3-8e94-d9ed960f2226.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\fcbbae36-8f8a-4c60-bc16-96c6ffb62e45.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\a250a7f2-c7f7-428e-b2ad-8a1ac2e9a66e.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\a85ecb8e-e9fd-47dd-9c54-99fcaff656e4.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\d80ec34f-78db-4f88-b487-f90164e3a444.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\db5e632f-6dc9-4398-ac6e-ee6fc414684b.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\def43469-d2ec-4fc0-8e74-0f7579fa979d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4264_2117823487\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4264_2117823487\_platform_specific\x86_64\pnacl_public_pnacl_json
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4264_2117823487\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_for_eh_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4264_2117823487\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4264_2117823487\_platform_specific\x86_64\pnacl_public_x86_64_crtend_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4264_2117823487\_platform_specific\x86_64\pnacl_public_x86_64_ld_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=7511538a3a6a0b862c772eace49075ed1bbe2377,
stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4264_2117823487\_platform_specific\x86_64\pnacl_public_x86_64_libcrt_platform_a
|
current ar archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4264_2117823487\_platform_specific\x86_64\pnacl_public_x86_64_libgcc_a
|
current ar archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4264_2117823487\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_a
|
current ar archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4264_2117823487\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_dummy_a
|
current ar archive
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4264_2117823487\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_llc_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=309d6d3d463e6b1b0690f39eb226b1e4c469b2ce,
stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4264_2117823487\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_sz_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=4b15de4ab227d5e46213978b8518d53c53ce1db9,
stripped
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4264_2117823487\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\4264_2117823487\manifest.json
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\486fa8ee-6bcc-4897-9b78-818dccce712e.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\53a73cf5-7f79-4a17-943d-d215741fe6dc.tmp
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\486fa8ee-6bcc-4897-9b78-818dccce712e.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\scoped_dir4264_280605476\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
There are 104 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation "https://telegra.ph/Invoice-05-13
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1520,1557875660905084409,5904195423971476852,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1916 /prefetch:8
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://telegra.ph/Invoice-05-13
|
 |
||
|
https://stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js
|
104.18.11.207
|
||
|
https://telegra.ph/images/icons.png?1
|
149.154.164.13
|
||
|
https://www.google.com/images/cleardot.gif
|
unknown
|
||
|
https://play.google.com
|
unknown
|
||
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
https://telegra.ph/css/core.min.css?46
|
149.154.164.13
|
||
|
https://accounts.google.com/MergeSession
|
unknown
|
||
|
https://t.me/_websync_?path=Invoice-05-13&hash=8207c1e9258718da71
|
149.154.167.99
|
||
|
https://www.google.com
|
unknown
|
||
|
https://telegra.ph/Invoice-05-13
|
149.154.164.13
|
||
|
https://telegra.ph/js/core.min.js?63
|
149.154.164.13
|
||
|
https://stackpath.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.bundle.min.js
|
104.18.11.207
|
||
|
https://telegra.ph/css/quill.core.min.css
|
149.154.164.13
|
||
|
https://s3.eu-west-3.amazonaws.com/online.microsoft.l/index.html
|
52.95.154.21
|
||
|
https://accounts.google.com
|
unknown
|
||
|
https://telegra.ph/Invoice-05-132
|
unknown
|
||
|
https://apis.google.com
|
unknown
|
||
|
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
||
|
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
||
|
https://clients2.google.com
|
unknown
|
||
|
https://s3.eu-west-3.amazonaws.com/online.microsoft.l/index.html
|
|||
|
https://dns.google
|
unknown
|
||
|
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
||
|
