Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
support.exe
|
PE32 executable (console) Intel 80386, for MS Windows
|
initial sample
|
 |
|
|
\Device\ConDrv
|
ASCII text, with CRLF line terminators
|
dropped
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\support.exe
|
"C:\Users\user\Desktop\support.exe"
|
|
|
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://vulpvibe.bandcamp.com/album/squaredance
|
unknown
|
||
|
http://www.youtube.com/JamesPaddockMusic
|
unknown
|
||
|
http://www.exrock.com
|
unknown
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
739C37F000
|
stack
|
page read and write
|
||
|
C8E397B000
|
stack
|
page read and write
|
||
|
20DA0502000
|
heap
|
page read and write
|
||
|
739C6FF000
|
stack
|
page read and write
|
||
|
25893C29000
|
heap
|
page read and write
|
||
|
1B4F8AE2000
|
heap
|
page read and write
|
||
|
16A10641000
|
heap
|
page read and write
|
||
|
24E8A360000
|
trusted library allocation
|
page read and write
|
||
|
A75F9B000
|
stack
|
page read and write
|
||
|
1E356B00000
|
heap
|
page read and write
|
||
|
1B4F9300000
|
heap
|
page read and write
|
||
|
16A10540000
|
trusted library allocation
|
page read and write
|
||
|
24E89FE0000
|
trusted library section
|
page readonly
|
||
|
142D783C000
|
heap
|
page read and write
|
||
|
1B4F8A43000
|
heap
|
page read and write
|
||
|
25893C7F000
|
heap
|
page read and write
|
||
|
25893A50000
|
heap
|
page read and write
|
||
|
25893BB0000
|
trusted library allocation
|
page read and write
|
||
|
C8E377E000
|
stack
|
page read and write
|
||
|
9CC000
|
stack
|
page read and write
|
||
|
25893C71000
|
heap
|
page read and write
|
||
|
24E89918000
|
heap
|
page read and write
|
||
|
1E356A60000
|
heap
|
page read and write
|
||
|
3B1000
|
unkown
|
page execute read
|
||
|
2AAAC629000
|
heap
|
page read and write
|
||
|
25893C00000
|
heap
|
page read and write
|
||
|
20DA047B000
|
heap
|
page read and write
|
||
|
142D7850000
|
heap
|
page read and write
|
||
|
1B4F8ACA000
|
heap
|
page read and write
|
||
|
1B4F8AC7000
|
heap
|
page read and write
|
||
|
25893C43000
|
heap
|
page read and write
|
||
|
142D7813000
|
heap
|
page read and write
|
||
|
1E356940000
|
heap
|
page read and write
|
||
|
142D787C000
|
heap
|
page read and write
|
||
|
24E88CD0000
|
heap
|
page read and write
|
||
|
24E8E612000
|
heap
|
page read and write
|
||
|
29879E4F000
|
heap
|
page read and write
|
||
|
22B33602000
|
heap
|
page read and write
|
||
|
24E88E79000
|
heap
|
page read and write
|
||
|
2478E483000
|
heap
|
page read and write
|
||
|
29879E82000
|
heap
|
page read and write
|
||
|
3B0000
|
unkown
|
page readonly
|
||
|
24E89959000
|
heap
|
page read and write
|
||
|
2AAAC602000
|
heap
|
page read and write
|
||
|
24E8E6E3000
|
heap
|
page read and write
|
||
|
142D7800000
|
heap
|
page read and write
|
||
|
16A10659000
|
heap
|
page read and write
|
||
|
22B33600000
|
heap
|
page read and write
|
||
|
EA76E7B000
|
stack
|
page read and write
|
||
|
C30000
|
trusted library allocation
|
page read and write
|
||
|
24E8E830000
|
remote allocation
|
page read and write
|
||
|
BC01D7C000
|
stack
|
page read and write
|
||
|
1B4F8A29000
|
heap
|
page read and write
|
||
|
24E88E00000
|
heap
|
page read and write
|
||
|
2478E42A000
|
heap
|
page read and write
|
||
|
98C5E7F000
|
stack
|
page read and write
|
||
|
D6071FF000
|
stack
|
page read and write
|
||
|
25893C64000
|
heap
|
page read and write
|
||
|
25893C4C000
