Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Payment_copy28476450.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Local\Temp\wcycejenv.exe
|
PE32 executable (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\Roaming\C79A3B\B52B3F.exe (copy)
|
PE32 executable (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\nsg6B4D.tmp
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\ntwcyphb.r
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\stvrrcrc.d
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\C79A3B\B52B3F.lck
|
very short file (no magic)
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Crypto\RSA\S-1-5-21-3853321935-2125563209-4053062332-1002\21c8026919fd094ab07ec3c180a9f210_d06ed635-68f6-4e9a-955c-4899f5f57b9a
|
data
|
dropped
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\Payment_copy28476450.exe
|
C:\Users\user\Desktop\Payment_copy28476450.exe
|
|
|
|
C:\Users\user\AppData\Local\Temp\wcycejenv.exe
|
"C:\Users\user\AppData\Local\Temp\wcycejenv.exe" C:\Users\user\AppData\Local\Temp\stvrrcrc.d
|
|
|
|
C:\Users\user\AppData\Local\Temp\wcycejenv.exe
|
"C:\Users\user\AppData\Local\Temp\wcycejenv.exe" C:\Users\user\AppData\Local\Temp\stvrrcrc.d
|
|
|
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://sempersim.su/gl20/fre.php
|
95.213.216.202
|
|
|
|
http://kbfvzoboss.bid/alien/fre.php
|
|
||
|
http://alphastand.win/alien/fre.php
|
|
||
|
http://alphastand.trade/alien/fre.php
|
|
||
|
http://alphastand.top/alien/fre.php
|
|
||
|
http://nsis.sf.net/NSIS_Error
|
unknown
|
||
|
http://nsis.sf.net/NSIS_ErrorError
|
unknown
|
||
|
http://www.ibsensoftware.com/
|
unknown
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
sempersim.su
|
95.213.216.202
|
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
95.213.216.202
|
sempersim.su
|
Russian Federation
|
|
|
|
192.168.2.1
|
unknown
|
unknown
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
737000
|
heap
|
page read and write
|
|
|
|
400000
|
system
|
page execute and read and write
|
|
|
|
400000
|
system
|
page execute and read and write
|
|
|
|
610000
|
direct allocation
|
page read and write
|
|
|
|
2130000
|
heap
|
page read and write
|
||
|
1F543261000
|
heap
|
page read and write
|
||
|
9D000
|
stack
|
page read and write
|
||
|
28DF000
|
direct allocation
|
page read and write
|
||
|
27C0000
|
direct allocation
|
page read and write
|
||
|
2247000
|
direct allocation
|
page read and write
|
||
|
500000
|
trusted library allocation
|
page read and write
|
||
|
22EF7C6E000
|
heap
|
page read and write
|
||
|
29DBC750000
|
heap
|
page read and write
|
||
|
1D8A2CD0000
|
heap
|
page read and write
|
||
|
407000
|
unkown
|
page readonly
|
||
|
4FE000
|
stack
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
1F543313000
|
heap
|
page read and write
|
||
|
409000
|
unkown
|
page write copy
|
||
|
78F000
|
heap
|
page read and write
|
||
|
27C0000
|
direct allocation
|
page read and write
|
||
|
1D8A2D30000
|
heap
|
page read and write
|
||
|
1F543140000
|
heap
|
page read and write
|
||
|
233F000
|
stack
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
776000
|
heap
|
page read and write
|
||
|
773000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
28DB000
|
direct allocation
|
page read and write
|
||
|
470000
|
trusted library allocation
|
page read and write
|
||
|
22EF7C3A000
|
heap
|
page read and write
|
||
|
22EF7C79000
|
heap
|
page read and write
|
||
|
29DBC900000
|
heap
|
page read and write
|
||
|
22EF7C6B000
|
heap
|
page read and write
|
||
|
1C0000
|
remote allocation
|
page read and write
|
||
|
67C9A7E000
|
stack
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
1F54323C000
|
heap
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
DCECDFE000
|
stack
|
page read and write
|
||
|
E45C0FA000
|
stack
|
page read and write
|
||
|
C3B737F000
|
stack
|
page read and write
|
||
|
1C0000
|
remote allocation
|
page read and write
|
||
|
2746000
|
direct allocation
|
page read and write
|
||
|
67C92FB000
|
stack