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
||
|
https://ogs.google.com
|
unknown
|
||
|
https://telegra.ph/Invoice-05-13
|
|||
|
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
142.250.185.206
|
||
|
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
|
142.250.186.77
|
||
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
||
|
https://chromium.googlesource.com/a/native_client/pnacl-llvm.git
|
unknown
|
||
|
https://telegra.ph/js/jquery.min.js
|
149.154.164.13
|
||
|
https://stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
|
104.18.11.207
|
||
|
https://telegra.ph/js/quill.min.js?9
|
149.154.164.13
|
||
|
https://www.google.com/images/x2.gif
|
unknown
|
||
|
https://telegra.ph/file/86dd395e10e68ba0af5ff.png
|
149.154.164.13
|
||
|
https://telegra.ph/images/favicon_2x.png?1
|
149.154.164.13
|
||
|
http://llvm.org/):
|
unknown
|
||
|
https://telegra.ph/favicon.ico?1
|
149.154.164.13
|
||
|
https://telegra.ph/js/load-image.all.min.js?1
|
149.154.164.13
|
||
|
https://www.google.com/images/dot2.gif
|
unknown
|
||
|
https://telegra.ph/js/autosize.min.js
|
149.154.164.13
|
||
|
https://code.google.com/p/nativeclient/issues/entry%s:
|
unknown
|
||
|
https://code.google.com/p/nativeclient/issues/entry
|
unknown
|
||
|
https://edit.telegra.ph/check
|
149.154.164.13
|
||
|
https://s3.eu-west-3.amazonaws.com/online.microsoft.l/index.html2
|
unknown
|
||
|
https://telegra.ph/js/jquery.selection.min.js
|
149.154.164.13
|
||
|
https://clients2.googleusercontent.com
|
unknown
|
||
|
https://cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js
|
104.17.24.14
|
||
|
https://www.google.com/
|
unknown
|
||
|
https://chromium.googlesource.com/a/native_client/pnacl-clang.git
|
unknown
|
||
|
https://clients2.google.com/service/update2/crx
|
unknown
|
There are 41 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
stackpath.bootstrapcdn.com
|
104.18.11.207
|
||
|
accounts.google.com
|
142.250.186.77
|
||
|
edit.telegra.ph
|
149.154.164.13
|
||
|
cdnjs.cloudflare.com
|
104.17.24.14
|
||
|
t.me
|
149.154.167.99
|
||
|
clients.l.google.com
|
142.250.185.206
|
||
|
telegra.ph
|
149.154.164.13
|
||
|
s3.eu-west-3.amazonaws.com
|
52.95.154.21
|
||
|
clients2.google.com
|
unknown
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
52.95.154.21
|
s3.eu-west-3.amazonaws.com
|
United States
|
||
|
104.17.24.14
|
cdnjs.cloudflare.com
|
United States
|
||
|
142.250.185.206
|
clients.l.google.com
|
United States
|
||
|
192.168.2.1
|
unknown
|
unknown
|
||
|
149.154.164.13
|
edit.telegra.ph
|
United Kingdom
|
||
|
149.154.167.99
|
t.me
|
United Kingdom
|
||
|
104.18.11.207
|
stackpath.bootstrapcdn.com
|
United States
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
142.250.186.77
|
accounts.google.com
|
United States
|
||
|
127.0.0.1
|
unknown
|
unknown
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
dr
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
||
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
||
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
There are 34 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
1B67E63D000
|
heap
|
page read and write
|
||
|
1B70B0DB000
|
heap
|
page read and write
|
||
|
248C6016000
|
heap
|
page read and write
|
||
|
248C0B02000
|
heap
|
page read and write
|
||
|
1B70B78E000
|
heap
|
page read and write
|
||
|
2642D622000
|
heap
|
page read and write
|
||
|
1B67EC02000
|
trusted library allocation
|
page read and write
|
||
|
1B70B781000
|
heap
|
page read and write
|
||
|
1B70B764000
|
heap
|
page read and write
|
||
|
248C6125000
|
heap
|
page read and write
|
||
|
1B70B027000
|
heap
|
page read and write
|
||
|
6D50DFF000
|
stack
|
page read and write
|
||
|
886DE7F000
|
stack
|
page read and write
|
||
|
248C6200000
|
trusted library allocation
|
page read and write
|
||
|
1B67E641000
|
heap
|
page read and write
|
||
|
2642D63C000
|
heap
|
page read and write
|
||
|
248C0ABC000
|
heap
|
page read and write
|
||
|
20EDF590000
|
trusted library allocation
|
page read and write
|
||
|
2642D4A0000
|
heap
|
page read and write
|
||
|
1B70B029000
|
heap
|
page read and write
|
||
|
1B70B7D1000
|
heap
|
page read and write
|
||
|
DA23EFE000
|
stack
|
page read and write
|
||
|
1B70BC03000
|
heap
|
page read and write
|
||
|
1B70B77F000
|
heap
|
page read and write
|
||
|
1B70BC02000
|
heap
|
page read and write
|
||
|
1B70B766000
|
heap
|
page read and write
|
||
|
25073055000
|
heap
|
page read and write
|
||
|
248C1313000
|
heap
|
page read and write
|
||
|
248C611F000
|
heap
|
page read and write
|
||
|
248C5F40000
|
trusted library allocation
|
page read and write
|
||
|
939BBFF000
|
stack
|
page read and write