|
heap
|
page read and write
|
||
|
1E356A80000
|
heap
|
page read and write
|
||
|
25893C45000
|
heap
|
page read and write
|
||
|
26512A02000
|
trusted library allocation
|
page read and write
|
||
|
24E88E57000
|
heap
|
page read and write
|
||
|
98C5D7E000
|
stack
|
page read and write
|
||
|
25893C46000
|
heap
|
page read and write
|
||
|
6F7000
|
unkown
|
page readonly
|
||
|
24E88E8B000
|
heap
|
page read and write
|
||
|
24E8E6EA000
|
heap
|
page read and write
|
||
|
25893C2E000
|
heap
|
page read and write
|
||
|
24E8E630000
|
trusted library allocation
|
page read and write
|
||
|
24E8E810000
|
trusted library allocation
|
page read and write
|
||
|
24E88E91000
|
heap
|
page read and write
|
||
|
24E8E6FA000
|
heap
|
page read and write
|
||
|
25893C49000
|
heap
|
page read and write
|
||
|
33B97F000
|
stack
|
page read and write
|
||
|
20DA0210000
|
heap
|
page read and write
|
||
|
25893C76000
|
heap
|
page read and write
|
||
|
98C55FB000
|
stack
|
page read and write
|
||
|
24E88EBA000
|
heap
|
page read and write
|
||
|
3C1000
|
unkown
|
page readonly
|
||
|
33BD7E000
|
stack
|
page read and write
|
||
|
24E8E600000
|
heap
|
page read and write
|
||
|
1E357402000
|
trusted library allocation
|
page read and write
|
||
|
24E8E510000
|
trusted library allocation
|
page read and write
|
||
|
24E88F13000
|
heap
|
page read and write
|
||
|
33BB7D000
|
stack
|
page read and write
|
||
|
29879E55000
|
heap
|
page read and write
|
||
|
DE1337F000
|
stack
|
page read and write
|
||
|
24E88D60000
|
trusted library allocation
|
page read and write
|
||
|
98C58FC000
|
stack
|
page read and write
|
||
|
739CAFC000
|
stack
|
page read and write
|
||
|
24E8E4D0000
|
trusted library allocation
|
page read and write
|
||
|
29879E13000
|
heap
|
page read and write
|
||
|
22B33440000
|
heap
|
page read and write
|
||
|
25893C3E000
|
heap
|
page read and write
|
||
|
2651223C000
|
heap
|
page read and write
|
||
|
24E88E8D000
|
heap
|
page read and write
|
||
|
1B4F8A6D000
|
heap
|
page read and write
|
||
|
2AAACE02000
|
trusted library allocation
|
page read and write
|
||
|
BC01C7E000
|
stack
|
page read and write
|
||
|
8A0FEFB000
|
stack
|
page read and write
|
||
|
142D7900000
|
heap
|
page read and write
|
||
|
22B33628000
|
heap
|
page read and write
|
||
|
24E8E700000
|
heap
|
page read and write
|
||
|
24E88E77000
|
heap
|
page read and write
|
||
|
1E3568D0000
|
heap
|
page read and write
|
||
|
33BF7F000
|
stack
|
page read and write
|
||
|
16A1065F000
|
heap
|
page read and write
|
||
|
142D75D0000
|
heap
|
page read and write
|
||
|
24E8E500000
|
trusted library allocation
|
page read and write
|
||
|
24E89FF0000
|
trusted library section
|
page readonly
|
||
|
25893C6B000
|
heap
|
page read and write
|
||
|
16A103D0000
|
heap
|
page read and write
|
||
|
739C9FE000
|
stack
|
page read and write
|
||
|
24E897E0000
|
trusted library allocation
|
page read and write
|
||
|
24E8E3C0000
|
trusted library allocation
|
page read and write
|
||
|
A765F7000
|
stack
|
page read and write
|
||
|
2AAAC65C000
|
heap
|
page read and write
|
||
|
20DA01A0000
|
heap
|
page read and write
|
||
|
2478FE90000
|
trusted library allocation
|
page read and write
|
||
|
D606EFB000
|
stack
|
page read and write
|
||
|
DD9BFFF000
|
stack
|
page read and write
|
||
|
B5E137F000
|
stack
|
page read and write
|
||
|
24E8E4F4000
|
trusted library allocation
|
page read and write
|
||
|
8A0FFFE000
|
stack
|
page read and write
