Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
e-dekont-20230207.exe
|
PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\CLR_v4.0\UsageLogs\e-dekont-20230207.exe.log
|
CSV text
|
dropped
|
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\e-dekont-20230207.exe
|
C:\Users\user\Desktop\e-dekont-20230207.exe
|
|
|
|
C:\Windows\Microsoft.NET\Framework\v4.0.30319\CasPol.exe
|
C:\Windows\Microsoft.NET\Framework\v4.0.30319\Caspol.exe
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://discord.com/api/webhooks/1063267560818233445/Ga1uL1m9HE258QH4hqiVhVH5m98lA3rsO835awvMXcR1F31nnHHfghtrbDwRtJci1Osr
|
162.159.128.233
|
|
|
|
https://api.ipify.org/
|
64.185.227.155
|
||
|
https://api.ipify.org
|
unknown
|
||
|
https://discord.com
|
unknown
|
||
|
http://discord.com
|
unknown
|
||
|
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
|
unknown
|
||
|
https://discord.com4Dp
|
unknown
|
||
|
https://discord.com/api/webhooks/1063267560818233445/Ga1uL1m9HE258QH4hqiVhVH5m98lA3rsO835awvMXcR1F31
|
unknown
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
discord.com
|
162.159.128.233
|
|
|
|
api4.ipify.org
|
64.185.227.155
|
||
|
api.ipify.org
|
unknown
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
162.159.128.233
|
discord.com
|
United States
|
|
|
|
64.185.227.155
|
api4.ipify.org
|
United States
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing
|
EnableConsoleTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Caspol_RASAPI32
|
EnableFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Caspol_RASAPI32
|
EnableAutoFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Caspol_RASAPI32
|
EnableConsoleTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Caspol_RASAPI32
|
FileTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Caspol_RASAPI32
|
ConsoleTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Caspol_RASAPI32
|
MaxFileSize
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Caspol_RASAPI32
|
FileDirectory
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Caspol_RASMANCS
|
EnableFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Caspol_RASMANCS
|
EnableAutoFileTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Caspol_RASMANCS
|
EnableConsoleTracing
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Caspol_RASMANCS
|
FileTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Caspol_RASMANCS
|
ConsoleTracingMask
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Caspol_RASMANCS
|
MaxFileSize
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Tracing\Caspol_RASMANCS
|
FileDirectory
|
There are 5 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
2C4C000
|
trusted library allocation
|
page read and write
|
|
|
|
5BB5000
|
heap
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
6870000
|
trusted library allocation
|
page read and write
|
||
|
15DC000
|
heap
|
page read and write
|
||
|
1C19E000
|
stack
|
page read and write
|
||
|
1070000
|
heap
|
page read and write
|
||
|
1BC20000
|
trusted library allocation
|
page read and write
|
||
|
5C2D000
|
heap
|
page read and write
|
||
|
65C0000
|
trusted library allocation
|
page read and write
|
||
|
2C01000
|
trusted library allocation
|
page read and write
|
||
|
C70000
|
heap
|
page read and write
|
||
|
6550000
|
trusted library allocation
|
page read and write
|
||
|
11A6000
|
stack
|
page read and write
|
||
|
518E000
|
stack
|
page read and write
|
||
|
17CF000
|
stack
|
page read and write
|
||
|
65F0000
|
unkown
|
page read and write
|
||
|
15D0000
|
heap
|
page read and write
|
||
|
1525000
|
heap
|
page read and write
|
||
|
65C8000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
603E000
|
stack
|
page read and write
|
||
|
18B0000
|
trusted library allocation
|
page read and write
|
||
|
1BC00000
|
trusted library allocation
|
page read and write
|
||
|
18A0000
|
trusted library allocation
|
page read and write
|
||
|
EDA000
|
trusted library allocation
|
page execute and read and write
|
||
|
4DD4000
|
trusted library allocation
|
page read and write
|
||
|
1580000
|
trusted library allocation
|
page read and write
|
||
|
1BCA0000
|
trusted library allocation
|
page read and write
|
||
|
1880000
|
trusted library allocation
|
page read and write
|
||
|
6500000
|
trusted library allocation
|
page read and write
|
||
|
64D8000