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
DCECCFE000
|
stack
|
page read and write
|
||
|
29DBD202000
|
trusted library allocation
|
page read and write
|
||
|
2746000
|
direct allocation
|
page read and write
|
||
|
67C9CFD000
|
stack
|
page read and write
|
||
|
C3B757B000
|
stack
|
page read and write
|
||
|
793000
|
heap
|
page read and write
|
||
|
236CE202000
|
heap
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
28DB000
|
direct allocation
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
1F543243000
|
heap
|
page read and write
|
||
|
1D8A2E86000
|
heap
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
22EF7C60000
|
heap
|
page read and write
|
||
|
1D8A3900000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
99E000
|
stack
|
page read and write
|
||
|
28DF000
|
direct allocation
|
page read and write
|
||
|
1D8A2E45000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
400000
|
unkown
|
page readonly
|
||
|
BE9B1FE000
|
stack
|
page read and write
|
||
|
236CE160000
|
heap
|
page read and write
|
||
|
600000
|
direct allocation
|
page execute and read and write
|
||
|
610000
|
heap
|
page read and write
|
||
|
C3B787D000
|
stack
|
page read and write
|
||
|
217E000
|
stack
|
page read and write
|
||
|
DCECEFF000
|
stack
|
page read and write
|
||
|
453000
|
unkown
|
page write copy
|
||
|
59E000
|
stack
|
page read and write
|
||
|
1F543265000
|
heap
|
page read and write
|
||
|
236CE302000
|
heap
|
page read and write
|
||
|
793000
|
heap
|
page read and write
|
||
|
520000
|
heap
|
page read and write
|
||
|
236CE271000
|
heap
|
page read and write
|
||
|
449000
|
unkown
|
page readonly
|
||
|
783000
|
heap
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
29DBC780000
|
trusted library allocation
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
1C0000
|
remote allocation
|
page read and write
|
||
|
544EA7E000
|
stack
|
page read and write
|
||
|
773000
|
heap
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
236CE229000
|
heap
|
page read and write
|
||
|
782000
|
heap
|
page read and write
|
||
|
2990000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
1C4979C0000
|
trusted library allocation
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
453000
|
unkown
|
page write copy
|
||
|
783000
|
heap
|
page read and write
|
||
|
22EF7C13000
|
heap
|
page read and write
|
||
|
199000
|
stack
|
page read and write
|
||
|
464000
|
unkown
|
page readonly
|
||
|
236CE23D000
|
heap
|
page read and write
|
||
|
42D000
|
unkown
|
page readonly
|
||
|
22EF79B0000
|
heap
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
776000
|
heap
|
page read and write
|
||
|
22EF7C74000
|
heap
|
page read and write
|
||
|
615000
|
heap
|
page read and write
|
||
|
449000
|
unkown
|
page readonly
|
||
|
BE9AEFB000
|
stack
|
page read and write
|
||
|
19B000
|
stack
|
page read and write
|
||
|
236CE200000
|
heap
|
page read and write
|
||
|
5F0000
|
heap
|
page read and write
|
||
|
22EF7C40000
|
heap
|
page read and write
|
||
|
456000
|
unkown
|
page read and write
|
||
|
22EF7C55000
|
heap
|
page read and write
|
||
|
22EF7C7D000
|
heap
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
776000
|
heap
|
page read and write
|
||
|
29DBC913000
|
heap
|
page read and write
|
||
|
22EF7C31000
|
heap
|
page read and write
|
||
|
773000
|
heap
|
page read and write
|
||
|
22EF7C42000
|
heap
|
page read and write
|
||
|
23D0000
|
heap
|
page read and write
|
||
|
1F543264000
|
heap
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
2630000
|
direct allocation
|
page read and write
|
||
|
236CE25A000
|
heap
|
page read and write
|
||
|
29DBC85A000
|
heap
|
page read and write
|
||
|
67C9BFE000
|
stack
|
page read and write
|
||
|
DCECA7B000
|
stack
|
page read and write
|
||
|
7EF000
|
stack
|
page read and write
|
||
|
454000
|
unkown
|
page read and write
|
||
|
28DF000
|
direct allocation
|
page read and write
|
||
|
281F000
|
stack
|
page read and write
|
||
|
22EF7C62000
|
heap