|
||
|
8A101FE000
|
stack
|
page read and write
|
||
|
1B4F87F0000
|
heap
|
page read and write
|
||
|
24E8E4D0000
|
trusted library allocation
|
page read and write
|
||
|
DD9C17E000
|
stack
|
page read and write
|
||
|
B5E147A000
|
stack
|
page read and write
|
||
|
B5E12FE000
|
stack
|
page read and write
|
||
|
16A10670000
|
heap
|
page read and write
|
||
|
DD9BE7B000
|
stack
|
page read and write
|
||
|
25893C80000
|
heap
|
page read and write
|
||
|
142D7908000
|
heap
|
page read and write
|
||
|
2478E470000
|
heap
|
page read and write
|
||
|
DD9C5FD000
|
stack
|
page read and write
|
||
|
24E8E6F2000
|
heap
|
page read and write
|
||
|
142D7870000
|
heap
|
page read and write
|
||
|
33B87B000
|
stack
|
page read and write
|
||
|
3B0000
|
unkown
|
page readonly
|
||
|
33BA7F000
|
stack
|
page read and write
|
||
|
142D784D000
|
heap
|
page read and write
|
||
|
24E8E64A000
|
heap
|
page read and write
|
||
|
22B33713000
|
heap
|
page read and write
|
||
|
142D7886000
|
heap
|
page read and write
|
||
|
24E89900000
|
heap
|
page read and write
|
||
|
29879E71000
|
heap
|
page read and write
|
||
|
29879E29000
|
heap
|
page read and write
|
||
|
DE1357E000
|
stack
|
page read and write
|
||
|
C8E3A77000
|
stack
|
page read and write
|
||
|
24E88E6F000
|
heap
|
page read and write
|
||
|
26512080000
|
heap
|
page read and write
|
||
|
25893C42000
|
heap
|
page read and write
|
||
|
B5E11FB000
|
stack
|
page read and write
|
||
|
24E8E830000
|
remote allocation
|
page read and write
|
||
|
EA773FE000
|
stack
|
page read and write
|
||
|
8CC000
|
stack
|
page read and write
|
||
|
2AAACDE0000
|
remote allocation
|
page read and write
|
||
|
24E89800000
|
heap
|
page read and write
|
||
|
C8E3C7F000
|
stack
|
page read and write
|
||
|
1E356A3C000
|
heap
|
page read and write
|
||
|
16A10702000
|
heap
|
page read and write
|
||
|
739C4FF000
|
stack
|
page read and write
|
||
|
24E8E6F1000
|
heap
|
page read and write
|
||
|
265120F0000
|
heap
|
page read and write
|
||
|
22B33E02000
|
trusted library allocation
|
page read and write
|
||
|
A762FF000
|
stack
|
page read and write
|
||
|
142D7855000
|
heap
|
page read and write
|
||
|
DD9C3FF000
|
stack
|
page read and write
|
||
|
22B3363C000
|
heap
|
page read and write
|
||
|
739C5FF000
|
stack
|
page read and write
|
||
|
DE1367E000
|
stack
|
page read and write
|
||
|
20DA0508000
|
heap
|
page read and write
|
||
|
29879E4A000
|
heap
|
page read and write
|
||
|
142D7857000
|
heap
|
page read and write
|
||
|
476000
|
unkown
|
page write copy
|
||
|
B5E127F000
|
stack
|
page read and write
|
||
|
24E88E24000
|
heap
|
page read and write
|
||
|
530000
|
unkown
|
page write copy
|
||
|
D606C7E000
|
stack
|
page read and write
|
||
|
DE12F8E000
|
stack
|
page read and write
|
||
|
2AAAC623000
|
heap
|
page read and write
|
||
|
24E89913000
|
heap
|
page read and write
|
||
|
24E8A010000
|
trusted library section
|
page readonly
|
||
|
98C51AB000
|
stack
|
page read and write
|
||
|
24E88F02000
|
heap
|
page read and write
|
||
|
29879BC0000
|
heap
|
page read and write
|
||
|
8A0F99B000
|
stack
|
page read and write
|
||
|
2478E3D0000
|
heap
|
page read and write
|
||
|
16A10440000
|
heap
|
page read and write
|
||
|
1B4F9312000
|
heap
|
page read and write
|
||
|
20DA0452000
|
heap
|
page read and write
|
||
|
25893C31000
|
heap
|
page read and write
|
||
|
B5E0EFA000
|
stack
|
page read and write
|
||
|
1B4F8860000
|
heap
|
page read and write