|
trusted library allocation
|
page read and write
|
||
|
64C0000
|
trusted library allocation
|
page read and write
|
||
|
4E80000
|
trusted library allocation
|
page read and write
|
||
|
68B0000
|
trusted library allocation
|
page read and write
|
||
|
64EA000
|
trusted library allocation
|
page read and write
|
||
|
4E20000
|
trusted library allocation
|
page read and write
|
||
|
64C0000
|
trusted library allocation
|
page read and write
|
||
|
7FF9A747D000
|
trusted library allocation
|
page execute and read and write
|
||
|
64C0000
|
trusted library allocation
|
page read and write
|
||
|
5BBC000
|
heap
|
page read and write
|
||
|
7FF9A7520000
|
trusted library allocation
|
page read and write
|
||
|
57FE000
|
stack
|
page read and write
|
||
|
52B0000
|
trusted library allocation
|
page read and write
|
||
|
17E0000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
5A60000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
AC0000
|
heap
|
page read and write
|
||
|
64D0000
|
trusted library allocation
|
page read and write
|
||
|
6710000
|
trusted library allocation
|
page read and write
|
||
|
4DB0000
|
trusted library allocation
|
page read and write
|
||
|
6870000
|
trusted library allocation
|
page execute and read and write
|
||
|
4DDD000
|
trusted library allocation
|
page read and write
|
||
|
CD7000
|
heap
|
page read and write
|
||
|
1BF9E000
|
stack
|
page read and write
|
||
|
15A0000
|
trusted library allocation
|
page read and write
|
||
|
15A0000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
68B0000
|
trusted library allocation
|
page read and write
|
||
|
5B90000
|
heap
|
page read and write
|
||
|
6570000
|
trusted library allocation
|
page read and write
|
||
|
6892000
|
trusted library allocation
|
page read and write
|
||
|
1BCB0000
|
trusted library allocation
|
page read and write
|
||
|
64C0000
|
trusted library allocation
|
page read and write
|
||
|
64E0000
|
trusted library allocation
|
page read and write
|
||
|
5BE0000
|
heap
|
page read and write
|
||
|
5BB2000
|
heap
|
page read and write
|
||
|
6600000
|
trusted library allocation
|
page read and write
|
||
|
65E0000
|
trusted library allocation
|
page read and write
|
||
|
6550000
|
unkown
|
page read and write
|
||
|
64D0000
|
trusted library allocation
|
page read and write
|
||
|
1BCA0000
|
heap
|
page read and write
|
||
|
4D9D000
|
stack
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
5BF7000
|
heap
|
page read and write
|
||
|
64C0000
|
trusted library allocation
|
page read and write
|
||
|
133F3000
|
trusted library allocation
|
page read and write
|
||
|
5B91000
|
heap
|
page read and write
|
||
|
CC7000
|
heap
|
page read and write
|
||
|
1BBD0000
|
trusted library allocation
|
page read and write
|
||
|
64CF000
|
trusted library allocation
|
page read and write
|
||
|
1800000
|
trusted library allocation
|
page read and write
|
||
|
5BAB000
|
heap
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
5BDE000
|
heap
|
page read and write
|
||
|
68A0000
|
trusted library allocation
|
page read and write
|
||
|
17E0000
|
trusted library allocation
|
page read and write
|
||
|
68B0000
|
trusted library allocation
|
page read and write
|
||
|
1BBB0000
|
trusted library allocation
|
page read and write
|
||
|
17D0000
|
trusted library allocation
|
page read and write
|
||
|
64F0000
|
trusted library allocation
|
page read and write
|
||
|
15FF000
|
heap
|
page read and write
|
||
|
326E000
|
stack
|
page read and write
|
||
|
52A0000
|
trusted library allocation
|
page read and write
|
||
|
64D0000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
1560000
|
trusted library allocation
|
page read and write
|
||
|
1BCC0000
|
trusted library allocation
|
page read and write
|
||
|
1B85D000
|
stack
|
page read and write
|
||
|
6716000
|
trusted library allocation
|
page read and write
|
||
|
1BC70000
|
trusted library allocation
|
page read and write
|
||
|
17F0000
|
trusted library allocation
|
page read and write
|
||
|
664E000
|
stack
|
page read and write
|
||
|
4E80000
|
trusted library allocation
|
page read and write
|
||
|
4E80000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
ED0000
|
trusted library allocation
|
page read and write
|
||
|
17D0000
|
trusted library allocation
|
page read and write
|
||
|
26C0000