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
29DBC6F0000
|
heap
|
page read and write
|
||
|
544E67E000
|
stack
|
page read and write
|
||
|
30000
|
heap
|
page read and write
|
||
|
9D000
|
stack
|
page read and write
|
||
|
E45C57D000
|
stack
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
28DF000
|
direct allocation
|
page read and write
|
||
|
C3B797E000
|
stack
|
page read and write
|
||
|
E45C77F000
|
stack
|
page read and write
|
||
|
787000
|
heap
|
page read and write
|
||
|
453000
|
unkown
|
page write copy
|
||
|
786000
|
heap
|
page read and write
|
||
|
22EF7C82000
|
heap
|
page read and write
|
||
|
449000
|
unkown
|
page readonly
|
||
|
1C4979F0000
|
remote allocation
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
22EF7C7A000
|
heap
|
page read and write
|
||
|
510000
|
heap
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
5FA000
|
heap
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
1F543259000
|
heap
|
page read and write
|
||
|
2746000
|
direct allocation
|
page read and write
|
||
|
409000
|
unkown
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
283F000
|
stack
|
page read and write
|
||
|
1D8A2E13000
|
heap
|
page read and write
|
||
|
2630000
|
direct allocation
|
page read and write
|
||
|
544E37B000
|
stack
|
page read and write
|
||
|
2825000
|
trusted library allocation
|
page read and write
|
||
|
AA0000
|
heap
|
page read and write
|
||
|
1D8A2F02000
|
heap
|
page read and write
|
||
|
2746000
|
direct allocation
|
page read and write
|
||
|
23BE000
|
stack
|
page read and write
|
||
|
1C497A29000
|
heap
|
page read and write
|
||
|
20CE000
|
stack
|
page read and write
|
||
|
67C977E000
|
stack
|
page read and write
|
||
|
29DBC800000
|
heap
|
page read and write
|
||
|
1F543213000
|
heap
|
page read and write
|
||
|
28DB000
|
direct allocation
|
page read and write
|
||
|
C3B767C000
|
stack
|
page read and write
|
||
|
1C497A40000
|
heap
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
237F000
|
stack
|
page read and write
|
||
|
1C4979F0000
|
remote allocation
|
page read and write
|
||
|
22EF7C00000
|
heap
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
23F0000
|
heap
|
page read and write
|
||
|
67C99FD000
|
stack
|
page read and write
|
||
|
28DB000
|
direct allocation
|
page read and write
|
||
|
1C497920000
|
heap
|
page read and write
|
||
|
1C4979F0000
|
remote allocation
|
page read and write
|
||
|
22EF7C46000
|
heap
|
page read and write
|
||
|
1F543170000
|
trusted library allocation
|
page read and write
|
||
|
1D8A2E6D000
|
heap
|
page read and write
|
||
|
29DBC802000
|
heap
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
1F543C02000
|
trusted library allocation
|
page read and write
|
||
|
1F543200000
|
heap
|
page read and write
|
||
|
BE9A9DB000
|
stack
|
page read and write
|
||
|
1C497A13000
|
heap
|
page read and write
|
||
|
28DF000
|
direct allocation
|
page read and write
|
||
|
28DB000
|
direct allocation
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
287E000
|
stack
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
544DF2B000
|
stack
|
page read and write
|
||
|
42A000
|
unkown
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
22EF7C29000
|
heap
|
page read and write
|
||
|
27C0000
|
direct allocation
|
page read and write
|
||
|
E45C37E000
|
stack
|
page read and write
|
||
|
22EF7C3C000
|
heap
|
page read and write
|
||
|
29DBC863000
|
heap
|
page read and write
|
||
|
22EF7C6C000
|
heap
|
page read and write
|
||
|
C3B74FD000
|
stack
|
page read and write
|
||
|
1F5430D0000
|
heap
|
page read and write
|
||
|
236CE313000
|
heap
|
page read and write
|
||
|
28DF000
|
direct allocation
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
1C0000
|
remote allocation
|
page read and write
|
||
|
1F543202000
|
heap
|
page read and write
|
||
|
2980000
|
heap
|
page read and write
|
||
|
544E87F000
|
stack
|
page read and write
|
||
|
776000
|
heap
|
page read and write
|
||
|
2230000
|
heap
|
page read and write
|
||
|