|
||
|
2AAACDB0000
|
trusted library allocation
|
page read and write
|
||
|
26512271000
|
heap
|
page read and write
|
||
|
20DA044F000
|
heap
|
page read and write
|
||
|
2651228B000
|
heap
|
page read and write
|
||
|
24E8E6A0000
|
heap
|
page read and write
|
||
|
22B33702000
|
heap
|
page read and write
|
||
|
1E356B13000
|
heap
|
page read and write
|
||
|
26512090000
|
heap
|
page read and write
|
||
|
24E8E830000
|
remote allocation
|
page read and write
|
||
|
22B3367B000
|
heap
|
page read and write
|
||
|
1E356A29000
|
heap
|
page read and write
|
||
|
24E8E800000
|
trusted library allocation
|
page read and write
|
||
|
D6070FF000
|
stack
|
page read and write
|
||
|
29879C20000
|
heap
|
page read and write
|
||
|
DD9C4FD000
|
stack
|
page read and write
|
||
|
22B33667000
|
heap
|
page read and write
|
||
|
1B4F9202000
|
heap
|
page read and write
|
||
|
16A10663000
|
heap
|
page read and write
|
||
|
142D7913000
|
heap
|
page read and write
|
||
|
25893C13000
|
heap
|
page read and write
|
||
|
1E356A8E000
|
heap
|
page read and write
|
||
|
2478E473000
|
heap
|
page read and write
|
||
|
2AAAC702000
|
heap
|
page read and write
|
||
|
33B77B000
|
stack
|
page read and write
|
||
|
BC0191B000
|
stack
|
page read and write
|
||
|
24E89815000
|
heap
|
page read and write
|
||
|
26512313000
|
heap
|
page read and write
|
||
|
2987A602000
|
trusted library allocation
|
page read and write
|
||
|
B5E15FE000
|
stack
|
page read and write
|
||
|
24E89918000
|
heap
|
page read and write
|
||
|
25893C86000
|
heap
|
page read and write
|
||
|
142D7848000
|
heap
|
page read and write
|
||
|
25893C48000
|
heap
|
page read and write
|
||
|
25893C41000
|
heap
|
page read and write
|
||
|
24E89902000
|
heap
|
page read and write
|
||
|
20DA0C02000
|
trusted library allocation
|
page read and write
|
||
|
D6069FB000
|
stack
|
page read and write
|
||
|
24E89958000
|
heap
|
page read and write
|
||
|
24E8E4DE000
|
trusted library allocation
|
page read and write
|
||
|
E20000
|
heap
|
page read and write
|
||
|
24E8E514000
|
trusted library allocation
|
page read and write
|
||
|
2AAAC4B0000
|
heap
|
page read and write
|
||
|
24E8A000000
|
trusted library section
|
page readonly
|
||
|
33B33C000
|
stack
|
page read and write
|
||
|
20DA0486000
|
heap
|
page read and write
|
||
|
1E356A52000
|
heap
|
page read and write
|
||
|
24E88E13000
|
heap
|
page read and write
|
||
|
16A10600000
|
heap
|
page read and write
|
||
|
20DA044C000
|
heap
|
page read and write
|
||
|
26512213000
|
heap
|
page read and write
|
||
|
133F000
|
stack
|
page read and write
|
||
|
1E356A7F000
|
heap
|
page read and write
|
||
|
EA770FF000
|
stack
|
page read and write
|
||
|
24E88DF3000
|
trusted library allocation
|
page read and write
|
||
|
2478E473000
|
heap
|
page read and write
|
||
|
8A100FE000
|
stack
|
page read and write
|
||
|
20DA01B0000
|
heap
|
page read and write
|
||
|
98C5A7B000
|
stack
|
page read and write
|
||
|
25893C4F000
|
heap
|
page read and write
|
||
|
25893C7D000
|
heap
|
page read and write
|
||
|
29879F02000
|
heap
|
page read and write
|
||
|
20DA0513000
|
heap
|
page read and write
|
||
|
24E8E62B000
|
heap
|
page read and write
|
||
|
DE12E8C000
|
stack
|
page read and write
|
||
|
2478FF80000
|
remote allocation
|
page read and write
|
||
|
20DA0470000
|
heap
|
page read and write
|
||
|
3C6000
|
unkown
|
page write copy
|
||
|
20DA0429000
|
heap
|
page read and write
|
||
|
98C5C7E000
|
stack
|