|
||
|
28C9AA13000
|
heap
|
page read and write
|
||
|
21553002000
|
heap
|
page read and write
|
||
|
248C6390000
|
trusted library allocation
|
page read and write
|
||
|
3852C7A000
|
stack
|
page read and write
|
||
|
2642D63C000
|
heap
|
page read and write
|
||
|
2033A1C0000
|
heap
|
page read and write
|
||
|
21552EE0000
|
heap
|
page read and write
|
||
|
683487F000
|
stack
|
page read and write
|
||
|
2033A44E000
|
heap
|
page read and write
|
||
|
1B70B75F000
|
heap
|
page read and write
|
||
|
1B70B065000
|
heap
|
page read and write
|
||
|
1B70B786000
|
heap
|
page read and write
|
||
|
25073108000
|
heap
|
page read and write
|
||
|
DA23BFF000
|
stack
|
page read and write
|
||
|
DA23AFF000
|
stack
|
page read and write
|
||
|
68344FA000
|
stack
|
page read and write
|
||
|
6834AFF000
|
stack
|
page read and write
|
||
|
248C6121000
|
heap
|
page read and write
|
||
|
25073000000
|
heap
|
page read and write
|
||
|
20EDEDD0000
|
heap
|
page read and write
|
||
|
1B70B78E000
|
heap
|
page read and write
|
||
|
248C11E1000
|
trusted library allocation
|
page read and write
|
||
|
248C60FF000
|
heap
|
page read and write
|
||
|
248C60FF000
|
heap
|
page read and write
|
||
|
6833DFF000
|
stack
|
page read and write
|
||
|
1B70B0AC000
|
heap
|
page read and write
|
||
|
2033A502000
|
heap
|
page read and write
|
||
|
2642D642000
|
heap
|
page read and write
|
||
|
248C6270000
|
remote allocation
|
page read and write
|
||
|
DA231FC000
|
stack
|
page read and write
|
||
|
28C9AB13000
|
heap
|
page read and write
|
||
|
1B70B78E000
|
heap
|
page read and write
|
||
|
248C6250000
|
trusted library allocation
|
page read and write
|
||
|
1B70B787000
|
heap
|
page read and write
|
||
|
20EDF000000
|
heap
|
page read and write
|
||
|
1B70B7A9000
|
heap
|
page read and write
|
||
|
28C9AA3E000
|
heap
|
page read and write
|
||
|
1B70B78C000
|
heap
|
page read and write
|
||
|
1B67E67F000
|
heap
|
page read and write
|
||
|
1B70BC03000
|
heap
|
page read and write
|
||
|
248C610C000
|
heap
|
page read and write
|
||
|
2A3C7C00000
|
heap
|
page read and write
|
||
|
25073802000
|
trusted library allocation
|
page read and write
|
||
|
248C5F21000
|
trusted library allocation
|
page read and write
|
||
|
1B70BC02000
|
heap
|
page read and write
|
||
|
9824F7D000
|
stack
|
page read and write
|
||
|
248C6260000
|
trusted library allocation
|
page read and write
|
||
|
1B70B78A000
|
heap
|
page read and write
|
||
|
2A3C7BE0000
|
heap
|
page read and write
|
||
|
28C9AA66000
|
heap
|
page read and write
|
||
|
939BC78000
|
stack
|
page read and write
|
||
|
248C5E00000
|
trusted library allocation
|
page read and write
|
||
|
1B70B76A000
|
heap
|
page read and write
|
||
|
982468C000
|
stack
|
page read and write
|
||
|
1B70B0B6000
|
heap
|
page read and write
|
||
|
9824B7E000
|
stack
|
page read and write
|
||
|
1B67E644000
|
heap
|
page read and write
|
||
|
886DA7F000
|
stack
|
page read and write
|
||
|
20EDF102000
|
heap
|
page read and write
|
||
|
2507308A000
|
heap
|
page read and write
|
||
|
1B70BB70000
|
remote allocation
|
page read and write
|
||
|
1B70B79A000
|
heap
|
page read and write
|
||
|
2033A46F000
|
heap
|
page read and write
|
||
|
1B70BC21000
|
heap
|
page read and write
|
||
|
248C1D70000
|
trusted library allocation
|
page read and write
|
||
|
886DF7F000
|
stack
|
page read and write
|
||
|
94A4B7D000
|
stack
|
page read and write
|
||
|
1B70B7A2000
|
heap
|
page read and write
|
||
|
248C0AFE000
|
heap
|
page read and write
|
||
|
2507304A000
|
heap
|
page read and write
|
||
|
6D508FE000
|
stack
|
page read and write
|
||
|
2642D5D0000
|
heap
|
page read and write
|
||
|
25073091000
|
heap
|
page read and write
|
||
|
2642D780000
|
heap
|
page read and write
|
||
|
248C63E0000
|
trusted library allocation
|
page read and write
|
||
|
25073057000
|
heap
|
page read and write
|
||
|
6AAA6FB000
|
stack
|
page read and write
|
||
|
1B70B102000
|
heap
|
page read and write
|
||
|
1B70B0A4000
|
heap
|
page read and write
|
||
|
2A3C7C71000
|
heap
|
page read and write
|
||
|
20EDEE30000
|
heap
|
page read and write
|
||
|
1B70B7B6000
|
heap
|
page read and write
|
||
|
2033A454000
|
heap
|
page read and write
|
||
|
29CE67E000
|
stack
|
page read and write
|
||
|
20EDF05C000
|
heap
|
page read and write
|
||
|
248C5DB0000
|
trusted library allocation
|
page read and write
|
||
|
29CDF0B000
|
stack
|
page read and write
|
||
|
28C9AACA000
|
heap
|
page read and write
|
||
|
25072F70000
|
trusted library allocation
|
page read and write
|
||
|
25073100000
|
heap
|
page read and write
|
||
|
1B67E632000
|
heap
|
page read and write
|
||
|
25073013000
|