|
heap
|
page execute and read and write
|
||
|
65E5000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
6380000
|
trusted library allocation
|
page read and write
|
||
|
68A0000
|
trusted library allocation
|
page read and write
|
||
|
4DE5000
|
trusted library allocation
|
page read and write
|
||
|
6710000
|
trusted library allocation
|
page read and write
|
||
|
1820000
|
trusted library allocation
|
page read and write
|
||
|
3270000
|
trusted library allocation
|
page read and write
|
||
|
6630000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
6720000
|
trusted library allocation
|
page read and write
|
||
|
65F0000
|
trusted library allocation
|
page read and write
|
||
|
160F000
|
heap
|
page read and write
|
||
|
68B0000
|
trusted library allocation
|
page read and write
|
||
|
4FFC000
|
stack
|
page read and write
|
||
|
1830000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
3290000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
EB3000
|
trusted library allocation
|
page execute and read and write
|
||
|
1BC30000
|
trusted library allocation
|
page read and write
|
||
|
6720000
|
trusted library allocation
|
page read and write
|
||
|
15A0000
|
trusted library allocation
|
page read and write
|
||
|
7FF9A7480000
|
trusted library allocation
|
page read and write
|
||
|
1574000
|
trusted library allocation
|
page read and write
|
||
|
68B0000
|
trusted library allocation
|
page read and write
|
||
|
4E80000
|
trusted library allocation
|
page read and write
|
||
|
6530000
|
trusted library allocation
|
page read and write
|
||
|
686E000
|
stack
|
page read and write
|
||
|
1C29F000
|
stack
|
page read and write
|
||
|
68E0000
|
trusted library allocation
|
page read and write
|
||
|
64E0000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
6710000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
3280000
|
trusted library allocation
|
page read and write
|
||
|
64BF000
|
stack
|
page read and write
|
||
|
6540000
|
trusted library allocation
|
page read and write
|
||
|
4DCA000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
5000000
|
heap
|
page execute and read and write
|
||
|
528E000
|
stack
|
page read and write
|
||
|
4DEC000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
64D8000
|
trusted library allocation
|
page read and write
|
||
|
6720000
|
unkown
|
page read and write
|
||
|
65F0000
|
trusted library allocation
|
page read and write
|
||
|
65E5000
|
trusted library allocation
|
page read and write
|
||
|
6557000
|
unkown
|
page read and write
|
||
|
F00000
|
heap
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
6710000
|
trusted library allocation
|
page read and write
|
||
|
64D0000
|
trusted library allocation
|
page read and write
|
||
|
4DA0000
|
trusted library allocation
|
page execute and read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
1810000
|
trusted library allocation
|
page read and write
|
||
|
6530000
|
trusted library allocation
|
page read and write
|
||
|
5BCD000
|
heap
|
page read and write
|
||
|
2C32000
|
trusted library allocation
|
page read and write
|
||
|
5BF1000
|
heap
|
page read and write
|
||
|
676E000
|
stack
|
page read and write
|
||
|
4E80000
|
trusted library allocation
|
page read and write
|
||
|
1860000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
6720000
|
trusted library allocation
|
page read and write
|
||
|
68A0000
|
trusted library allocation
|
page read and write
|
||
|
64C5000
|
trusted library allocation
|
page read and write
|
||
|
65C0000
|
trusted library allocation
|
page read and write
|
||
|
68A0000
|
trusted library allocation
|
page read and write
|
||
|
65E0000
|
trusted library allocation
|
page read and write
|
||
|
5BB9000
|
heap
|
page read and write
|
||
|
68A0000
|
trusted library allocation
|
page read and write
|
||
|
6891000
|
trusted library allocation
|
page read and write
|
||
|
6710000
|
trusted library allocation
|
page read and write
|
||
|
6600000
|
trusted library allocation
|
page read and write
|
||
|
68B0000
|
trusted library allocation
|
page read and write
|
||
|
5B96000
|
heap
|
page read and write
|
||
|
1840000
|
trusted library allocation
|
page read and write
|
||
|
4C08000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
106C000
|
unkown
|
page readonly
|
||
|
ED2000