page read and write
|
||
|
16A10613000
|
heap
|
page read and write
|
||
|
24E88E9F000
|
heap
|
page read and write
|
||
|
BC01E7B000
|
stack
|
page read and write
|
||
|
1B4F8A13000
|
heap
|
page read and write
|
||
|
25894402000
|
trusted library allocation
|
page read and write
|
||
|
24E8E4D8000
|
trusted library allocation
|
page read and write
|
||
|
BC0207D000
|
stack
|
page read and write
|
||
|
24E8E5E0000
|
trusted library allocation
|
page read and write
|
||
|
2478FF00000
|
trusted library allocation
|
page read and write
|
||
|
29879E68000
|
heap
|
page read and write
|
||
|
C8E36FF000
|
stack
|
page read and write
|
||
|
1E356B02000
|
heap
|
page read and write
|
||
|
2478E43D000
|
heap
|
page read and write
|
||
|
29879E75000
|
heap
|
page read and write
|
||
|
24E8E6EE000
|
heap
|
page read and write
|
||
|
98C577F000
|
stack
|
page read and write
|
||
|
25893D02000
|
heap
|
page read and write
|
||
|
2478E473000
|
heap
|
page read and write
|
||
|
DD9C37D000
|
stack
|
page read and write
|
||
|
2478FEC0000
|
trusted library allocation
|
page read and write
|
||
|
24E88E3D000
|
heap
|
page read and write
|
||
|
1E356B08000
|
heap
|
page read and write
|
||
|
29879F13000
|
heap
|
page read and write
|
||
|
25893C6D000
|
heap
|
page read and write
|
||
|
3B1000
|
unkown
|
page execute read
|
||
|
24E88D30000
|
heap
|
page read and write
|
||
|
33BC7F000
|
stack
|
page read and write
|
||
|
142D7902000
|
heap
|
page read and write
|
||
|
24E8E661000
|
heap
|
page read and write
|
||
|
EA76EFE000
|
stack
|
page read and write
|
||
|
25893C3A000
|
heap
|
page read and write
|
||
|
C80000
|
heap
|
page read and write
|
||
|
25893C65000
|
heap
|
page read and write
|
||
|
1B4F8960000
|
trusted library allocation
|
page read and write
|
||
|
2478E500000
|
heap
|
page read and write
|
||
|
24E8E69E000
|
heap
|
page read and write
|
||
|
A764FB000
|
stack
|
page read and write
|
||
|
29879E8A000
|
heap
|
page read and write
|
||
|
BC0217E000
|
stack
|
page read and write
|
||
|
142D7640000
|
heap
|
page read and write
|
||
|
24790002000
|
trusted library allocation
|
page read and write
|
||
|
25893C62000
|
heap
|
page read and write
|
||
|
EA7707D000
|
stack
|
page read and write
|
||
|
2AAAC600000
|
heap
|
page read and write
|
||
|
24E89FC0000
|
trusted library section
|
page readonly
|
||
|
22B333D0000
|
heap
|
page read and write
|
||
|
20DA0413000
|
heap
|
page read and write
|
||
|
24E89EE0000
|
trusted library allocation
|
page read and write
|
||
|
98C587E000
|
stack
|
page read and write
|
||
|
24E8E6F0000
|
heap
|
page read and write
|
||
|
22B33613000
|
heap
|
page read and write
|
||
|
EA772F7000
|
stack
|
page read and write
|
||
|
A767FF000
|
stack
|
page read and write
|
||
|
24E8E63D000
|
heap
|
page read and write
|
||
|
1E356A00000
|
heap
|
page read and write
|
||
|
DE1347E000
|
stack
|
page read and write
|
||
|
2478E502000
|
heap
|
page read and write
|
||
|
DD9C27E000
|
stack
|
page read and write
|
||
|
20DA0400000
|
heap
|
page read and write
|
||
|
2478E360000
|
heap
|
page read and write
|
||
|
24E8E5A0000
|
trusted library allocation
|
page read and write
|
||
|
2B4E000
|
stack
|
page read and write
|
||
|
16A10602000
|
heap
|
page read and write
|
||
|
1E356A61000
|
heap
|
page read and write
|
||
|
1B4F8A88000
|
heap
|
page read and write
|
||
|
2478E513000
|
heap
|
page read and write
|
||
|
C8A000
|
heap
|
page read and write
|
||
|
2AAAC613000
|
heap
|
page read and write