heap
|
page read and write
|
||
|
248C6123000
|
heap
|
page read and write
|
||
|
1B67E685000
|
heap
|
page read and write
|
||
|
1B70B78D000
|
heap
|
page read and write
|
||
|
1B70B786000
|
heap
|
page read and write
|
||
|
DA235FB000
|
stack
|
page read and write
|
||
|
1B70B791000
|
heap
|
page read and write
|
||
|
20EDF03C000
|
heap
|
page read and write
|
||
|
248C603D000
|
heap
|
page read and write
|
||
|
1B70B77F000
|
heap
|
page read and write
|
||
|
94A4EFC000
|
stack
|
page read and write
|
||
|
1B67E661000
|
heap
|
page read and write
|
||
|
248C611D000
|
heap
|
page read and write
|
||
|
2033A477000
|
heap
|
page read and write
|
||
|
248C1400000
|
trusted library allocation
|
page read and write
|
||
|
1B70B762000
|
heap
|
page read and write
|
||
|
21552F80000
|
trusted library allocation
|
page read and write
|
||
|
2642D610000
|
heap
|
page read and write
|
||
|
94A46FC000
|
stack
|
page read and write
|
||
|
68347FF000
|
stack
|
page read and write
|
||
|
248C60FF000
|
heap
|
page read and write
|
||
|
2642D642000
|
heap
|
page read and write
|
||
|
1B70B75F000
|
heap
|
page read and write
|
||
|
6D50CFE000
|
stack
|
page read and write
|
||
|
28C9AAC1000
|
heap
|
page read and write
|
||
|
1B70B0C9000
|
heap
|
page read and write
|
||
|
248C602E000
|
heap
|
page read and write
|
||
|
2642D655000
|
heap
|
page read and write
|
||
|
25072ED0000
|
heap
|
page read and write
|
||
|
20EDF063000
|
heap
|
page read and write
|
||
|
DA236FF000
|
stack
|
page read and write
|
||
|
2033A448000
|
heap
|
page read and write
|
||
|
1B67E64E000
|
heap
|
page read and write
|
||
|
248C0A79000
|
heap
|
page read and write
|
||
|
2A3C7C87000
|
heap
|
page read and write
|
||
|
1B70B764000
|
heap
|
page read and write
|
||
|
248C6102000
|
heap
|
page read and write
|
||
|
1B70B79D000
|
heap
|
page read and write
|
||
|
886D79E000
|
stack
|
page read and write
|
||
|
94A48FE000
|
stack
|
page read and write
|
||
|
248C1215000
|
heap
|
page read and write
|
||
|
939BB7F000
|
stack
|
page read and write
|
||
|
2A3C7C6C000
|
heap
|
page read and write
|
||
|
1B70B799000
|
heap
|
page read and write
|
||
|
2A3C7C55000
|
heap
|
page read and write
|
||
|
9824DFD000
|
stack
|
page read and write
|
||
|
1B67E646000
|
heap
|
page read and write
|
||
|
25073048000
|
heap
|
page read and write
|
||
|
21553100000
|
heap
|
page read and write
|
||
|
6AAA1DC000
|
stack
|
page read and write
|
||
|
FC6EB1F000
|
stack
|
page read and write
|
||
|
6D50BFE000
|
stack
|
page read and write
|
||
|
1B70B75F000
|
heap
|
page read and write
|
||
|
1B67E65A000
|
heap
|
page read and write
|
||
|
248C611D000
|
heap
|
page read and write
|
||
|
248C0840000
|
heap
|
page read and write
|
||
|
1B67E642000
|
heap
|
page read and write
|
||
|
1B70BC02000
|
heap
|
page read and write
|
||
|
2372D990000
|
remote allocation
|
page read and write
|
||
|
2507304E000
|
heap
|
page read and write
|
||
|
248C6102000
|
heap
|
page read and write
|
||
|
248C6280000
|
trusted library allocation
|
page read and write
|
||
|
1B70B76B000
|
heap
|
page read and write
|
||
|
1B70B792000
|
heap
|
page read and write
|
||
|
248C6220000
|
trusted library allocation
|
page read and write
|
||
|
248C6000000
|
heap
|
page read and write
|
||
|
1B70B0F6000
|
heap
|
page read and write
|
||
|
248C6208000
|
trusted library allocation
|
page read and write
|
||
|
20EDF052000
|
heap
|
page read and write
|
||
|
248C6136000
|
heap
|
page read and write
|
||
|
1B70BB70000
|
remote allocation
|
page read and write
|
||
|
1B67E66E000
|
heap
|
page read and write
|
||
|
94A49FE000
|
stack
|
page read and write
|
||
|
21553000000
|
heap
|
page read and write
|
||
|
2155306B000
|
heap
|
page read and write
|
||
|
1B67E676000
|
heap
|
page read and write
|
||
|
248C1700000
|
trusted library allocation
|
page read and write
|
||
|
248C6270000
|
remote allocation
|
page read and write
|
||
|
248C1359000
|
heap
|
page read and write
|
||
|
2642D634000
|
heap
|
page read and write
|
||
|
38521EE000
|
stack
|
page read and write
|
||
|
1B70B071000
|
heap
|
page read and write
|
||
|
248C6062000
|
heap
|
page read and write
|
||
|
248C6221000
|
trusted library allocation
|
page read and write
|
||
|
248C1318000
|
heap
|
page read and write
|
||
|
1B70B761000
|
heap
|
page read and write
|
||
|
28C9AA88000
|
heap
|
page read and write
|
||
|
248C6100000
|
heap
|
page read and write
|
||
|
248C6102000
|
heap
|
page read and write
|
||
|
25073054000
|
heap
|
page read and write
|
||
|
248C5D70000
|
trusted library allocation
|
page read and write
|
||
|
248C6120000
|
heap
|
page read and write
|
||
|
94A4FFF000
|
stack
|
page read and write
|
||
|