22EF7A10000
|
heap
|
page read and write
|
||
|
464000
|
unkown
|
page readonly
|
||
|
29DBC828000
|
heap
|
page read and write
|
||
|
40B000
|
unkown
|
page read and write
|
||
|
C3B707C000
|
stack
|
page read and write
|
||
|
30000
|
heap
|
page read and write
|
||
|
C3B73FC000
|
stack
|
page read and write
|
||
|
22EF7C5A000
|
heap
|
page read and write
|
||
|
78F000
|
heap
|
page read and write
|
||
|
DCECB7E000
|
stack
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
236CE275000
|
heap
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
6A0000
|
heap
|
page read and write
|
||
|
793000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
449000
|
unkown
|
page readonly
|
||
|
236CE1D0000
|
heap
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
DCECFFF000
|
stack
|
page read and write
|
||
|
1D8A2E2A000
|
heap
|
page read and write
|
||
|
22EF7C57000
|
heap
|
page read and write
|
||
|
29DBC879000
|
heap
|
page read and write
|
||
|
1F54322A000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
783000
|
heap
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
22EF7C5E000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
786000
|
heap
|
page read and write
|
||
|
22EF79A0000
|
heap
|
page read and write
|
||
|
67C98FE000
|
stack
|
page read and write
|
||
|
776000
|
heap
|
page read and write
|
||
|
19A000
|
stack
|
page read and write
|
||
|
730000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
27C0000
|
direct allocation
|
page read and write
|
||
|
2630000
|
direct allocation
|
page read and write
|
||
|
600000
|
trusted library allocation
|
page read and write
|
||
|
6AA000
|
heap
|
page read and write
|
||
|
29DBC813000
|
heap
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
773000
|
heap
|
page read and write
|
||
|
1C497A58000
|
heap
|
page read and write
|
||
|
544E5FB000
|
stack
|
page read and write
|
||
|
464000
|
unkown
|
page readonly
|
||
|
2210000
|
heap
|
page read and write
|
||
|
29DBC902000
|
heap
|
page read and write
|
||
|
22EF7D02000
|
heap
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
27C0000
|
direct allocation
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
27C0000
|
direct allocation
|
page read and write
|
||
|
773000
|
heap
|
page read and write
|
||
|
236CEA70000
|
trusted library allocation
|
page read and write
|
||
|
1C498402000
|
trusted library allocation
|
page read and write
|
||
|
C3B727E000
|
stack
|
page read and write
|
||
|
453000
|
unkown
|
page write copy
|
||
|
783000
|
heap
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
22EF7C4D000
|
heap
|
page read and write
|
||
|
1D8A3932000
|
heap
|
page read and write
|
||
|
1D8A3802000
|
heap
|
page read and write
|
||
|
22EF7C67000
|
heap
|
page read and write
|
||
|
29DBC83C000
|
heap
|
page read and write
|
||
|
BE9AFFB000
|
stack
|
page read and write
|
||
|
464000
|
unkown
|
page readonly
|
||
|
297F000
|
stack
|
page read and write
|
||
|
27C0000
|
direct allocation
|
page read and write
|
||
|
22EF7C58000
|
heap
|
page read and write
|
||
|
8EF000
|
stack
|
page read and write
|
||
|
C3B777E000
|
stack
|
page read and write
|
||
|
544E97F000
|
stack
|
page read and write
|
||
|
22EF7C5C000
|
heap
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
22EF7C64000
|
heap
|
page read and write
|
||
|
4A0000
|
system
|
page execute and read and write
|
||
|
421000
|
unkown
|
page read and write
|
||
|
22EF7C76000
|
heap
|
page read and write
|
||
|
1D8A2ECB000
|
heap
|
page read and write
|
||
|
453000
|
unkown
|
page write copy
|
||
|
401000
|
unkown
|
page execute read
|
||
|
E45C67F000
|
stack
|
page read and write
|
||
|
78E000
|
heap
|
page read and write
|
||
|
544EAFE000
|
stack
|
page read and write
|
||
|
1F5430E0000
|
heap
|
page read and write
|
||
|
2746000
|
direct allocation
|
page read and write
|
||
|
E45C87F000
|
stack
|
page read and write
|
||
|
22EF7C5F000
|
heap
|
page read and write
|
||
|
1C497990000
|
heap
|
page read and write
|
||
|
1D8A2F13000
|
heap
|
page read and write
|