|
||
|
2478FF80000
|
remote allocation
|
page read and write
|
||
|
1360000
|
heap
|
page read and write
|
||
|
22B33540000
|
trusted library allocation
|
page read and write
|
||
|
123E000
|
stack
|
page read and write
|
||
|
29879E3C000
|
heap
|
page read and write
|
||
|
29879E27000
|
heap
|
page read and write
|
||
|
24E8E702000
|
heap
|
page read and write
|
||
|
24E88D70000
|
trusted library section
|
page read and write
|
||
|
29879D20000
|
trusted library allocation
|
page read and write
|
||
|
1B4F8AB9000
|
heap
|
page read and write
|
||
|
2478E44E000
|
heap
|
page read and write
|
||
|
2AAAC640000
|
heap
|
page read and write
|
||
|
20DA0310000
|
trusted library allocation
|
page read and write
|
||
|
1B4F8800000
|
heap
|
page read and write
|
||
|
24E897D0000
|
trusted library allocation
|
page read and write
|
||
|
EA771FB000
|
stack
|
page read and write
|
||
|
20DA043C000
|
heap
|
page read and write
|
||
|
22B333E0000
|
heap
|
page read and write
|
||
|
24E8E4F0000
|
trusted library allocation
|
page read and write
|
||
|
142D7829000
|
heap
|
page read and write
|
||
|
A766FF000
|
stack
|
page read and write
|
||
|
25893C4A000
|
heap
|
page read and write
|
||
|
33BE7F000
|
stack
|
page read and write
|
||
|
6F7000
|
unkown
|
page readonly
|
||
|
22B33651000
|
heap
|
page read and write
|
||
|
29879F00000
|
heap
|
page read and write
|
||
|
29879E00000
|
heap
|
page read and write
|
||
|
24E8E620000
|
trusted library allocation
|
page read and write
|
||
|
25893C6F000
|
heap
|
page read and write
|
||
|
33C07F000
|
stack
|
page read and write
|
||
|
BC01F77000
|
stack
|
page read and write
|
||
|
25893C61000
|
heap
|
page read and write
|
||
|
1B4F9339000
|
heap
|
page read and write
|
||
|
B5E17FF000
|
stack
|
page read and write
|
||
|
25893C63000
|
heap
|
page read and write
|
||
|
B5E0FFB000
|
stack
|
page read and write
|
||
|
16A10629000
|
heap
|
page read and write
|
||
|
26512302000
|
heap
|
page read and write
|
||
|
24E8E61D000
|
heap
|
page read and write
|
||
|
A7627F000
|
stack
|
page read and write
|
||
|
25893C66000
|
heap
|
page read and write
|
||
|
26512253000
|
heap
|
page read and write
|
||
|
142D7849000
|
heap
|
page read and write
|
||
|
1B4F8A64000
|
heap
|
page read and write
|
||
|
2AAAC4A0000
|
heap
|
page read and write
|
||
|
B5E14FF000
|
stack
|
page read and write
|
||
|
24E89A01000
|
trusted library allocation
|
page read and write
|
||
|
C8E367B000
|
stack
|
page read and write
|
||
|
24E8E4F1000
|
trusted library allocation
|
page read and write
|
||
|
98C59FD000
|
stack
|
page read and write
|
||
|
1E356A13000
|
heap
|
page read and write
|
||
|
C8E3B7E000
|
stack
|
page read and write
|
||
|
739C8FC000
|
stack
|
page read and write
|
||
|
25893C2F000
|
heap
|
page read and write
|
||
|
3C5000
|
unkown
|
page read and write
|
||
|
2478E400000
|
heap
|
page read and write
|
||
|
24E89FD0000
|
trusted library section
|
page readonly
|
||
|
1E356A5E000
|
heap
|
page read and write
|
||
|
25893C68000
|
heap
|
page read and write
|
||
|
1E356970000
|
trusted library allocation
|
page read and write
|
||
|
B5E157F000
|
stack
|
page read and write
|
||
|
739BF4B000
|
stack
|
page read and write
|
||
|
1E356A8A000
|
heap
|
page read and write
|
||
|
B5E0D78000
|
stack
|
page read and write
|
||
|
BC0199E000
|
stack
|
page read and write
|
||
|
2478E483000
|
heap
|
page read and write
|
||
|
6F5000
|
unkown
|
page read and write
|
||
|
22B33700000
|
heap