1B67E647000
|
heap
|
page read and write
|
||
|
248C6224000
|
trusted library allocation
|
page read and write
|
||
|
68343FF000
|
stack
|
page read and write
|
||
|
1B67E613000
|
heap
|
page read and write
|
||
|
21553040000
|
heap
|
page read and write
|
||
|
38529FF000
|
stack
|
page read and write
|
||
|
1B70BC02000
|
heap
|
page read and write
|
||
|
683467F000
|
stack
|
page read and write
|
||
|
1B70B792000
|
heap
|
page read and write
|
||
|
1B70B77F000
|
heap
|
page read and write
|
||
|
248C611F000
|
heap
|
page read and write
|
||
|
20EDF108000
|
heap
|
page read and write
|
||
|
DA237FC000
|
stack
|
page read and write
|
||
|
1B70B769000
|
heap
|
page read and write
|
||
|
1B70BC00000
|
heap
|
page read and write
|
||
|
1B70B766000
|
heap
|
page read and write
|
||
|
25073113000
|
heap
|
page read and write
|
||
|
FC6F2FF000
|
stack
|
page read and write
|
||
|
2507304C000
|
heap
|
page read and write
|
||
|
248C6270000
|
remote allocation
|
page read and write
|
||
|
1B70B70F000
|
heap
|
page read and write
|
||
|
1B67E65C000
|
heap
|
page read and write
|
||
|
248C0B13000
|
heap
|
page read and write
|
||
|
248C620E000
|
trusted library allocation
|
page read and write
|
||
|
248C610C000
|
heap
|
page read and write
|
||
|
1B67E662000
|
heap
|
page read and write
|
||
|
25073051000
|
heap
|
page read and write
|
||
|
2372DA13000
|
heap
|
page read and write
|
||
|
2033A44B000
|
heap
|
page read and write
|
||
|
1B70B03C000
|
heap
|
page read and write
|
||
|
2A3C7C13000
|
heap
|
page read and write
|
||
|
248C60A3000
|
heap
|
page read and write
|
||
|
DA23DFE000
|
stack
|
page read and write
|
||
|
1B67E678000
|
heap
|
page read and write
|
||
|
28C9A8A0000
|
heap
|
page read and write
|
||
|
886DC7B000
|
stack
|
page read and write
|
||
|
1B67E65F000
|
heap
|
page read and write
|
||
|
2033A451000
|
heap
|
page read and write
|
||
|
6834CFC000
|
stack
|
page read and write
|
||
|
248C5F54000
|
trusted library allocation
|
page read and write
|
||
|
20EDF05B000
|
heap
|
page read and write
|
||
|
248C19C0000
|
trusted library section
|
page readonly
|
||
|
1B70B791000
|
heap
|
page read and write
|
||
|
6AAA47E000
|
stack
|
page read and write
|
||
|
248C5DF0000
|
trusted library allocation
|
page read and write
|
||
|
2372D860000
|
heap
|
page read and write
|
||
|
2642D5F0000
|
heap
|
page read and write
|
||
|
2033A1D0000
|
heap
|
page read and write
|
||
|
248C6102000
|
heap
|
page read and write
|
||
|
1B70ADA0000
|
heap
|
page read and write
|
||
|
1B67E600000
|
heap
|
page read and write
|
||
|
21553113000
|
heap
|
page read and write
|
||
|
1B70B760000
|
heap
|
page read and write
|
||
|
1B70B0B0000
|
heap
|
page read and write
|
||
|
1B67E629000
|
heap
|
page read and write
|
||
|
1B70B7A1000
|
heap
|
page read and write
|
||
|
248C1359000
|
heap
|
page read and write
|
||
|
2372D7F0000
|
heap
|
page read and write
|
||
|
2033A500000
|
heap
|
page read and write
|
||
|
25072EE0000
|
heap
|
page read and write
|
||
|
1B70B798000
|
heap
|
page read and write
|
||
|
248C5FE0000
|
trusted library allocation
|
page read and write
|
||
|
1B70B75F000
|
heap
|
page read and write
|
||
|
248C1A10000
|
trusted library section
|
page readonly
|
||
|
1B70B78E000
|
heap
|
page read and write
|
||
|
248C5D90000
|
trusted library allocation
|
page read and write
|
||
|
28C9AAD2000
|
heap
|
page read and write
|
||
|
1B70B7A0000
|
heap
|
page read and write
|
||
|
1B70B764000
|
heap
|
page read and write
|
||
|
2642D657000
|
heap
|
page read and write
|
||
|
1B70B792000
|
heap
|
page read and write
|
||
|
1B70B791000
|
heap
|
page read and write
|
||
|
2372DA00000
|
heap
|
page read and write
|
||
|
248C1318000
|
heap
|
page read and write
|
||
|
1B70B0AB000
|
heap
|
page read and write
|
||
|
1B70BC02000
|
heap
|
page read and write
|
||
|
1B70B7BC000
|
heap
|
page read and write
|
||
|
6D5097E000
|
stack
|
page read and write
|
||
|
248C1A00000
|
trusted library section
|
page readonly
|
||
|
2033A230000
|
heap
|
page read and write
|
||
|
248C6120000
|
heap
|
page read and write
|
||
|
248C60F3000
|
heap
|
page read and write
|
||
|
1B70B789000
|
heap
|
page read and write
|
||
|
38528F7000
|
stack
|
page read and write
|
||
|
1B70B700000
|
heap
|
page read and write
|
||
|
248C0A74000
|
heap
|
page read and write
|
||
|
1B70B113000
|
heap
|
page read and write
|
||
|
29CE47B000
|
stack
|
page read and write
|
||
|
1B70B7D9000
|
heap
|
page read and write
|
||
|
2A3C7B80000
|
heap
|
page read and write
|
||
|
248C0850000
|
heap
|
page read and write
|
||
|
1B70B79D000
|
heap
|
page read and write
|
||
|
20EDF100000
|
heap
|
page read and write
|
||
|
248C0A8D000
|