|
trusted library allocation
|
page read and write
|
||
|
1BBF0000
|
trusted library allocation
|
page read and write
|
||
|
3C01000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
6520000
|
trusted library allocation
|
page read and write
|
||
|
11E0000
|
heap
|
page read and write
|
||
|
270E000
|
stack
|
page read and write
|
||
|
64C0000
|
trusted library allocation
|
page read and write
|
||
|
2E26000
|
trusted library allocation
|
page read and write
|
||
|
5C1B000
|
heap
|
page read and write
|
||
|
64D0000
|
trusted library allocation
|
page read and write
|
||
|
7F580000
|
trusted library allocation
|
page execute and read and write
|
||
|
6600000
|
trusted library allocation
|
page read and write
|
||
|
32A0000
|
heap
|
page read and write
|
||
|
6710000
|
trusted library allocation
|
page read and write
|
||
|
68E0000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
4E80000
|
trusted library allocation
|
page read and write
|
||
|
33D0000
|
trusted library allocation
|
page read and write
|
||
|
64D0000
|
trusted library allocation
|
page read and write
|
||
|
65F0000
|
trusted library allocation
|
page read and write
|
||
|
68E0000
|
trusted library allocation
|
page read and write
|
||
|
7FF9A7556000
|
trusted library allocation
|
page execute and read and write
|
||
|
65D0000
|
trusted library allocation
|
page read and write
|
||
|
28BE000
|
stack
|
page read and write
|
||
|
6620000
|
unkown
|
page read and write
|
||
|
33C0000
|
trusted library allocation
|
page read and write
|
||
|
133F5000
|
trusted library allocation
|
page read and write
|
||
|
1BC80000
|
trusted library allocation
|
page read and write
|
||
|
68A0000
|
trusted library allocation
|
page read and write
|
||
|
1870000
|
trusted library allocation
|
page read and write
|
||
|
6380000
|
trusted library allocation
|
page read and write
|
||
|
68A0000
|
trusted library allocation
|
page read and write
|
||
|
65D0000
|
trusted library allocation
|
page read and write
|
||
|
64C0000
|
trusted library allocation
|
page read and write
|
||
|
2C93000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
4E86000
|
trusted library allocation
|
page read and write
|
||
|
402000
|
remote allocation
|
page execute and read and write
|
||
|
1820000
|
trusted library allocation
|
page read and write
|
||
|
4DC0000
|
trusted library allocation
|
page read and write
|
||
|
1580000
|
trusted library allocation
|
page read and write
|
||
|
2C62000
|
trusted library allocation
|
page read and write
|
||
|
6D9E000
|
stack
|
page read and write
|
||
|
4DE0000
|
trusted library allocation
|
page read and write
|
||
|
400000
|
remote allocation
|
page execute and read and write
|
||
|
68A0000
|
trusted library allocation
|
page read and write
|
||
|
6720000
|
trusted library allocation
|
page read and write
|
||
|
64D0000
|
unkown
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
5BE7000
|
heap
|
page read and write
|
||
|
15A0000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
65F5000
|
trusted library allocation
|
page read and write
|
||
|
64D0000
|
trusted library allocation
|
page read and write
|
||
|
1540000
|
trusted library allocation
|
page read and write
|
||
|
68E0000
|
trusted library allocation
|
page read and write
|
||
|
CDA000
|
heap
|
page read and write
|
||
|
1860000
|
trusted library allocation
|
page read and write
|
||
|
6710000
|
trusted library allocation
|
page read and write
|
||
|
EB0000
|
trusted library allocation
|
page read and write
|
||
|
D22000
|
heap
|
page read and write
|
||
|
6720000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
64E0000
|
trusted library allocation
|
page read and write
|
||
|
5BD2000
|
heap
|
page read and write
|
||
|
64C0000
|
trusted library allocation
|
page read and write
|
||
|
2760000
|
heap
|
page read and write
|
||
|
5C22000
|
heap
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
1580000
|
trusted library section
|
page read and write
|
||
|
2C87000
|
trusted library allocation
|
page read and write
|
||
|
1BBA0000
|
trusted library allocation
|
page read and write
|
||
|
6880000
|
trusted library allocation
|
page read and write
|
||
|
C10000
|
heap
|
page read and write
|
||
|
64E0000
|
unkown
|
page read and write
|
||
|
2780000
|
heap
|
page read and write
|
||
|
68B0000
|