|
page read and write
|
||
|
1B4F8A00000
|
heap
|
page read and write
|
||
|
24E88EFC000
|
heap
|
page read and write
|
||
|
142D75E0000
|
heap
|
page read and write
|
||
|
739C7FD000
|
stack
|
page read and write
|
||
|
98C5B7C000
|
stack
|
page read and write
|
||
|
16A10E02000
|
trusted library allocation
|
page read and write
|
||
|
20DA0500000
|
heap
|
page read and write
|
||
|
860000
|
heap
|
page read and write
|
||
|
2AAACDE0000
|
remote allocation
|
page read and write
|
||
|
142D7740000
|
trusted library allocation
|
page read and write
|
||
|
24E88EAD000
|
heap
|
page read and write
|
||
|
2AAAC510000
|
heap
|
page read and write
|
||
|
142D7853000
|
heap
|
page read and write
|
||
|
25893C3B000
|
heap
|
page read and write
|
||
|
2AAACDE0000
|
remote allocation
|
page read and write
|
||
|
EA775FF000
|
stack
|
page read and write
|
||
|
EA774FA000
|
stack
|
page read and write
|
||
|
25893C69000
|
heap
|
page read and write
|
||
|
24E88DF0000
|
trusted library allocation
|
page read and write
|
||
|
142D7858000
|
heap
|
page read and write
|
||
|
2478FF80000
|
remote allocation
|
page read and write
|
||
|
24E8E3B0000
|
trusted library allocation
|
page read and write
|
||
|
24E88E74000
|
heap
|
page read and write
|
||
|
1E356A63000
|
heap
|
page read and write
|
||
|
2478FE70000
|
trusted library allocation
|
page read and write
|
||
|
EA76F7E000
|
stack
|
page read and write
|
||
|
476000
|
unkown
|
page write copy
|
||
|
2478E518000
|
heap
|
page read and write
|
||
|
25893AB0000
|
heap
|
page read and write
|
||
|
DD9C0FE000
|
stack
|
page read and write
|
||
|
16A10713000
|
heap
|
page read and write
|
||
|
B5E097B000
|
stack
|
page read and write
|
||
|
24E89802000
|
heap
|
page read and write
|
||
|
142D8002000
|
trusted library allocation
|
page read and write
|
||
|
26512229000
|
heap
|
page read and write
|
||
|
2C4F000
|
stack
|
page read and write
|
||
|
29879BB0000
|
heap
|
page read and write
|
||
|
1B4F8B02000
|
heap
|
page read and write
|
||
|
D606FF7000
|
stack
|
page read and write
|
||
|
24E8E5F0000
|
trusted library allocation
|
page read and write
|
||
|
1E3568E0000
|
heap
|
page read and write
|
||
|
29879F08000
|
heap
|
page read and write
|
||
|
24E8E500000
|
trusted library allocation
|
page read and write
|
||
|
25893A40000
|
heap
|
page read and write
|
||
|
3C1000
|
unkown
|
page readonly
|
||
|
25893C77000
|
heap
|
page read and write
|
||
|
24E88CC0000
|
heap
|
page read and write
|
||
|
26512282000
|
heap
|
page read and write
|
||
|
24E88DD1000
|
trusted library allocation
|
page read and write
|
||
|
1E356A7F000
|
heap
|
page read and write
|
||
|
265121F0000
|
trusted library allocation
|
page read and write
|
||
|
3C5000
|
unkown
|
page write copy
|
||
|
530000
|
unkown
|
page write copy
|
||
|
1B4F8B13000
|
heap
|
page read and write
|
||
|
2478E483000
|
heap
|
page read and write
|
||
|
D606CFE000
|
stack
|
page read and write
|
||
|
26512200000
|
heap
|
page read and write
|
||
|
B5E10FE000
|
stack
|
page read and write
|
||
|
2478E413000
|
heap
|
page read and write
|
||
|
DE12F0E000
|
stack
|
page read and write
|
||
|
25893C50000
|
heap
|
page read and write
|
||
|
29879E68000
|
heap
|
page read and write
|
||
|
25893C47000
|
heap
|
page read and write
|
||
|
16A103E0000
|
heap
|
page read and write
|
||
|
2478E370000
|
heap
|
page read and write
|
||
|
16A10679000
|
heap
|
page read and write
|
There are 457 hidden memdumps, click here to show them.