||
|
E45C27D000
|
stack
|
page read and write
|
||
|
22EF7C78000
|
heap
|
page read and write
|
||
|
1C497930000
|
heap
|
page read and write
|
||
|
2630000
|
direct allocation
|
page read and write
|
||
|
449000
|
unkown
|
page readonly
|
||
|
464000
|
unkown
|
page readonly
|
||
|
1D8A2E00000
|
heap
|
page read and write
|
||
|
773000
|
heap
|
page read and write
|
||
|
4BE000
|
stack
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
4A0000
|
system
|
page execute and read and write
|
||
|
1F543302000
|
heap
|
page read and write
|
||
|
1C0000
|
remote allocation
|
page read and write
|
||
|
22EF7C56000
|
heap
|
page read and write
|
||
|
29DBC868000
|
heap
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
1C0000
|
remote allocation
|
page read and write
|
||
|
2630000
|
direct allocation
|
page read and write
|
||
|
777000
|
heap
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
28DF000
|
direct allocation
|
page read and write
|
||
|
1F543300000
|
heap
|
page read and write
|
||
|
DCECAFE000
|
stack
|
page read and write
|
||
|
22EF7B10000
|
trusted library allocation
|
page read and write
|
||
|
2240000
|
direct allocation
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
236CE213000
|
heap
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
1C497A02000
|
heap
|
page read and write
|
||
|
2746000
|
direct allocation
|
page read and write
|
||
|
2630000
|
direct allocation
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
793000
|
heap
|
page read and write
|
||
|
55E000
|
stack
|
page read and write
|
||
|
449000
|
unkown
|
page readonly
|
||
|
E45C97F000
|
stack
|
page read and write
|
||
|
630000
|
heap
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
89E000
|
stack
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
236CE170000
|
heap
|
page read and write
|
||
|
30000
|
heap
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
776000
|
heap
|
page read and write
|
||
|
227E000
|
stack
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
786000
|
heap
|
page read and write
|
||
|
67C9B7D000
|
stack
|
page read and write
|
||
|
1F543190000
|
trusted library allocation
|
page read and write
|
||
|
236CEC02000
|
trusted library allocation
|
page read and write
|
||
|
1D8A2EC5000
|
heap
|
page read and write
|
||
|
22EF7C73000
|
heap
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
544E77A000
|
stack
|
page read and write
|
||
|
22EF8402000
|
trusted library allocation
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
1C497B02000
|
heap
|
page read and write
|
||
|
C3B6E7B000
|
stack
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
1D8A2CC0000
|
heap
|
page read and write
|
||
|
42D000
|
unkown
|
page readonly
|
||
|
2746000
|
direct allocation
|
page read and write
|
||
|
2630000
|
direct allocation
|
page read and write
|
||
|
29DBC6E0000
|
heap
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
1C497A00000
|
heap
|
page read and write
|
||
|
464000
|
unkown
|
page readonly
|
||
|
793000
|
heap
|
page read and write
|
||
|
28DB000
|
direct allocation
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
E45BC9C000
|
stack
|
page read and write
|
||
|
407000
|
unkown
|
page readonly
|
||
|
453000
|
unkown
|
page write copy
|
||
|
786000
|
heap
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
28DB000
|
direct allocation
|
page read and write
|
||
|
1D8A2EBA000
|
heap
|
page read and write
|
||
|
BE9B0FB000
|
stack
|
page read and write
|
||
|
786000
|
heap
|
page read and write
|
||
|
776000
|
heap
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
544E4FE000
|
stack
|
page read and write
|
||
|
E45CA7E000
|
stack
|
page read and write
|
||
|
783000
|
heap
|
page read and write
|
||
|
23C0000
|
direct allocation
|
page read and write
|
||
|
1D8A2D60000
|
trusted library allocation
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
E45C47E000
|
stack
|
page read and write
|
||
|
67C97FE000
|
stack
|
page read and write
|
There are 404 hidden memdumps, click here to show them.