trusted library allocation
|
page read and write
|
||
|
5A40000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
68A0000
|
trusted library allocation
|
page read and write
|
||
|
5C29000
|
heap
|
page read and write
|
||
|
4E80000
|
trusted library allocation
|
page read and write
|
||
|
18C0000
|
heap
|
page read and write
|
||
|
5BAB000
|
heap
|
page read and write
|
||
|
33F1000
|
trusted library allocation
|
page read and write
|
||
|
7FF9A75A0000
|
trusted library allocation
|
page execute and read and write
|
||
|
671A000
|
trusted library allocation
|
page read and write
|
||
|
4E80000
|
trusted library allocation
|
page read and write
|
||
|
65D0000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
504E000
|
stack
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
68A0000
|
trusted library allocation
|
page read and write
|
||
|
EA0000
|
trusted library allocation
|
page read and write
|
||
|
3286000
|
trusted library allocation
|
page read and write
|
||
|
660D000
|
stack
|
page read and write
|
||
|
133F1000
|
trusted library allocation
|
page read and write
|
||
|
5C2F000
|
heap
|
page read and write
|
||
|
65F0000
|
trusted library allocation
|
page read and write
|
||
|
6610000
|
trusted library allocation
|
page read and write
|
||
|
1BC60000
|
trusted library allocation
|
page read and write
|
||
|
133F9000
|
trusted library allocation
|
page read and write
|
||
|
64F0000
|
trusted library allocation
|
page read and write
|
||
|
65D0000
|
trusted library allocation
|
page read and write
|
||
|
64D0000
|
unkown
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
65D0000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
5A50000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
4E80000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
65E0000
|
trusted library allocation
|
page read and write
|
||
|
52A0000
|
trusted library allocation
|
page read and write
|
||
|
EEB000
|
trusted library allocation
|
page execute and read and write
|
||
|
68B4000
|
trusted library allocation
|
page read and write
|
||
|
15C0000
|
trusted library allocation
|
page read and write
|
||
|
671A000
|
trusted library allocation
|
page read and write
|
||
|
64C5000
|
trusted library allocation
|
page read and write
|
||
|
2C3A000
|
trusted library allocation
|
page read and write
|
||
|
275D000
|
stack
|
page read and write
|
||
|
5BC2000
|
heap
|
page read and write
|
||
|
64C0000
|
trusted library allocation
|
page read and write
|
||
|
64C0000
|
trusted library allocation
|
page read and write
|
||
|
989000
|
stack
|
page read and write
|
||
|
F07000
|
heap
|
page read and write
|
||
|
ED6000
|
trusted library allocation
|
page execute and read and write
|
||
|
820000
|
heap
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
6530000
|
trusted library allocation
|
page read and write
|
||
|
5BA0000
|
heap
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
2C3C000
|
trusted library allocation
|
page read and write
|
||
|
166D000
|
heap
|
page read and write
|
||
|
4E80000
|
trusted library allocation
|
page read and write
|
||
|
5BD5000
|
heap
|
page read and write
|
||
|
6894000
|
trusted library allocation
|
page read and write
|
||
|
1BBA1000
|
heap
|
page read and write
|
||
|
7FF9A7474000
|
trusted library allocation
|
page read and write
|
||
|
6000000
|
remote allocation
|
page read and write
|
||
|
5BEA000
|
heap
|
page read and write
|
||
|
689A000
|
trusted library allocation
|
page read and write
|
||
|
64D0000
|
trusted library allocation
|
page read and write
|
||
|
1580000
|
trusted library allocation
|
page read and write
|
||
|
7FF4ED030000
|
trusted library allocation
|
page execute and read and write
|
||
|
ECD000
|
trusted library allocation
|
page execute and read and write
|
||
|
64E0000
|
trusted library allocation
|
page read and write
|
||
|
5BB9000
|
heap
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
7FF9A7592000
|
trusted library allocation
|
page read and write
|
||
|
17F0000
|
trusted library allocation
|
page read and write
|
||
|
62EA000
|
stack
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
64C0000
|
trusted library allocation
|
page read and write
|
||
|
4DD2000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
6510000
|
trusted library allocation
|
page read and write
|
||