heap
|
page read and write
|
||
|
1B70B7BC000
|
heap
|
page read and write
|
||
|
2372DA02000
|
heap
|
page read and write
|
||
|
29CE77F000
|
stack
|
page read and write
|
||
|
248C0A58000
|
heap
|
page read and write
|
||
|
2642D626000
|
heap
|
page read and write
|
||
|
68342F9000
|
stack
|
page read and write
|
||
|
1B70B762000
|
heap
|
page read and write
|
||
|
1B70B787000
|
heap
|
page read and write
|
||
|
1B70BB70000
|
remote allocation
|
page read and write
|
||
|
248C6230000
|
trusted library allocation
|
page read and write
|
||
|
1B70B711000
|
heap
|
page read and write
|
||
|
2372DA29000
|
heap
|
page read and write
|
||
|
21553056000
|
heap
|
page read and write
|
||
|
DA238FF000
|
stack
|
page read and write
|
||
|
1B70B792000
|
heap
|
page read and write
|
||
|
9824BFE000
|
stack
|
page read and write
|
||
|
20EDEDC0000
|
heap
|
page read and write
|
||
|
1B70B766000
|
heap
|
page read and write
|
||
|
939BAFF000
|
stack
|
page read and write
|
||
|
1B67E658000
|
heap
|
page read and write
|
||
|
25073029000
|
heap
|
page read and write
|
||
|
248C60A5000
|
heap
|
page read and write
|
||
|
29CE87F000
|
stack
|
page read and write
|
||
|
1B70B013000
|
heap
|
page read and write
|
||
|
2372D990000
|
remote allocation
|
page read and write
|
||
|
248C1300000
|
heap
|
page read and write
|
||
|
21552F50000
|
heap
|
page read and write
|
||
|
2033A508000
|
heap
|
page read and write
|
||
|
2A3C7D02000
|
heap
|
page read and write
|
||
|
1B70B7B5000
|
heap
|
page read and write
|
||
|
FC6F0FB000
|
stack
|
page read and write
|
||
|
248C1D60000
|
trusted library allocation
|
page read and write
|
||
|
1B70AE10000
|
heap
|
page read and write
|
||
|
94A4A7C000
|
stack
|
page read and write
|
||
|
1B70B75F000
|
heap
|
page read and write
|
||
|
1B70B762000
|
heap
|
page read and write
|
||
|
248C6240000
|
trusted library allocation
|
page read and write
|
||
|
248C0A3D000
|
heap
|
page read and write
|
||
|
1B67E635000
|
heap
|
page read and write
|
||
|
1B70AFE0000
|
trusted library allocation
|
page read and write
|
||
|
248C60EE000
|
heap
|
page read and write
|
||
|
2642D642000
|
heap
|
page read and write
|
||
|
DA239FD000
|
stack
|
page read and write
|
||
|
2033A990000
|
trusted library allocation
|
page read and write
|
||
|
1B70B74F000
|
heap
|
page read and write
|
||
|
2033A413000
|
heap
|
page read and write
|
||
|
1B70B766000
|
heap
|
page read and write
|
||
|
248C1318000
|
heap
|
page read and write
|
||
|
68346FE000
|
stack
|
page read and write
|
||
|
28C9B300000
|
heap
|
page read and write
|
||
|
94A4DFE000
|
stack
|
page read and write
|
||
|
28C9B202000
|
heap
|
page read and write
|
||
|
1B70B77F000
|
heap
|
page read and write
|
||
|
1B70B798000
|
heap
|
page read and write
|
||
|
1B70B798000
|
heap
|
page read and write
|
||
|
94A4BFC000
|
stack
|
page read and write
|
||
|
21552EF0000
|
heap
|
page read and write
|
||
|
385247E000
|
stack
|
page read and write
|
||
|
FC6EFFB000
|
stack
|
page read and write
|
||
|
21553013000
|
heap
|
page read and write
|
||
|
25073065000
|
heap
|
page read and write
|
||
|
1B70B77F000
|
heap
|
page read and write
|
||
|
9824E7F000
|
stack
|
page read and write
|
||
|
21553028000
|
heap
|
page read and write
|
||
|
1B70BC19000
|
heap
|
page read and write
|
||
|
1B67E675000
|
heap
|
page read and write
|
||
|
28C9B312000
|
heap
|
page read and write
|
||
|
2033AA02000
|
trusted library allocation
|
page read and write
|
||
|
FC6F1FB000
|
stack
|
page read and write
|
||
|
1B70B78E000
|
heap
|
page read and write
|
||
|
1B70B79A000
|
heap
|
page read and write
|
||
|
1B70ADB0000
|
heap
|
page read and write
|
||
|
1B67E3C0000
|
heap
|
page read and write
|
||
|
2A3C7C41000
|
heap
|
page read and write
|
||
|
1B70B713000
|
heap
|
page read and write
|
||
|
1B70B000000
|
heap
|
page read and write
|
||
|
2372DA40000
|
heap
|
page read and write
|
||
|
1B70B78D000
|
heap
|
page read and write
|
||
|
248C0A13000
|
heap
|
page read and write
|
||
|
248C60FF000
|
heap
|
page read and write
|
||
|
20EDF602000
|
trusted library allocation
|
page read and write
|
||
|
1B70B78E000
|
heap
|
page read and write
|
||
|
248C18E0000
|
trusted library allocation
|
page read and write
|
||
|
248C6123000
|
heap
|
page read and write
|
||
|
2642D64F000
|
heap
|
page read and write
|
||
|
248C5F10000
|
trusted library allocation
|
page read and write
|
||
|
2642D64E000
|
heap
|
page read and write
|
||
|
248C5F20000
|
trusted library allocation
|
page read and write
|
||
|
248C19F0000
|
trusted library section
|
page readonly
|
||
|
2642D632000
|
heap
|
page read and write
|
||
|
1B70B602000
|
heap
|
page read and write
|
||
|
21553102000
|
heap
|
page read and write
|
||
|
20EDF061000
|
heap
|
page read and write
|
||
|
2A3C7C02000
|
heap
|
page read and write
|
||
|
20EDF081000
|
heap
|
page read and write
|
||
|
2642D785000
|
heap
|
page read and write
|
||
|
1B67E3B0000
|
heap
|
page read and write
|
||
|
248C0A93000
|
heap
|
page read and write
|
||
|
1B70B7B6000
|
heap
|
page read and write
|
||
|
20EDF029000
|
heap
|
page read and write
|
||
|
385216C000
|
stack
|
page read and write
|
||
|
248C0A27000
|
heap
|
page read and write
|
||
|
1B70B78F000
|
heap
|
page read and write
|
||
|
21553802000
|
trusted library allocation
|
page read and write
|
||
|
28C9AA00000
|
heap
|
page read and write
|
||
|
248C19D0000
|
trusted library section
|
page readonly
|
||
|
2507304B000
|
heap
|
page read and write
|
||
|
2033A447000
|
heap
|
page read and write
|
||
|
248C19E0000
|
trusted library section
|
page readonly
|
||
|
1B70B78B000
|
heap
|
page read and write
|
||
|
94A42AB000
|
stack
|
page read and write
|
||
|
2507307F000
|
heap
|
page read and write
|
||
|
2033A485000
|
heap
|
page read and write
|
||
|
2A3C8402000
|
trusted library allocation
|
page read and write
|
||
|
2033A43C000
|
heap
|
page read and write
|
||
|
25073049000
|
heap
|
page read and write
|
||
|
1B70B0A9000
|
heap
|
page read and write
|
||
|
1B70B7AC000
|
heap
|
page read and write
|
||
|
886DD77000
|
stack
|
page read and write
|
||
|
1B70B7A1000
|
heap
|
page read and write
|
||
|
248C60FF000
|
heap
|
page read and write
|
||
|
1B70B78F000
|
heap
|
page read and write
|
||
|
1B70B798000
|
heap
|
page read and write
|
||
|
2A3C7B70000
|
heap
|
page read and write
|
||
|
1B70B766000
|
heap
|
page read and write
|
||
|
25073102000
|
heap
|
page read and write
|
||
|
68341F9000
|
stack
|
page read and write
|
||
|
1B67E660000
|
heap
|
page read and write
|
||
|
2033A481000
|
heap
|
page read and write
|
||
|
2372DB02000
|
heap
|
page read and write
|
||
|
1B70BC02000
|
heap
|
page read and write
|
||
|
29CE27F000
|
stack
|
page read and write
|
||
|
1B70B7AB000
|
heap
|
page read and write
|
||
|
248C5F50000
|
trusted library allocation
|
page read and write
|
||
|
1B70B789000
|
heap
|
page read and write
|
||
|
25073027000
|
heap
|
page read and write
|
||
|
2507304F000
|
heap
|
page read and write
|
||
|
248C09B0000
|
trusted library allocation
|
page read and write
|
||
|
6AAA8FE000
|
stack
|
page read and write
|
||
|
248C1358000
|
heap
|
page read and write
|
||
|
248C09C0000
|
trusted library section
|
page read and write
|
||
|
1B67E67B000
|
heap
|
page read and write
|
||
|
1B70B7AB000
|
heap
|
page read and write
|
||
|
68340F7000
|
stack
|
page read and write
|
||
|
20EDF013000
|
heap
|
page read and write
|
||
|
248C1318000
|
heap
|
page read and write
|
||
|
1B67E659000
|
heap
|
page read and write
|
||
|
2A3C7C29000
|
heap
|
page read and write
|
||
|
38525FE000
|
stack
|
page read and write
|
||
|
1B70B766000
|
heap
|
page read and write
|
||
|
1B67E640000
|
heap
|
page read and write
|
||
|
248C6102000
|
heap
|
page read and write
|
||
|
2A3C8340000
|
trusted library allocation
|
page read and write
|
||
|
248C0AAF000
|
heap
|
page read and write
|
||
|
1B70B089000
|
heap
|
page read and write
|
||
|
248C1302000
|
heap
|
page read and write
|
||
|
248C5F20000
|
trusted library allocation
|
page read and write
|
||
|
6AAA7F7000
|
stack
|
page read and write
|
||
|
1B67E5F0000
|
trusted library allocation
|
page read and write
|
||
|
1B70B78F000
|
heap
|
page read and write
|
||
|
248C604A000
|
heap
|
page read and write
|
||
|
248C6360000
|
trusted library allocation
|
page read and write
|
||
|
1B70B790000
|
heap
|
page read and write
|
||
|
6AAA4FF000
|
stack
|
page read and write
|
||
|
FC6EA9B000
|
stack
|
page read and write
|
||
|
683477F000
|
stack
|
page read and write
|
||
|
2A3C7D13000
|
heap
|
page read and write
|
||
|
2033A400000
|
heap
|
page read and write
|
||
|
29CE577000
|
stack
|
page read and write
|
||
|
1B70B0C2000
|
heap
|
page read and write
|
||
|
1B70B0ED000
|
heap
|
page read and write
|
||
|
20EDF075000
|
heap
|
page read and write
|
||
|
28C9A8B0000
|
heap
|
page read and write
|
||
|
2A3C7C61000
|
heap
|
page read and write
|
||
|
2A3C7C67000
|
heap
|
page read and write
|
||
|
6D50AFE000
|
stack
|
page read and write
|
||
|
248C6020000
|
heap
|
page read and write
|
||
|
28C9B070000
|
trusted library allocation
|
page read and write
|
||
|
1B70B780000
|
heap
|
page read and write
|
||
|
2033A513000
|
heap
|
page read and write
|
||
|
1B70B791000
|
heap
|
page read and write
|
||
|
248C6124000
|
heap
|
page read and write
|
||
|
2642D63C000
|
heap
|
page read and write
|
||
|
2642D627000