|
64D0000
|
trusted library allocation
|
page read and write
|
||
|
1830000
|
trusted library allocation
|
page read and write
|
||
|
7FF9A7590000
|
trusted library allocation
|
page read and write
|
||
|
D76000
|
heap
|
page read and write
|
||
|
5BBD000
|
heap
|
page read and write
|
||
|
65F0000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
6730000
|
trusted library allocation
|
page read and write
|
||
|
15B0000
|
trusted library allocation
|
page read and write
|
||
|
1BBA0000
|
heap
|
page read and write
|
||
|
1BCA1000
|
heap
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
4E80000
|
trusted library allocation
|
page read and write
|
||
|
15B0000
|
trusted library allocation
|
page read and write
|
||
|
1800000
|
trusted library allocation
|
page read and write
|
||
|
7FF9A7530000
|
trusted library allocation
|
page execute and read and write
|
||
|
64C0000
|
trusted library allocation
|
page read and write
|
||
|
5C31000
|
heap
|
page read and write
|
||
|
14F0000
|
heap
|
page read and write
|
||
|
68D0000
|
heap
|
page read and write
|
||
|
5EFE000
|
stack
|
page read and write
|
||
|
1BC50000
|
trusted library allocation
|
page read and write
|
||
|
68E0000
|
trusted library allocation
|
page read and write
|
||
|
68B0000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
AC5000
|
heap
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
15E9000
|
heap
|
page read and write
|
||
|
5BF1000
|
heap
|
page read and write
|
||
|
64F0000
|
trusted library allocation
|
page read and write
|
||
|
6535000
|
trusted library allocation
|
page read and write
|
||
|
88B000
|
stack
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
1639000
|
heap
|
page read and write
|
||
|
4E80000
|
trusted library allocation
|
page read and write
|
||
|
1590000
|
heap
|
page read and write
|
||
|
65C7000
|
trusted library allocation
|
page read and write
|
||
|
6370000
|
trusted library allocation
|
page execute and read and write
|
||
|
6710000
|
trusted library allocation
|
page read and write
|
||
|
6550000
|
unkown
|
page read and write
|
||
|
64D0000
|
trusted library allocation
|
page read and write
|
||
|
613F000
|
stack
|
page read and write
|
||
|
64D0000
|
trusted library allocation
|
page read and write
|
||
|
4E80000
|
trusted library allocation
|
page read and write
|
||
|
27B0000
|
heap
|
page read and write
|
||
|
5BF7000
|
heap
|
page read and write
|
||
|
6150000
|
trusted library allocation
|
page read and write
|
||
|
65D0000
|
trusted library allocation
|
page read and write
|
||
|
5A70000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
5C2D000
|
heap
|
page read and write
|
||
|
65E0000
|
trusted library allocation
|
page read and write
|
||
|
4E80000
|
trusted library allocation
|
page read and write
|
||
|
64D0000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
EBD000
|
trusted library allocation
|
page execute and read and write
|
||
|
C77000
|
heap
|
page read and write
|
||
|
4DDA000
|
trusted library allocation
|
page read and write
|
||
|
6000000
|
remote allocation
|
page read and write
|
||
|
65C0000
|
trusted library allocation
|
page read and write
|
||
|
FC0000
|
unkown
|
page readonly
|
||
|
1570000
|
trusted library allocation
|
page read and write
|
||
|
1890000
|
trusted library allocation
|
page read and write
|
||
|
4E30000
|
trusted library allocation
|
page read and write
|
||
|
64EE000
|
unkown
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
514F000
|
stack
|
page read and write
|
||
|
64F5000
|
trusted library allocation
|
page read and write
|
||
|
68E0000
|
trusted library allocation
|
page read and write
|
||
|
106C000
|
unkown
|
page readonly
|
||
|
65D0000
|
trusted library allocation
|
page read and write
|
||
|
68A0000
|
trusted library allocation
|
page read and write
|
||
|
6500000
|
trusted library allocation
|
page read and write
|
||
|
6730000
|
trusted library allocation
|
page read and write
|
||
|
6896000
|
trusted library allocation
|
page read and write
|
||
|
6720000
|
trusted library allocation
|
page read and write
|
||
|
EB4000
|
trusted library allocation
|
page read and write
|
||
|
6870000
|
trusted library allocation
|
page read and write
|
||
|
15A0000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
5BEA000
|
heap
|
page read and write
|
||
|
4E80000
|
heap
|
page read and write
|
||
|
D11000
|
heap
|
page read and write
|
||
|
58FE000
|
stack
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
64D0000
|
trusted library allocation
|
page read and write
|
||
|
64D0000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
65D6000
|
trusted library allocation
|
page read and write
|
||
|
65D5000
|
trusted library allocation
|
page read and write
|
||
|
27A0000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
64E0000
|
trusted library allocation
|
page read and write
|
||
|
33E0000
|
heap
|
page execute and read and write
|
||
|
5BBC000
|
heap
|
page read and write
|
||
|
6710000
|
trusted library allocation
|
page read and write
|
||
|
5C2F000
|
heap
|
page read and write
|
||
|
6500000
|
trusted library allocation
|
page read and write
|
||
|
1BBE0000
|
trusted library allocation
|
page read and write
|
||
|
6560000
|
trusted library allocation
|
page read and write
|
||
|
5290000
|
trusted library allocation
|
page read and write
|
||
|
64D5000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
heap
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
5BB2000
|
heap
|
page read and write
|
||
|
6510000
|
trusted library allocation
|
page read and write
|
||
|
68B0000
|
trusted library allocation
|
page read and write
|
||
|
64D0000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
1850000
|
trusted library allocation
|
page read and write
|
||
|
65F6000
|
trusted library allocation
|
page read and write
|
||
|
13530000
|
trusted library allocation
|
page read and write
|
||
|
CA0000
|
heap
|
page read and write
|
||
|
5B91000
|
heap
|
page read and write
|
||
|
64D0000
|
trusted library allocation
|
page read and write
|
||
|
6870000
|
trusted library allocation
|
page read and write
|
||
|
6880000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
1810000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
6870000
|
trusted library allocation
|
page read and write
|
||
|
5B9F000
|
heap
|
page read and write
|
||
|
D07000
|
heap
|
page read and write
|
||
|
65E0000
|
trusted library allocation
|
page read and write
|
||
|
14D0000
|
heap
|
page read and write
|
||
|
6725000
|
trusted library allocation
|
page read and write
|
||
|
65E3000
|
trusted library allocation
|
page read and write
|
||
|
64C0000
|
trusted library allocation
|
page read and write
|
||
|
64E0000
|
trusted library allocation
|
page read and write
|
||
|
5EBE000
|
stack
|
page read and write
|
||
|
64D0000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
15B0000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
1850000
|
trusted library allocation
|
page read and write
|
||
|
FC2000
|
unkown
|
page readonly
|
||
|
6580000
|
trusted library allocation
|
page read and write
|
||
|
7FF9A7484000
|
trusted library allocation
|
page read and write
|
||
|
4DF1000
|
trusted library allocation
|
page read and write
|
||
|
64E0000
|
trusted library allocation
|
page read and write
|
||
|
64C7000
|
trusted library allocation
|
page read and write
|
||
|
6880000
|
trusted library allocation
|
page read and write
|
||
|
4E80000
|
trusted library allocation
|
page read and write
|
||
|
68A6000
|
trusted library allocation
|
page read and write
|
||
|
6720000
|
trusted library allocation
|
page read and write
|
||
|
5FFE000
|
stack
|
page read and write
|
||
|
5BC0000
|
heap
|
page read and write
|
||
|
15A0000
|
trusted library allocation
|
page read and write
|
||
|
19CE000
|
stack
|
page read and write
|
||
|
68E0000
|
trusted library allocation
|
page read and write
|
||
|
1BC40000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
5C22000
|
heap
|
page read and write
|
||
|
64E6000
|
unkown
|
page read and write
|
||
|
CA8000
|
heap
|
page read and write
|
||
|
6720000
|
trusted library allocation
|
page read and write
|
||
|
1BCCB000
|
trusted library allocation
|
page read and write
|
||
|
6530000
|
trusted library allocation
|
page read and write
|
||
|
5BB2000
|
heap
|
page read and write
|
||
|
FC2000
|
unkown
|
page readonly
|
||
|
EE2000
|
trusted library allocation
|
page read and write
|
||
|
5BDE000
|
heap
|
page read and write
|
||
|
64DB000
|
trusted library allocation
|
page read and write
|
||
|
6620000
|
trusted library allocation
|
page read and write
|
||
|
1BC90000
|
trusted library allocation