|
heap
|
page read and write
|
||
|
248C1D63000
|
trusted library allocation
|
page read and write
|
||
|
21553077000
|
heap
|
page read and write
|
||
|
25073052000
|
heap
|
page read and write
|
||
|
2507303C000
|
heap
|
page read and write
|
||
|
385257C000
|
stack
|
page read and write
|
||
|
38527F7000
|
stack
|
page read and write
|
||
|
2372DA23000
|
heap
|
page read and write
|
||
|
248C1200000
|
heap
|
page read and write
|
||
|
1B67E420000
|
heap
|
page read and write
|
||
|
6AAA9FF000
|
stack
|
page read and write
|
||
|
248C08B0000
|
heap
|
page read and write
|
||
|
28C9AAE2000
|
heap
|
page read and write
|
||
|
1B70B762000
|
heap
|
page read and write
|
||
|
1B70B75F000
|
heap
|
page read and write
|
||
|
886D71B000
|
stack
|
page read and write
|
||
|
1B67E702000
|
heap
|
page read and write
|
||
|
2642D638000
|
heap
|
page read and write
|
||
|
28C9AB02000
|
heap
|
page read and write
|
||
|
248C0A00000
|
heap
|
page read and write
|
||
|
1B70B789000
|
heap
|
page read and write
|
||
|
1B70B77F000
|
heap
|
page read and write
|
||
|
1B70B0E3000
|
heap
|
page read and write
|
||
|
3852B7E000
|
unkown
|
page read and write
|
||
|
248C1358000
|
heap
|
page read and write
|
||
|
9824A7E000
|
stack
|
page read and write
|
||
|
3852AFC000
|
stack
|
page read and write
|
||
|
2372D800000
|
heap
|
page read and write
|
||
|
248C5F24000
|
trusted library allocation
|
page read and write
|
||
|
25073071000
|
heap
|
page read and write
|
||
|
1B70B787000
|
heap
|
page read and write
|
||
|
982507D000
|
stack
|
page read and write
|
||
|
38526F8000
|
stack
|
page read and write
|
||
|
1B67E667000
|
heap
|
page read and write
|
||
|
2372D990000
|
remote allocation
|
page read and write
|
||
|
939BA7A000
|
stack
|
page read and write
|
||
|
248C6104000
|
heap
|
page read and write
|
||
|
1B67E66C000
|
heap
|
page read and write
|
||
|
248C0A9E000
|
heap
|
page read and write
|
||
|
2A3C7C5B000
|
heap
|
page read and write
|
||
|
248C5FE0000
|
trusted library allocation
|
page read and write
|
||
|
1B67E67C000
|
heap
|
page read and write
|
||
|
DA23CFE000
|
stack
|
page read and write
|
||
|
28C9AA6E000
|
heap
|
page read and write
|
||
|
1B70B79D000
|
heap
|
page read and write
|
||
|
6AAA5FC000
|
stack
|
page read and write
|
||
|
1B70B7A9000
|
heap
|
page read and write
|
||
|
1B67E657000
|
heap
|
page read and write
|
||
|
248C0A6F000
|
heap
|
page read and write
|
||
|
21553079000
|
heap
|
page read and write
|
||
|
9824CFF000
|
stack
|
page read and write
|
||
|
2372E202000
|
trusted library allocation
|
page read and write
|
||
|
939BD7C000
|
stack
|
page read and write
|
||
|
20EDF113000
|
heap
|
page read and write
|
||
|
1B70B76A000
|
heap
|
page read and write
|
||
|
25073056000
|
heap
|
page read and write
|
||
|
28C9AA24000
|
heap
|
page read and write
|
||
|
1B70BC02000
|
heap
|
page read and write
|
||
|
1B70BC02000
|
heap
|
page read and write
|
||
|
248C6102000
|
heap
|
page read and write
|
||
|
1B67E645000
|
heap
|
page read and write
|
||
|
2642D637000
|
heap
|
page read and write
|
||
|
1B67E63B000
|
heap
|
page read and write
|
||
|
2372D960000
|
trusted library allocation
|
page read and write
|
||
|
248C611F000
|
heap
|
page read and write
|
||
|
6D5087B000
|
stack
|
page read and write
|
||
|
1B70B790000
|
heap
|
page read and write
|
||
|
6833CFB000
|
stack
|
page read and write
|
||
|
68348FE000
|
stack
|
page read and write
|
||
|
20EDF05D000
|
heap
|
page read and write
|
||
|
68345FB000
|
stack
|
page read and write
|
||
|
248C5F10000
|
trusted library allocation
|
page read and write
|
||
|
25072F40000
|
heap
|
page read and write
|
||
|
248C5F40000
|
trusted library allocation
|
page read and write
|
||
|
2033A424000
|
heap
|
page read and write
|
||
|
28C9A910000
|
heap
|
page read and write
|
||
|
248C1202000
|
heap
|
page read and write
|
||
|
248C5D80000
|
trusted library allocation
|
page read and write
|
||
|
1B70B798000
|
heap
|
page read and write
|
||
|
248C6123000
|
heap
|
page read and write
|
||
|
94A4CFF000
|
stack
|
page read and write
|
||
|
248C60FD000
|
heap
|
page read and write
|
||
|
2372DA58000
|
heap
|
page read and write
|
||
|
248C6121000
|
heap
|
page read and write
|
||
|
1B70B787000
|
heap
|
page read and write
|
||
|
25073065000
|
heap
|
page read and write
|
||
|
939BCFF000
|
stack
|
page read and write
|
||
|
1B67E66A000
|
heap
|
page read and write
|
||
|
29CDF8F000
|
stack
|
page read and write
|
||
|
1B70B776000
|
heap
|
page read and write
|
There are 572 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://s3.eu-west-3.amazonaws.com/online.microsoft.l/index.html
|
|
|
|
https://telegra.ph/Invoice-05-13
|