|
page read and write
|
||
|
5BDA000
|
heap
|
page read and write
|
||
|
64D0000
|
trusted library allocation
|
page read and write
|
||
|
6738000
|
trusted library allocation
|
page read and write
|
||
|
7FF9A7482000
|
trusted library allocation
|
page read and write
|
||
|
64F0000
|
trusted library allocation
|
page read and write
|
||
|
D99000
|
heap
|
page read and write
|
||
|
5BA2000
|
heap
|
page read and write
|
||
|
65D0000
|
trusted library allocation
|
page read and write
|
||
|
64D5000
|
trusted library allocation
|
page read and write
|
||
|
64D0000
|
trusted library allocation
|
page read and write
|
||
|
EC0000
|
trusted library allocation
|
page read and write
|
||
|
63BE000
|
stack
|
page read and write
|
||
|
4E5D000
|
stack
|
page read and write
|
||
|
1840000
|
trusted library allocation
|
page read and write
|
||
|
D9B000
|
heap
|
page read and write
|
||
|
64D0000
|
trusted library allocation
|
page read and write
|
||
|
61ED000
|
stack
|
page read and write
|
||
|
4E04000
|
trusted library allocation
|
page read and write
|
||
|
64C0000
|
trusted library allocation
|
page read and write
|
||
|
65E0000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
1BBC0000
|
trusted library allocation
|
page read and write
|
||
|
2C48000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
4E10000
|
trusted library allocation
|
page read and write
|
||
|
65D0000
|
trusted library allocation
|
page read and write
|
||
|
EE7000
|
trusted library allocation
|
page execute and read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
64C0000
|
trusted library allocation
|
page read and write
|
||
|
160C000
|
heap
|
page read and write
|
||
|
6660000
|
trusted library allocation
|
page read and write
|
||
|
6870000
|
trusted library allocation
|
page read and write
|
||
|
6000000
|
remote allocation
|
page read and write
|
||
|
64D0000
|
trusted library allocation
|
page execute and read and write
|
||
|
6650000
|
trusted library allocation
|
page read and write
|
||
|
6893000
|
trusted library allocation
|
page read and write
|
||
|
68B0000
|
trusted library allocation
|
page read and write
|
||
|
5DBD000
|
stack
|
page read and write
|
||
|
5C1B000
|
heap
|
page read and write
|
||
|
4E20000
|
trusted library allocation
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
5C2D000
|
heap
|
page read and write
|
||
|
FC0000
|
unkown
|
page readonly
|
||
|
7FF9A7599000
|
trusted library allocation
|
page read and write
|
||
|
1580000
|
trusted library allocation
|
page read and write
|
||
|
68B0000
|
trusted library allocation
|
page read and write
|
||
|
2764000
|
heap
|
page read and write
|
||
|
4E80000
|
trusted library allocation
|
page read and write
|
||
|
68C0000
|
trusted library allocation
|
page read and write
|
||
|
64D0000
|
trusted library allocation
|
page read and write
|
||
|
5290000
|
trusted library allocation
|
page read and write
|
||
|
64C0000
|
trusted library allocation
|
page read and write
|
||
|
5BE0000
|
heap
|
page read and write
|
||
|
6890000
|
trusted library allocation
|
page read and write
|
||
|
6720000
|
heap
|
page read and write
|
||
|
6DDE000
|
stack
|
page read and write
|
||
|
6655000
|
trusted library allocation
|
page read and write
|
||
|
1BC10000
|
trusted library allocation
|
page read and write
|
||
|
5290000
|
trusted library allocation
|
page read and write
|
||
|
1520000
|
heap
|
page read and write
|
||
|
1C09E000
|
stack
|
page read and write
|
||
|
15C0000
|
trusted library allocation
|
page read and write
|
||
|
18C5000
|
heap
|
page read and write
|
||
|
6720000
|
trusted library allocation
|
page read and write
|
||
|
42C000
|
remote allocation
|
page execute and read and write
|
||
|
4E00000
|
trusted library allocation
|
page read and write
|
||
|
5BC8000
|
heap
|
page read and write
|
||
|
4E80000
|
trusted library allocation
|
page read and write
|
||
|
1BBB1000
|
heap
|
page read and write
|
||
|
26B0000
|
trusted library allocation
|
page read and write
|
||
|
5C2F000
|
heap
|
page read and write
|
||
|
6535000
|
trusted library allocation
|
page read and write
|
||
|
4DD7000
|
trusted library allocation
|
page read and write
|
||
|
EE5000
|
trusted library allocation
|
page execute and read and write
|
There are 584 hidden memdumps, click here to show them.